NeDi enables you to discover your network and all the connected end nodes, so you can see where your assets are located. Shows which networking devices are active or have been rebooted. abuzze appreciates that it "can poll via snmp and lldp from the switches. It will also find stuff that nmap can’t see, because it uses the mac addresses that the switch sees."
Win10XPE provides a fast, simple foundation for building a PE environment using a Windows 10 DVD. Lets you use XPE plugins to customize your build to meet your needs. Supports both x86 and x64 architectures for Windows 10 October 2018 (1809) or earlier. Reverent likes it because it "allows you to generate your own custom Windows 10 PE environment, with all of the tools/imaging/forensics you could hope for."
Some shortcuts kindly shared by thecravenone:
- history to see your recent history. Each entry has a line number next to it. ! followed by a number will re-run that command. (E.g., !21 will re-run the command at line 21 in your history.)
- ^a^b^ to find a in the previous command and replace it with b. Useful for repeating commands across multiple files, or correcting a typo in a long command.
sngrep displays SIP calls message flows from the terminal and supports live capture so you can display real-time SIP packets. Can be used as a PCAP viewer. Our appreciation for this suggestion goes to shonrah.
Ops Report Card is a list of essential best practices for sysadmin teams that helps you determine which improvement areas your team should focus on among the hundreds of possibilities. digitaltransmutation adds, "If you are entering a new environment, this is a great list of stuff to look at in order to get your bearings. This website is a companion to a book, 'The Practice of System and Network Administration,' which I strongly recommend to anyone."
DevDocs offers an organized library of API documentation with a fast, searchable interface. glmdev explains, "It has normalized the docs for a ton of stuff like bash/fish/nginx into one interface and can even sync offline."
Welcome back to IT Pro Tuesday!
This week, we're asking for your favorite tools we can share with the community... those that help you do your job better and more easily. Please reply or leave a comment with your suggestions, and we'll be featuring them in the coming weeks.
On December 13th, it became known that updates of the SolarWinds Orion platform were trojanized with the so-called SUNBURST backdoor. Around 18,000 businesses, US government agencies, as well as Microsoft, have been hit by this supply chain attack.
Hornetsecurity analyzed what’s behind the attack and provides recommendations for affected companies here.
pcapsipdump is an open-source SIP sniffer. This libpcap-based solution listens on a network interface and saves SIP/RTP sessions to .pcap files that can be opened with tcpdump, Wireshark and the like. pnht finds it useful when "you need to debug calls on a pbx/call router (openSIP,asterisk, frepbx, etc.)"
WMI Tools gives Windows admins the ability to access WMI information both locally and remotely so they can monitor all sorts of devices. Offers 7 different views and an intuitive interface that helps you keep tabs on the processes and services, hardware, OS and event logs. Plus, uou can add your own queries and create custom views.