Forem: Rocky Sah

Linux Basics for Hackers - Cheat Sheet

Rocky Sah — Fri, 28 Mar 2025 18:20:46 +0000

Linux is the go-to operating system for hackers and security professionals. Whether you’re diving into ethical hacking, penetration testing, or cybersecurity research, mastering Linux is a must. This cheat sheet will help you get started with essential Linux commands and concepts every hacker should know.

📌 Why Linux for Hackers?

Open-source & customizable 🛠️
Powerful command-line tools 🔥
Preferred by cybersecurity experts 👨‍💻
Widely used in penetration testing 🔍

🎥 Watch the Video - Linux Basics for Hackers Part 1

🎬 Watch Here: Linux Basics for Hackers - Part 1

🔹 Basic Linux Commands

Command	Description
`pwd`	Print current working directory
`ls`	List files and directories
`cd`	Change directory
`mkdir`	Create a directory
`rm -rf`	Remove a file or directory (be careful!)
`cp`	Copy files and directories
`mv`	Move or rename files
`cat`	Display file contents
`nano` / `vim`	Open file editor
`history`	Show command history
`clear`	Clear the terminal

🔹 User & Permission Commands

Command	Description
`whoami`	Show current user
`id`	Display user ID and group ID
`sudo`	Execute command as root
`chmod`	Change file permissions
`chown`	Change file owner
`passwd`	Change user password

🔹 Networking & Reconnaissance

Command	Description
`ifconfig` / `ip a`	Show network interfaces
`ping`	Check network connectivity
`netstat`	Display network connections
`nmap`	Scan network ports
`curl` / `wget`	Fetch data from a URL
`dig` / `nslookup`	DNS lookup

🔹 Process & System Monitoring

Command	Description
`ps`	Show running processes
`top` / `htop`	Display system processes
`kill`	Terminate a process
`df -h`	Show disk space usage
`free -m`	Show memory usage
`uptime`	Check system uptime
`uname -a`	Display system info
`who`	Show logged-in users

🔹 File & Directory Navigation

Command	Description
`find`	Locate files and directories
`grep`	Search text within files
`tar`	Compress/extract archives
`zip` / `unzip`	Create/extract ZIP files
`locate`	Find files quickly

🔹 Essential Hacking Tools in Linux

Tool	Purpose
`nmap`	Network scanning
`Metasploit`	Exploitation framework
`Wireshark`	Packet analysis
`Hydra`	Brute-force attacks
`John the Ripper`	Password cracking
`sqlmap`	SQL Injection testing
`aircrack-ng`	Wi-Fi penetration testing

This cheat sheet gives you a solid foundation in Linux, essential for cybersecurity and ethical hacking. Keep practicing these commands, explore more tools, and stay updated with new techniques.

🚀 Happy Hacking! 🏴‍☠️

Python for OSINT: Stalking the Internet Like a Pro

Rocky Sah — Sat, 15 Mar 2025 13:03:07 +0000

🔎 Introduction

Open-Source Intelligence (OSINT) is a powerful method for gathering information from publicly available sources. Whether you're an ethical hacker, cybersecurity professional, journalist, or investigator, Python can significantly enhance your OSINT capabilities. With its extensive libraries and automation potential, Python allows you to efficiently scrape, analyze, and visualize data.

📘 Get started with OSINT using our eBook: Python for OSINT

🚀 Why Use Python for OSINT?

Python is an ideal choice for OSINT due to:

Automation – Saves time by automating data collection.
Web Scraping – Extracts data from websites easily.
API Integration – Interacts with social media, search engines, and databases.
Data Analysis – Cleans, processes, and visualizes gathered intelligence.
Anonymity & Privacy – Works with proxy tools and anonymization services.

🔥 Essential Python Libraries for OSINT

Requests – Fetch web pages and interact with APIs.

   import requests
   response = requests.get("https://example.com")
   print(response.text)

BeautifulSoup – Scrape and parse HTML data.

   from bs4 import BeautifulSoup
   soup = BeautifulSoup(response.text, 'html.parser')
   print(soup.title.text)

Selenium – Automate web browsing and bypass restrictions.

   from selenium import webdriver
   driver = webdriver.Chrome()
   driver.get("https://example.com")

Shodan – Query IoT and network intelligence.

   import shodan
   api = shodan.Shodan("YOUR_API_KEY")
   results = api.search("apache")
   print(results["matches"])

Whois – Retrieve domain information.

   import whois
   domain_info = whois.whois("example.com")
   print(domain_info)

theHarvester – Gather emails, subdomains, and more.

   theHarvester -d example.com -b google

🌍 OSINT Techniques Using Python

1️⃣ Gathering Social Media Data

Use APIs like Twitter, Facebook, or Instagram to extract user data.

   import tweepy
   auth = tweepy.OAuthHandler("API_KEY", "API_SECRET")
   api = tweepy.API(auth)
   tweets = api.user_timeline(screen_name="codelivly", count=5)
   for tweet in tweets:
       print(tweet.text)

2️⃣ Tracking IP Addresses

   import requests
   ip = "8.8.8.8"
   response = requests.get(f"https://ipinfo.io/{ip}/json")
   print(response.json())

3️⃣ Email Enumeration

   import requests
   email = "test@example.com"
   response = requests.get(f"https://api.hunter.io/v2/email-verifier?email={email}&api_key=YOUR_API_KEY")
   print(response.json())

4️⃣ Extracting Hidden Data from Websites

Search for exposed admin panels, directories, and sensitive files.

   urls = ["robots.txt", "sitemap.xml", ".git/config"]
   for url in urls:
       response = requests.get("https://example.com/" + url)
       if response.status_code == 200:
           print(f"Found: {url}")

🛠️ Automating OSINT with Python

Automate repetitive OSINT tasks by creating scripts that:

Monitor websites for changes
Track social media activities
Scrape and store data from multiple sources
Generate intelligence reports

Example: Automating Social Media Monitoring

   import tweepy
   from datetime import datetime

   def monitor_twitter(username):
       tweets = api.user_timeline(screen_name=username, count=10)
       for tweet in tweets:
           print(f"[{datetime.now()}] {username}: {tweet.text}")

   monitor_twitter("codelivly")

🔒 Staying Anonymous While Conducting OSINT

To protect your identity:

Use Tor (stem library for Python)
Employ VPNs & Proxies (requests[socks])
Rotate User-Agents & IPs

Example: Using Tor with Python

   import requests
   proxies = {"http": "socks5h://127.0.0.1:9050", "https": "socks5h://127.0.0.1:9050"}
   response = requests.get("http://check.torproject.org", proxies=proxies)
   print(response.text)

📌 Conclusion

Python makes OSINT investigations faster, smarter, and more efficient. With the right libraries and techniques, you can extract valuable intelligence from the web while staying anonymous.

📘 Learn more with our detailed eBook: Python for OSINT

🚀 Happy Hunting! 🕵️‍♂️

Nmap Cheatsheet for Hackers

Rocky Sah — Sat, 15 Mar 2025 04:02:01 +0000

🎥 Nmap Basics for Hackers: Watch the video

Nmap (Network Mapper) is one of the most powerful tools for network scanning and reconnaissance. Whether you are a penetration tester, bug bounty hunter, or cybersecurity enthusiast, mastering Nmap can give you an edge in discovering vulnerabilities and mapping network infrastructures.

🔹 Basic Scanning Commands

Scan a single IP

   nmap 192.168.1.1

Scan a range of IPs

   nmap 192.168.1.1-100

Scan an entire subnet

   nmap 192.168.1.0/24

Scan a specific port

   nmap -p 22 192.168.1.1

Scan multiple ports

   nmap -p 22,80,443 192.168.1.1

Scan all 65535 ports

   nmap -p- 192.168.1.1

🔹 Host Discovery

Ping Scan (Discover live hosts without scanning ports)

   nmap -sn 192.168.1.0/24

Disable host discovery (Scan only specified targets)

   nmap -Pn 192.168.1.1

🔹 Advanced Scanning Techniques

Service and version detection

   nmap -sV 192.168.1.1

Operating system detection
```
nmap -O 192.168.1.1
```
Aggressive scan (OS detection, version detection, script scanning, and traceroute)
```
nmap -A 192.168.1.1
```
Scan a target behind a firewall
```
nmap -sS 192.168.1.1
```

🔹 Script Scanning

Use default scripts
```
nmap -sC 192.168.1.1
```
Use specific scripts (e.g., to detect vulnerabilities)
```
nmap --script=vuln 192.168.1.1
```
Run multiple scripts
```
nmap --script=ftp*,http* 192.168.1.1
```

🔹 Performance Optimization

Increase speed (Use higher timing templates)
```
nmap -T4 192.168.1.1
```
Maximum speed (Be cautious, may be detected by IDS/IPS)
```
nmap -T5 192.168.1.1
```

🔹 Firewall Evasion & Stealth Scanning

Fragment packets (Bypass simple packet filters)
```
nmap -f 192.168.1.1
```
Decoy scan (Make it appear as if multiple hosts are scanning)
```
nmap -D RND:10 192.168.1.1
```
Spoof source IP
```
nmap -S 192.168.100.100 192.168.1.1
```
Use custom packets
```
nmap --data-length 50 192.168.1.1
```

🔹 Output and Reporting

Save scan results to a text file
```
nmap -oN scan_results.txt 192.168.1.1
```
Save results in XML format
```
nmap -oX scan_results.xml 192.168.1.1
```
Save results in all formats
```
nmap -oA scan_results 192.168.1.1
```

🔹 Conclusion

Nmap is an essential tool for cybersecurity professionals. Whether you are conducting penetration testing, vulnerability assessments, or ethical hacking, understanding Nmap’s powerful features will enhance your reconnaissance skills.

📌 Watch the Nmap Basics for Hackers video to get a practical walkthrough and start using Nmap effectively!

🚀 Happy Hacking! 🔥