当前位置:网站首页>Initial response Kit
Initial response Kit
2022-04-21 12:56:00 【Yang Xiong yang】
@echo on
echo************************** ****> . \evidence\evidence.txt
echo******** yangxiong ******* >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** Starting time time /t ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
time /t >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** Start date date /t ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
date /t >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** system information systeminfo ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
systeminfo >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** psinfo ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
psinfo >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** Network configuration information ipconfig ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
ipconfig >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** Mac Address arp -a ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
arp -a >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** Run the process pslist ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
pslist >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** Listening port netstat -an ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
netstat -an >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** At present SID code psgetsid ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
psgetsid >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** Connect the user psloggedon /t ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
psloggedon /t >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** NetBios Connect nbtstat -c ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
nbtstat -c >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** psservice ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
psservice >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** open TCP/IP End in process tcpvcon ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
tcpvcon >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** End time time /t ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
time /t >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** End date date /t ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
date /t >> . \evidence\evidence.txt
echo****************************** >> . \evidence\evidence.txt
echo******** Command history doskey /history ********** >> . \evidence\evidence.txt
echo******************************* >> . \evidence\evidence.txt
doskey /history >> . \evidence\evidence.txt
cd .\evidence
md5sum *.txt > hash.txt
版权声明
本文为[Yang Xiong yang]所创,转载请带上原文链接,感谢
https://yzsam.com/2022/04/202204211241351770.html
边栏推荐
猜你喜欢
三、标签准备
![[source code analysis] encoding in style: a stylegan encoder for image to image translation](/img/2a/4d219785548b063d8ef5b736cdbb5f.png)
[source code analysis] encoding in style: a stylegan encoder for image to image translation
36天突击腾讯终拿Offer! Redis、高并发
China Database ranking in April 2022: the spring breeze blows the face, the spring is warm, and the score rises in April
Network communication protocol model
2022语言与智能技术竞赛再升级,推出NLP四大前沿任务
Package rpart of decision regression tree implemented by R language
Call for Papers | IEEE/IAPR IJCB 2022 会议
S TYLE N E RF: A S TYLE - BASED 3D-A WARE G ENERA - TOR FOR H IGH - RESOLUTION I MAGE S YNTHESIS
Master slave replication -- 03 -- synchronization data consistency
随机推荐
Revit secondary development - creating and switching tags (issue 16)
【论文学习】YOLO v2
Go language reflection
4 years of Android development 13K, completed this 1307 page Android interview full set of real problem analysis, job hopping and salary increase 15K
Revit二次开发之通过过滤器获取元素(第六期)
自媒体如何打造爆文,提升阅读量
如何免费的使用思维导图和流程图制作(Draw.io VS 代码集成)
Revit二次开发——创建楼板(第十二期)
Flowable activiti7 countersign
Revit secondary development - multi pipe linear annotation (phase 18)
2022语言与智能技术竞赛再升级,推出NLP四大前沿任务
Convert m3u8 format to MP4 through fmpeg
Redis - breakdown, penetration, avalanche
Event Analysis | sharing the runner up scheme of table tennis timing action positioning competition
焦作市第三人民医院携手美创,开启数据安全建设新局面
How a person makes self media videos, and the operation skills in the field of agriculture, rural areas and farmers
2020 meituan (multithreading + redis)
Poetry learning-
Mysql database operation statement exercise
36天突击腾讯终拿Offer! Redis、高并发