Search This Blog

Saturday, June 8, 2013

Few Commands used For Basic Hacking

Command Prompt is the heart of windows and with a technical point of view, command prompt is the only good thing in windows for a techie. Command Prompt gives you a feel of how things work in the back end of windows. For example, if we copy and paste using usual right click feature we don't get to know what is happening behind the buttons to make copy and paste possible. But if we copy and paste using command prompt, we get to know how things are done.




This screenshot shows an example to copying contents of  "functionallog.txt" to a new file "android.txt".
When someone starts learning about computers and hacking, the priority should be to gain a firm hold on command prompt as command is very powerful and allows you to do a lot of stuff. Now I'll talk about some of the commands of command prompt which a hacker should surely know. Before trying these commands, make sure you are running command prompt as the administrator.(right click on cmd > run as administrator)

1. ipconfig:  ifconfig is a very basic command which tells the IP(Internet Protocol) address of your  machine if you are connected to the internet. Other information  such as default gateway, subnet mask etc. are also displayed. This command is similar to ifconfig command in linux systems.
Syntax: ipconfig 



                              
2.  Ping: Ping command is used to check if a host is up or not. It sends 32 bytes of data to the host whom we want to check, if the reply comes from the host, it means that the host is up.
Syntax: ping xxx.xxx.xxx.xxx (where xxx.xxx.xxx.xxx is the ip you want to check). 

 
Ping command can also be used to check the IP Address of website by pinging them and you can use that IP Address to open that site too by putting it on the URL box.
Syntax: ping vishalssangwa.blogspot.com

Now you can use the ip address above to open up http://vishalssangwa.blogspot.com
3. Telnet: Telnet is a command line tool by microsoft which is used to establish connection remote servers. Telnet has been used widely for hacking where attackers used to establish remote connection to victim pc when the ports of the victim system where open. By default telnet operates on port 23. Telnet is not available in the windows system, you have to enable it manually. To enable telnet on windows follow the following steps:
  • Open up control panel and select system and security.
  • Select "programs" option from left side.
  • In program and features section click on "turn windows features on or off".
  • A menu will open up and from there select check the option "telnet click" and "telnet server".



                     
 If you know the ip of a person, you can gain access to his system using telnet. To open telnet window, type "telnet"(without quotes) in the command prompt. Here is an example of a simple telnet command used to open a connection.
Syntax: o xxx.xxx.xxx 171 (o: means "open", 23: default port for telnet)



Various other commands of telnet can also be used once the connection is established to the client machine. Simple type "help" in the telnet windows to see other options.

4. ARP: "arp" stands for Address Resolution Protocol and this command is used to monitor the network stats and connections. Address Resolution Protocol means that it link ip address to physical address or mac address. ARP command comes handy when you are in a school, college, office network. This command is available by simply typing "arp" in command prompt.
Syntax: arp -a (This command displays a list of current ARP entries)
  Syntax: arp -d xxx.xxx.xxx.xxx(This command deletes a host specified by you from network, here xxx.xxx.xxx.xxx is the specified host).




5. nslookup: This is a very useful command which you name of your domain and it's ip address.
Syntax: nslookup


You can also find information about an ip in using the same server in your netowrk by just simply typing name of the ip in the nslookup window.
6. Netstat: Netstat command gives you information about your internet connections. Netstat command gives a list of active connections. This command is very useful and if someone has RAT Ed your pc, then you can detect it by this command as it would display the connection of RAT being made with it's host.
Syntax: netstat



Here Protocol used by the connection, foreign address and the state of the connection are displayed.
If you suspect some connection then you can always see what is causing that connection by typing the following command : netstat -b (this would display the executable involved in creating that connection)


The pointed .exe's are the open which are creating a connection.
If you want to know statistics of each protocol, then your can try this command: netstat -s


Other netstat commands can be seen by typing "netstat help" (exclude commas).
With this, I conclude this article. I hope this helps people new to command prompt and renews the memory of ones already using it :) 

Add To Google BookmarksStumble ThisFav This With TechnoratiAdd To Del.icio.usDigg ThisAdd To RedditTwit ThisAdd To FacebookAdd To Yahoo

0 comments:

Post a Comment