1.6 KiB
1.6 KiB
Linux Enumeration
First Checks
cat /etc/*-release
cat /proc/version
hostname or cat /etc/hostname
cat /etc/hosts
cat /etc/resolve.conf
cat /etc/systemd/resolved.conf
uname -a
cat /etc/issue
ps wuax or ps ajxf or ps -A
printenv or env
cat /etc/timezone or timedatectl
Users
sudo -l
id
whoami
groups and getent group or cat /etc/group
cat /etc/passwd | column -t -s :
cat /etc/shadow
cat /etc/group
cat /etc/sudoers
history
cat /var/mail
Network Info
- The output of information will be different, depending on permissions of the user
ip a or ifconfig
ip route
cat /etc/network/interfaces
netstat -natup or ss -natup
netstat -tupln or ss -tulpn
netstat -s and netstat -i
lsof -i :<port>
Login Info
last -f /var/log/wtmp
last -f /var/log/btmp
last
w
who
Syslog
journalctl -xe
less /var/log/syslog
Auth Logs
cat /var/log/auth.log | less
cat /var/log/access.log | less
Find Files
- User files
find / -user $USER 2>/dev/null | grep -vE "run|proc|var"
-
Find SUID permissions on files and dirs
-
find / -perm /6000 -ls 2>/dev/null -
Find writeables dirs
-
find / -writable -type d 2>/dev/nullorfind / -perm -o w -type d 2>/dev/null -
find / -perm -o x -type d 2>/dev/null -
Find writeable subdirs
find / -writable 2>/dev/null | cut -d "/" -f 2,3 | grep -v proc | sort -u -
cat ~/.viminfo
Services
ls -al /etc/systemd/system && ls -la /var/lib/systemd/system || ls -la /etc/init.d
cat /etc/crontab
crontab -l
cat /etc/bash.bashrc ; cat /etc/profile
Packet Managers
- pacman, apt, dpkg, dnf etc.