Blue Team Toolkit
  • 👊Welcome!
  • application-security
    • Application Security
  • DFIR Toolkit
  • Incident Response
    • Containment, Eradication, and Recovery
    • Network Analysis
    • MITRE ATT&CK Framework
    • post-incident
    • preparation
  • network-hardening
    • Basic Network Tools
    • Basic Port Info
    • NMAP
    • Wireshark
  • Phishing Analysis
    • Basic Email Info
    • Email Headers
  • reversing
    • gdb
    • reversing
  • Security Information and Event Monitoring
    • DeepBlueCLI
    • Linux Log Analysis
    • Log Review Approach
    • Network Device Log Analysis
    • Other Tools
    • SIFT Workstation
    • Splunk
    • Syslog
    • Sysmon
    • Web Server Log Analysis
    • Windows Log Analysis
  • Systems Forensics
    • Autopsy
    • Basic File Metadata
    • Browser History Capturer
    • Browser History Viewer
    • Digital Evidence Handling
    • Exiftool
    • File Hashing
    • File Systems
    • forensics-workstation
    • FTK Imager
    • John the Ripper
    • JumpList Explorer
    • KAPE
    • Linux Artifacts
    • Memory File Analysis
    • Prefetch Explorer Command Tool PECmd.exe
    • Scalpel
    • Steghide
    • Sysinternals
    • Volatility
    • Windows Artifacts
    • Windows File Analyzer
    • YARA
  • systems-hardening
    • Active Directory Hardening
    • linux-hardening
    • windows-hardening
Powered by GitBook
On this page
  1. network-hardening

Basic Network Tools

  • IP information

    • Windows: ipconfig /all

    • Linux: ip -aip r

  • Routing tables

    • Windows: route print

    • Linux: ip r list

  • Traceroute

    • Windows: tracert [URL]

    • Linux: traceroute [url] -p [port number]

  • DNS

    • Windows: nslookup [domain name]

    • Linux: dig [domain name]

    • Linux email DNS info: dig [domain name] mx

    • Linux get A record: dig [domain name] ANY +nocomments +noauthority +noadditional +nostats

  • Netstat

    • Windows and Linux current connections/listening ports: netstat -a

    • Windows current connections/ports/related executables: netstat -a -b

    • Windows and Linux statistics for all connections using TCP: netstat -s -p tcp -f

  • PING

    • Linux: sudo ping -v [target]

    • Linux ping summary: ping -c 5 -q [target]

Previousnetwork-hardeningNextBasic Port Info

Last updated 2 years ago