Skip to content

Basic Auditing

Distro Information

  • uname -a
  • lsb_release -a
  • cat /proc/version
  • cat /etc/issue
  • cat /etc/debian_version (for Debian based systems)
  • cat /etc/os-release

Networking Information

  • ip a
  • ifconfig -a
  • sudo nestat -punta

User Management

  • List users with active shell sessions: w
  • List users and their respective groups: cat /etc/passwd
  • List groups: cat /etc/group
  • Change your own password: passwd
  • Change another user's password: sudo passwd [username]

Service and Process Auditing

Listing Services

  • systemctl list-unit-files
  • service --status-all
  • rc-status --all

Listing Processes

  • ps aux

Finding Location of Program

whereis [program]

Log Management

Look for logs in var/log/.

You can tail a log, reading it in real time by using the tail command: tail -f [log file].