Sei sulla pagina 1di 48

Description Run Command

utilman
Accessibility Options or
control access.cpl

Add Hardware Wizard hdwwiz

Programs and
Features
appwiz.cpl
(Add New Programs)
control appwiz.cpl,,1
(Add Remove Windows control appwiz.cpl,,2
Components) control appwiz.cpl,,3
(Set Program Access
& Defaults )

Administrative Tools control admintools

Advanced User
Accounts Control netplwiz
Panel

Authorization
azman.msc
Manager

Automatic Update control wuaucpl.cpl

Backup and Restore


sdclt
Utility

Bluetooth Transfer
fsquirt
Wizard

Calculator calc

Certificate Manager certmgr.msc

Character Map charmap

Check Disk Utility chkdsk

Clear Type (tune or


cttune
turn off)

Color Management colorcpl.exe

Command Prompt cmd

dcomcnfg
Component Services or
comexp.msc
CompMgmtLauncher.exe
Computer
or
Management compmgmt.msc

Control Panel control

Credential
(passwords) Backup credwiz
and Restore Wizard

Data Execution SystemPropertiesDataExecutionPrevention


Description Run Command

Prevention

Date and Time


timedate.cpl
Properties
hdwwiz
Device Manager or
devmgmt.msc

Device Pairing Wizard DevicePairingWizard

Digitizer Calibration
Tool (Tablets/Touch tabcal
screens)

Direct X Control Panel


directx.cpl
(if installed)

Direct X
dxdiag
Troubleshooter

Disk Cleanup Utility cleanmgr

dfrgui
Disk Defragmenter defrag

Disk Management diskmgmt.msc

Disk Partition
diskpart
Manager

Display Color
dccw
Calibration

Display DPI / Text size dpiscaling

Display Properties
(Themes, Desktop, control desktop
Screensaver)

Display Properties
(Resolution, desk.cpl
Orientation)

Display Properties
control color
(Color & Appearance)

Documents (open 'My


documents
Documents' folder)

Downloads (open
downloads
'Downloads' folder)

Driver Verifier Utility verifier

DVD Player dvdplay

Edit Environment rundll32.exe


Variables sysdm.cpl,EditEnvironmentVariables
Description Run Command

Encrypting File
rekeywiz
System Wizard (EFS)

Event Viewer eventvwr.msc

File Signature
Verification Tool sigverif
(Device drivers)

Files and Settings


%systemroot%\system32\migwiz\migwiz.exe
Transfer Tool

Firewall Control Panel firewall.cpl

Folders Properties control folders

Fonts list control fonts

Font preview fontview arial.ttf

Game Controllers joy.cpl

Local Group Policy


gpedit.msc
Editor

Internet Properties inetcpl.cpl

IP Configuration ipconfig

iSCSI Initiator
iscsicpl
configuration

Keyboard Properties control keyboard

Language Pack
lpksetup
Installer

Local Security Policy secpol.msc

Local Users and


lusrmgr.msc
Groups

Log out logoff

Microsoft Malicious
Software Removal mrt
Tool

Microsoft
mmc
Management Console

Access (Microsoft
msaccess
Office)

Excel (Microsoft
Excel
Office)

Powerpoint (Microsoft
powerpnt
Office)
Description Run Command

Word (Microsoft
winword
Office)

Microsoft Paint mspaint

Microsoft Support
msdt
Diagnostic Tool
control mouse
Mouse Properties or
main.cpl
control netconnections
Network Connections or
ncpa.cpl

Projector:
Connect to Network netproj
Projector
Switch projector displayswitch
display

Notepad notepad

ODBC Data Source


Admin
Default ODBC driver: C:\windows\system32\odbcad32.exe
32-bit ODBC driver C:\windows\sysWOW64\odbcad32.exe
under 64-bit platform:

ODBC configuration -
Install/configure odbcconf
MDAC drivers

On Screen Keyboard osk

OOB Getting Started gettingstarted

Password - Create a
"C:\Windows\system32\rundll32.exe"
Windows Password keymgr.dll,PRShowSaveWizardExW
Reset Disk (USB)

Pen and Touch


(Tablet/Pen input tabletpc.cpl
configuration)

Performance Monitor perfmon.msc

Phone and Modem


telephon.cpl
Options

Phone Dialer dialer

Power Configuration powercfg.cpl and powercfg.exe

Presentation Settings PresentationSettings

Problem Steps
psr
Recorder
Description Run Command

Program Access and


Computer Defaults -
computerdefaults
browser / email /
media

Printers and Faxes control printers

Print Management
PrintManagement
(.msc)

Printer Migration
printbrmui and printbrm.exe
(backup/restore)

Printer user interface


(List all printui.dll printui
options)

Private Character
eudcedit
Editor

Regional Settings -
Language, Date/Time
intl.cpl
format, keyboard
locale.

Registry Editor regedit

Remote Assistance msra

Remote Desktop mstsc

Resource Monitor resmon

Resultant Set of
rsop.msc
Policy

Settings (Windows 10) ms-settings:

Scheduled Tasks control schedtasks

Screenshot Snipping
snippingtool
Tool

Security Center wscui.cpl

Services services.msc

Shared Folder Wizard shrpubw

Shared Folders fsmgmt.msc

Shut Down Windows shutdown

Software
slui
Licensing/Activation

Sounds and Audio mmsys.cpl

Sound Recorder soundrecorder


Description Run Command

Sound Volume sndvol

Syncronization Tool
mobsync
(Offline files)

System Configuration
msconfig
Utility

System File Checker


sfc
Utility (Scan/Purge)

System Information msinfo32

sysdm.cpl SystemProperties
System Properties or
sysdm.cpl DisplaySYSDMCPL

System Properties -
SystemPropertiesPerformance
Performance

System Properties -
SystemPropertiesHardware
Hardware

System Properties -
SystemPropertiesAdvanced
Advanced

System Repair -
Create a System recdisc
Repair Disc

System Restore rstrui

Task Manager taskmgr

Task Scheduler taskschd.msc

Telnet Client telnet

Trusted Platform
Module Initialization tpmInit
Wizard

User Accounts control userpasswords2


(Autologon)

User Account Control


UserAccountControlSettings
(UAC) Settings

User Profiles - C:\Windows\System32\rundll32.exe


Edit/Change type sysdm.cpl,EditUserProfiles

Windows Disc Image


isoburn C:\movies\madmax.iso
Burning Tool
explorer.exe
Windows Explorer explorer.exe . Will open at the current
directory

Windows Features optionalfeatures


Description Run Command

Windows Firewall
firewall.cpl
Windows Firewall with wf.msc
Advanced Security

Windows Image
wiaacmgr
Acquisition (scanner)

Windows Magnifier magnify

Windows Management
wmimgmt.msc
Infrastructure

Windows Memory
mdsched
Diagnostic Scheduler

Windows Mobility
Center (Mobile PCs mblctr
only)

Windows PowerShell powershell

Windows PowerShell
powershell_ise
ISE

Windows Security
wscui.cpl
Action Center

Windows Script
wscript NAME_OF_SCRIPT.VBS
Host(VBScript)

Windows System
Security Tool. Encrypt
syskey
the SAM database.
(boot password.)

Windows Update wuapp

Windows Update
wusa
Standalone Installer

Windows Version
winver
(About Windows)

WordPad Write

Prefetch
1. Start Run

Win+R, then type cmd, then Start Command Prompt. Starts Traditional Run Window then
press enter Command Prompt, or any other run command
Win, then type cmd, then Start Command Prompt as Administrator. Start New Windows
press Ctrl+Shift+Enter Search, then Command Prompt, or any other application
▲ up
2. Control Panel Program Shortcuts

control Control Panel

control desktop Display Properties (Personalization)

control color Personalization - Color and Appearance

control folders Folders Properties

control keyboard Keyboard Properties

control mouse Mouse Properties

control netconnections Network Properties

control printers Printers Folders

control userpasswords Manager current User Account

control userpasswords2 Manager all User Accounts

control update Windows Update

control admintools Administrative Tools

control schedtasks Scheduled Tasks

appwiz.cpl Application Wizard (Program and Features)

powercfg.cpl Power Configuration

timedate.cpl Date and Time Properties

desk.cpl Display - Screen Resolution

intl.cpl Regional Settings (International)

mmsys.cpl Sound Properties (Multimedia System Settings)

inetcpl.cpl Internet Properties (Internet Control Panel)

wscui.cpl Security Center (Windows Security Center UI)

sysdm.cpl System Properties

utilman Ease of Access Utility Manager

firewall.cpl Windows Firewall

▲ up
3. Commonly used Windows Tools

explorer Windows Explorer

c: Explorer C: Drive

regedit Registry Editor

services.msc Windows Services (local)

taskmgr Task Manager

msconfig System Configuration Utility


mstsc Remote Desktop (Microsoft Terminal Services Client)

logof Log Of Windows (without confirmation!)


Shuts Down Windows (don't try unless you are ready to
shutdown
shutdown)
calc Calculator

cmd Command Prompt

notepad Notepad

▲ up
4. Microsoft System Configurations

Microsoft System Configurations

devmgmt.msc Device Management

eventvwr.msc Event Viewer

Computer Management including System Tools, Storage,


compmgmt.msc
Services and Appliations
diskmgmt.msc Disk Partition Manager

dcomcnfg Component Services (Detailed Component Configuration)

gpedit.msc Group Policy Editor

secpol.msc Local Security Policy Settings

lusrmgr.msc Local User and Groups

perfmon.msc Performance Monitor

fsmgmt.msc Shared Folders (File Sharing Management)

▲ up
5. Other Windows Tools

shrpubw Create a shared folder Wizard

dxdiag Direct X Troubleshooter

cleanmgr Clean Manager - Disk Cleanup Utility

clipbrd Clipboard Viewer (not available after Windows XP)

msiexec Windows Installer Details

magnify Windows Magnifier

osk On Screen Keyboard

msinfo32 System Information

sndvol Volume Control

winver Windows Version ( shows your windows version )

comp Compare Files

ftp MS-Dos FTP

label Volume Serial Number for C:

fsquirt Bluetooth Transfer Wizard

verifier Driver Verifier Utility

migwiz Migration Wizard - Files and Settings Transfer Tool

sigverif File Signature Verification Tool


fonts Fonts

joy.cpl Game Controllers

mrt Malicious Software Removal Tool

eudcedit Private Characters Editor

▲ up
6. Applications (if installed)

acrobat Adobe Acrobat ( if installed )

photoshop Adobe Photoshop ( if installed )

ccleaner Ccleaner ( if installed )

chrome Chrome ( if installed )

excel Microsoft Excel ( if installed )

access Microsoft Access ( if installed )

powerpnt Microsoft Powerpoint

winword Microsoft Word ( if installed )

wmplayer Windows Media Player

write Wordpad

mspaint Paint

▲ up
7. IP Config Commands (leave Dos Windows open)

ipconfig /all IP Configuration (Display Connection Configuration)

ipconfig /displaydns IP Configuration (Display DNS Cache Contents)

ipconfig /flushdns IP Configuration (Delete DNS Cache Contents)

ipconfig /release IP Configuration (Release All Connections)

ipconfig /renew IP Configuration (Renew All Connections)

ipconfig /registerdns IP Configuration (Refreshes DHCP & Re-Registers DNS)

ipconfig /showclassid IP Configuration (Display DHCP Class ID)

ipconfig /setclassid IP Configuration (Modifies DHCP Class ID)

▲ up
8. System File Checker Utility

sfc /scannow System File Checker Utility ( Scan Immediately )

sfc /scanonce System File Checker Utility ( Scan Once At Next Boot )

sfc /scanboot System File Checker Utility ( Scan On Every Boot )

sfc /revert System File Checker Utility ( Return to Default Settings)

sfc /purgecache System File Checker Utility ( Purge File Cache )

sfc /cachesize=x System File Checker Utility ( Set Cache Size to Size x )

▲ up
9. Control Panel Program Shortcuts

ncpa.cpl Network properties


netplwiz For create User account

devmgmt.msc Device Manager

▲ up
10. File Explorer

explorer File Explorer


Best CMD Commands Used In Hacking

1. Ping

This command allows you to determine TCP/IP, networks and IP address. It also
determines the issues with network and assists in resolving them.

ping x.x.x.x (where x – x is the IP address). You can try pinging 8.8.8.8, which
is Google default IP address. Or you can “ping www.google.com” (this is the
website you want to ping, if you don’t know the IP address).

2. nslookup

Nslookup is a network administration command line that is used for querying


the Domain Name System (DNS) to obtain the IP address mapping or domain
name.

For instance: ‘nslookup www.google.com’ (this command allows you to find


IP address of www.google.com).

Yeah! You can also find out the IP address of specific Mail Servers through
nslookup.

NSLOOKUP (PRESS ENTER)

SET TYPE=MX (PRESS ENTER AGAIN)

GOOGLE.COM/YAHOO.COM
This command will give you the mail server of IP of google.com/yahoo.com.

3. tracert

tracert is a command-line utility that records the route through the internet
between your computer and a specified destination computer. It calculates and
displays the amount of time each hop took.

tracert x.x.x.x (x is the IP address)

or, ‘tracetrt www.google.com‘ (if you want to know the IP address of


www.google.com).
4. arp

arp command will show you the arp table. This command also helps you to find
out if someone has made up poisoning in your LAN using this command.

ARP -A
5. route

route command will show you the routing table, gateway, interface and metric.

ROUTE PRINT
6. ipconfig

This is of the most important command, it will show you a lot of useful things,
for instance – your IP, Gateway, DNS in use etc.

IPCONFIG OR IPCONFIG/ALL
Also, if you are using dynamic IP address and want to change it, then type.

IPCONFIG/RELEASE (THIS WILL


RELEASE YOUR IP ADDRESS)

IPCONFIG/RENEW (THIS WILL RENEW


YOUR IP ADDRESS)
7. Netstat CMD command

This command allows you to find out, who is establishing a connection with your
computer. This command provides the information about all active connection
and listings ports.

NETSTAT-A (DISPLAY ALL


CONNECTIONS).

NETSTAT-N (SORTS CONNECTION IN


NUMERICAL ORDER).
NETSTAT-B (DISPLAY EXECUTABLE.
THIS IS BROWSER NAME).

10 Best CMD Commands Used


In Hacking
By

vijay

September 4, 2019

Facebook

Twitter

Pinterest

WhatsApp

Linkedin
Contents [show]

CMD is a powerful tool which lets you do almost anything with


your Windows PC/laptop. There are common commands like CD..
and MD etc which you probably know so we won’t get into that. In
this article, we have provided the best cmd commands used in
hacking.

Before we begin sharing the best cmd commands for hacking lets
see how to enable the NetBios.

First, open your Network Connection and right click and


select Properties. Then Select TCP/IP and click Properties again.
Now Click on Advanced and WINS tab. Select Default for NetBIOS.

Now back to the main Local Area Connection window, select File
and Print Sharing for Microsoft Networks and hit enter.

This is just to make sure you have NetBIOS enabled. We will have
some fun with NetBIOS on CMD.

In case you don’t know how to get CMD by clicking the Windows
icon at the left-hand bottom of your screen in all Windows
versions and click on Start. Press run from the start, then type
“cmd” without quotes.

List Of Best CMD Commands Used In Hacking:


Let’s start easy…

1) ping :

This command will allow you to know if the host you pinging is
alive, which means if it is up at the time of executing the “ping”
command.

ping x.x.x.x (x is the IP address). You can try pinging 8.8.8.8


which belongs to Google

or

ping www.google.com (www.google.com is the website you want


to ping, but you don’t know the IP)

2) nslookup :

This command has many functionalities. One is for resolving DNS


into IP. Lets say you know the website URL but you don’t know its
IP but you want to find it out.

Eg. nslookup www.google.com (www.google.com is the website


for which you want to find out the IP)

Now, another really nice function of nslookup is to find out IP of


specific Mail Severs

Code:
nslookup (enter)

set type=mx (enter)


yahoo.com

This command will give you the mail server IP of yahoo.com. You
can use whatever server you want and if it is listed on DNS, then
you get the IP. Simple, isn’t it? You can send a spoofed email to
your friends using the IP address of the mail server. You can
check the tutorial here for sending a spoofed email.

3) tracert :
This command will give you the hops that a packet will travel to
reach its final destination. This command is really helpful if you
know the route a packet takes before it goes to the target box.

Code: tracert x.x.x.x (x is the IP address)

or

tracert www.google.com (www.google.com is the website you


don’t know the IP)

4) arp :

This command will show you the arp table. You can find out if
anyone has done arp poisoning in your LAN using this command.

Code:
arp -a

5) route :

This command will show you the routing table, gateway, interface
and metric.

Code:
route print

6) ipconfig :

This command will show you a lot of useful things like your IP,
Gateway, DNS in use, etc. This command will give all that info but
for all networks, you might have it.

Code:
ipconfig
or
Code:
ipconfig /all

Also, in case you have a dynamic IP and want to change it, then
type…
Code:
ipconfig /release (this will release your IP)

ipconfig /renew (this will renew your iP)

7) netstat :

This command will show you connection stats

Code:
netstat

or

Code:
netstat -a (this will show you all the listening ports and
connection with DNS names)
netstat -n (this will show you all the open connection with IP
addresses)
netstat -an (this will combined both of the above)

net view x.x.x.x or computername (will list the available sharing


folders on the target box)

8) netuser:

This command reset Windows User Password without Knowing


Old Password.

code: net user yourusername *

Change yourusername with your PC user name and press Enter.


Now type the new password.

9) Net View:

This command displays the whole list of resources, computers or


domains that are shared by the specified computer.

code:
net view x.x.x.x or computername
10) Tasklist:

This command opens up an entire task manager on the command


prompt. Users just need to enter tasklist on CMD and they will
see the list of all running process.

For eg; If you want to kill PID 1532 process then you can enter
the command-
Code:
taskkill /PID 1532 /F

Bonus-

Some additional CMD commands which will


help you in hacking-

Code:
net use \ipaddressipc$ “” /user:administrator

(this command will allow you to connect to the target as


administrator)

Now if you want to connect to the target and browse the entire C
drive, then use this command:

Code:
net use K: \computernameC$
(this will create a virtual drive on your “my computer” folder)

Please note that this command will only work if the target
PC/laptop has not set an Administrator Password.

And last but not least, the “help” command.

Quote:
whatevercommand /help

or

Quote:
whatevercommand /?
This command is very useful in finding what a particular
command does, especially if you are a newbie.

Also Read- A-Z Windows CMD Commands List

Conclusion

So these were few of the best cmd hacks. Hope you liked it. If
you have found any command other than those listed above,
kindly note them in the comments for our other readers.
Welcome back, my greenhorn hackers!

Many new hackers come from a Windows background, but


seldom, if ever, use its built-in command-line tools. As a hacker,
you will often be forced to control the target system using just
Windows commands and no GUI.

Although we would love to get Metasploit's Meterpreter on the


target and use all its capabilities on the owned system, that is
not always possible. Some exploits will only allow us to get a
CMD shell on the target Windows system.
In these cases, you will need to understand how to control the
system strictly through the command prompt, without ever
having the convenience and familiarity of the Windows GUI.

What I want to do in this tutorial is demonstrate some Windows


commands on a Windows 7 system (Windows 7 is still over 50%
of the installed base of Windows systems), but these commands
change very little from Windows version to Windows version. I
will be running the Windows commands from a
remote Kali system on the target.
Step 1 Connect to a Remote Windows System from
Kali
Windows makes a distinction between commands that can be
run while physically on the system and those that can be run
remotely. We can't assume that a command we can run while on
the system will run remotely.

Here, we are only interested in those that can be run remotely.


In my case, I will be connecting to the target system with
a Netcat connection, but a Metasploit-spawned command shell
or other will work just as well.
Step 2 Basic Commands
In many ways, Windows CMD commands are similar to
Linux/Unix commands (Unix preceded these commands by over
a decade, and Microsoft borrowed heavily from it). At its most
basic, we need to change directories within the file system. Like
Linux, Windows uses the cd (change directory) command. To
travel to the root of the directory system, we can just type:
cd \
In addition, we can move up one level in the directory structure
by typing:

cd ..
If we want to see the contents of a directory, we type dir as
seen above. Some other key and basic commands include:
del <filename>
This will delete the file, similar to the Linux rm.
type <filename>
This will display the contents of the file, similar to the Linux cat.
As you can see below, I used type to display the contents of the
confidentialfile.txt. I then del (delete) the confidentialfile.txt,
and when I return to display the contents of it again, I get the
message that "The system cannot find the specified file."

To create a new directory, we use the md (make directory)


command (in Linux, it's mkdir). To create a directory named
"newdirectory," we type:
md newdirectory
After making newdirectory, we can now run dir and see the new
directory that we created.
Step 3 Network Commands
When we are on the remote system, we may need networking
information. To do so, we have two basic
commands, ipconfig and netstat. Ipconfig is very similar to the
Linux ifconfig, as seen below.

To view the network connections of the system, we can


type netstat, just like in Linux.
netstat
Step 4 View Processes
Often, when we are on a remote system, we will need to see a
listing of the running processes. From the GUI, of course, we can
use the Task Manager ( Ctrl + Alt + Del), but from the command
prompt, we use tasklist.
tasklist

If we want to find a single process, we could use the


filter findstr (find string). This works similarly to grep in Linux.
So, to find the process named "explorer," we could type:
tasklist | findstr explorer
Note, that we used the pipe (|), just like in Linux, to send the
results from the tasklist command to the filtering
command, findstr.
If I want to kill a process, I can use the taskkill command. It
requires the PID of the process we want to kill. In this case, the
explorer process has a PID of 1532, so to kill it, I can type:
taskkill /PID 1532 /F
Where the /F means to force the kill.
Step 5 Find the User Accounts
If we want to see the users on the target system, we can type:

net users

As you can see, this system has three users: guest,


administrator, and the aptly named victim.

Step 6 Run a Browser on the Target


While operating the system from the command prompt, we can
execute some applications, such as the web browser. Internet
Explorer is named iexplore on the command prompt, and we can
find it either in the "Program Files" with the 64-bit version or
"Program Files (x86)" with the 32-bit version. So, if I want to
open Internet Explorer on the remote system from the command
prompt and have it open wonderhowto.com, I would type:
iexplore www.wonderhowto.com

When we do, this opens Internet Explorer on the target system


and goes to wonderhowto.com, as you can see below.
This might be really useful if you had a malicious XSS link set up
and needed the target to go to a web server. Furthermore, we
might just want the target system to go to our web server on
Kali. We could start the Apache web server and then direct the
target system to our web server where we may have some
malicious software.

We can type:

iexplore <IP address>

As you can see below, we have directed the target system to our
web server on Kali.
Keep coming back, my greenhorn hackers, as we develop the
most valuable skill set in the 21st century—hacking!

 Follow Null Byte on Twitter, Flipboard, and YouTube


 Sign up for Null Byte's weekly newsletter
Cover image via Shutterstock
he Windows Command Prompt tool, and many of its commands, might
seem boring or even relatively useless at first glance, but as anyone
who has ever used the Command Prompt very often can tell you,
there's much to love!

These Command Prompt tricks and other Command Prompt hacks will
get you excited about many of the mundane-sounding Command
Prompt commands like telnet, tree, or robocopy—
okay, robocopy sounds pretty cool.

Volume 90%

3:04

Some of these Command Prompt tricks and hacks are special features
or fun uses for the Command Prompt itself, while others are just neat
or relatively unknown things you can do with certain CMD commands.

01

of 21

Use Ctrl+C to Abort a Command

© David Lentz / E+ / Getty Images

Just about any command can be stopped in its tracks with the abort
command: Ctrl+C.

If you haven't actually executed a command, you can just backspace


and erase what you've typed, but if you've already executed it then you
can do a Ctrl+C to stop it.

Ctrl+C isn't a magic wand and it can't undo things that aren't undoable,
like a partially complete format command.

However, for things like the dir command that seem to go on forever or
questions you're asked at the prompt that you don't know the answer
to, the abort command is an excellent Command Prompt trick to know.

02

of 21

View a Command's Results One Page (or Line)


at a Time
Ever run a command, like the dir command, that produces so much
information on the screen that it's almost useless?

One way to manage this info-dump is to execute the command in a


special way so whatever information is generated is shown to you one
page, or one line, at a time.

Just type the command, the dir command for example, and then follow
it with the pipe character and then the more command.

For example, executing dir /s | more will generate the thousands of


lines of results that you expect from the dir command, but the more
command will pause each page of results with -- More -- at the bottom
of the page, indicating that the command is not done running.

Just press the space bar to advance by page or press Enter to advance
one line at a time.

03

of 21

Run Command Prompt as an Administrator


Automatically

Many commands require that you execute them from an elevated


Command Prompt in Windows—in other words, execute them from a
Command Prompt that's run as an administrator.

You can always right-click on any Command Prompt shortcut and


choose Run as administrator but creating a shortcut to do the same
thing can be a huge timesaver if you're a frequent Command Prompt
power user.

To complete this Command Prompt trick, just create a Command


Prompt shortcut on the desktop, enter the shortcut's properties and
then select the Run as administrator box located in
the Advanced button on the Shortcut tab.

04

of 21

Become a Command Prompt Power User With


Function Keys
The fact that the function keys actually do something in the Command
Prompt is maybe one of the best kept secrets about the tool:

 F1: Pastes the last executed command (character by character)


 F2: Pastes the last executed command (up to the entered character)

 F3: Pastes the last executed command

 F4: Deletes current prompt text up to the entered character

 F5: Pastes recently executed commands (does not cycle)

 F6: Pastes ^Z to the prompt

 F7: Displays a selectable list of previously executed commands

 F8: Pastes recently executed commands (cycles)

 F9: Asks for the number of the command from the F7 list to paste

05
of 21

Hack the Prompt Text

"prompt $v" Command.

Did you know that the prompt itself in the Command Prompt is
completely customizable thanks to the prompt command? It is, and
when we say customizable, we mean really customizable.

Instead of C:\>, you can set the prompt to any text you want, have it
include the time, the current drive, the Windows version number (like
in this example image), you name it.

One useful example is prompt $m$p$g, which will show the full path of
a mapped drive in the prompt, alongside the drive letter.

You can always execute prompt alone, without options, to return it to


its sometimes boring default.

06

of 21

Get Help for Any Command


© pearleye / E+ / Getty Images

The help command does not provide help for every Command Prompt
command.

However, any command can be suffixed with the /? option, usually


called the help switch, to display detailed information about the
command's syntax and often times even some examples.

The help switch may not be the coolest Command Prompt trick you've
ever heard of, but it's hard to disagree that it's one of the more useful.

Neither the help command nor the help switch offer much in the way of
explaining how to interpret the syntax. See How to Read Command
Syntax if you need help with that.

07

of 21

Save a Command's Output to a File

An incredibly useful Command Prompt trick is the use of redirection


operators, specifically the > and >> operators.

These little characters let you redirect the output of a command to


a text file, giving you a saved version of whatever data the command
produced in the Command Prompt window.

For example, let's say you're about to post a computer problem to an


online forum and you want to provide really accurate information about
your computer. An easy way to do that would be to use the systeminfo
command with a redirection operator.

For example, you might execute systeminfo > c:\mycomputerinfo.txt to


save the information provided by the systeminfo command to that file.
You could then attach the file to your forum post.

See How to Redirect Command Output to a File for more examples and
a moe in-depth explanation of how to use redirection operators.

08

of 21

View a Drive's Entire Directory Structure


One of the neatest little commands is the tree command. With tree,
you can create a kind of map of the directories on any of your
computer's drives.

Execute tree from any directory to see the folder structure under that
directory.

With so much information created with this command, it's probably a


good idea to export the results of tree to a file so you can actually look
through it.

09

of 21

Customize the Command Prompt Title Bar Text

Tired of that Command Prompt title bar text? No problem, just use the
title command to hack it to say whatever you like.

For example, let's say your name is Maria Smith, and you want to
express your ownership of the Command Prompt: execute title
Property of Maria Smith and the Command Prompt's title bar will
change immediately.

The change won't stick, so the next time you open Command Prompt
the title bar will be back to normal.

The title command is usually used to help give a custom appearance in


script files and batch files—not that titling it with your name isn't a
good idea!

10

of 21

Copy Text From the Command Prompt

Copying from the Command Prompt is not as easy as copying from


other programs, which is part of the reason why saving a command's
output to a file, which you learned about a few tricks back, is so handy.

However, what if you do just want to copy a short section of text to the
clipboard? It's not too hard but it's not very intuitive either:

1. Right-click anywhere in the Command Prompt window and


choose Mark.
2. Highlight with your left mouse button whatever you'd like to copy.

3. Press Enter or right-click once.

Now you can paste that information into whatever program you'd like,
just like you paste other text.

If you chose Mark but then decided you don't want to copy anything, right-
click again to cancel the Mark action, or press the Esc key.

11

of 21

Open the Command Prompt From Any Location

If you've ever worked in the Command Prompt for very long, you know
that it can be really frustrating executing the cd/chdir command over
and over again to get to the right directory.

In Windows, open the folder you'd like to start working from, within
Command Prompt. When you're there, hold down Shift while you right-
click anywhere in the folder.

After the menu pops up, you'll notice an entry that's not usually
there: Open command window here. Click that and you'll start a new
instance of the Command Prompt, ready and waiting at the right
location.

If you're a Command Prompt power user, you'll immediately recognize


the value in this little trick.

If you see PowerShell in the right-click menu instead of Command Prompt,


make a small change to the Windows Registry to change it to
Command Prompt. How-To Geek has a guide on that.

12

of 21

Drag and Drop For Easy Path Name Entry

Most Command Prompt commands require you to specify full paths to


files or folders, but typing out a long path can be frustrating, especially
when you miss a character and have to start over.
For example, in Windows 10, the path to the Accessories group in my
Start Menu is C:\ProgramData\Microsoft\Windows\Start
Menu\Programs\Accessories. Who wants to type that all in manually?
We don't.

Just open the folder in Windows Explorer. Once there, drag the folder
or file to the Command Prompt window and let go. Like magic, the full
path is inserted, saving you a considerable amount of typing depending
on the length and complexity of the path name.

The drag and drop feature doesn't work in an elevated Command Prompt.

13

of 21

Shut Down or Restart Another Computer

System administrators in a business environment do this all the time


for lots of reasons, but you can also shut down or restart another
computer on your network, all from your computer's Command Prompt.

The easiest way to shut down a computer remotely is to


execute shutdown /i from the Command Prompt to open the Remote
Shutdown Dialog, shown here.

Just enter the name of the remote computer (which you can get by
running the hostname command on the other PC), choose what you
want to do (restart or shutdown), select some other options, and then
click OK.

So whether you're brushing up on your command skills or just scaring


a family member, this Command Prompt trick is a fun one.

You can also shut down or restart another computer strictly from the
Command Prompt with the shutdown command, without using the
Remote Shutdown Dialog.

14

of 21

Use Robocopy as a Backup Solution

Thanks to the robocopy command, you don't need to use Window's


backup software or install a program to manage your backups.
Just execute the following, obviously replacing the source and
destination folders with whatever you'd like to back up and where it
should go.

robocopy c:\users\ellen\documents f:\mybackup\documents /copyall /e /r:0


/dcopy:t /mir

The robocopy command with these options functions identically to an


incremental backup software tool, keeping both locations in sync.

You don't have the robocopy command if you're using Windows XP or


earlier. However, you do have the xcopy command, which can be used
to do something very similar:

xcopy c:\users\ellen\documents f:\mybackup\documents /c /d /e /h /i /k /q


/r /s /x /y

No matter which command you choose to use, just create a BAT file
containing the command and schedule it to run in Task Scheduler, and
you'll have your own custom made backup solution.

15

of 21

View Your Computer's Important Network


Information

Maybe just for your own information, but certainly when you're
troubleshooting a network or internet problem, you'll probably at some
point need to know details about your computer's network connection.

Everything you'd want to know about your network connection is


available somewhere in the Control Panel in Windows, but it's much
easier to find, and much better organized, in the results from the
ipconfig command.

Open Command Prompt and execute ipconfig /all.

What displays on screen next is everything important about your


network connection: your IP address,
hostname, DHCP server, DNS information, and much, much more.

16

of 21

Map a Local Folder Just Like a Network Drive


The net use command is used to assign shared drives on a network to
your own computer as a drive letter, but did you know there's another
command that can be used to do the same thing to any folder on any of
your local hard drives?

There is, and it's called the subst command. Just execute the subst
command, followed by the path of the folder you wish to appear as a
drive.

For example, let's say you want your C:\Windows\Fonts folder to appear
as the Q: drive. Just execute subst q: c:\windows\fonts and you're set!

This Command Prompt trick makes accessing a particular location


from the Command Prompt much easier.

An easy way to delete the "network drive" example here is with


the subst /d q: command. Just replace the q: with your own drive letter.

17

of 21

Access Previously Used Commands With the


Arrow Keys

© Jon Fisher

Another great Command Prompt trick uses the keyboard arrow keys to
cycle through previously executed commands.

The up and down arrow keys cycle through the commands you've
entered and the right arrow automatically enters, character by
character, the last command you executed.

This might not sound that interesting, but there are several situations
where the arrow keys become huge time savers.

Consider this example: You've typed out 75 characters of a command


and then try to execute it, only to find that you forgot to add an option
at the very end. No problem, just press the up arrow and the entire
command is automatically entered in the Command Prompt window,
ready for you to edit to make it work.

18

of 21
Automatically Complete Commands With Tab
Completion

Tab completion is another Command Prompt trick that can save you
lots of time, especially if your command has a file or folder name in it
that you're not completely sure of.

To use tab completion in the Command Prompt, just enter the


command and then the portion of the path that you do know, if at all.
Then press the Tab key over and over to cycle through all of the
available possibilities.

For example, let's say you want to change directories to some folder in
the Windows directory but you're not sure what it's named. Type cd
c:\windows\ and then press tab until you see the folder you're looking
for.

The results cycle in order or you can use SHIFT+TAB to step through
the results in reverse.

You know how your smartphone's texting app automatically guesses


what it is you want to type next? Tab completion in Command Prompt
is sort of like that—only better.

19

of 21

Find a Website's IP Address

Like to know the IP address of a website? Use the nslookup command


or the ping command, but the former is probably faster.

First, let's use the nslookup command to find the IP address


of lifewire.com.

Just execute nslookup lifewire.com and view the result. Don't confuse
any private IP addresses that also show up in the nslookup results
alongside the public IP address of lifewire.com, which is what IP
address we're after.

Now let's try using the ping command to find it.

Execute ping lifewire.com and then look at the IP address between the
brackets in the first line shown. Don't worry if the ping command
"times out" during execution; all we needed here was the IP address.
You can use the same procedure with any website or any hostname on
your local network.

20

of 21

Copy and Paste Easier With QuickEdit Mode

A number of these Command Prompt tricks have dealt with making


copying and pasting easier. So, how about an even easier way to copy
from the Command Prompt (and a secret way to easily paste)?

Just right-click on the Command Prompt title bar and


select Properties. On the Options tab, in the Edit Options section,
check the QuickEdit Mode box and then click OK.

Enabling QuickEdit Mode is like having Mark enabled all the time, so
selecting text to copy is really easy.

As a bonus, this also enables a simple way to paste into the Command
Prompt: just right click once and whatever you have in the clipboard is
pasted in the Command Prompt window. Normally, pasting
involves right-clicking and selecting Paste, so this is still a bit different
than you're used to.

21

of 21

Watch Star Wars Episode IV

Yes, you read that correctly, you can watch an ASCII version of the full
Star Wars Episode IV movie right in the Command Prompt window!

Just open Command Prompt and execute telnet towel.blinkenlights.nl.


The movie will start immediately. Check out the tip below if this
doesn't work.

True, this isn't a terribly productive use of the Command Prompt, nor is
it really a trick of the Command Prompt or any command, but it sure is
fun! We can't imagine the work that went into this homage to the sci-fi
masterpiece.

The telnet command isn't normally enabled in Windows but can be turned
on by enabling Telnet Client from Windows Features in the Programs
and Features applet in Control Panel. If you'd rather not
enable Telnet but would like to see the movie, you can also watch it in
your browser at Star Wars ASCIIMation.
1. ping

This command will allow you to know if the host you pinging is alive, which
means if it is up at the time of executing the “ping” command.
For Example, You can try ping 8.8.8.8 which belongs to Google

ping 8.8.8.8

or

ping www.google.com

(www.google.com is the website you want to ping, but you don’t know the IP)

2. nslookup

This command has many functionalities. One is for resolving DNS into IP. Let’s
say you know the website URL but you don’t know its IP but you want to find it
out.

nslookup www.google.com

(www.google.com is the website for which you want to find out the IP)

Now, another really nice function of nslookup is to find out IP of specific Mail
Servers

nslookup (enter)
set type=mx (enter)
yahoo.com

This command will give you the mail server IP of yahoo.com. You can use
whatever server you want and if it is listed on DNS, then you get the IP. Simple,
isn’t it? You can send a spoofed email to your friends using the IP address of the
mail server. You can check the tutorial here for sending spoofed email.

3. tracert

This command will give you the hops that a packet will travel to reach its final
destination. This command is really helpful if you know the route a packet takes
before it goes to the target box.

tracert x.x.x.x

(x is the IP address)

or

tracert www.google.com

(www.google.com is the website you don’t know the IP)


4. arp

This command will show you the arp table. You can find out if anyone has done
arp poisoning in your LAN using this command.

arp -a

5. route:

This command will show you the routing table, gateway, interface, and metric.

route print

6. ipconfig

This command will show you a lot of useful things like your IP, Gateway, DNS in
use, etc. This command will give all that info but for all networks, you might have
it.

ipconfig

ipconfig /all

Also, in case you have a dynamic IP and want to change it, then type…

Code:
ipconfig /release
(this will release your IP)

ipconfig /renew
(this will renew your iP)

7. netstat

This command will show you connection stats

netstat

or

netstat -a

(this will show you all the listening ports and connection with DNS names)

netstat -n

(this will show you all the open connection with IP addresses)

netstat -an

(this will combine both of the above)


net view x.x.x.x or computername (will list the available sharing folders on the
target box)

8. netuser

This command reset Windows User Password without Knowing Old Password.

net user yourusername *

Change yourusername with your PC user name and press Enter. Now type the
new password.
Well, if you have been using Windows operating system for a
while, then you might be well aware of CMD or Command
Prompt. It’s one of the most powerful tools in Windows which
is used to operate a wide range of tasks. It’s basically a
command-line interpreter that can be used to access the core
features of Windows.

Command Prompt is indeed a useful feature, but hackers often


use it for the wrong purpose. The command prompt is also
used by security experts as well to find potential security
loopholes. So, if you are willing to become a hacker or security
expert, then this post might help you.

Contents show

Top 15 Best CMD Commands Used In


Hacking 2019
In this article, we are about to share some of the best CMD
commands that are widely used in Hacking purposes. So, let’s
check out the list of best CMD commands for Windows 10
computers.

1. ping
This command uses your internet connection in order to send
some packets of data to a specific web address then these
packets are sent back to your PC. The test simply shows the
amount of time it took to reach the specific address. In simple
words, it helps you to know if the host you pinging is alive.

You can use the Ping command whenever you need to verify
that the host computer can connect to the TCP/IP network and
its resources.

For example, you can type in Command prompt ping


8.8.8.8 which belongs to Google.

You can replace “8.8.8.8” to “www.google.com” or something


else which you want to ping.

2. nslookup
It is a network administration command-line tool that helps you
to obtain domain name or IP address mapping for any specific
DNS record. Suppose you have a website URL but want to
know its IP Address, you can simply type in CMD
nslookup www.google.com (Replace Google.com with your website
URL of which you want to find the IP address)

3. tracert
You can say Trace Route like its name it allows users to trace
the route than an IP packed has taken to reach a destination.
The command calculates and displays the amount of time each
hop took to reach a destination. You just need to type

tracert x.x.x.x (if you know the IP Address) or else you can
type tracert www.google.com (If you don’t know the IP
address)

4. arp
This command helps you to modify the ARP cache. You can run
an arp-a command on each computer to see whether the
computers have the correct MAC address listed for each other
to ping each other succeed on the same subnet.

This command also helps users to find out if anyone has done
arp poisoning in their LAN.

You can try typing arp-a in command prompt.

5. ipconfig
This is the command which shows every useful thing. It will
show you IPv6 address, temporary IPv6 address, IPv4 address,
Subnet Mask, Default gateway and all other things that you
want to know.

You can type in command prompt “ipconfig” or "ipconfig/all"

6. netstat
If you want to find out who is establishing a connection with
your computer then you might try typing in command prompt
“netstat -a” it will display all the connection and you will get to
know about the active connections and listening ports.

Type in command prompt "netstat -a"

7. Route
It is a command which is used to view and manipulate the IP
routing table in the Microsoft Windows operating system. This
command will show you routing table, metric and interface.

You can type in command prompt "route print"

8. Net View
This command displays the whole list of resources, computers
or domains that are shared by the specified computer.

You can type in command prompt "net view x.x.x.x or computername"

9. Net User
Well, this command is used to modify changes to user
accounts on a computer. You can add, remove users with the
help of this command

You can use these commands while using net user

net user [<UserName> {<Password> | *} [<Options>]] [/domain]


net user [<UserName> {<Password> | *} /add [<Options>]
[/domain]] net user [<UserName> [/delete] [/domain]]

10. Net Use


This command is been used to connect, remove and configure
connections to shared resources like network printers and
other mapped drives. The use of this command is a little bit
complicated. So, we recommend you to visit the Microsoft site
to get full details on how to use this command.

11. Tasklist
This command opens up an entire task manager on the
command prompt. Users just need to enter the tasklist on CMD
and they will see the list of all running processes. You can
figure out all the wrongs with these commands.

Moreover, the command can also be used when you need to


forcefully close any process. For example, if you want to kill
PID 1532 process then you can enter the command: taskkill
/PID 1532 /F

12. iexplore
As we all know, hackers often try to execute some apps, such
as web browsers. So, hackers use the iexplore option to
execute apps and web pages. For example, if you enter iexplore
www.techviral.net on the command prompt, it will open the
URL in Internet Explorer.

Not only these, but you can even use iexplore <IP address> to find
sites running on any particular IP address. The command is
used in multiple ways by the hackers.

13. Pathping
Well, pathping command is pretty much similar to the tracert,
but it shows more detailed information. The commands take a
few moments to complete as it analyzes the route taken and
computes packet loss. On Windows command prompt, just type
in the following command

pathping techviral.net (Replace techviral.net with the one


that you want to ping)

14. Getmac
Getmac commands are mostly used to get the MAC Address.
As we all know, MAC addresses are assigned by the
manufacturer and stored on the hardware. With each network
connected adapters, you get a separate MAC address. For
instance, your Ethernet, WiFi would have the separate MAC
address. So, getmac command is used to fetch the MAC
address stored in the device’s hardware.

15. Netsh
With netsh command, you can configure almost every part of
your network adapter. The great thing about the network shell
command is that it provides more detailed information about
your network adapters compared to all others listed in the
article.

If you just enter the netsh command, it will list you all routing
and DHCP related commands that you need to diagnostic
purpose.

So, above are the 15 best CMD commands used in hacking. You
can actually explore the lot more than this, we have
listed 150+ CMD commands in one of our articles! I hope you
like the post! Share it with your friends too. Leave a comment
below if you want to add any command in the list.
How to login as built in administrator in windows 10 The Edge browser now works, thanks to
information provided by Mick Taylor, Edge apparently works with the KB4056892 Windows update. If
you can't right click on cmd and run as administrator then this won't work for you. If it asks for a
password and you don't know it then this won't work for you. It is highly recommend if you can that
you create a restore point before trying to unlock the built in administrator The purpose of doing this
is so if something goes wrong with the users administrator account, you can login to the built in one
and hopefully fix the problem as the built in one will be unlocked. If it asks you for an administrator
password and you don't know the password then this won't work for you. The three commands used
in the video:

1) net users

2) net user Administrator /active:yes

3) net user Administrator *

In this video I will show you how you can unlock and change the password of the built in
administrator account in windows 10. Using this account will grant you administrator permissions
when you are logged into the administrator account. The only problem with the built in administrator
account it that you can't use the edge browser. So before you login to the built in administrator
account you first need to have another browser that isn't the Microsoft edge browser installed. In my
case I already had the Google Chrome browser already installed and as show in the video this
browser works with the built in administrator account. As a result I would recommend that you have
the Google Chrome browser installed before you login to the built in administrator account.
@echo off

echo Message here.

shutdown -s -f -t 60 -c "type a message you want to appear here."

Potrebbero piacerti anche