Linux System Enumeration
All commands listed here assumes you have a command prompt…
All listed items are separate commands unless otherwise specified…
SIMPLE LINUX ENUMERATION
cat ~/.bash_history
cat /etc/issue
cat /proc/version
whoami
ifconfig
ip addr
hostname
pwd
ls -alh /var/www/html
cat wpconfig.php
FIND WRITABLE FILES
find / -perm -0003 -user root 2>/dev/null | grep .sh$
FIND SUID FILES
find / -user root -perm -4000 -print 2>/dev/null
FIND SUID DIRECTORIES
find / -type f -perm -04000 -ls 2>/dev/null
LIST PROCESSES
ps aux
ps auxf
LIST NETWORK INFORMATION
netstat -lnp
netstat -auntp
ifconfig
ip a
ip addr
FIND RECURRING TASKS
ls /etc/cron.daily
crontab -l
crontab -e # for editing
FIND SYSTEM INFORMATION
tail /var/log/syslog
uname -r / -a / -s
echo $PATH
cat /etc/*-release
REMOTE PROCEDURE CALL (RPC)
rpcinfo -s 10.10.1.299
rpcinfo -p 10.10.1.299
FIND MOUNTED DRIVES
showmount -a 10.10.1.299
showmount -d 10.10.1.299
showmount -e 10.10.1.299
LIST FIREWALL RULES
iptables -S
iptables -L
systemctl status firewalld
firewall-cmd --list-all
USE THE $PATH COMMAND
export PATH=$PATH:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
GUI FOR WEB CACHES
pidof X