netstat command

Quick Tip: Find Hidden Processes and Ports [ Linux / Unix / Windows ]

by on November 24, 2011 · 14 comments

Unhide is a little handy forensic tool to find hidden processes and TCP/UDP ports by rootkits / LKMs or by another hidden technique. This tools works under both Linux / Unix, and MS-Windows operating systems. From the man page:

It detects hidden processes using three techniques:

  1. The proc technique consists of comparing /proc with the output of /bin/ps.
  2. The sys technique consists of comparing information gathered from /bin/ps with information gathered from system calls.
  3. The brute technique consists of bruteforcing the all process IDs. This technique is only available on Linux 2.6 kernels.

{ 14 comments }

20 Linux System Monitoring Tools Every SysAdmin Should Know

by on June 27, 2009 · 316 comments

Need to monitor Linux server performance? Try these built-in command and a few add-on tools. Most Linux distributions are equipped with tons of monitoring. These tools provide metrics which can be used to get information about system activities. You can use these tools to find the possible causes of a performance problem. The commands discussed below are some of the most basic commands when it comes to system analysis and debugging server issues such as:

  1. Finding out bottlenecks.
  2. Disk (storage) bottlenecks.
  3. CPU and memory bottlenecks.
  4. Network bottlenecks.

{ 316 comments }

Linux List The Open Ports And The Process That Owns Them

by on May 30, 2008 · 10 comments

How can I list the open ports on my system and the process that owns them?

{ 10 comments }

Get Detailed Information About Particular IP address Connections Using netstat Command

by on February 21, 2008 · 18 comments

Explains how to use netstat command to display current connections and find out if your server is under DoS attack or not.

{ 18 comments }

FreeBSD List / Display Open Ports With sockstat Command

by on February 8, 2008 · 0 comments

You can use traditional netstat / lsof command to lists open Internet or UNIX domain sockets on FreeBSD. FreeBSD comes with a simple and easy to use command called sockstat. The -4 option only displays IPv4 sockets. The -6 option only displays IPv6 sockets. The -c option only displays connected sockets. The -l option only [...]

{ 0 comments }

Get Information about All Running Services Remotely

by on January 29, 2008 · 0 comments

From my mailbag the other day I received an interesting suggestion about obtaining information regarding all running process and network connections remotely using inetd / xinetd : SSH client can be used to execute a command(s) on a remote UNIX box. Same technique can be used to get current network and system information using netstat [...]

{ 0 comments }

Howto: Ubuntu Linux convert DHCP network configuration to static IP configuration

by on September 13, 2006 · 79 comments

My friend wanted to know how to change or convert DHCP network configuration to static configuration. After initial installation, he wanted to change network settings. Further, his system is w/o GUI system aka X Windows. Here is quick way to accomplish the same: Your main network configuration file is /etc/network/interfaces Desired new sample settings: => [...]

{ 79 comments }

← Previous Entries