Bladeren bron
moved 'lsof' sub-section
- signed-off-by: trimstray <trimstray@gmail.com>pull/82/head
trimstray
5 jaren geleden
1 gewijzigde bestanden met toevoegingen van 61 en 61 verwijderingen
-
+61 -61README.md
+ 61
- 61
README.md
Bestand weergeven
| @@ -1033,6 +1033,7 @@ Linux Security Expert</b></a> - trainings, howtos, checklists, security tools an | |||
| * [terminal](#tool-terminal) | |||
| * [mount](#tool-mount) | |||
| * [fuser](#tool-fuser) | |||
| * [lsof](#tool-lsof) | |||
| * [ps](#tool-ps) | |||
| * [top](#tool-top) | |||
| * [strace](#tool-strace) | |||
| @@ -1068,7 +1069,6 @@ Linux Security Expert</b></a> - trainings, howtos, checklists, security tools an | |||
| * [socat](#tool-socat) | |||
| * [p0f](#tool-p0f) | |||
| * [gnutls-cli](#tool-gnutls-cli) | |||
| * [lsof](#tool-lsof) | |||
| * [netstat](#tool-netstat) | |||
| * [rsync](#tool-rsync) | |||
| * [host](#tool-host) | |||
| @@ -1255,6 +1255,66 @@ fuser -v 53/udp | |||
| ___ | |||
| ##### Tool: [lsof](https://en.wikipedia.org/wiki/Lsof) | |||
| ###### Show process that use internet connection at the moment | |||
| ```bash | |||
| lsof -P -i -n | |||
| ``` | |||
| ###### Show process that use specific port number | |||
| ```bash | |||
| lsof -i tcp:443 | |||
| ``` | |||
| ###### Lists all listening ports together with the PID of the associated process | |||
| ```bash | |||
| lsof -Pan -i tcp -i udp | |||
| ``` | |||
| ###### List all open ports and their owning executables | |||
| ```bash | |||
| lsof -i -P | grep -i "listen" | |||
| ``` | |||
| ###### Show all open ports | |||
| ```bash | |||
| lsof -Pnl -i | |||
| ``` | |||
| ###### Show open ports (LISTEN) | |||
| ```bash | |||
| lsof -Pni4 | grep LISTEN | column -t | |||
| ``` | |||
| ###### List all files opened by a particular command | |||
| ```bash | |||
| lsof -c "process" | |||
| ``` | |||
| ###### View user activity per directory | |||
| ```bash | |||
| lsof -u username -a +D /etc | |||
| ``` | |||
| ###### Show 10 largest open files | |||
| ```bash | |||
| lsof / | \ | |||
| awk '{ if($7 > 1048576) print $7/1048576 "MB" " " $9 " " $1 }' | \ | |||
| sort -n -u | tail | column -t | |||
| ``` | |||
| ___ | |||
| ##### Tool: [ps](https://en.wikipedia.org/wiki/Ps_(Unix)) | |||
| ###### Show a 4-way scrollable process tree with full details | |||
| @@ -2644,66 +2704,6 @@ p0f -i enp0s25 -p -d -o /dump/enp0s25.log | |||
| ___ | |||
| ##### Tool: [lsof](https://en.wikipedia.org/wiki/Lsof) | |||
| ###### Show process that use internet connection at the moment | |||
| ```bash | |||
| lsof -P -i -n | |||
| ``` | |||
| ###### Show process that use specific port number | |||
| ```bash | |||
| lsof -i tcp:443 | |||
| ``` | |||
| ###### Lists all listening ports together with the PID of the associated process | |||
| ```bash | |||
| lsof -Pan -i tcp -i udp | |||
| ``` | |||
| ###### List all open ports and their owning executables | |||
| ```bash | |||
| lsof -i -P | grep -i "listen" | |||
| ``` | |||
| ###### Show all open ports | |||
| ```bash | |||
| lsof -Pnl -i | |||
| ``` | |||
| ###### Show open ports (LISTEN) | |||
| ```bash | |||
| lsof -Pni4 | grep LISTEN | column -t | |||
| ``` | |||
| ###### List all files opened by a particular command | |||
| ```bash | |||
| lsof -c "process" | |||
| ``` | |||
| ###### View user activity per directory | |||
| ```bash | |||
| lsof -u username -a +D /etc | |||
| ``` | |||
| ###### Show 10 largest open files | |||
| ```bash | |||
| lsof / | \ | |||
| awk '{ if($7 > 1048576) print $7/1048576 "MB" " " $9 " " $1 }' | \ | |||
| sort -n -u | tail | column -t | |||
| ``` | |||
| ___ | |||
| ##### Tool: [netstat](https://en.wikipedia.org/wiki/Netstat) | |||
| ###### Graph # of connections for each hosts | |||