Mugwumps & Ubuntu

Retro Gaming - Snes9express Super Nintendo Emulator on Ubuntu

2008-10-30T01:34:00.000-07:00

Snes9express Super Nintendo Emulator

In a new terminal execute:

$ sudo synaptic package manager

Search for Snes and mark snes9express for installation and apply.

You can run the emulator from Applications->Games.

Finding classic roms like the Mario games are a little difficult but should be available from torrent sites.

Enjoy

-=Bug@Interzone=-

Ubuntu terminal commands

2008-10-30T01:29:00.000-07:00

  alias    Create an alias
 apropos  Search Help manual pages (man -k)
 apt-get  Search for and install software packages (Debian)
 aspell   Spell Checker
 awk      Find and Replace text, database sort/validate/index

 bash     GNU Bourne-Again SHell
 bc       Arbitrary precision calculator language
 bg       Send to background
 break    Exit from a loop
 builtin  Run a shell builtin
 bzip2    Compress or decompress named file(s)

 cal      Display a calendar
 case     Conditionally perform a command
 cat      Display the contents of a file
 cd       Change Directory
 cfdisk   Partition table manipulator for Linux
 chgrp    Change group ownership
 chmod    Change access permissions
 chown    Change file owner and group
 chroot   Run a command with a different root directory
 cksum    Print CRC checksum and byte counts
 clear    Clear terminal screen
 cmp      Compare two files
 comm     Compare two sorted files line by line
 command  Run a command - ignoring shell functions
 continue Resume the next iteration of a loop
 cp       Copy one or more files to another location
 cron     Daemon to execute scheduled commands
 crontab  Schedule a command to run at a later time
 csplit   Split a file into context-determined pieces
 cut      Divide a file into several parts

 date     Display or change the date & time
 dc       Desk Calculator
 dd       Convert and copy a file, write disk headers, boot records
 ddrescue Data recovery tool
 declare  Declare variables and give them attributes
 df       Display free disk space
 diff     Display the differences between two files
 diff3    Show differences among three files
 dig      DNS lookup
 dir      Briefly list directory contents
 dircolors Colour setup for `ls'
 dirname  Convert a full pathname to just a path
 dirs     Display list of remembered directories
 du       Estimate file space usage

 echo     Display message on screen
 egrep    Search file(s) for lines that match an extended expression
 eject    Eject removable media
 enable   Enable and disable builtin shell commands
 env      Environment variables
 ethtool  Ethernet card settings
 eval     Evaluate several commands/arguments
 exec     Execute a command
 exit     Exit the shell
 expect   Automate arbitrary applications accessed over a terminal
 expand   Convert tabs to spaces
 export   Set an environment variable
 expr     Evaluate expressions

 false    Do nothing, unsuccessfully
 fdformat Low-level format a floppy disk
 fdisk    Partition table manipulator for Linux
 fg       Send job to foreground
 fgrep    Search file(s) for lines that match a fixed string
 file     Determine file type
 find     Search for files that meet a desired criteria
 fmt      Reformat paragraph text
 fold     Wrap text to fit a specified width.
 for      Expand words, and execute commands
 format   Format disks or tapes
 free     Display memory usage
 fsck     File system consistency check and repair
 ftp      File Transfer Protocol
 function Define Function Macros

 gawk     Find and Replace text within file(s)
 getopts  Parse positional parameters
 grep     Search file(s) for lines that match a given pattern
 groups   Print group names a user is in
 gzip     Compress or decompress named file(s)

 hash     Remember the full pathname of a name argument
 head     Output the first part of file(s)
 history  Command History
 hostname Print or set system name

 id       Print user and group id's
 if       Conditionally perform a command
 ifconfig Configure a network interface
 ifdown   Stop a network interface
 ifup     Start a network interface up
 import   Capture an X server screen and save the image to file
 install  Copy files and set attributes

 join     Join lines on a common field

 kill     Stop a process from running

 less     Display output one screen at a time
 let      Perform arithmetic on shell variables
 ln       Make links between files
 local    Create variables
 locate   Find files
 logname  Print current login name
 logout   Exit a login shell
 look     Display lines beginning with a given string
 lpc      Line printer control program
 lpr      Off line print
 lprint   Print a file
 lprintd  Abort a print job
 lprintq  List the print queue
 lprm     Remove jobs from the print queue
 ls       List information about file(s)
 lsof     List open files

 make     Recompile a group of programs
 man      Help manual
 mkdir    Create new folder(s)
 mkfifo   Make FIFOs (named pipes)
 mkisofs  Create an hybrid ISO9660/JOLIET/HFS filesystem
 mknod    Make block or character special files
 more     Display output one screen at a time
 mount    Mount a file system
 mtools   Manipulate MS-DOS files
 mv       Move or rename files or directories

 netstat  Networking information
 nice     Set the priority of a command or job
 nl       Number lines and write files
 nohup    Run a command immune to hangups
 nslookup Query Internet name servers interactively

 open     Open a file in its default application
 op       Operator access

 passwd   Modify a user password
 paste    Merge lines of files
 pathchk  Check file name portability
 ping     Test a network connection
 popd     Restore the previous value of the current directory
 pr       Prepare files for printing
 printcap Printer capability database
 printenv Print environment variables
 printf   Format and print data
 ps       Process status
 pushd    Save and then change the current directory
 pwd      Print Working Directory

 quota    Display disk usage and limits
 quotacheck Scan a file system for disk usage
 quotactl Set disk quotas

 ram      ram disk device
 rcp      Copy files between two machines.
 read     read a line from standard input
 readonly Mark variables/functions as readonly
 renice   Alter priority of running processes
 remsync  Synchronize remote files via email
 return   Exit a shell function
 rm       Remove files
 rmdir    Remove folder(s)
 rsync    Remote file copy (Synchronize file trees)

 screen   Multiplex terminal, run remote shells via ssh
 scp      Secure copy (remote file copy)
 sdiff    Merge two files interactively
 sed      Stream Editor
 select   Accept keyboard input
 seq      Print numeric sequences
 set      Manipulate shell variables and functions
 sftp     Secure File Transfer Program
 shift    Shift positional parameters
 shopt    Shell Options
 shutdown Shutdown or restart linux
 sleep    Delay for a specified time
 slocate  Find files
 sort     Sort text files
 source   Run commands from a file `.'
 split    Split a file into fixed-size pieces
 ssh      Secure Shell client (remote login program)
 strace   Trace system calls and signals
 su       Substitute user identity
 sudo     Execute a command as another user
 sum      Print a checksum for a file
 symlink  Make a new name for a file
 sync     Synchronize data on disk with memory

 tail     Output the last part of files
 tar      Tape ARchiver
 tee      Redirect output to multiple files
 test     Evaluate a conditional expression
 time     Measure Program running time
 times    User and system times
 touch    Change file timestamps
 top      List processes running on the system
 traceroute Trace Route to Host
 trap     Run a command when a signal is set(bourne)
 tr       Translate, squeeze, and/or delete characters
 true     Do nothing, successfully
 tsort    Topological sort
 tty      Print filename of terminal on stdin
 type     Describe a command

 ulimit   Limit user resources
 umask    Users file creation mask
 umount   Unmount a device
 unalias  Remove an alias
 uname    Print system information
 unexpand Convert spaces to tabs
 uniq     Uniquify files
 units    Convert units from one scale to another
 unset    Remove variable or function names
 unshar   Unpack shell archive scripts
 until    Execute commands (until error)
 useradd  Create new user account
 usermod  Modify user account
 users    List users currently logged in
 uuencode Encode a binary file
 uudecode Decode a file created by uuencode

 v        Verbosely list directory contents (`ls -l -b')
 vdir     Verbosely list directory contents (`ls -l -b')
 vi       Text Editor
 vmstat   Report virtual memory statistics

 watch    Execute/display a program periodically
 wc       Print byte, word, and line counts
 whereis  Report all known instances of a command   
 which    Locate a program file in the user's path.
 while    Execute commands
 who      Print all usernames currently logged in
 whoami   Print the current user id and name (`id -un')
 Wget     Retrieve web pages or files via HTTP, HTTPS or FTP

 xargs    Execute utility, passing constructed argument list(s)
 yes      Print a string until interrupted
 .        Run a command script in the current shell
 ###      Comment / Remark

Google Hacks - Google Search Operators

2008-10-28T23:58:00.000-07:00

Google Search Operators

Put these codes into Google to see how you can manipulate searches.

But play nice! Some of these codes illustrate how Google is used to find website weaknesses and sensitive data. I would never condone such actions but it happens.

inurl:"ViewerFrame?Mode="
intitle:axis intitle:"video server"
inurl:indexFrame.shtml Axis
?intitle:index.of? mp3 artist-name-here
"intitle:index of"
"A syntax error has occurred" filetype:ihtml
"access denied for user" "using password"
"Chatologica MetaSearch" "stack tracking:"
"Index of /backup"
"ORA-00921: unexpected end of SQL command"
"parent directory " /appz/ -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
"parent directory " DVDRip -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
"parent directory " Gamez -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
"parent directory " MP3 -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
"parent directory " Name of Singer or album -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
"parent directory "Xvid -xxx -html -htm -php -shtml -opendivx -md5 -md5sums
?intitle:index.of? mp3 name
allintitle:"Network Camera NetworkCamera"
allinurl: admin mdb
allinurl:auth_user_file.txt
intitle:"live view" intitle:axis
intitle:axis intitle:"video server"
intitle:liveapplet
inurl:"ViewerFrame?Mode="
inurl:axis-cgi/jpg
inurl:axis-cgi/mjpg (motion-JPEG)
inurl:passlist.txt
inurl:view/index.shtml
inurl:view/indexFrame.shtml
inurl:view/view.shtml
inurl:ViewerFrame?Mode=Refresh
liveapplet
!Host=*.* intext:enc_UserPassword=* ext:pcf
" -FrontPage-" ext:pwd inurl:(service | authors | administrators | users)
"A syntax error has occurred" filetype:ihtml
"About Mac OS Personal Web Sharing"
"access denied for user" "using password"
"allow_call_time_pass_reference" "PATH_INFO"
"An illegal character has been found in the statement" -"previous message"
"ASP.NET_SessionId" "data source="
"AutoCreate=TRUE password=*"
"Can't connect to local" intitle:warning
"Certificate Practice Statement" inurl:(PDF | DOC)
"Chatologica MetaSearch" "stack tracking"
"Copyright (c) Tektronix, Inc." "printer status"
"detected an internal error [IBM][CLI Driver][DB2/6000]"
"Dumping data for table"
"Error Diagnostic Information" intitle:"Error Occurred While"
"error found handling the request" cocoon filetype:xml
"Fatal error: Call to undefined function" -reply -the -next
"Generated by phpSystem"
"generated by wwwstat"
"Host Vulnerability Summary Report"
"HTTP_FROM=googlebot" googlebot.com "Server_Software="
"IMail Server Web Messaging" intitle:login
"Incorrect syntax near"
"Index of /" +.htaccess
"Index of /" +passwd
"Index of /" +password.txt
"Index of /admin"
"Index of /mail"
"Index Of /network" "last modified"
"Index of /password"
"index of /private" site:mil
"index of /private" -site:net -site:com -site:org
"Index of" / "chat/logs"
"index of/" "ws_ftp.ini" "parent directory"
"Installed Objects Scanner" inurl:default.asp
"Internal Server Error" "server at"
"liveice configuration file" ext:cfg
"Login - Sun Cobalt RaQ"
"Mecury Version" "Infastructure Group"
"Microsoft (R) Windows * (TM) Version * DrWtsn32 Copyright (C)" ext:log
"More Info about MetaCart Free"
"Most Submitted Forms and Scripts" "this section"
"mysql dump" filetype:sql
"mySQL error with query"
"Network Vulnerability Assessment Report"
"not for distribution" confidential
"ORA-00921: unexpected end of SQL command"
"ORA-00933: SQL command not properly ended"
"ORA-00936: missing expression"
"pcANYWHERE EXPRESS Java Client"
"phone * * *" "address *" "e-mail" intitle:"curriculum vitae"
"phpMyAdmin MySQL-Dump" "INSERT INTO" -"the"
"phpMyAdmin MySQL-Dump" filetype:txt
"phpMyAdmin" "running on" inurl:"main.php"
"PostgreSQL query failed: ERROR: parser: parse error"
"Powered by mnoGoSearch - free web search engine software"
"powered by openbsd" +"powered by apache"
"Powered by UebiMiau" -site:sourceforge.net
"produced by getstats"
"Request Details" "Control Tree" "Server Variables"
"robots.txt" "Disallow:" filetype:txt
"Running in Child mode"
"sets mode: +k"
"sets mode: +p"
"sets mode: +s"
"Supplied argument is not a valid MySQL result resource"
"Supplied argument is not a valid PostgreSQL result"
"Thank you for your order" +receipt
"This is a Shareaza Node"
"This report was generated by WebLog"
"This summary was generated by wwwstat"
"VNC Desktop" inurl:5800
"Warning: Cannot modify header information - headers already sent"
"Web File Browser" "Use regular expression"
"xampp/phpinfo
"You have an error in your SQL syntax near"
"Your password is * Remember this for later use"
aboutprinter.shtml
allintitle: "index of/admin"
allintitle: "index of/root"
allintitle: restricted filetype :mail
allintitle: restricted filetype:doc site:gov
allintitle: sensitive filetype:doc
allintitle:.."Test page for Apache Installation.."
allintitle:admin.php
allinurl:".r{}_vti_cnf/"
allinurl:admin mdb
allinurl:auth_user_file.txt
allinurl:servlet/SnoopServlet
An unexpected token "END-OF-STATEMENT" was found
camera linksys inurl:main.cgi
Canon Webview netcams
Comersus.mdb database
confidential site:mil
ConnectionTest.java filetype:html
data filetype:mdb -site:gov -site:mil
eggdrop filetype:user user
ext:conf NoCatAuth -cvs
ext:pwd inurl:(service | authors | administrators | users) "# -FrontPage-"
ext:txt inurl:unattend.txt
filetype:ASP ASP
filetype:ASPX ASPX
filetype:BML BML
filetype:cfg ks intext:rootpw -sample -test -howto
filetype:cfm "cfapplication name" password
filetype:CFM CFM
filetype:CGI CGI
filetype:conf inurl:psybnc.conf "USER.PASS="
filetype:dat "password.dat
filetype:DIFF DIFF
filetype:DLL DLL
filetype:DOC DOC
filetype:FCGI FCGI
filetype:HTM HTM
filetype:HTML HTML
filetype:inf sysprep
filetype:JHTML JHTML
filetype:JSP JSP
filetype:log inurl:password.log
filetype:MV MV
filetype:pdf "Assessment Report" nessus
filetype:PDF PDF
filetype:PHP PHP
filetype:PHP3 PHP3
filetype:PHP4 PHP4
filetype:PHTML PHTML
filetype:PL PL
filetype:PPT PPT
filetype:PS PS
filetype:SHTML SHTML
filetype:STM STM
filetype:SWF SWF
filetype:TXT TXT
filetype:XLS XLS
htpasswd / htpasswd.bak
Index of phpMyAdmin
index of: intext:Gallery in Configuration mode
index.of passlist
intext:""BiTBOARD v2.0" BiTSHiFTERS Bulletin Board"
intext:"d.aspx?id" || inurl:"d.aspx?id"
intext:"enable secret 5 $"
intext:"powered by Web Wiz Journal"
intext:"SteamUserPassphrase=" intext:"SteamAppUser=" -"username" -"user"
intitle:"--- VIDEO WEB SERVER ---" intext:"Video Web Server" "Any time & Any where" username password
intitle:"500 Internal Server Error" "server at"
intitle:"actiontec" main setup status "Copyright 2001 Actiontec Electronics Inc"
intitle:"Browser Launch Page"
intitle:"DocuShare" inurl:"docushare/dsweb/" -faq -gov -edu
intitle:"EverFocus.EDSR.applet"
intitle:"Index of" ".htpasswd" "htgroup" -intitle:"dist" -apache -htpasswd.c
intitle:"Index of" .bash_history
intitle:"Index of" .mysql_history
intitle:"Index of" .mysql_history
intitle:"Index of" .sh_history
intitle:"Index of" cfide
intitle:"index of" etc/shadow
intitle:"index of" htpasswd
intitle:"index of" intext:globals.inc
intitle:"index of" master.passwd
intitle:"index of" members OR accounts
intitle:"index of" passwd
intitle:"Index of" passwords modified
intitle:"index of" people.lst
intitle:"index of" pwd.db
intitle:"Index of" pwd.db
intitle:"index of" spwd
intitle:"Index of" spwd.db passwd -pam.conf
intitle:"index of" user_carts OR user_cart
intitle:"Index of..etc" passwd
intitle:"iVISTA.Main.Page"
intitle:"network administration" inurl:"nic"
intitle:"OfficeConnect Cable/DSL Gateway" intext:"Checking your browser"
intitle:"remote assessment" OpenAanval Console
intitle:"Remote Desktop Web Connection" inurl:tsweb
intitle:"switch login" "IBM Fast Ethernet Desktop"
intitle:"SWW link" "Please wait....."
intitle:"teamspeak server-administration
intitle:"TUTOS Login"
intitle:"VMware Management Interface:" inurl:"vmware/en/"
intitle:"Welcome to the Advanced Extranet Server, ADVX!"
intitle:"Welcome to Windows 2000 Internet Services"
intitle:"Connection Status" intext:"Current login"
intitle:"inc. vpn 3000 concentrator"
intitle:asterisk.management.portal web-access
intitle:dupics inurl:(add.asp | default.asp | view.asp | voting.asp) -site:duware.com
intitle:index.of administrators.pwd
intitle:index.of cgiirc.config
intitle:Index.of etc shadow site:passwd
intitle:index.of intext:"secring.skr"|"secring.pgp"|"secring.bak"
intitle:index.of master.passwd
intitle:index.of passwd passwd.bak
intitle:index.of people.lst
intitle:index.of trillian.ini
intitle:Novell intitle:WebAccess "Copyright *-* Novell, Inc"
intitle:opengroupware.org "resistance is obsolete" "Report Bugs" "Username" "password"
intitle:open-xchange inurl:login.pl
inurl:":10000" intext:webmin
inurl:"8003/Display?what="
inurl:"auth_user_file.txt"
inurl:"GRC.DAT" intext:"password"
inurl:"printer/main.html" intext:"settings"
inurl:"slapd.conf" intext:"credentials" -manpage -"Manual Page" -man: -sample
inurl:"slapd.conf" intext:"rootpw" -manpage -"Manual Page" -man: -sample
inurl:"ViewerFrame?Mode="
inurl:"wvdial.conf" intext:"password"
inurl:"wwwroot/
inurl:/Citrix/Nfuse17/
inurl:/db/main.mdb
inurl:/wwwboard
inurl:access
inurl:admin filetype:db
inurl:asp
inurl:buy
inurl:ccbill filetype:log
inurl:cgi
inurl:cgiirc.config
inurl:config.php dbuname dbpass
inurl:data
inurl:default.asp intitle:"WebCommander"
inurl:download
inurl:file
inurl:filezilla.xml -cvs
inurl:forum
inurl:home
inurl:hp/device/this.LCDispatcher
inurl:html
inurl:iisadmin
inurl:inc
inurl:info
inurl:lilo.conf filetype:conf password -tatercounter2000 -bootpwd -man
inurl:list
inurl:login filetype:swf swf
inurl:mail
inurl:midicart.mdb
inurl:names.nsf?opendatabase
inurl:new
inurl:nuke filetype:sql
inurl:order
inurl:ospfd.conf intext:password -sample -test -tutorial -download
inurl:pages
inurl:pap-secrets -cvs
inurl:passlist.txt
inurl:passwd filetype:txt
inurl:Proxy.txt
inurl:public
inurl:search
inurl:secring ext:skr | ext:pgp | ext:bak
inurl:shop
inurl:shopdbtest.asp
inurl:software
inurl:support
inurl:user
inurl:vtund.conf intext:pass -cvs s
inurl:web
inurl:zebra.conf intext:password -sample -test -tutorial -download LeapFTP
intitle:"index.of./" sites.ini modified
top secret site:mil
Ultima Online loginservers
VP-ASP Shop Administrators only
XAMPP "inurl:xampp/index"

xxxXXXxxx

Enjoy

-=bug@interzone=-

Install and use Nmap on Ubuntu

2008-10-28T23:37:00.000-07:00

Nmap network scanner on Ubuntu.

What's Nmap @ Wikipedia.

Open a terminal and Install:

$ sudo apt-get install nmap

Once it has installed execute:

$ nmap

This will show you all the options you can use with Nmap.

xxxXXXxxx

mugwumps stole my underwear@interzone:~$ nmap

Nmap 4.53 ( http://insecure.org )
Usage: nmap [Scan Type(s)] [Options] {target specification}
TARGET SPECIFICATION:
Can pass hostnames, IP addresses, networks, etc.
Ex: scanme.nmap.org, microsoft.com/24, 192.168.0.1; 10.0.0-255.1-254
-iL : Input from list of hosts/networks
-iR : Choose random targets
--exclude : Exclude hosts/networks
--excludefile : Exclude list from file
HOST DISCOVERY:
-sL: List Scan - simply list targets to scan
-sP: Ping Scan - go no further than determining if host is online
-PN: Treat all hosts as online -- skip host discovery
-PS/PA/PU [portlist]: TCP SYN/ACK or UDP discovery to given ports
-PE/PP/PM: ICMP echo, timestamp, and netmask request discovery probes
-PO [protocol list]: IP Protocol Ping
-n/-R: Never do DNS resolution/Always resolve [default: sometimes]
--dns-servers : Specify custom DNS servers
--system-dns: Use OS's DNS resolver
SCAN TECHNIQUES:
-sS/sT/sA/sW/sM: TCP SYN/Connect()/ACK/Window/Maimon scans
-sU: UDP Scan
-sN/sF/sX: TCP Null, FIN, and Xmas scans
--scanflags : Customize TCP scan flags
-sI : Idle scan
-sO: IP protocol scan
-b : FTP bounce scan
--traceroute: Trace hop path to each host
--reason: Display the reason a port is in a particular state
PORT SPECIFICATION AND SCAN ORDER:
-p : Only scan specified ports
Ex: -p22; -p1-65535; -p U:53,111,137,T:21-25,80,139,8080
-F: Fast mode - Scan fewer ports than the default scan
-r: Scan ports consecutively - don't randomize
--top-ports : Scan most common ports
--port-ratio : Scan ports more common than
SERVICE/VERSION DETECTION:
-sV: Probe open ports to determine service/version info
--version-intensity : Set from 0 (light) to 9 (try all probes)
--version-light: Limit to most likely probes (intensity 2)
--version-all: Try every single probe (intensity 9)
--version-trace: Show detailed version scan activity (for debugging)
SCRIPT SCAN:
-sC: equivalent to --script=safe,intrusive
--script=: is a comma separated list of
directories, script-files or script-categories
--script-args=: provide arguments to scripts
--script-trace: Show all data sent and received
--script-updatedb: Update the script database.
OS DETECTION:
-O: Enable OS detection
--osscan-limit: Limit OS detection to promising targets
--osscan-guess: Guess OS more aggressively
TIMING AND PERFORMANCE:
Options which take are in milliseconds, unless you append 's'
(seconds), 'm' (minutes), or 'h' (hours) to the value (e.g. 30m).
-T[0-5]: Set timing template (higher is faster)
--min-hostgroup/max-hostgroup : Parallel host scan group sizes
--min-parallelism/max-parallelism : Probe parallelization
--min-rtt-timeout/max-rtt-timeout/initial-rtt-timeout : Specifies
probe round trip time.
--max-retries : Caps number of port scan probe retransmissions.
--host-timeout : Give up on target after this long
--scan-delay/--max-scan-delay : Adjust delay between probes
FIREWALL/IDS EVASION AND SPOOFING:
-f; --mtu : fragment packets (optionally w/given MTU)
-D : Cloak a scan with decoys
-S : Spoof source address
-e : Use specified interface
-g/--source-port : Use given port number
--data-length : Append random data to sent packets
--ip-options : Send packets with specified ip options
--ttl : Set IP time-to-live field
--spoof-mac : Spoof your MAC address
--badsum: Send packets with a bogus TCP/UDP checksum
OUTPUT:
-oN/-oX/-oS/-oG : Output scan in normal, XML, s|: Output in the three major formats at once
-v: Increase verbosity level (use twice for more effect)
-d[level]: Set or increase debugging level (Up to 9 is meaningful)
--open: Only show open (or possibly open) ports
--packet-trace: Show all packets sent and received
--iflist: Print host interfaces and routes (for debugging)
--log-errors: Log errors/warnings to the normal-format output file
--append-output: Append to rather than clobber specified output files
--resume : Resume an aborted scan
--stylesheet : XSL stylesheet to transform XML output to HTML
--webxml: Reference stylesheet from Insecure.Org for more portable XML
--no-stylesheet: Prevent associating of XSL stylesheet w/XML output
MISC:
-6: Enable IPv6 scanning
-A: Enables OS detection and Version detection, Script scanning and Traceroute
--datadir : Specify custom Nmap data file location
--send-eth/--send-ip: Send using raw ethernet frames or IP packets
--privileged: Assume that the user is fully privileged
--unprivileged: Assume the user lacks raw socket privileges
-V: Print version number
-h: Print this help summary page.
EXAMPLES:
nmap -v -A scanme.nmap.org
nmap -v -sP 192.168.0.0/16 10.0.0.0/8
nmap -v -iR 10000 -PN -p 80
SEE THE MAN PAGE FOR MANY MORE OPTIONS, DESCRIPTIONS, AND EXAMPLES

xxxXXXxxx

A simple scan on a home network:

mugwumps killed the paperback star@bug:~$ sudo nmap -p1-400 -O 192.168.2.2

Starting Nmap 4.53 ( http://insecure.org ) at 2008-10-29 06:45 GMT
All 400 scanned ports on 192.168.2.2 are filtered
Too many fingerprints match this host to give specific OS details

OS detection performed. Please report any incorrect results at http://insecure.org/nmap/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 13.436 seconds

You can see from the options I used that I selected to only scan ports 1-400 and asked Nmap to guess the operating system.

Have fun and always play safe.

-=bug@interzone=-

Ubuntu desktop tweaks and Gdesklets

2008-10-28T22:38:00.000-07:00

Here is my minimal desktop

How I did it:

Choose an awesome desktop picture that works with the theme:

Right click the desktop and choose to change desktop background.

xxxXXXxxx

Theme

First I downloaded the Darker theme and installed it via the theme manager.

System->Preferences->Theme

xxxXXXxxx

Widgets & Toolbars

Then installed Gdesklets which runs the clock and bottom taskbar,

$ sudo apt-get install gdeklets

The clock I used came with Gdesklets but the toolbar I got from a Gdesklets archive I had found and is called Candybar <- Download and save this. Run Gdesklets from Applications->Accessories->Gdesklets

Via the file menu you can install the candybar.tar.gz

Add any desklets you like.

It's a good idea to add some startup launchers to candybar for your favourite applications also add a terminal to the launcher panel.

:Left click on the apple on the left of Candybar to toggle between launchers and open apps.
:Right click the apple to see the options for Candybar.

xxxXXXxxx

Panels

The bottom panel of the Ubuntu desktop can be deleted via the right click options but the top bar is a little different.

First delete and launcher icons from the top panel.

It's handy before removing the top panel to add a terminal to the startup list. So that a terminal will launch after you have logged in.

System->Preferences->sessions-> Startup tab

Add new process:

Name: Startup terminal
Command: gnome-terminal
Comment: Terminal on startup

While you are here "System->Preferences->sessions-> Startup tab" Add Gdesklets to the startup.

Add new process:

Name: Gdesklets
Command: gdesklets
Comment: Gdesklets

Then disable the gnome panel by going to:

System->Preferences->Sessions-->Current Session and remove gnome panel from the list of running applications. Apply, then go to the session options tab and click on the Remember button..

So you are in at the deep end now :)
Restart your session by logging out:

If you have a terminal open type:
$ gnome-session-save --kill

if not hold ctrl-alt-F2, login and execute:

$ reboot

If you are new to Ubuntu chances are you are going to be lost without the top bar so here is how to start it back up again:

$ rm -R ~/.gnome2

Then logout and login

$ gnome-session-save --kill

It will take a while to get used to so have a play around and build somthing you are comfortable using.

Thanks for reading

-=Bug@Interzone=-

Installing Metasploit 3.1 On Ubuntu

2008-10-28T22:02:00.000-07:00

Installing Metasploit 3.1 on Ubuntu

What's Metaspoit @ Wikipedia

Open a terminal and install these packages prior to installing Metasploit:

$ sudo apt-get install ruby libruby rdoc

$ sudo apt-get install libyaml-ruby

$ sudo apt-get install libzlib-ruby

$ sudo apt-get install libopenssl-ruby

$ sudo apt-get install libdl-ruby

$ sudo apt-get install libreadline-ruby

$ sudo apt-get install libiconv-ruby

$ sudo apt-get install rubygems

Once these eight packages are installed download the latest version of Metasploit.

Save the tar.gz file and then in the terminal navigate to the folder you saved it in.

Now untar the package:

$ tar -xvzf framework-3.1.tar.gz

Once it has finished extracting navigate into the framework-3.1 folder that was just created.

First we should update Metasploit, to do this you need the Subversion package:

$ sudo apt-get install subversion

Once that is installed update Metasploit:

$ svn update

Now to run the Metasploit console navigate into the framework-3.1folder.. You should already be here and execute:

$ ./msfconsole

Thanks for reading

-=Bug@Interzone=-