Skip to content

Latest commit

 

History

History
224 lines (154 loc) · 4.03 KB

linux-commands-and-tricks.md

File metadata and controls

224 lines (154 loc) · 4.03 KB
Raw

💿 Linux Commands & Tricks

Find any binary on a system

sudo find / -type f -name "openvpn"

Locking Down Linux Cloud Servers

  1. Enable automatic updates
    1. apt update
    2. apt dist-upgrade
    3. apt install unattended-upgrades
    4. dpkg-reconfigure --priority=low unattended-upgrades
  2. Limited user account
    1. add user ares
    2. usermod -aG sudo ares
  3. Lockdown logins -- harden SSH (disable root login, restrict to IPv4 only, and change default port) -- sudo nano /etc/ssh/sshd_config
  4. Firewall!! -- sudo apt install ufw

SSH and ssh-copy-id!

Generate a new user with useradd

  • Be sure to remember or save the local password in a secure way
  • You will need it later for ssh-copy-id to transfer the new key to the host

How to:

  1. ssh-keygen
  2. ssh-copy-id -i key.pub [email protected]
  3. ssh [email protected] -i key

UFW

  1. Installation: sudo apt install ufw
  2. Establish an allow list for ports: sudo ufw allow 1337

Problems with APT packages?

  • Missing features
  • Missing files
  • etc

I found that you may need to do a hard reset on the APT package with the following commands:

sudo apt remove package
sudo atp-get purge --remove package
sudo apt update --fix-missing
sudo apt-get install package

Installing the LATEST Impacket

{% embed url="https://github.com/fortra/impacket" %}

Remove current impacket:

python3 -m pip uninstall impacket
sudo rm -f /usr/bin/impacket*

install.sh:

git clone https://github.com/fortra/impacket.git
cd impacket
pip3 install -r requirements.txt
pip3 install .
cd ../
rm -rf impacket/

Update DB:

sudo updatedb

Locate new impacket directory (will usually be /home/user/.local/bin/here:

locate GetUserSPNs.py

Add to PATH:

Add the following to the end of ~/.zshrc:

export PATH=$PATH:/home/user_here/.local/bin

reset shell:

reset

Source ~/.zshrc:

source ~/.zshrc

You can now python3 GetUserSPNs.py or GetUserSPNs.py from anywhere!

Uninstalling:

python3 -m pip uninstall impacket

Install latest:

./install.sh

Installing the LATEST CME

{% embed url="https://github.com/Porchetta-Industries/CrackMapExec" %}

Please read this... it's so good lol:

{% embed url="https://github.com/Porchetta-Industries/CrackMapExec" %}

We will need to use Poetry because me and a couple friends kept getting errors.

Poetry Install

Install:

sudo rm -f /bin/crackmapexec

apt-get install -y libssl-dev libffi-dev python-dev-is-python3 build-essential
git clone https://github.com/Porchetta-Industries/CrackMapExec
cd CrackMapExec
poetry install
poetry run crackmapexec

Execute command:

poetry run crackmapexec smb absolute.htb -u '' -p '' --shares
  • Remember, you'll have to stay within the directory you installed it to run this with poetry

Docker Install

git clone https://github.com/Porchetta-Industries/CrackMapExec
cd CrackMapExec
sudo docker build -t cme .
sudo docker run -it --entrypoint=/bin/bash --rm --name cmexec cme:latest

Installing Enum4Linux-ng

{% embed url="https://github.com/cddmp/enum4linux-ng" %}

Uninstall enum4linux:

sudo rm -f /bin/enum4linux

Clone repo:

git clone https://github.com/cddmp/enum4linux-ng.git
cd enum4linux-ng

Copy enum4linux-ng.py to PATH:

cp enum4linux-ng.py /home/user_here/.local/bin

Kerbrute M1 ARM Build

Clone repo:

git clone https://github.com/ropnop/kerbrute
cd kerbrute

Modify Makefile:

add arm64 on the 2nd line.

ARCHS=amd64 386 arm64

Build:

make linux

Navigate to dist:

cd dist
ls -la

┌──(root💀kali)-[~/scripts/arm64-scripts/kerbrute/dist]
└─# ls -la                
total 20976
drwxr-xr-x 2 root root    4096 Sep  7 01:23 .
drwxr-xr-x 8 root root    4096 Sep  7 01:23 ..
-rwxr-xr-x 1 root root 6907538 Sep  7 01:23 kerbrute_linux_386
-rwxr-xr-x 1 root root 7351088 Sep  7 01:23 kerbrute_linux_amd64
-rwxr-xr-x 1 root root 7204048 Sep  7 01:23 kerbrute_linux_arm64