Part of Slepp's ProjectsPastebinTURLImagebinFilebin
Feedback -- English French German Japanese
Create Upload Newest Tools Donate
Sign In | Create Account

Paste Actions

Download Raw
Embed
pBox URL
Post to Twitter
Remove Paste

Paste Details

Raw format, 3 years 8 months old, and 905 hits.

Advertising

Script kid Cheat sheet
Monday, September 7th, 2009 at 3:20:38am MDT 

  1. whois whois -a TARGETIP
  2. host host TARGETIP
  3. host reverse host -la TARGETIP
  4. host bind host -t txt -c chaos version.bind TARGETIP
  5. host bind dns host -t txt -c chaos version.bind DNSIP
  6. dig any dig DOMAIN any
  7. dig www dig www DOMAIN
  8. dig tcp any dig @TARGETIP DOMAIN any
  9. dig udp any dig notcp @TARGETIP DOMAIN any
  10. dig axfr dig @TARGETIP DOMAIN axfr
  11. dig @dns tcp any dig @DNSIP DOMAIN any
  12. dig @dns udp any dig notcp @DNSIP DOMAIN any
  13. dig bind dig @TARGETIP version.bind txt chaos
  14. dig bind dns dig @DNSIP version.bind txt chaos
  15. dig @dns axfr dig @DNSIP DOMAIN axfr
  16. dig recursive dig @TARGETIP xyz.com
  17. nmap protocols nmap -sO -P0 (-p 2) -n -v TARGETIP
  18. nmap icmp echo request nmap -sP -PB -n -v TARGETIP
  19. nmap icmp echo request ipv6 nmap -sP -PB -6 -n -v TARGETIP
  20. nmap icmp tstamp nmap -PP -n -v TARGETIP
  21. nmap icmp mask nmap -PM -n -v TARGETIP
  22. nmap tcp syn ping 80 nmap -PS -p 80 -n -v TARGETIP
  23. nmap tcp syn ping 443 nmap -PS -p 443 -n -v TARGETIP
  24. nmap tcp syn ping 25 nmap -PS -p 25 -n -v TARGETIP
  25. nmap tcp syn ping 79 nmap -PS -p 79 -n -v TARGETIP
  26. nmap udp ping 53 nmap -PU -p 53 -n -v TARGETIP
  27. nmap udp ping 500 nmap -PU -p 500 -n -v TARGETIP
  28. nmap packettrace nmap -sS -P0 -p- -n -v TARGETIP --packet_trace
  29. nmap size + nmap -sS -P0 -ff -n -v --data-length 956 -p 443 TARGETIP
  30. nmap scanflags nmap -n -v --scanflags SYNACKFINRSTURGPSH -p PORT TARGETIP
  31. nmap bad chksum nmap -sS -P0 -p- -n -v TARGETIP --badsum
  32. ping ttl ping -t 15 TARGETIP
  33. ping size ping -s 3000 TARGETIP
  34. ping no frag ping -M do -s 64 TARGETIP
  35. ping do frag ping -M dont -s 64 TRAGETIP
  36. arping arping -c 1 TARGETIP
  37. hping2 tcp syn 80 hping2 -c 1 -p 80 -S TARGETIP
  38. hping2 tcp syn 443 hping2 -c 1 -p 443 -S TARGETIP
  39. hping2 tcp syn 25 hping2 -c 1 -p 25 -S TARGETIP
  40. hping2 tcp syn 99 hping2 -c 1 -p 99 -S TARGETIP
  41. hping2 udp 53 hping2 -2 -c 1 -p 53 TARGETIP
  42. hping2 udp 500 hping2 -2 -c 1 -p 500 TARGETIP
  43. hping2 tcp timestamp hping2 -S -c 3 -p 80 --tcp-timestamp TARGETIP
  44. hping2 icmp hping2 -c 3 -C xx -K xx --force-icmp TARGETIP
  45. hping2 icmp force hping2 -c 3 -C xx -K xx --force-icmp TARGETIP
  46. hping2 bad chksum hping2 -c 3 -b -C xx -K xx TARGETIP
  47. hping2 ttl expired hping2 -c 3 -C 11 -K 00 -1 TARGETIP
  48. sing icmp echo request sing -echo -c 1 TARGETIP
  49. sing icmp mask sing -mask -c 1 TARGETIP
  50. sing icmp tstamp sing -tstamp -c 1 TARGETIP
  51. sing icmp info sing -info -c 1 TARGETIP
  52. sing icmp router solicitation sing -rts -c 1 TARGETIP
  53. sing icmp source quench sing -sq -c 1 TARGETIP
  54. sing icmp echo reply sing -reply -c 1 TARGETIP
  55. sing param sing -param -c 1 TARGETIP
  56. sing time exceed sing -tx -c 1 TARGETIP
  57. sing special sing -c 3 -TOS 50 TARGETIP
  58. sing router garbage sing -v -c 2 -T 1 -s 10000 -M cisco TARGETIP
  59. traceroute udp traceroute -v TARGETIP
  60. traceroute icmp traceroute -v -I TARGETIP
  61. traceroute from hop 5 traceroute -v -f 5 TARGETIP
  62. traceroute no frag traceroute -F -v TARGETIP
  63. traceroute spoofport traceroute -g 53 -v TARGETIP
  64. tcptraceroute tcptraceroute TARGETIP PORT
  65. tcptraceroute nat tcptraceroute -q1 -f1 --track-port --dnat TARGETIP PORT
  66. hping2 trace tcp 80 hping2 -c 25 -p 80 -S -T TARGETIP
  67. hping2 trace tcp 79 hping2 -c 25 -p 25 -S -T TARGETIP
  68. hping2 trace tcp 443 hping2 -c 25 -p 443 -S -T TARGETIP
  69. hping2 trace tcp 25 hping2 -c 25 -p 25 -S -T TARGETIP
  70. hping2 trace udp hping2 -c 25 -2 -T TARGETIP
  71. hping2 trace udp 53 hping2 -c 25 -p 53 -2 -T TARGETIP
  72. hping2 trace udp 500 hping2 -c 25 -p 500 -2 -T TARGETIP
  73. hping2 trace icmp hping2 -c 25 -1 -T TARGETIP
  74. hping2 ttl expired hping2 -c 3 -C 11 -K 00 -1 TARGETIP
  75. hping2 badsum hping2 -c 3 -C 08 -K 00 -b -1 TARGETIP
  76. hping2 finpshurg hping2 -FPU -c 1 -p 22 TARGETIP
  77. hping2 lowlevel hping2 -V -S --scan 80,443 -n TARGETIP
  78. hping2 syn 1024 hping2 -c 1 -S -p 443 -d 984 TARGETIP
  79. isnprober 80 isnprober.pl -n 10 -w 2 TARGETIP:80
  80. isnprober 443 isnprober.pl -n 10 -w 2 TARGETIP:443
  81. isnprober ipid 80 isnprober.pl -n 10 -w 2 --ipid TARGETIP:80
  82. isnprober ipid 443 isnprober.pl -n 10 -w 2 --ipid TARGETIP:443
  83. nmap connect nmap -sT -A -P0 -p- -T4 -n -v TARGETIP
  84. nmap syn nmap -sS -A -P0 -p- -T2 -n -v TARGETIP
  85. nmap protocol nmap -sO -P0 -T4 -n -v TARGETIP
  86. nmap xmas nmap -sX -T4 -n -v TARGETIP
  87. nmap ack nmap -sA -P0 -p 80,443 -T4 -n -v TARGETIP
  88. nmap fin nmap -sF -P0 -p 80,443 -T4 -n -v TARGETIP
  89. nmap frag nmap -sS -P0 -f -F -T4 -n -v TARGETIP
  90. nmap pushy nmap -sS --scanflags URGPSH -P0 -F -T4 -n -v TARGETIP
  91. nmap packettrace nmap -sS -P0 -F -n -v TARGETIP --packet_trace
  92. nmap maimon nmap -sM -P0 -F -n -v TARGETIP
  93. nmap window nmap -sW -P0 -F -n -v TARGETIP
  94. nmap rst from ftp nmap -sS --scanflags RST -P0 -g 21 -F -n -v TARGETIP
  95. nmap fin/ack nmap --scanflags ACKFIN -P0 -F -n -v TARGETIP
  96. nmap full nmap -sS -sR -sV -A -O -PI -PP -PM -PT80 -PS80 -PU53 -n -v -d -e eth0 TARGETIP
  97. nmap spoofed tcp nmap -A -P0 -p- -T4 -n -v -S SPOOFIP TARGETIP
  98. nmap spoofed udp nmap -sU -A -P0 -p- -T4 -n -v -S SPOOFIP TARGETIP
  99. nmap spoofed port udp nmap -sU -P0 -p- -g 53 -T4 -n -v TARGETIP
  100. nmap udp bad checksum nmap -sU -P0 -p- -T4 -n -v --badsum TARGETIP
  101. nmap syn 1024 nmap -sS -P0 -p 443 --data-length 980 TARGETIP --packet_trace
  102. nmap syn nmap -A -P0 -p- -T4 -n -v -oM nmap-tcp TARGETIP
  103. nmap udp full nmap -sU -A -P0 -p- -T4 -n -v -oM nmap-udp TARGETIP
  104. nmap udp basic nmap -sU -A -P0 -F -T4 -n -v -oM nmap-udp TARGETIP
  105. nwrap oprp perl nwrap.pl '-P0 -nv -p- IP' (http://www.isecom.info/mirror/oprp.zip)
  106. unicornscan tcp unicornscan -i eth0 -mT TARGETIP/32:a -Ir 50
  107. unicornscan udp unicornscan -i eth0 -mU TARGETIP/32:a -Ir 50
  108. unicornscan ack dns unicornscan -mTsA -v TARGETIP/32:q -B 53 -Ir 50
  109. unicornscan fin unicornscan -mTsF -v TARGETNET/24:q -Ir 50
  110. xprobe2 xprobe2 -v TARGETIP
  111. amap tcp amap -AbqvH -c 1 -i nmap-tcp
  112. amap udp amap -AbqvHu -c 1 -i nmap-udp
  113. nikto port 80 nikto -D V -host TARGETIP
  114. nikto port 443 ssl nikto -D V -port 443 -ssl -host TARGETIP
  115. netcraft echo "`lynx -dump -crawl http://www.netcraft.com/whats/?host=IP | egrep -A1 "is running"`"
  116. http get 80 echo -e "GET HTTP/1.0\n\n" | nc -vv TARGETIP 80
  117. http get 443 echo -e "GET HTTP/1.0\n\n" | openssl s_client -quiet -connect TARGETIP:443
  118. http methods echo -e "OPTIONS * HTTP/1.0\n\n\n" | nc TARGETIP 80
  119. http head echo -e "HEAD / HTTP/1.0\n\n\n" | nc TARGETIP 80
  120. screamcobra perl screamingCobra.pl -v TARGETIP
  121. scanudp scanudp -t 10 -b512 -v TARGETIP
  122. rpcinfo rpcinfo -p TARGETIP
  123. showmount showmount -a TARGETIP
  124. showmount exports showmount -e TARGETIP
  125. dcetest dcetest TARGETIP
  126. nbtscan nbtscan -v -h TARGETIP
  127. smb list smbclient -L TARGETIP
  128. snmpwalk v1 snmpwalk -c public -v1 TARGETIP
  129. snmpwalk v2c snmpwalk -c public -v2c TARGETIP
  130. snmpwalk v3 snmpwalk -c public -v3 TARGETIP
  131. snmpwalk v1 port snmpwalk -c public -v1 TARGETIP:PORT
  132. scandns echo TARGETIP | scandns.pl -
  133. ldap whoami ldapwhoami -x -D "cn=Manager,dc=example,dc=com" -W -H TARGETIP
  134. ldap search ldapsearch -LLL "(sn=*)" cn sn * -H TARGETIP
  135. nemesis icmp netmask nemesis icmp -qM TARGETIP
  136. nemesis icmp tstamp nemesis icmp -qT TARGETIP
  137. nemesis icmp nemesis -i 17 -c 00 TARGETIP
  138. ike-scan ike-scan -v TARGETIP
  139. ike-scan showbackoff ike-scan -v --showbackoff TARGETIP
  140. ike-scan aggressive ike-scan -v -A TARGETIP
  141. ike-scan auth cisco ike-scan -v --auth=1 TARGETIP
  142. ike-scan auth rsa ike-scan -v --auth=3 TARGETIP
  143. ike-scan auth checkpoint ike-scan -v --auth=64221 TARGETIP
  144. ike-scan auth windows ike-scan -v --auth=65001 TARGETIP
  145. ike-probe wine ikeprobe.exe TARGETIP
  146. scanrand scanrand -b512K TARGETIP:all
  147. paratrace paratrace -b100k -t 5 TARGETIP
  148. lsrscan lsrscan -p PORT TARGETIP
  149. lsrtunnel lsrtunnel -i EMPTYIP -t TARGETIP -f SPOOFIP
  150. firewalk tcp firewalk -n -P1-8 -pTCP -s 20 -S 1-1023 -t 1 -d 33434 -T 100 TARGETIP METRICIP
  151. firewalk udp firewalk -n -P1-8 -pUDP -s 53 -S 1-1023 -t 1 -d 33434 -T 100 TARGETIP METRICIP
  152. oracle version tnscmd version -h TARGETIP -p 1521
  153. oracle status tnscmd status -h TARGETIP -p 1521 --indent
  154. Nessus NASL /opt/nessus/bin/nasl -t TARGETIP osstmm_afd.nasl
  155. Nessus CMD-Line NessusClient -q -V -x -c nessusrc -T nbe -q localhost 1241 user pass targets.txt FILE.nbe
  156. Nessus Merge cat *.nbe > fullnessus.nbe
  157. Nessus HTML-Graph NessusClient -T html_graph -i fullnessus.nbe -o fullnessus
  158. AFD afd --config /path/to/osstmm-afd.cfg -P HTTP -p 80 -t TARGETIP -! -v
  159. http-ips-detect.pl (valgrind) perl http-ips-detect.pl eth0 TARGETIP mode 0(or 1) 80
  160. hydra hydra -l administrator -p password TARGETIP SERVICE
  161. p0f (nat-detect) p0f -M -A -T 10
  162. gwhois gwhois TARGETIP
  163. virtual hosting ping http://www.xyz.com && browser TARGETIP
  164. virtual hosting echo -e "GET / HTTP/1.0\nHOST: http://www.xyz.com\n\n\n" | nc TARGETIP 80
  165. download speed time wget http://www.xyz.com/large.pdf
  166.  
  167. Other Stuff
  168. ===========
  169. print date+ as filename: log=`date +%Y%m%d_%k%M`_$1.log
  170. redirect output + tee: TOOL 2>&1 | tee -a $log
  171. script start: script FILENAME.txt
  172. log ip: ifconfig eth0 > file.txt
  173. log route: route > file.txt
  174. tcpdump host: tcpdump -i ethX -n -vvv -s0 -XX -w FILE host X.X.X.X
  175. tcpdump net: tcpdump -i ethX -n -vvv -s0 -XX -w FILE net X.X.X.X/24
  176. tcpdump grep: tcpdump -i ethX -n -vvv host TARGETIP | grep ">"
  177. nmap protocols: cat /usr/share/nmap/nmap-protocols
  178. nmap services: cat /usr/share/nmap/nmap-services
  179.  
  180. Links (online research)
  181. =====
  182. exploits http://cve.mitre.org/cve
  183. virtual hosting http://live.search.com -> ip:X.X.X.X
  184. dns checker http://www.dnscheck.se
  185. internet tools http://www.demon.net/external/
  186. network tools http://network-tools.com/
  187. netcraft http://searchdns.netcraft.com/
  188. traceroute http://www.traceroute.org
  189. dns north america http://www.arin.net
  190. dns asia http://www.apnic.net
  191. dns europe/africa http://www.ripe.net
  192. ripe whois http://www.db.ripe.net/fcgi-bin/whois
  193. ripe free search http://www.db.ripe.net/db/whois-free.html
  194.  
  195. Ports
  196. =====
  197. ICMP T00:C00,T05:C00,T04:C00,T05:C01,T08:C00,T11:C00,T13:C00,T15:C00,T17:C00,T30:C00
  198.  
  199. TCP 0,1,7,8,11,15,19,20,21,22,23,25,42,43,53,79,80,88,98,109,110,111,113,119,135,137,138,139,143,
  200. 179,264,389,443,445,464,465,512,513,514,515,540,554,593,631,636,706,873,993,994,995,1080,1352,
  201. 1433,1434,1494,1521,1526,1541,1701,1720,1723,1999,2301,2401,2433,2638,3128,3286,3269,3306,3372,
  202. 3389,4110,4321,4480,5000,5432,5631,5632,5800,5900,6000,6103,6112,6588,6667,7100,8080,8890,9100,
  203. 10001,12001,33333,65535
  204.  
  205. 100 7,9,13,21-23,25-26,37,53,79-81,88,106,110-111,113,119,135,139,143-144,179,199,389,427,443-445,
  206. 465,513-515,543-544,548,554,587,631,646,873,990,993,995,1025-1029,1110,1433,1720,1723,1755,1900,
  207. 2000-2001,2049,2121,2717,3000,3128,3306,3389,3986,4899,5000,5009,5051,5060,5101,5190,5357,5432,
  208. 5631,5666,5800,5900,6000-6001,6646,7070,8000,8008-8009,8080-8081,8443,8888,9100,9999-10000,32768,
  209. 49152-49157
  210.  
  211. UDP 0,1,7,8,11,15,19,53,67,68,69,111,123,135,137,138,161,445,500,513,514,520,1434,1900,2049,4045,
  212. 5020,10001,12001,33333,65535
  213.  
  214. 100 7,9,17,19,49,53,67-69,80,88,111,120,123,135-139,158,161-162,177,427,443,445,497,500,514-515,518,
  215. 520,593,623,626,631,996-999,1022-1023,1025-1030,1433-1434,1645-1646,1701,1718-1719,1812-1813,1900,
  216. 2000,2048-2049,2222-2223,3283,3456,3703,4444,4500,5000,5060,5353,5632,9200,10000,17185,20031,30718,
  217. 31337,32768-32769,32771,32815,33281,49152-49154,49156,49181-49182,49185-49186,49188,49190-49194,
  218. 49200-49201,65024

Paste Details

Tags: linux script hack commands kiddies

advertising

Update the Post

Either update this post and resubmit it with changes, or make a new post.

You may also comment on this post.

update paste below
details of the post (optional)

Note: Only the paste content is required, though the following information can be useful to others.

Save name / title?

(space separated, optional)



Please note that information posted here will expire by default in one month. If you do not want it to expire, please set the expiry time above. If it is set to expire, web search engines will not be allowed to index it prior to it expiring. Items that are not marked to expire will be indexable by search engines. Be careful with your passwords. All illegal activities will be reported and any information will be handed over to the authorities, so be good.

worth-right
worth-right fantasy-obligation