CLI

Question 1

What is Bash?

Answer 1

Bash is an sh-compatible shell that allows us to run complex commands and perform different tasks from a terminal window. It incorporates useful features from both the KornShell and C shell.

Question 2

How to view content of given enviroment variables?

Answer 2

echo $PATH

Question 3

Useful enviroment variables

Answer 3

$USER
$PWD
$HOME

Question 4

How to display the process ID of the current shell instance?

Answer 4

echo “$$”

Question 5

What “export” command does?

Answer 5

The export command makes the variable accessible to any subprocesses we might spawn from our current Bash instance. If we set an environment variable without export it will only be available in the current shell.

Question 6

How to view enviroment variables defined by default in Linux?

Answer 6

By env command.

Question 7

How to check history of commands that have been entered?

Answer 7

By history command.

Question 8

How to re-run first command from your history?

Answer 8

!1

Question 9

How to repeat last command that was executed during terminal session?

Answer 9

!!

Question 10

Where is command history saved to?

Answer 10

.bash_history in the user home directory.

Question 11

Two enviroment variables control the history size

Answer 11

HISTSIZE and HISTFILESIZE

Question 12

HISTSIZE

Answer 12

Controls the number of commands stored in memory for the current session.

Question 13

HISTFILESIZE

Answer 13

Configures how many commands are kept in the history file.

Question 14

How to invoke reverse-i-search facility?

Answer 14

CTRL + R

Question 15

How to inspect your bash history?

Answer 15

By history command

Question 16

How to use history expansion to re-run a command from it?

Answer 16

!number

Question 17

Standard Input (STDIN)

Answer 17

Data fed into the program

Question 18

Standard Output (STDOUT)

Answer 18

Output from the program (defaults to terminal)

Question 19

Standard Error (STDERR)

Answer 19

Error messages (defaults to terminal)

Question 20

Standard Error (STDERR)

Answer 20

Error messages (defaults to terminal)

Question 21

Piping operator

Answer 21

|

Question 22

Redirection Operators

Answer 22

<>

Question 23

Which operator is used to save the output to a file to keep it for future?

Answer 23

>

Question 24

How to save “test” string to file “redirection_test.txt”?

Answer 24

echo “test” > redirection_test.txt

Question 25

Which operand is used to append additional data to an existing file?

Answer 25

> >

Question 26

How to append two lines of strings, to one file names “redirection_test.txt”?

Answer 26

echo “1”&raquo_space; redirection_test.txt

echo “2”&raquo_space; redirection_test.txt

Question 27

What is doing “wc” command?

Answer 27

Print newline, word, and byte counts for each file.

Question 28

How to redirect standard error (STDERR) to file?

Answer 28

ls ./test 2>error.txt

Question 29

File Descriptor for STDIN?

Answer 29

0

Question 30

File Descriptor for STDOUT?

Answer 30

1

Question 31

File Descriptor for STDERR?

Answer 31

2

Question 32

What is POSIX?

Answer 32

Portable Operating System Interface for UNIX

Question 33

How to count by “wc” file.txt and return the data to “count.txt” using piping?

Answer 33

cat file.txt | wc -m > count.txt

Question 34

How to use a cat command in conjuction with sort to reorder the content of the /etc/passwd?

Answer 34

sudo cat /etc/passwd | sort 1>passwd.txt

Question 35

Text Searching and Manipulation main commands

Answer 35

grep
sed
cut
awk

Question 36

What is regular expression?

Answer 36

A regular expression is a special text string for describing a search pattern.

Question 37

What is grep?

Answer 37

In a nutshell, grep searches text files for the occurrence of a given regular expression and outputs any line containing a match to the standard output, which is usually the terminal screen.

Question 38

grep -r stands for?

Answer 38

Recursive searching

Question 39

grep -i stands for?

Answer 39

Ignore test case.

Question 40

How to list all files in the /usr/bin directory and pipe the output, which searches for any line containing the string “zip”?

Answer 40

ls -la /usr/bin | grep zip

Question 41

What is sed?

Answer 41

Sed is a powerful stream editor. It is also very complex. At a very high level, sed performs text editing on a stream of text, either a set of specific files or standard output.

Question 42

How to create a stream of text “I need to try hard”?

Answer 42

echo “I need to try hard”

Question 43

How to replace word “hard” with “harder” by sed?

Answer 43

sed ‘s/hard/harder/’

Question 44

How to create a stream of text “I need to try harder” using the echo command and then pipe it to sed in order to replace the word “hard” with “harder”?

Answer 44

echo “I need to try hard” | sed ‘s/hard/harder’

Question 45

What is cut?

Answer 45

The cut command is simple, but often comes in quite handy. It is used to extract a section of text from a line and output it to the standard output.

Question 46

Most commonly-used switches for cut?

Answer 46

• f

- d

Question 47

What -f switch means in cut command?

Answer 47

Field Number

Question 48

What -d switch means in cut command?

Answer 48

Field Delimiter

Question 49

How to extract list of users on Linux system?

Answer 49

cut -d “:” -f 1 /etc/passwd

Question 50

What is the output of this command?

echo “I hack binaries,web apps,mobile apps, and just about anything else”| cut -f 2 -d “,”

Answer 50

web apps

Question 51

What is the field delimiter in this command?

echo “I hack binaries,web apps,mobile apps, and just about anything else”| cut -f 2 -d “,”

Answer 51

(,)

Question 52

What is AWK?

Answer 52

AWK is a programming language designed for text processing and is typically used as a data extraction and reporting tool. It is also extremely powerful and can be quite complex.

Question 53

Commonly used switch with AWK?

Answer 53

-F

Question 54

What is -F switch in awk?

Answer 54

Field separator, and the print command, which outputs the result text.

Question 55

What is the output of this command?

echo “hello::there::friend” | awk -F “::” ‘{print $1, $3}’

Answer 55

hello friend

Question 56

What is the difference between cut and awk?

Answer 56

Awk is much more flexible.

Question 57

What does the head command do?

Answer 57

The head command displays the first 10 lines in a file.

Question 58

What does wc -l command do?

Answer 58

Display the total number of lines in a file.

Question 59

What gunzip command do?

Answer 59

Comrpess or expand files.

Question 60

Gunzip alternatives

Answer 60

gzip, zcat

Question 61

How to unzip “access_log.txt.gz”

Answer 61

gunzip access_log.txt.gz

Question 62

How to print first 10 lines of file “access.log”?

Answer 62

head access.log

Question 63

What sort -u do?

Answer 63

Sorts and showing only unique lines.

Question 64

What does uniq command do?

Answer 64

Report or omit repeated lines.

Question 65

What the -c option for uniq do?

Answer 65

This will prefix the output line with the number of occurrences.

Question 66

What command using /etc/passwd, extract the user and home directory fields for all users on your Linux.

Answer 66

cat /etc/passwd | awk -F “:” ‘{print “The user “ $1, “ home directory is “ $6}’

Question 67

How to copy the /etc/passwd file to your home directory (/home/kali)?

Answer 67

cp /etc/passwd /home/kali/passwd

Question 68

How to use cat in a one-liner to print the output of the /kali/passwd and replace all instances of the “Light Display Manager” string with “LDM”.

Answer 68

cat passwd | sed -i ‘s/Light Display Manager/LDM/g’ passwd

Question 69

Linux Text Editors

Answer 69

gedit
leafpad
nano
vi

Question 70

What is nano?

Answer 70

Nano is one of the simplest-to-use text editors.

Question 71

What does CTRL + O shortcut in nano?

Answer 71

Write changes to the file.

Question 72

What does CTRL + K shortcut in nano?

Answer 72

Cut the current line.

Question 73

What does CTRL + U shortcut in nano?

Answer 73

Un-cut a line and paste it at the cursor location.

Question 74

What does CTRL + W shortcut in nano?

Answer 74

Search.

Question 75

What does CTRL + X shortcut in nano?

Answer 75

Exit.

Question 76

What is vi?

Answer 76

Vi is an extremely powerful text editor, capable of blazing speed especially when it comes to automating repetitive tasks. However, it has a relatively steep learning curve and is nowhere near as simple to use as Nano.

Question 77

How to enable insert-text mode to begin typing in vi?

Answer 77

Press I key and start typing away.

Question 78

How to disable insert-text mode and go back to command mode?

Answer 78

Press the ESC key.

Question 79

What does dd in command mode in vi?

Answer 79

Delete the current line.

Question 80

What does yy in command mode in vi?

Answer 80

Copy the current line.

Question 81

What does p in command mode in vi?

Answer 81

Paste the clipboard contents.

Question 82

What does x in command mode in vi?

Answer 82

Delete the current character.

Question 83

What does :w in command mode in vi?

Answer 83

Write the current file to disk and stay in vi.

Question 84

What does :q! in command mode in vi?

Answer 84

Quit without writing the file to disk.

Question 85

What does :wq in command mode in vi?

Answer 85

Save and quit.

Question 86

Why use vi?

Answer 86

Vi can save a great deal of time in the hands of experienced user and vi is installed on every POSIX-compliant system.

Question 87

What does comm command?

Answer 87

Comm command compares two text files, displaying the lines that are unique to each one, as well as the lines they have in common. It outputs three space-offset columns: the first contains lines that are unique to the first file or argument; the second contains lines that are unique to the second file or argument; and the third column contains lines that are shared by both files. The -n switch, where “n” is either 1, 2, or 3, can be used to suppress one or more columns, depending on the need.

Question 88

How to scan with comm two text files “scan-a.txt”, “scan-b.txt” and check uniques?

Answer 88

comm scan-a.txt scan-b.txt

Question 89

How to scan with comm two text files “scan-a.txt”, “scan-b.txt” and display only the lines that were found in both files?

Answer 89

comm -12 scan-a.txt scan-b.txt

Question 90

What is diff comand used to?

Answer 90

The diff command is used to detect differences between files, similar to the comm command. However, diff is much more complex and supports many output formats.

Question 91

Two of the most popular formats of diff?

Answer 91

context format (-c)
unified format (-u)

Question 92

The most notable difference between unified and context format?

Answer 92

The most notable difference between these formats is that the unified format does not show lines that match between files, making the results shorter. The indicators have identical meaning in both formats.

Question 93

What does vimdiff?

Answer 93

Vimdiff opens vim with multiple files, one in each window. The differences between files are highlighted, which makes it easier to visually inspect them.

Question 94

What do shortcut in vim does?

Answer 94

Gets changes from the other window into the current one.

Question 95

What dp shortcut in vim does?

Answer 95

Puts the changes from the current window into the other one.

Question 96

What ]c shortcut in vim does?

Answer 96

Jumps to the next change.

Question 97

What [c shortcut in vim does?

Answer 97

Jumps to the previous change.

Question 98

What CTRL + W shortcut in vim does?

Answer 98

Switches to the other split window.

Question 99

How to check two text files “scan-a.txt” and “scan-b.txt” with vimdiff?

Answer 99

vimdiff scan-a.txt scan-b.txt

Question 100

What is PID?

Answer 100

Process ID

Question 101

How to create a backgrounding process?

Answer 101

Append ampersand to the end of the command.

Question 102

How to sent 400 ICMP echo requests to the local interface with the ping command and wrote the results to a file called ping_results.txt using backgrounding processes?

Answer 102

ping -c 400 localhost > ping_results.txt &

Question 103

What is a shortcut for canceling operations in Terminal?

Answer 103

CTRL + C

Question 104

What is the shortcut to suspend a job in Terminal?

Answer 104

CTRL + Z

Question 105

What is the shortcut to suspend a job in Terminal?

Answer 105

CTRL + Z

Question 106

How to check backgrounding processes?

Answer 106

By bg command.

Question 107

How to quickly check the status of ICMP echo requests?

Answer 107

By “jobs” and “fg” commands.

Question 108

What is “jobs” command used to?

Answer 108

To look at jobs.

Question 109

What is “fg” command used to?

Answer 109

To bring one job into the foreground.

Question 110

What the “^C” character represents?

Answer 110

Keystroke combination CTRL + C.

Question 111

By which shortcut can we terminate a long-running process and regain control of the terminal?

Answer 111

CTRL + C

Question 112

One of the most useful commands to monitor processes on mostly any Unix-like operating system?

Answer 112

ps (short for process status).

Question 113

What ps do?

Answer 113

ps lists processes systemwide, not only for the current terminal session.

Question 114

What are the first things to check after obtaining remote access to a system?

Answer 114

Understand what software is currently running on the compromised machine. This could
help us elevate our privileges or collect additional information in order to acquire further access
into the network.

Question 115

What the -e option do in ps?

Answer 115

Select all processes.

Question 116

What the -f option do in ps?

Answer 116

Display full format listing (UID, PID, PPID, etc.)

Question 117

What the -C option do in ps?

Answer 117

Select by command name.

Question 118

How to stop the Leafpad process without interacting with the GUI?

Answer 118

kill leafpad_pid

Question 119

What kill command do?

Answer 119

Send a specific signal to a process.

Question 120

What is the default signal to kill?

Answer 120

SIGTERM (request termination).

Question 121

How to run a command in the background?

Answer 121

bigjob &

Question 122

How to find files that have changed on your Kali virtual machine within the past 7 days?

Answer 122

find / -mtime -7

Question 123

How to find files that have changed on your Kali virtual machine within the past 7 days by running a
specific command in the background?

Answer 123

find / -mtime -7 &

Question 124

How to find files and directories modified more than n days ago?

Answer 124

find / -mtime +n

Question 125

How to find the files and directories modified less than n days ago?

Answer 125

find / -mtime -n

Question 126

How to get the files modified on ‘2019-07-24’?

Answer 126

find . -type f -newermt 2019-07-24 ! -newermt 2019-07-25

Question 127

How to show the long format of the files and to sort the output by modification time by ls?

Answer 127

ls -lt

Question 128

How to filter listing based on a specific date or time by applying the grep command by date?

Answer 128

ls -lt | grep ‘Jul 27’

Question 129

How to filter listing based on a specific date or time by applying the grep command by time?

Answer 129

ls -lt | grep ‘17:’

Question 130

How to enable the recursive capability on the ls command?

Answer 130

ls -R

Question 131

How to check “Firefox” PID?

Answer 131

ps -ef | grep firefox

Question 132

How to terminate Firefox via CLI using its PID?

Answer 132

kill firefox_process_id

Question 133

Commands to monitor files and commands in real-time.

Answer 133

tail and watch.

Question 134

What tail command do?

Answer 134

The most common use of tail is to monitor log file entries as they are being written. For example, we may want to monitor the Apache logs to see if a web server is being contacted by a given client we are attempting to attack via a client-side exploit.

Question 135

What -f option in tail do?

Answer 135

The -f option (follow) is very useful as it continuously updates the output as the target file grows.

Question 136

What -nX option in tail do?

Answer 136

-nX, which outputs the last “X” number of lines, instead of the default value of 10.

Question 137

What the watch command is used to?

Answer 137

The watch command is used to run a designated command at regular intervals.

Question 138

Which option specify different intervals for watch?

Answer 138

-n X option to have it run every “X” number of seconds.

Question 139

How to list logged-in users?

Answer 139

By “w” command.

Question 140

How to list logged-in users once every 5 seconds?

Answer 140

watch -n 5 w

Question 141

How to start apache2 web service?

Answer 141

sudo systemctl start apache2

Question 142

How to monitor apache2 access.log file in real-time?

Answer 142

watch tail /var/log/apache2/access.log

Question 143

How to use a combination of watch and ps to monitor the most CPU-intensive processes on your
Kali machine in a terminal window?

Answer 143

watch “ps aux | sort -nrk 3,3”

Question 144

Commands for downloading files?

Answer 144

wget
curl
axel

Question 145

What is wget command doing?

Answer 145

Downloads files using the HTTP/HTTPS and FTP protocols.

Question 146

What “wget -O” does?

Answer 146

Downloads files using the HTTP/HTTPS and FTP protocols. “wget” along with the -O switch save the destination
file with a different name on the local machine.

Question 147

What is curl?

Answer 147

curl is a tool to transfer data to or from a server using a host of protocols including IMAP/S, POP3/S, SCP, SFTP, SMB/S, SMTP/S, TELNET, TFTP, and others. A penetration tester can use this to download or upload files and build complex requests.

Question 148

What is axel?

Answer 148

axel is a download accelerator that transfers a file from a FTP or HTTP server through multiple connections.

Question 149

For what “-n” option in “axel” is used?

Answer 149

-n is used to specify the number of multiple connections to use.

Question 150

For what “-a” option in “axel” is used?

Answer 150

For a more concise progress indicator.

Question 151

For what “-o” option in “axel” is used?

Answer 151

To specify a different file name for the downloaded file.

Question 152

Using “axel” initialise 20 multiple connections and save the file named “report.pdf” from the link “https://www.facebook.com/reports/report.pdf”.

Answer 152

axel -a -n 20 -o report.pdf https://www.facebook.com/reports/report.pdf

Question 153

Using “curl” download the file from the link “https://facebook.com/report/report.pdf” and save it under the name “report.pdf”.

Answer 153

curl -o report.pdf https://facebook.com/report/report.pdf

Question 154

Using “wget” download the file from the link “https://facebook.com/report/report.pdf” and save it under the name “report_wget.pdf”.

Answer 154

wget -O report_wget.pdf https://facebook.com/report/report.pdf

Question 155

What is PoC code?

Answer 155

PoC code is a term used to describe a code that was developed to demonstrate security flaws in software or networks during a PoC exploit. IT departments use it to simulate attacks to identify vulnerabilities and patch them. PoC code can also be used to determine a threat level.

Question 156

Where can you download the PoC code for an exploit?

Answer 156

https://www.exploit-db.com

Question 157

By which commands can you download an exploit from exploit-db?

Answer 157

curl
wget
axel

Question 158

What is HISTCONTROL?

Answer 158

The HISTCONTROL variable defines whether or not to remove duplicate commands, commands that begin with spaces from the history, or both. By default, both are removed but you may find it more useful to only omit duplicates.

Question 159

How to use HISTCONTROL to remove duplicates from bash history?

Answer 159

export HISTCONTROL=ignoredups

Question 160

What the HISTIGNORE is for?

Answer 160

The HISTIGNORE variable is particularly useful for filtering out basic commands that are run frequently, such as ls, exit, history, bg, etc.

Question 161

How to use HISTIGNORE to filter basic, common commands? E.g. ls, pwd, history, exit, bg.

Answer 161

export HISTIGNORE=”&:ls:[bf]g:exit:history”

Question 162

What the HISTTIMEFORMAT do?

Answer 162

HISTTIMEFORMAT controls date and/or time stamps in the output of the history command.

Question 163

How to use HISTTIMEFORMAT to include the date/time in bash history.

Answer 163

export HISTTIMEFORMAT=’%F %T ‘

Question 164

What %F stands for in HISTTIMEFORMAT?

Answer 164

Year-Month-Day ISO 8601 format

Question 165

What %T stands for in HISTTIMEFORMAT?

Answer 165

24-hour time

Question 166

Where can you search for time formats for history command?

Answer 166

man history 3

Question 167

What is alias?

Answer 167

An alias is a string we can define that replaces a command name. Aliases are useful for replacing commonly-used commands and switches with a shorter command, or alias, that we define. In other words, an alias is a command that we define ourselves, built from other commands.

Question 168

How to replace “ls -la” command by “lsa” using “alias”?

Answer 168

alias lsa=’ls -la’

Question 169

How to define your own command “lsa” which is doing “ls” but with “-la” option without having to type any arguments at all?

Answer 169

alias lsa=’ls -la’

Question 170

How to check the list of defined aliases?

Answer 170

alias

Question 171

How to unset an alias “mkdir”?

Answer 171

unalias mkdir

Question 172

The behavior of interactive shells in Bash is determined by the system-wide _ file?

Answer 172

bashrc

Question 173

Where bashrc is located?

Answer 173

In /etc/bash.bashrc.

Question 174

How to override system-wide Bash settings?

Answer 174

Edit .bashrc file.

Question 175

When .bashrc script is executed?

Answer 175

Everytime user logs in.

Question 176

What type of file is .bashrc?

Answer 176

Shell script.

Question 177

What is the default path of .bashrc?

Answer 177

/home/kali/.bashrc

Question 178

How to examine the .bashrc default file?

Answer 178

cat ~/.bashrc

Question 179

How to create an alias named “..” to change to the parent directory and make it persistent across terminal sessions?

Answer 179

Add in .bashrc alias ..=”cd ..”

Question 180

How to permanently configure the history command to store 10000 entries and include full date in its output?

Answer 180

Add to .bashrc “export HISTSIZE=10000” and “export HISTTIMEOFRMAT=’%F %T ‘”

Question 181

How to print PATH enviroment variable?

Answer 181

echo $PATH

Question 182

How to print USER enviroment variable?

Answer 182

echo $USER

Question 183

How to print PWD enviroment variable?

Answer 183

echo $PWD

Question 184

How to print HOME enviroment variable?

Answer 184

echo $HOME

Question 185

What is sed?

Answer 185

Stream editor.

Question 186

Print “hello::there::friend” and print only “hello friend” using echo and awk.

Answer 186

echo “hello::there::friend” | awk -F “::” ‘{print $1, $3}’

Question 187

How to count lines in “access.log” file?

Answer 187

wc -l access.log

Question 188

How to count lines in “access.log” file?

Answer 188

wc -l access.log

Question 189

How to list all jobs running in current session?

Answer 189

jobs

Question 190

How to continue second stopped job?

Answer 190

fg %2