Networking Commands

Question 1

tracert/traceroute

Answer 1

• a network diagnostic command for displaying possible routes and measuring transit delays of packets across an IP network
• Tracert = MS Windows (A network command-line utility in MS Windows that tracks and displays the route taken by IPv4 packets on their way to another host )
• Traceroute = Linux

Question 2

nslookup/dig

Answer 2

• Utility used to determine if the IP address associated with a domain name, obtain the mail server settings for a domain and other DNS information
• Nslookup = Microsoft
• dig = Mac/ Linux

Question 3

ipconfig/ifconfig

Answer 3

• Utility that displays all the network configurations of the currently connected network deices that can modify the DHCP and DNS settings
• ipconfig = Windows
• ifconfig = Linux

Question 4

nmap

Answer 4

• An open source network scanner that is used to discover hosts and services on a computer network by sending packets and analyzing their responses.
• Discover hosts / services on a network

Question 5

ping/pathping

Answer 5

• Utility used to determine if a host is reachable on an IP network (ping)
• MS Windows command line utility that combines ping and tracert (pathping)

Question 6

hping

Answer 6

• An open-source packet generator and analyzer for the TCP/IP protocol that is used for security auditing and testing of firewalls and networks

Question 7

netstat

Answer 7

• Utility that displayer network connections for the Transmission Control Protocol, routing tables, and a number of network interface and network protocol statistics
• netstat -r = Linux command line for displaying routing table contents (MS Windows version is route print)

Question 8

netcat

Answer 8

• Utility for reading from and writing to network connections using TCP or UDF which is a dependable back-end that can be used directly or easily driven by other program scripts
• Debugging / exploration tool that can read/write data across TCP/UDP

Question 9

arp

Answer 9

• Utility for viewing and modifying the local address resolution protocol (ARP) cache on a given host or
  server
• Performs IP to MAC resolution

Question 10

route

Answer 10

• Utility that is used to view and manipulate the IP routing table on a host or server
• route print = MS Windows displays contents of routing table (Linux version is netstat -r)

Question 11

curl

Answer 11

• A command line tool to transfer data to or from a server using any of the supported protocols:
• HTTP, FTP, IMPA, POP3, SCP, SFTP, SMTP, TFTP, TELNET, LDAP or FILE

Question 12

the harvester

Answer 12

• A python script that is used to gather emails, subdomains, hosts, employee names, open ports and banners from different public sources like search engines.
• Gathers OSINT
• PGP key servers and SHODAN database

Question 13

sn1per

Answer 13

• An automated scanner that can be used during a penetration test to enumerate and scan for vulnerabilities across a network
• Advanced network exploration and penetration testing tool, integrates functionality from other tools like pin, whois, and nmap

Question 14

scanless

Answer 14

• Utility that is used to create an exploitation website that can perform open port scans in a more stealth-like manner
• Hides attacker’s identity by utilizing a proxy for port scanning

Question 15

dnsenum

Answer 15

• Utility that is used for a DNS enumeration to locate all DNS servers and DNS entries for a given organization
• Well suited for gathering information about a domain

Question 16

Nessus

Answer 16

• A proprietary vulnerability scanner that can remotely scan a computer or network for vulnerabilities
• Offers functionality of a configuration compliance scanner

Question 17

Cuckoo

Answer 17

• An open source software for automating analysis of suspicious files
• Anti-malware tool that operates in a sandbox