2015年8月25日 星期二

windows Tools(sysinternals)(technet)(PSR)

Windows 7/8 有隱藏版螢幕錄製器

在Windows 7中啟動PSR Bug Report工具

http://www.techbang.com/posts/23334-win-called-hidden-7-8-screen-recorder

按下〔Win〕+〔R〕組合鍵叫出「執行」視窗,然後在「開啟」右側的空白欄位內輸入「psr」,接著按一下〔確定〕按鈕或直接按下鍵盤上的〔Enter〕

******************************************

https://technet.microsoft.com/zh-tw/

https://technet.microsoft.com/en-us/sysinternals/bb545027

View the current Internet sockets open on the

system

• Command

– netstat –an

– fport

• Pre-Requisites

– fport from http://www.mcafee.com/tw/downloads/free-tools/fport.aspx

Utilities


Sysinternals Networking Utilities

AD Explorer
Active Directory Explorer is an advanced Active Directory (AD) viewer and editor.
AD Insight
AD Insight is an LDAP (Light-weight Directory Access Protocol) real-time monitoring tool aimed at troubleshooting Active Directory client applications.
AdRestore
Undelete Server 2003 Active Directory objects.
PipeList
Displays the named pipes on your system, including the number of maximum instances and active instances for each pipe.
PsFile
See what files are opened remotely.
PsPing
Measures network performance.
PsTools
The PsTools suite includes command-line utilities for listing the processes running on local or remote computers, running processes remotely, rebooting computers, dumping event logs, and more.
ShareEnum
Scan file shares on your network and view their security settings to close security holes.
TCPView
Active socket command-line viewer.
Whois
See who owns an Internet address.

Sysinternals Security Utilities

AccessChk
This tool shows you the accesses the user or group you specify has to files, Registry keys or Windows services.
AccessEnum
This simple yet powerful security tool shows you who has what access to directories, files and Registry keys on your systems. Use it to find holes in your permissions.
Autologon
Bypass password screen during logon.
Autoruns
See what programs are configured to startup automatically when your system boots and you log in. Autoruns also shows you the full list of Registry and file locations where applications can configure auto-start settings.
LogonSessions
List active logon sessions
Process Explorer
Find out what files, registry keys and other objects processes have open, which DLLs they have loaded, and more. This uniquely powerful utility will even show you who owns each process.
PsExec
Execute processes with limited-user rights.
PsLoggedOn
Show users logged on to a system.
PsLogList
Dump event log records.
PsTools
The PsTools suite includes command-line utilities for listing the processes running on local or remote computers, running processes remotely, rebooting computers, dumping event logs, and more.
SDelete
Securely overwrite your sensitive files and cleanse your free space of previously deleted files using this DoD-compliant secure delete program.
ShareEnum
Scan file shares on your network and view their security settings to close security holes.
ShellRunas
Launch programs as a different user via a convenient shell context-menu entry.
Sigcheck
Dump file version information and verify that images on your system are digitally signed.
Sysmon
Monitors and reports key system activity via the Windows event log.



2015年8月19日 星期三

netcat

http://blogger.gtwang.org/2014/02/linux-utility-netcat-examples.html

固定頁面的網頁伺服器

下面這行指令可以在 8000 連接埠上建立一個提供固定頁面(不管 HTTP 的請求為何,都送出 test.html)的網頁伺服器:

while true; do nc -l 8000 < test.html; done


手動使用 SMTP 協定寄信

在測試郵件伺服器是否正常時,可以使用這樣的方式手動寄送 Email:
nc localhost 25 << EOF
HELO host.example.com
MAIL FROM: <user@host.example.com>
RCPT TO: <user2@host.example.com>
DATA
Body of email.
.
QUIT
EOF

手動送出 HTTP 請求

這行指令會送出一個 HTTP 請求至網頁伺服器上,並接收網頁伺服器的回應訊息:
echo -ne "GET / HTTP/1.0\r\n\r\n" | nc www.google.com 80