1. Check Network Config (看MAC + IP Address)
# ifconfig | egrep "HWaddr|inet addr"
2. show / manipulate the IP routing table
# route # netstat -nr
3. tcpdump
# tcpdump -i etho -w /tmp/tcpdump.cap# tcpdump -i etho -s 80 -w /tmp/tcpdump.cap (-s 80: 只抓每個封包的前80 bytes)
# tcpdump -i etho host 10.32.200.131 -w /tmp/tcpdump.cap (只抓取與10.32.200.131 通信的封包)
4. 檢查網卡設定
#more /etc/networks/interfaces
5. 比較兩個帳號權限的差別
# cat /etc/passwd | grep -E "^root|^msfadmin" (查看msfadmin和root 權限的差異)
6. 檢查Linux iptables
# sudo iptables -t filter -L
7. 去除重複record
# sort -u file > NoDuplicateFile
8. 檢查檔案中資料筆數
# wc -l file
9. 將大寫全改成小寫
# tr A-Z a-z < file=""> AllLowerCaseFile
10. 掃描一台機器開啟的port
# nmap 192.168.18.33
沒有留言:
張貼留言