Type : Tips and Trick
Level : Easy
Yes today was a very great day because the temperature outside my room above 30 celcius in last few days…and also today, I will write simple tips and trick about basic command line for tcp/ip and networking in windows you should know.
I will try to explain the simple basic thing you need to know about basic command line for tcp/ip and networking in windows you should know. Usually you will need basic command line for tcp/ip and networking for information gathering and find information about victim and sometimes you can accidentaly find some vulnerable server when do some research. This tips and trick also can be used to check your connection and finding some malicious port used by malware, trojan, or etc.
1. Windows OS
2. A Cup of Coffee to make you relaks :-p
1. Firstly, you should go to your command prompt window. Open Run (how to open run) and type cmd.
ipconfig used to display the TCP/IP network configuration values. If your computer connected to internet or local network you will have an ip address and will described in ipconfig. To view switches for ipconfig use ipconfig /? command for help, let’s see the picture and explanation below.
/release : release specified adapter if you got IP address from DHCP server.
/renew : renew and ask for new IP address from DHCP server.
/flushdns : clear all DNS local cache
/displaydns : displaying what do you have in your local DNS cache.
This command usually used to check active connection between computer or server. Ping sends out a packet to a designated internet host or network computer and measures its response time. The target or other computer will respond and return a signal to determine the quality of connection to other site or another computer.
If you see the image above, my current connection with google.com is not too good(but also not too bad), because the average time for the very good connection is not more than 100-150ms (more lower more fast).
When you do ping command, the default packet value you send to other computer is 32 bytes.
If you find “Request timed out” message when you perform ping, maybe the remote server or computer didn’t allow ping or they have a firewall.
Tracert (traceroute) is another command adopted from Unix system. Actually when you try to open facebook.com or google.com in your browser, you ask your computer to go to that address through hopping into a few router address. Let’s see the picture below when I’m trying to traceroute to google.com(sorry if I put a lot of sensor in this pics).
To reach google.com I need to go through 8 hop(router) until my last destination. Usually tracert command also can be used to check your connection into some websites. If you found that the hop more than 15 when you do tracert command, that website should be very slow accessed from your PC.
Netstat displays the active TCP connections and ports on which the computer is listening, Ethernet statistics, the IP routing table, statistics for the IP, ICMP, TCP, and UDP protocols. Netstat also can be used to tracking your outbound or inbound connection to your computer, it’s useful to malicious connection. Let’s see the picture below to see the available switch in netstat.
netstat -a : use to displaying all connection and listening ports.
netstat -b : showing the executable files involved in creating connection
you also can use the switch simultaneously, for example netstat -ab to display all connection and executables files related to it’s connection
This command helps to diagnose the Domain Name System (DNS) infrastructure and comes with a number of sub-commands. Usually used by hackers to find out some useful information that you can’t find on search engine. In this tips and trick I’m only show you how to find server IP address or host name. Type nslookup and the enter the URL of website you want to know it’s IP address for example I use google.com.
As you can see on picture above, that google.com have about 5 IP address and if you open all of that IP address, it will open the same website : google.com.
I think there’s more than this the command line for networking, in next article I will try to write more deep about this command line and other advanced command line.
Hope you enjoyed 🙂
Comments are welcome…