This is an old revision of the document!
Microsoft Windows
Commandes rรฉseau
| ๐ถ๐ฝ๐ฐ๐ผ๐ป๐ณ๐ถ๐ด | Show network configuration |
| ๐ถ๐ฝ๐ฐ๐ผ๐ป๐ณ๐ถ๐ด /๐ฎ๐น๐น | Detailed IP/DNS info for incident validation |
| ๐ถ๐ฝ๐ฐ๐ผ๐ป๐ณ๐ถ๐ด /๐ฟ๐ฒ๐น๐ฒ๐ฎ๐๐ฒ | Release IP to cut rogue connections |
| ๐ถ๐ฝ๐ฐ๐ผ๐ป๐ณ๐ถ๐ด /๐ฟ๐ฒ๐ป๐ฒ๐ | Renew IP after network reset |
| ๐ถ๐ฝ๐ฐ๐ผ๐ป๐ณ๐ถ๐ด /๐ณ๐น๐๐๐ต๐ฑ๐ป๐ | Clear DNS cache (stop DNS poisoning) |
| ๐ฝ๐ถ๐ป๐ด [๐๐ฃ] | Test host reachability (detect filtering/DoS) |
| ๐๐ฟ๐ฎ๐ฐ๐ฒ๐ฟ๐ [๐๐ฃ] | Trace suspicious traffic path |
| ๐ป๐๐น๐ผ๐ผ๐ธ๐๐ฝ [๐ฑ๐ผ๐บ๐ฎ๐ถ๐ป] | Investigate phishing/malware domains |
| ๐ป๐ฒ๐๐๐๐ฎ๐ -๐ฎ๐ป | Spot unusual open ports & connections |
| ๐ป๐ฒ๐๐๐๐ฎ๐ -๐ฏ | See which process is making network connections |
| ๐ฎ๐ฟ๐ฝ -๐ฎ | Detect ARP spoofing/poisoning attempts |
| ๐ต๐ผ๐๐๐ป๐ฎ๐บ๐ฒ | Verify compromised system identity |
| ๐ด๐ฒ๐๐บ๐ฎ๐ฐ | Validate legitimate MAC addresses |
| ๐ป๐ฒ๐ ๐๐๐ฒ | Check unauthorized shared drive access |
| ๐ป๐ฒ๐ ๐๐ต๐ฎ๐ฟ๐ฒ | List shared resources for data exfil risks |
| ๐ป๐ฒ๐ ๐๐๐ฎ๐ฟ๐ | Spot suspicious or unauthorized services |
| ๐ป๐ฒ๐ ๐๐๐ผ๐ฝ | Kill malicious services |
| ๐๐ฎ๐๐ธ๐น๐ถ๐๐ | See running processes (correlate with netstat) |
| ๐ฟ๐ผ๐๐๐ฒ ๐ฝ๐ฟ๐ถ๐ป๐ | Inspect routing table for anomalies |
| ๐ป๐ฒ๐๐๐ต ๐ฎ๐ฑ๐๐ณ๐ถ๐ฟ๐ฒ๐๐ฎ๐น๐น ๐ณ๐ถ๐ฟ๐ฒ๐๐ฎ๐น๐น ๐๐ต๐ผ๐ ๐ฟ๐๐น๐ฒ ๐ป๐ฎ๐บ๐ฒ=๐ฎ๐น๐น | Review firewall rules for |