WEEK1-Writeup
Linux CLI, Bash Scripting, Permissions, Netcat Basics | tryhackmeLinux/Network course (3 Days) - first pages of oscp
Linux Command Line Interface (CLI) Fundamentals
Basic Navigation & File Operations
ls- List directory contents with various flags (-la,-lh,-R)cd- Change directory (absolute vs relative paths)pwd- Print working directorycp- Copy files and directoriesmv- Move/rename files and directoriesrm- Remove files and directories (-r,-fflags)mkdir- Create directories (-pfor parent directories)cat- Concatenate and display filestac- Display files in reversehead/tail- View beginning/end of filesmore/less- Page through file content
File Viewing & Manipulation
grep- Pattern searching (-i,-v,-r,-E,-l)find- Search for files (-name,-type,-size,-exec)locate- Find files using databasewhich/whereis- Find command locationsman- Manual pagesapropos- Search man pagessudo- Execute as superusersu- Switch user
Package Management
apt- Debian/Ubuntu package management (install, update, upgrade, remove)yum/dnf- RHEL/CentOS package managementdpkg- Debian package management
Bash Scripting
Core Concepts
Shebang (
#!/bin/bash)Variables declaration and usage
Command substitution (
$(),` `)Passing arguments (
$1,$2,$@,$#)Reading user input (
read)
Control Structures
If/else/elif statements
For loops
While loops
Until loops
Case statements
Functions definition and calling
Return values and exit codes
Advanced Scripting
String manipulation
Arithmetic operations
Arrays
File testing (
-f,-d,-r,-w,-x)Redirection (
>,>>,2>,&>,|)Here documents (
<<)
Linux File Permissions & User Management
Basic Permissions
Understanding permission notation (rwx)
Numeric permissions (octal: 755, 644, etc.)
chmod- Change file permissionschown- Change file owner/groupchgrp- Change group ownershipumask- Default permission mask
Special Permissions
SUID (Set User ID) -
chmod u+sSGID (Set Group ID) -
chmod g+sSticky Bit -
chmod +tIdentifying and exploiting misconfigured permissions
User & Group Management
/etc/passwdstructure/etc/shadowstructure/etc/groupstructureuseradd/usermod/userdelgroupadd/groupmod/groupdelpasswd- Change passwordsid- Display user/group IDs
Networking Basics
Network Configuration
ip- Modern network configurationifconfig- Legacy interface configurationroute- View/modify routing tables/etc/network/interfacesand/etc/resolv.conf
Network Diagnostics
ping- ICMP echo requeststraceroute/tracepath- Trace network pathnetstat- Network statistics (-tulpnflags)ss- Socket statistics (modern netstat replacement)dig- DNS lookup utilitynslookup- Query DNS servershost- DNS lookup utilityarp- ARP table manipulation
Netcat Mastery
Basic Operations
Connect to TCP/UDP ports:
nc <host> <port>Listen on ports:
nc -lvnp <port>File transfer (sender/receiver)
Port scanning with Netcat
Advanced Usage
Banner grabbing:
echo "" | nc -nv <host> <port>Reverse/bind shells
Proxy and relay setup
Chat server creation
Information Gathering Techniques
Domain Intelligence
whois- Domain registration informationUnderstanding whois record components (registrar, nameservers, dates)
Google Hacking (Dorking)
Basic operators:
site:,inurl:,intitle:,filetype:Advanced operators:
intext:,cache:,link:Combination operators for specific findings
Google hacking database (GHDB) familiarity
DNS Enumeration
digwith various record types (A, MX, TXT, NS, SOA)Zone transfers with
dig(AXFR)dnsenum- Comprehensive DNS enumerationdnsrecon- Advanced DNS reconnaissanceSubdomain enumeration techniques
Nmap Port Scanning
Scan Types
TCP Connect Scan (
-sT)SYN Stealth Scan (
-sS)UDP Scan (
-sU)ACK Scan (
-sA)Window Scan (
-sW)Maimon Scan (
-sM)
Advanced Options
Service Version Detection (
-sV)OS Detection (
-O)Script Scanning (
-sC)Timing Templates (
-T0to-T5)Output Formats (
-oN,-oX,-oG)
Practical Scans
Full port scan:
nmap -p- <target>Top ports scan:
nmap --top-ports 1000 <target>Comprehensive scan:
nmap -sC -sV -O <target>Firewall/IDS evasion techniques
NSE (Nmap Scripting Engine) usage
Service Enumeration
SMB Enumeration
smbclient- SMB file sharingsmbmap- SMB share enumerationenum4linux- Comprehensive SMB enumerationNmap SMB scripts (
smb-os-discovery,smb-enum-shares)
SMTP Enumeration
Manual SMTP commands (
HELO,VRFY,EXPN,RCPT TO)smtp-user-enum- SMTP user enumerationNmap SMTP scripts (
smtp-commands,smtp-enum-users)
SNMP Enumeration
snmpwalk- SNMP tree walkingsnmp-check- SNMP enumeration toolCommon SNMP community strings
MIB (Management Information Base) concepts
Practice & Hands-On
TryHackMe Rooms
Complete “Linux Fundamentals” room
Complete “Network Services” room
Complete “Bash Scripting” room
Practice in “Nmap” room
Vulnerable VMs
Set up and scan Metasploitable 2
Practice against Kioptrix series
Use VulnHub machines for real-world practice
OffSec Labs You Can use THM OR HTB
Whois Enumeration lab
Google Hacking lab
Netcraft lab
DNS Enumeration lab
TCP/UDP Port Scanning lab
SMB/SMTP/SNMP Enumeration labs
Final Validation
Can navigate Linux filesystem without GUI
Can write basic to intermediate Bash scripts
Understand and can modify file permissions
Can perform comprehensive network enumeration
Can conduct full Nmap scans and interpret results
Can enumerate common services (SMB/SMTP/SNMP)
Have practiced on at least 3 vulnerable VMs
You can find me online at:
