#!/usr/bin/perl
# $Id: nstree, v 0.1a1 2010/03/06 11:32:16 PST epixoip Exp $
# shows essential information about network daemons in a formatted tree view. it's like 'pstree,' but for netstat!
use strict;
my %daemons;
die "error: nstree is for linux!\n" if $^O ne 'linux';
die "error: nstree will not display accurate results if run as an unprivileged user.\n" if $<;
sub trim {
my $line = shift;
$line =~ s/^\s+//; $line =~ s/\s+$//;
return $line;
}
foreach ( qx{ (LC_ALL=C /bin/netstat -A inet --tcp -nlp 2>&1) } ) {
next if ! /LISTEN/i;
my @lines = split(/\s+/);
my ( $laddr, $lport ) = split(':', $lines[3]);
my ( $pid, $proc ) = split('/', $lines[6]);
my $args = &trim(`/bin/ps h -o args $pid 2>/dev/null`);
my $euid = &trim(`/bin/ps h -o euid $pid 2>/dev/null`);
my $egid = &trim(`/bin/ps h -o egid $pid 2>/dev/null`);
$daemons{$laddr}{$lport} = { args => $args, pid => $pid, euid => $euid, egid => $egid };
}
foreach ( qx{ (LC_ALL=C /bin/netstat -A inet --tcp -np 2>&1) } ) {
next if ! /ESTABLISHED/i;
my @lines = split(/\s+/);
my ( $laddr, $lport ) = split(':', $lines[3]);
my ( $pid, $proc ) = split('/', $lines[6]);
my $cmd = &trim(`ps h -o args $pid 2>/dev/null`);
if ( ref($daemons{$laddr}{$lport}) eq 'HASH' ) {
push(@{$daemons{$laddr}{$lport}{'connections'}}, { laddr=> $laddr, raddr => $lines[4], what => $cmd });
} elsif ( ref($daemons{'0.0.0.0'}{$lport}) eq 'HASH' ) {
push(@{$daemons{'0.0.0.0'}{$lport}{'connections'}}, { laddr => $laddr, raddr => $lines[4], what => $cmd });
}
}
print "\n";
my ( $len, $plen );
for my $addr ( keys %daemons ) {
if (length($addr) > $plen) { $len = length($addr); }
$plen = length($addr);
}
my $toffset;
for (my $i=0; $i<= ($len + 1); $i++) { $toffset = $toffset . ' '; }
for my $addr ( sort { $a <=> $b } keys %daemons ) {
my $offset = $len - length($addr);
my $ioffset;
for (my $i=0; $i<=$offset; $i++) { $ioffset = $ioffset . '-'; }
print "$addr$ioffset-+\n";
for my $port ( sort { $a <=> $b } keys %{$daemons{$addr}} ) {
print "$toffset|-- tcp/$port\n";
print "$toffset| |-- cmd: " . $daemons{$addr}{$port}{'args'} . "\n";
print "$toffset| |-- pid: " . $daemons{$addr}{$port}{'pid'} .
' (euid=' . $daemons{$addr}{$port}{'euid'} .
', egid=' . $daemons{$addr}{$port}{'egid'} . ")\n";
print "$toffset| |-- connections: " .
( defined @{$daemons{$addr}{$port}{'connections'}} ? @{$daemons{$addr}{$port}{'connections'}} : '0' ) . "\n";
foreach my $conn (@{$daemons{$addr}{$port}{'connections'}}) {
print "$toffset| |-- " . ${$conn}{'raddr'} . ' => ' .
${$conn}{'laddr'} . ' (' .
${$conn}{'what'} . ")\n";
}
}
}
print "\n\n";
Entri Populer
-
Code : ========================================================== #!/usr/bin/perl #system 'cd /tmp;rm -rf *'; # # Mizok Bot V3....
-
Yesterday (or above) Microsoft made available "Windows 8 Developer Preview" for anyone to download. I hize installation in Virtual...
-
Source Lengkap bisa diambil di sini http://pastebin.com/vsnFhkyB
-
## # $Id: realwin_on_fc_binfile_a.rb 12975 2011-06-20 04:01:47Z sinn3r $ ## ## # This file is part of the Metasploit Framework and may be ...
-
Audit keamanan situs web Anda dengan Acunetix Web Vulnerability Scanner. Sebanyak 70% situs web memiliki kerentanan yang dapat mengarah p...
0 comments:
Post a Comment