Getting Started
Information security (infosec) is a vast field. The field has grown and evolved greatly in the last few years. It offers many specializations, including but not limited to:
Network and infrastructure security
Application security
Security testing
Systems auditing
Business continuity planning
Digital forensics
Incident detection and response
Basic Tools
Command | Description |
General | |
| Connect to VPN |
| Show our IP address |
| Show networks accessible via the VPN |
| SSH to a remote server |
| FTP to a remote server |
tmux | |
| Start tmux |
| tmux: default prefix |
| tmux: new window |
| tmux: switch to window ( |
| tmux: split pane vertically |
| tmux: split pane horizontally |
| tmux: switch to the right pane |
Vim | |
| vim: open |
| vim: enter |
| vim: back to |
| vim: Cut character |
| vim: Cut word |
| vim: Cut full line |
| vim: Copy word |
| vim: Copy full line |
| vim: Paste |
| vim: Go to line number 1. |
| vim: Write the file 'i.e. save' |
| vim: Quit |
| vim: Quit without saving |
| vim: Write and quit |
Pentesting
Command | Description |
Service Scanning | |
| Run nmap on an IP |
| Run an nmap script scan on an IP |
| List various available nmap scripts |
| Run an nmap script on an IP |
| Grab banner of an open port |
| List SMB Shares |
| Connect to an SMB share |
| Scan SNMP on an IP |
| Brute force SNMP secret string |
Web Enumeration | |
| Run a directory scan on a website |
| Run a sub-domain scan on a website |
| Grab website banner |
| List details about the webserver/certificates |
| List potential directories in |
| View page source (in Firefox) |
Public Exploits | |
| Search for public exploits for a web application |
| MSF: Start the Metasploit Framework |
| MSF: Search for public exploits in MSF |
| MSF: Start using an MSF module |
| MSF: Show required options for an MSF module |
| MSF: Set a value for an MSF module option |
| MSF: Test if the target server is vulnerable |
| MSF: Run the exploit on the target server is vulnerable |
Using Shells | |
| Start a |
| Send a reverse shell from the remote server |
| Another command to send a reverse shell from the remote server |
| Start a bind shell on the remote server |
| Connect to a bind shell started on the remote server |
| Upgrade shell TTY (1) |
| Upgrade shell TTY (2) |
| Create a webshell php file |
| Execute a command on an uploaded webshell |
Privilege Escalation | |
| Run |
| List available |
| Run a command with |
| Switch to root user (if we have access to |
| Switch to a user (if we have access to |
| Create a new SSH key |
| Add the generated public key to the user |
| SSH to the server with the generated private key |
Transferring Files | |
| Start a local webserver |
| Download a file on the remote server from our local machine |
| Download a file on the remote server from our local machine |
| Transfer a file to the remote server with |
| Convert a file to |
| Convert a file from |
| Check the file's |
Last updated