Basic Commands Flashcards Preview

Net Sec Foundations > Basic Commands > Flashcards

Flashcards in Basic Commands Deck (17)
Loading flashcards...
1
Q

is a command used to query the dns name servers. it is helpful in troubleshooting dns problems. it is also used for lookups and will display answers from query. THE REPLACEMENT FOR NSLOOKUP

A

dig ( domain information grouper)

2
Q

a tool most often used to lookup who owns a domain or block of ip addresses on the internet, including name, email address, and physical address. however, there are many privacy options that hide this information from being returned. it is primary used in linux

A

whois

3
Q

displays information for displaying dns information and troubleshooting dns problems. it is useful in displaying names to ip address mappings.

A

nslookup

4
Q

one of the most basic tools for testing connectivity to other hosts. It sends an internet control message protocol (ICMP) echo request to a host and listens for the reply. If a reply is received, it will display the time it took and the time to live (TTL) left

A

ping.

5
Q

copies the file from one host to another host. The data is unencrypted. If encryption is needed, FTPS uses SSL/TLS (Secure Sockets Layer, replaced by Transport Layer Security; the same encryption used in https)

A

FTP File Transfer Protocol

6
Q

provides the user with the ip, subnet mask, and default gateway for each network adapter by default. mostly used in windows

A

ipconfig

7
Q

displays information about a user or users on a remote system, including things such as last log-in time and username. It is primarily used in Linux.

A

finger

8
Q

this command is used to securely copy files between servers, leveraging SSH for authentication and encryption.

A

scp secure copy protocol

9
Q

displays TCP/IP packets and other network packets that are being transmitted over the network system. It is a form of protocol analyzer (sometimes called a sniffer) and is designed to show the contents of network packets in human-readable form for troubleshooting, security analysis, etc.

A

tcpdump

10
Q

used to trace the route an IP packet takes to a destination. It displays each hop (next router) in a numerical list with the hop’s IP address and the time it takes to receive the packet. It can be useful in determining where a ping fails, troubleshooting performance issues, and other aspects regarding connectivity.

A

traceroute (linux) / tracert (windows)

11
Q

can be used to display the current “ {} “ tables on a host. can also be used to add or remove “blank” this is used by the local host to determin where to send traffic (0.0.0.0 means default gateway) where the router sends things if its not otherwised found in the “” table.

A

route

12
Q

transfers a file from either a client to a server or from a server to a client using UDP (user datagram protocol) instead of TCP, and so it is usually used on reliable (local) networks.

A

tftp (Trivial file transfer protocol)

13
Q

displays information about active ports and their state and can be useful in troubleshooting and capacity management.
used in windows,mac, and linux

A

netstat

14
Q

is used to configure the kernel network interfaces. It is implemented at the time of booting to configure the necessary interfaces. Once the interfaces are configured, it is used for debugging or tuning the system. It is primarily used in Linux.

A

ifconfig

15
Q

scans networks to see what it can find in terms of hosts and open ports (including well-known ones for many applications). It is commonly used to determine what is deployed on a network for vulnerability analysis, security scans, and related activities.

A

nmap (network mapper) not native but can be downloaded on linux or windows

16
Q

displays the IP to physical (MAC) address mappings for hosts that have been discovered in the “{blank}” cache. can be used to add, remove, or modify entries in the “(blank} “ cache. he hosts need to be on the local network, as these addresses are discovered by broadcasting to everyone on the network and noting the reply from the owner; broadcast traffic is not allowed through a router so that the system will maintain the MAC address of the router.

A

ARP (Address Resolution Protocol)

17
Q

it displays the path taken by a packet from its source to its destination. linux and doesnt require sudo

A

tracepath