a required source file was404 file not foundd:g:\readme.h
点击联系发帖人
时间:2014-11-29 11:03
Immutable Page
More Actions:
Print View
Render as Docbook
Delete Cache
------------------------
Check Spelling
Like Pages
Local Site Map
------------------------
Rename Page
Delete Page
------------------------
Subscribe User
------------------------
Remove Spam
Revert to this revision
Package Pages
------------------------
Frequently Asked Questions about the GNU C Library
This document tries to answer questions a user might have when installing and using glibc.
Please make sure you read this before sending questions or bug reports to the maintainers. The GNU C library is very complex.
The installation process has not been
there are too many variables.
You can do substantial damage to your system by installing the library incorrectly.
Make sure you understand what you are undertaking before you begin.May the source be with you, but remember the KISS-)
Netcat -- reading from and writing to network connections on either TCP or UDP
netcat is a network utility for reading from and writing to network connections on either
TCP or UDP. Hobbit () created netcat in 1995 as
a network analog of Unix .& The flexibility and
usefulness of this tool have prompted people to write numerous other Netcat implementations -- often
with modern features not found in the original.&
Netcat& is designed to be a reliable &back-end& tool that can be used directly or easily driven
by other programs and scripts. At the same time, it is a feature-rich network debugging and exploration
tool, since it can create almost any kind of connection you would need and has several interesting built-in
capabilities.
Most common version is 1.1:
Relocations: (not relocatable)
Vendor: SUSE LINUX Products GmbH, Nuernberg, Germany
Build Date: Fri Jun 16 10:04:19 2006
Install Date: Mon Dec 15 16:02:36 2008
Build Host: bassani.suse.de
: Productivity/Networking/Other
Source RPM: netcat-1.10-883.2.src.rpm
License: Other License(s), see package, distributable
: DSA/SHA1, Fri Jun 16 10:07:49 2006, Key ID a84edae89c800aca
: http://bugs.opensuse.org
: A Simple But Powerful Network Tool
Description :
Netcat is a simple Unix utility that reads and writes data across
network connections using TCP or UDP protocols. It is designed to be a
reliable back-end tool that can be used directly or easily driven by
other programs and scripts.
At the same time, it is a feature-rich
network debugging and exploration tool, because it can create almost
any kind of connection you may need and has several interesting
built-in capabilities.
Find the documentation in /usr/share/doc/packages/netcat/README.
hobbit@avian.org
Distribution: SUSE Linux Enterprise 10 (X86-64)
/usr/bin/netcat
/usr/share/doc/packages/netcat
/usr/share/doc/packages/netcat/Changelog
/usr/share/doc/packages/netcat/README
/usr/share/doc/packages/netcat/data
/usr/share/doc/packages/netcat/data/Makefile
/usr/share/doc/packages/netcat/data/README
/usr/share/doc/packages/netcat/data/data.c
/usr/share/doc/packages/netcat/data/dns-any.d
/usr/share/doc/packages/netcat/data/nfs-0.d
/usr/share/doc/packages/netcat/data/pm.d
/usr/share/doc/packages/netcat/data/pmap-dump.d
/usr/share/doc/packages/netcat/data/pmap-mnt.d
/usr/share/doc/packages/netcat/data/rip.d
/usr/share/doc/packages/netcat/data/rservice.c
/usr/share/doc/packages/netcat/data/showmount.d
/usr/share/doc/packages/netcat/data/xor.c
/usr/share/doc/packages/netcat/scripts
/usr/share/doc/packages/netcat/scripts/README
/usr/share/doc/packages/netcat/scripts/alta
/usr/share/doc/packages/netcat/scripts/bsh
/usr/share/doc/packages/netcat/scripts/dist.sh
/usr/share/doc/packages/netcat/scripts/irc
/usr/share/doc/packages/netcat/scripts/iscan
/usr/share/doc/packages/netcat/scripts/ncp
/usr/share/doc/packages/netcat/scripts/probe
/usr/share/doc/packages/netcat/scripts/web
/usr/share/doc/packages/netcat/scripts/webproxy
/usr/share/doc/packages/netcat/scripts/webrelay
/usr/share/doc/packages/netcat/scripts/websearch
/usr/share/man/man1/netcat.1.gz
Among the most interesting clones under active development is socat, which extends Netcat
to support many other socket types, SSL encryption, SOCKS proxies, and more. See
It can be used, for example, as a TCP relay.&
Another interesting implementation is Chris Gibson's
which is available from&
Web version of user guide is available from . Code
repository is
Other takes on Netcat include OpenBSD's nc, Cryptcat, Netcat6, PNetcat, SBD.
A Windows version of netcat was created by Chris Wysopal.& See
Several projects look dead. For example
by Giovanni Giacobbi. The project was not updated since Jan 2004.
It provides the possibility to connect two arbitrary scripts running on different computers with
one writing and the second reading from a pipe. This makes it useful for wide range application. Because
of its versatility, netcat is also called the &
Swiss Army knife&.& According to Hobbit notable features of netcat are:
Outbound or inbound connections, TCP or UDP, to or from any ports
Full DNS forward/reverse checking, with appropriate warnings
Ability to use any local source port
Ability to use any locally-configured network source address
Ability to reconnect
Built-in loose source-routing capability
Can read command line arguments from standard input
Slow-send mode, one line every N seconds
Optional ability to let another program service inbound connections
One of the most practical usages of this network connection is the file transfer. As a basic Netcat
function, this feature may be used during installation. For a freshly installed computer, setting up
servers often involves importing configuration files from the other computer. And initially neither&&
ftp or scp protocols may be available. For example, ftp protocol can be blocked
by DMZ firewall or channeled via proxy. In other words multiple layers of control mechanisms may interfere
with their functionality. And people responsible for firewall forget to do their work in time. In this
environment you can still transfer files with just one nc command using any open port visible
in nmap, for example port 25
At the server console:
$ netcat -v -w 3 -p 25 l- & settings.tgz
and on the client side:
$ netcat -v 10.0.1.1 25 & settings.tgz
The command line for the server uses the& argument -w to cause Netcat to wait for a few seconds.& Magically, the file is
transferred from the client to the server. Now you can unzip them and configure the server. Think of this as a pipeline over TCP/IP.&
Additional examples can be found at
&Among other potential uses of netcat:
Script backends
Testing services& such as telnet of http.
Quick and dirty backup handlers
Simulation of services behaviour for testing.
Security related uses, for example firewall testing
Network performance testing
Among alternative implementations we again would like to single our socat
has some interesting new& functionality, but the idea is
the same as netcat . It extends Netcat to support several other socket types, SSL encryption,
SOCKS proxies, and more. It can be used, for example, as a TCP relay.
Top updates
Your browser does not support iframes.
Google Search
[Jan 12, 2014]&
November 6, 2006&
One of the Linux command line tools I had initially under-estimated
is netcat or just nc. By default,
netcat creates a TCP socket either in listening mode (server socket)
or a socket that is used in order to connect to a server (client
mode). Actually, netcat does not care whether the socket is meant to
be a server or a client. All it does is to take the data from stdin
and transfer it to the other end across the network.The simplest example of its usage is to create a server-client chat
system. Although this is a very primitive way to chat, it shows how
netcat works. In the following examples it is assumed that the
machine that creates the listening socket (server) has the
192.168.0.1 IP address. So, create the chat server on this machine
and set it to listen to 3333 TCP port:$ nc -l 3333
On the other end, connect to the server with the following:
$ nc 192.168.0.1 3333
In this case, the keyboard acts as the stdin. Anything you type
in the server machine’s terminal is transfered to the client machine
and vice-versa.
Transfering Files
In the very same way it can be used to transfer files between two
computers. You can create a server that serves the file with the
following:
$ cat backup.iso | nc -l 3333
Receive backup.iso on the client machine with the following:
$ nc 192.168.0.1 3333 & backup.iso
As you may have noticed, netcat does not show any info about the
progress of the data transfer. This is inconvenient when dealing
with large files. In such cases, a pipe-monitoring utility like
can be used
to show a progress indicator. For example, the following shows the
total amount of data that has been transfered in real-time on the
server side:
$ cat backup.iso | pv -b | nc -l 3333
Of course, the same can be implemented on the client side by
piping netcat’s output through pv:
$ nc 192.168.0.1 3333 | pv -b & backup.iso
Other Examples
Netcat is extremely useful for creating a partition image and
sending it to a remote machine on-the-fly:
$ dd if=/dev/hdb5 | gzip -9 | nc -l 3333
On the remote machine, connect to the server and receive the
partition image with the following command:
$ nc 192.168.0.1 3333 | pv -b & myhdb5partition.img.gz
This might not be as classy as the
, but it is efficient.
Another useful thing is to compress the critical files on the
server machine with tar and have them pulled by a
remote machine:
$ tar -czf - /etc/ | nc -l 3333
As you can see, there is a dash in the tar options instead of a
filename. This is because tar’s output needs to be passed to netcat.
On the remote machine, the backup is pulled in the same way as
$ nc 192.168.0.1 3333 | pv -b & mybackup.tar.gz
It is obvious that using netcat in the way described above, the
data travels in the clear across the network. This is acceptable in
case of a local network, but, in case of transfers across the
internet, then it would be a wise choice to do it through an SSH
Using an SSH tunnel has two advantages:
The data is transfered inside an encrypted tunnel, so it is
well-protected.
You do not need to keep any open ports in the firewall
configuration of the machine that will act as the server, as the
connections will take place through SSH.
You pipe the file to a listening socket on the server machine in
the same way as before. It is assumed that an SSH server runs on
this machine too.
$ cat backup.iso | nc -l 3333
On the client machine connect to the listening socket through an
SSH tunnel:
$ ssh -f -L .0.1:3333 me@192.168.0.1 sleep 10; \
nc 127.0.0.1 23333 | pv -b & backup.iso
This way of creating and using the SSH tunnel has the advantage
that the tunnel is automagically closed after file
transfer finishes. For more information and explanation about it
please read my article about
Telnet-like Usage
Netcat can be used in order to talk to servers like telnet does.
For example, in order to get the definition of the word “server”
from the “WordNet” database at the dict.org dictionary server, I’d
$ nc dict.org 2628
220 ..............some WELCOME.....
DEFINE wn server
150 1 definitions retrieved
151 &server& wn &WordNet (r) 2.0&
n 1: a person whose occupation is to serve at table (as in a
restaurant) [syn: {waiter}]
2: (court games) the player who serves to start a point
3: (computer science) a computer that provides client stations
with access to files and printers as shared resources to a
computer network [syn: {host}]
4: utensil used in serving food or drink
250 ok [d/m/c = 1/0/18; 0.000r 0.000u 0.000s]
221 bye [d/m/c = 0/0/0; 16.000r 0.000u 0.000s]
Works as a Port Scanner too
A useful command line flag is -z. When it is
used, netcat does not initiate a connection to the server, but just
informs about the open port it has found. Also, instead of a single
port, it can accept a port-range to scan. For example:
$ nc -z 192.168.0.1 80-90
Connection to 192.168.0.1 80 port [tcp/http] succeeded!
In this example, netcat scanned the 80-90 range of ports and
reported that port 80 is open on the remote machine.
The man page contains some more interesting examples, so take the
time to read it.
... ... ...
[Jan 12, 2014]
Port scanning is done by system admin and hackers to find the open ports at some machine. It
helps them to identify the venerability in the system.
$nc -z -v -n 172.31.100.7 21-25
It can work in both TCP and UDP mode, default is TCP mode, to change to udp use -u option
z& option tell netcat to use zero IO .i.e the connection is closed as soon as it
opens and no actual data exchange take place.
v& option is used for verbose option.
n& option tell netcat not to use the DNS lookup for the address.
This command will print all the open ports between 21 to 25.
Banner is a text that services sends when you connects to them. Banner are very usefull when
you are trying to velberability in the system as it identify the type and version of the services.
NOTE not all services may send banner.
Once You have found the open ports you can easily grab the service banner by connecting to them
using netcat.
$ nc -v 172.31.100.7 21
The Linux netcat command will connect to open port 21 and will print the banner of the service
running at that port.
[Jan 19, 2011]
I always bet on dd + netcat to do imaging over network.
On the system where you will store the image (192.168.0.10):
netcat –l –p 7000 & file.iso
On the system to be cloned:
dd if=/dev/sda | netcat 192.168.0.10 7000 -q
where: dd if=volume_to_be_cloned| netcat ip_of_destination_ip port -q
You can even do it to full clone the system instead store it.
Give a look here:
Ncat is a feature-packed networking utility which will read and write data across a network from
the command line. Ncat was written for the Nmap Project as a much-improved reimplementation of the
venerable . It uses both TCP and UDP for communication
and is designed to be a reliable back-end tool to instantly provide network connectivity to other
applications and users. Ncat will not only work with IPv4 and IPv6 but provides the user with a
virtually limitless number of potential uses.
Among Ncat’s vast number of features there is the ability to chain Ncats together, redirect both
TCP and UDP ports to other sites, SSL support, and proxy connections via SOCKS4 or HTTP (CONNECT
method) proxies (with optional proxy authentication as well). Some general principles apply to most
applications and thus give you the capability of instantly adding networking support to software
that would normally never support it.
Ncat is integrated with Nmap in the
and is also available in Nmap version 4.85BETA1 and later (see the
contains full documentation
including many tips, tricks, and practical real-life examples! There is also an
for a quick usage summary.
Netcat is a simple Unix utility that reads and writes data across network connections, using TCP
or UDP protocols. It is designed to be a reliable &back-end& tool that can be used directly or easily
driven by other programs and scripts. At the same time, it is a feature-rich network debugging and
exploration tool, since it can create almost any kind of connection you may need and has several
interesting built-in capabilities.
You can find the documentation in /opt/freeware/share/doc/packages/netcat/README.
Homepage:&
Current version:& v1.10
Source RPM:&
[May 12, 2010]
The simplest example of its usage is to create a server-client chat system. Although this is
a very primitive way to chat, it shows how netcat works. In the following examples it is assumed
that the machine that creates the listening socket (server) has the 192.168.0.1 IP address. So,
create the chat server on this machine and set it to listen to 3333 TCP port:
$ nc -l 3333
On the other end, connect to the server with the following:
$ nc 192.168.0.1 3333
In this case, the keyboard acts as the stdin. Anything you type in the server machine’s terminal
is transfered to the client machine and vice-versa.
Transfering Files
In the very same way it can be used to transfer files between two computers. You can create a
server that serves the file with the following:
$ cat backup.iso | nc -l 3333
Receive backup.iso on the client machine with the following:
$ nc 192.168.0.1 3333 & backup.iso
As you may have noticed, netcat does not show any info about the progress of the data transfer.
This is inconvenient when dealing with large files. In such cases, a pipe-monitoring utility like
can be used to show a progress indicator.
For example, the following shows the total amount of data that has been transfered in real-time
on the server side:
$ cat backup.iso | pv -b | nc -l 3333
Of course, the same can be implemented on the client side by piping netcat’s output through pv:
$ nc 192.168.0.1 3333 | pv -b & backup.iso
Other Examples
Netcat is extremely useful for creating a partition image and sending it to a remote machine
on-the-fly:
$ dd if=/dev/hdb5 | gzip -9 | nc -l 3333
On the remote machine, connect to the server and receive the partition image with the following
$ nc 192.168.0.1 3333 | pv -b & myhdb5partition.img.gz
This might not be as classy as the
, but it is efficient.
Another useful thing is to compress the critical files on the server machine with tar
and have them pulled by a remote machine:
$ tar -czf - /etc/ | nc -l 3333
As you can see, there is a dash in the tar options instead of a filename. This is because tar’s
output needs to be passed to netcat.
On the remote machine, the backup is pulled in the same way as before:
$ nc 192.168.0.1 3333 | pv -b & mybackup.tar.gz
It is obvious that using netcat in the way described above, the data travels in the clear across
the network. This is acceptable in case of a local network, but, in case of transfers across the
internet, then it would be a wise choice to do it through an SSH tunnel.
Using an SSH tunnel has two advantages:
The data is transfered inside an encrypted tunnel, so it is well-protected.
You do not need to keep any open ports in the firewall configuration of the machine that
will act as the server, as the connections will take place through SSH.
You pipe the file to a listening socket on the server machine in the same way as before. It is
assumed that an SSH server runs on this machine too.
$ cat backup.iso | nc -l 3333
On the client machine connect to the listening socket through an SSH tunnel:
$ ssh -f -L .0.1:3333 me@192.168.0.1 sleep 10; \
nc 127.0.0.1 23333 | pv -b & backup.iso
This way of creating and using the SSH tunnel has the advantage that the tunnel is automagically
closed& after file transfer finishes. For more information and explanation about it please
read my article about .
Telnet-like Usage
Netcat can be used in order to talk to servers like telnet does. For example, in order to get
the definition of the word “server” from the “WordNet” database at the dict.org dictionary server,
$ nc dict.org 2628
220 ..............some WELCOME.....
DEFINE wn server
150 1 definitions retrieved
151 &server& wn &WordNet (r) 2.0&
n 1: a person whose occupation is to serve at table (as in a
restaurant) [syn: {waiter}]
2: (court games) the player who serves to start a point
3: (computer science) a computer that provides client stations
with access to files and printers as shared resources to a
computer network [syn: {host}]
4: utensil used in serving food or drink
250 ok [d/m/c = 1/0/18; 0.000r 0.000u 0.000s]
221 bye [d/m/c = 0/0/0; 16.000r 0.000u 0.000s]
Works as a Port Scanner too
A useful command line flag is -z. When it is used, netcat does not initiate a connection
to the server, but just informs about the open port it has found. Also, instead of a single port,
it can accept a port-range to scan. For example:
$ nc -z 192.168.0.1 80-90
Connection to 192.168.0.1 80 port [tcp/http] succeeded!
In this example, netcat scanned the 80-90 range of ports and reported that port 80 is open on
the remote machine.
The man page contains some more interesting examples, so take the time to read it.
: on RedHat based systems CFLAGS may have -Wall predefined which breaks socat's build
process with something like #error HAVE_BASIC_OFF_T is out of range: HAVE_BASIC_OFF_T...,
please report this as bug. In this case replace the configure file with
) and restart the
build process:
: socat version 1.7.1.1 fixes a couple of bugs, some of which could crash socat under
some circumstances ().
: Gentil Kiwi updated his Cygwin based binary socat packages at
: the third beta version (2.0.0-b3) of
is ready for
. It contains
all new bug fixes and features of 1.7.1.0 (plus fix:setenv, see below) and introduces the possibility
to integrate external programs in address chains (see
: Todd Stansell reported a bug that crashed socat versions 1.7.0.0 to 1.7.1.0 (and
all earlier versions with option su) on systems without a native setenv() function, especially Solaris
up to version 9. Here is the
: socat version 1.7.1.0 provides a few new address options to better control its closing
behaviour - see .
: socat version 1.7.0.1 fixes some bugs (connect-timeout, SIGSEGV on listen, end-close).
: a public
containing socat 1.6.0.0 and all later releases is available.
: socat version 1.7.0.0 brings support for
New option
to interrupt raw terminal connections. Listening and receiving sockets can set a couple of environment
variables. Added base control of System V STREAMS. Lots of corrections were performed. socat compiles
on Mac OS X again.
1 Preliminary Note
I'm using two systems in this article:
: IP address 192.168.0.100
: IP address 192.168.0.101
netcat should already be installed on your system - you can check with
To learn more about netcat, take a look at its man page:
2 Copying A File From One System To The Other
Let's say we want to copy the file ISPConfig-2.2.27.tar.gz from server1
to server2. To do this, run
nc -lp 1234 & ISPConfig-2.2.27.tar.gz
on server2 (1234 is some unused port - you can replace it with another
value if you like). server2 will then wait for the file ISPConfig-2.2.27.tar.gz on
port 1234.
On server1, run
1234 & ISPConfig-2.2.27.tar.gz
to start the file transfer.
Selected Comments
Maximo Migliari:
More recent versions of the netcat command (nc) will not allow the -p and -l options to be
used at the same time, so instead of:
nc -l -p 1234 | dd of=/dev/sda
you would type:
nc -l 1234 | dd of=/dev/sda
If you are using nc with dd to transfer an image of a partition from one machine to the other,
one of the problems is that dd and netcat won't show you a progress bar of the operation. One
solution to this is to install pipe viewer by Andrew Wood. It then allows you to pipe the netcat
command to the pipe viewer, allowing you to view the progress of the entire operation and for
debugging.
target machine:
nc -l 1234 | pv | dd of=/dev/sda
source machine:
dd if=/dev/sda | nc 192.168.0.12 1234
[Jul 2, 2008]
by Vivek Gite
How do I use nc / netcat instead of messing with syslogd?
This is called one minute configuration. You can easily get output on 192.168.1.100 without using
syslogd. All you have to do is run netcat (nc) command, on 192.168.1.100:
$ nc -l -p 30000 -u
Login to any other box, enter command:
# modprobe netconsole .1.5/eth0,8.1.100/00:19:D1:2A:BA:A8
Output should start to appear on 192.168.1.100 from 192.168.1.5 without configuring syslogd or anything
Further readings:
man pages nc, modeprobe
Our sample setup
-----------------------
HostA // 192.168.1.1
------------------------
------------------------
HostB // 192.168.1.2
-------------------------
Your task is copy HostA /dev/sda to HostB's /dev/sdb using netcat command. First login as root
Command to type on hostB (receiving end ~ write image mode)
You need to open port on hostB using netcat, enter :
# netcat -p 2222 -l |bzip2 -d | dd of=/dev/sdb
-p 2222& : Specifies the source port nc should use, subject to privilege restrictions
and availability. Make sure port 2222 is not used by another process.
-l& : Used to specify that nc should listen for an incoming connection rather
than initiate a connection to a remote host.
bzip2 -d : Compresses image using the Burrows-Wheeler block sorting text compression
algorithm, and Huffman coding. This will speed up network transfer ( -d : force decompression
dd of=/dev/sda& : /dev/sda is your hard disk. You can also specify partition
such as /dev/sda1
Command to type on hostA (send data over a network ~ read image mode)
Now all you have to do is start copying image. Again login as root and enter:
# bzip2 -c /dev/sda | netcat hostA 2222
OR use IP address:
# bzip2 -c /dev/sda | netcat 192.168.1.1 2222
This process takes its own time.
A note about latest netcat version 1.84-10 and above
If you are using latest nc / netcat version above syntax will generate an error. It is an error
to use -l option in conjunction with the -p, -s, or -z options. Additionally, any timeouts specified
with the -w option are ignored. So use nc command as follows.
On hostA, enter:
# nc -l 2222 & /dev/sdb
On hostB, enter:
# nc hostA 2222& /dev/sda
# nc 192.168.1.1 2222& /dev/sda
Using a second machine (hostB), connect to the listening nc process at 2222 (hostA), feeding
it the file (/dev/sda)which is to be transferred. You can use bzip2 as follows.
On hostA, enter:
# nc -l 2222 | bzip2 -d & /dev/sdb
On hostB, enter:
# bzip2 -c /dev/sda | nc 192.168.1.1 2222
Further readings
netcat command other usage -
(you can also use
nc and bzip2 command man page
How do I improve performance?
As suggested by anonymous user:
You should definitely use bs=16M or something like that. Otherwise, the copy will take forever.
Copying a 300 GB hard drive over a 1 Gbps cross-over cable took about 1 1/2 hours or so using
bs=16M Without this option, the same thing would have taken about 7 hours.
In short use command as follows:
# netcat -p 2222 -l |bzip2 -d | dd of=/dev/sdb
Netcat - The TCP/IP Swiss Army Knife
Tom Armstrong
February 15, 2001Overview
Netcat is a tool that every security professional should be aware of and possibly have in their
‘security tool box’. In May/June of 2000, insecure.org conducted a survey of 1200 Nmap users from
the Nmap-hackers mailing list to determine their favorite security tools. Netcat was the second
most popular tool, not including Nmap. A quick search on securityportal ()
found 166 matches of netcat. Most of the matches describe or use netcat in some way. Netcat is a
utility that is able to write and read data across TCP and UDP network connections. If you are responsible
for network or system security it essential that you understand the capabilities of netcat.
Netcat should not be installed unless you have authority to do so. Never install any executable
unless you can trust the providor. If possible review the source and compile it yourself. To be
safe only use netcat in a test environment.
Hobbit () created netcat in 1995 as a feature-rich
network debugging and exploration tool. Its purpose was to be able to create just about any type
of network connection. According to Hobbit-
Some of the features of netcat are:
Outbound or inbound connections, TCP or UDP, to or from any ports
Full DNS forward/reverse checking, with appropriate warnings
Ability to use any local source port
Ability to use any locally-configured network source address&
Built-in port-scanning capabilities, with randomizer
Built-in loose source-routing capability
Can read command line arguments from standard input&
Slow-send mode, one line every N seconds
Optional ability to let another program service inbound connections&
Some of the potential uses of netcat:
Script backends
Scanning ports and inventorying services
Backup handlers
File transfers
Server testing and simulation
Firewall testing
Proxy gatewaying
Network performance testing
Address spoofing tests
Protecting X servers
1001 other uses you`ll likely come up with
The original version of netcat was released to run on Unix and Linux. Weld Pond ()
released the Windows NT version in 1998. The source code is available for both versions.
Remote command prompt anyone?
On a Windows NT server issue the following command in the directory that contains netcat:
nc -l -p1234 -d -e cmd.exe –L
This –l puts netcat into listen mode, the -p1234 tells netcat to use port 1234, the –d allows
netcat to run detached from the console, the –e cmd.exe tells netcat to execute the cmd.exe program
when a connection is made, and the –L will restart Netcat with the same command line when the connection
is terminated.
On the client system issue the following command:
nc destination 1234
This command causes netcat to connect to the server named destination on port 1234. Immediately
you are given a console connection to the destination server. Be careful! To exit the remote console
session type:
You will be returned to your own console and will be able to reconnect to the destination server
because netcat was started on the destination server with the –L option.
FTP & drive mapping blocked?
To receive a file named newfile on the destination system start netcat with the following command:
nc –l –p 1234 &newfile
On the source system send a file named origfile to the destination system with the following
nc destination 1234 &origfile
Issue a ^C on the source system and your done. Be sure to check the file to be sure it is the
same size as the original.
Hiding Netcat on Windows NT
Here are a few ways that a hacker could use to hide netcat on a system or use it behind a firewall:
Rename the executable or recompile with a different name. Beware that using a copy of netcat
that you aren’t sure how the source was compiled is very dangerous. If possible review the source
code and compile it yourself.
Detach from the console option (-d)
Use a port that is well known and allowed through any firewalls between the two systems.
Port Scanning
A scanning example from Hobbit is &nc -v -w 2 -z target 20-30&. Netcat will try connecting to
every port between 20 and 30 [inclusive] at the target, and will likely inform you about an FTP
server, telnet server, and mailer along the way. The -z switch prevents sending any data to a TCP
connection and very limited probe data to a UDP connection, and is thus useful as a fast scanning
mode just to see what ports the target is listening on. To limit scanning speed if desired, -i will
insert a delay between each port probe. Even though netcat can be used for port scanning it isn’t
its strength. A tool such as nmap is better suited for port scanning.
Netcat + Encryption = Cryptcat
Netcat is a useful tool as it is, but if someone were using it you would be able to at least
get a feel for what they were doing. At least you could before Cryptcat! Cryptcat is the standard
netcat enhanced with Bruce Schneier’s twofish encryption. It can be found at
. Linux, OpenBSD, FreeBSD, and
Windows versions are available. So much for sniffing any netcat traffic!
Command Option Overview
Netcat accepts its commands with options first, then the target host, and everything thereafter
is interpreted as port names or numbers, or ranges of ports in M-N syntax. Netcat does not currently
handle portnames with hyphens.
Description
Allows netcat to detach from the console on Windows NT.
Executes a program if netcat is compiled with the
–DGAPING_SECURITY_HOLE.
Sets the interval time. Netcat uses large 8K reads and writes.
This basically sends data one line at a time. This is normally used when data is read from
files or pipes.
Used to construct a loose-source-routed path for your connection.
This is modeled after &traceroute&.
Positions the &hop pointer& within the list.
Forces netcat to listen for an inbound connection. An example
&nc –l –p 1234 &filename& tells netcat to listen for a connection on port 1234 and once
a connection is made to send the file named filename. The file is sent whether the connecting
system wants it or not. If you specify a target host netcat will only accept an bound connection
only from that host and if you specify one, only from the specified foreign source port.
Restarts Netcat with the same command line that was used when
the connection was started.. This way you can connect over and over to the same Netcat process.
Forces netcat to only accept numeric IP addresses and to not
do any DNS lookups for anything
Used to obtain a hex dump file of the data sent either way,
use &-o logfile&. The dump lines begin with &&& or &&& to respectively indicate &from the
net& or &to the net&, and contain the total count per direction, and hex or ascii representations
of the traffic.
Required for outbound connections. The parameter can be numeric
or a name as listed in the services file. If –p is not used netcat will bind to whatever
unused port the systems gives it, unless the –r option is used.
Causes port scanning to be done randomly. Normally it is done
highest to lowest.
Used to specifiy local network source address. Usage &-s ip-addr&
or &-s name&.
Enables netcat to respond to telnet option negotiation if netcat
is compiled with –DTELNET parameter. Telnet daemons will get no useful answers, as they
would from a telnet program.
Tells netcat to use UDP instead of TCP.
Controls the level of verbosity.
(without –n) netcat will do a full forward and reverse name and address lookup for
the host, and warn you about the all-to-common problem of mismatched names in the DNS.
Usually want to use the –w 3, which limits the time spent trying to make a connection.
If multiple ports are given –v must be specified twice.
Limits the time spent trying to make a connection.
Prevents sending any data to a TCP connection and very limited
probe data to a UDP connection. Use –i to insert a delay between each port probe. This is
useful as a fast scanning mode just to see what ports the target is listening on.
Conclusion
Netcat is a powerful tool that every security professional should be familiar with. It should
be used with caution. I would not recommend installing netcat on your production networks. I would
suggest using it to test your firewall, and router configurations in a test environment. It can
also be used to test your operating system lockdown procedures. Be certain that you have the authority
to install and use netcat on your network before doing so. You might even want to review the source
code to learn how Hobbit built netcat and how Weld Pond ported it to the Windows platform.
References
1. Insecure.org, &Top 50 Security Tools&
(August 21, 2000)
2. Hobbit, &New tool available: Netcat&
(October 28, 1995)
3. Weld Pond, &Netcat 1.10 for NT&
(February 2, 1998)
4. Hobbit, &Netcat 1.10&
(March 20, 1996)
5. Farm9, &cryptcat = netcat + encryption&
(October 2, 2000)
6. Hobbit, &Netcat 1.10&
(March 20, 1996)
Simple File Transfer
So as an example, I will start two copies of netcat on the same machine locally:
adam@adamp:~$ netcat -l -p 1111
Here, using the -l switch, we are able to specify that netcat should go into listen mode i.e.
to listen on
the specified port. Using p 1111 we are able to specify that we are using port 1111. To summarize,
netcat will sit and listen for TCP connections on port 1111 and print any data it receives out to
screen. In another window we start netcat as:
adam@adamp:~$ netcat 127.0.0.1 1111
This will connect to host 127.0.0.1 (Locally) on port 1111.
We are now able to have a full two way data transmission, in Window 1:
adam@adamp:~$ netcat -l -p 1111This message was typed in WINDOW1. This message was typed in WINDOW2Now
I'm going to end communication with ^C (Ctrl-C)
adam@adamp:~$
And in Window 2:
adam@adamp:~$ netcat 127.0.0.1 1111
This message was typed in WINDOW1 This message was typed in WINDOW2 Now I'm going to end communication
with ^C (Ctrl-C)
adam@adamp:~$
This is the most basic use of netcat described. Here, we are using a BASH shell, and thus we
may pipe |
data to and from netcat, as well as using the redirection (&, &&, &, &&) to allow netcat to integrate
the shell environment. We will now examine using netcat with one of the redirection operators. Lets
say we wanted to simply transmit a plaintext file. In one window, we will start netcat as:
adam@adamp:~$ netcat -l -p 1111 & outputfile
This will run netcat with the same parameters specified above, except it will redirect
all text received into outputfile.
adam@adamp:~$ echo & infile && EOF
& This is a test file.
& I am going to attempt to transmit this.
& Using Netcat.
adam@adamp:~
Here, we have created some text in a file, and this is the file we are going to attempt to transmit:
adam@adamp:~$ cat infile | netcat 127.0.0.1 1111 q 10adam@adamp:~$
(C) Learn Security Online, Inc.
Hopefully tbr& $
And here we can confirm that it has. The -q 10 in the command line will quit after EOF (Otherwise
netcat will hang waiting for more input for cat and we will have to terminate it manually). The
parameter 10 causes it to quit after 10 seconds anyway.
Now, there is no reason why we can’t integrate tar and netcat together, and use this to transmit
directory across a netcat socket:
On one side: tar zcfp - /path/to/directory | nc -w 3 127.0.0.1 1234
The tar statement before the pipe tars and compresses (using gzip) every file within that directory,
before printing its output to stdout (The screen). It is then caught by the pipe, and piped to nc
this example, connects to 127.0.0.1 on port 1234 and sends it the data which would normally hit
screen. The w 3 switch causes nc to allow for a 3 second timeout (In the event of a temporary
disconnection or similar).
On the other side: nc -l -p 1234 | tar xvfpz
This will listen on port 1234 for a connection, and will pass any data received to tar. Using
the option v
we can print out filenames to screen:
Simple Socket Reply
With what we have learned so far, we are easily able to get netcat to listen in on a socket,
and pump out
any data we wish when it receives a connection.
As an example:
do echo &Leave me alone& | netcat -l -p 1234 w10; done
Consider this line. Firstly lets examine echo &Leave me alone& | netcat -l -p 1234 -w10
What we are doing here, is listening in on port 1234 with a wait time of 10 seconds. If/when
we receive
a connection, pipe the results of echo &Leave me alone& to netcat. The w 10 is necessary, as otherwise
any connection made in will remain open forever. We can also optionally add a v in to the netcat
command line which will give us verbose information, i.e. who is connecting.
Every time a connection times out (either with the w 10 command line switch, or because a connection
has been made and then closed), netcat will exit. As this is not what we want, we put the command
within a standard BASH: while CONDITION; do STATEMENT; done clause, which when the
condition is set to true will run forever.
If you build netcat with GAPING_SECURITY_HOLE defined, you can use it as an &inetd& substitute
to test experimental network servers that would otherwise run under &inetd&.
A script or program will have its input and output hooked to the network the same way, perhaps
some fancier signal handling.
Given that most network services do not bind to a particular local address, whether they are
&inetd& or not, it is possible for netcat avoid the &address already in use& error by binding to
a specific
This lets you [as root, for low ports] place netcat &in the way& of a standard service, since
connections are generally sent to such specifically-bound listeners first and fall back to the ones
This allows for a one-off experimental simulation of some service, without having to screw around
with inetd.conf. Running with -v turned on and collecting a connection log from standard error is
recommended.
Netcat as well can make an outbound connection and then run a program or script on the originating
end, with input and output connected to the same network port.
This &inverse inetd& capability could enhance the backup-server concept described above or help
facilitate things such as a &network dialback& concept.
The possibilities are
if such things are intended as security mechanisms,
be best to modify netcat specifically for the purpose instead of wrapping such functions in scripts.
Speaking of inetd, netcat will function perfectly well *under* inetd as a TCP connection redirector
inbound services, like a &plug-gw& without the authentication step.
This is very useful for doing stuff like redirecting traffic through your firewall out to other
places like
web servers and mail hubs, while posing no risk to the firewall machine itself.
Put netcat behind inetd and tcp_wrappers, perhaps thusly:
www stream tcp nowait nobody /etc/tcpd /bin/nc -w 3 realwww 80
and you have a simple and effective &application relay& with access control and logging. Note
the wait time as a &safety& in case realwww isn't reachable or the calling user aborts the connection
otherwise the relay may hang there forever.
Inetd/tcp_wrappers and netcat information, courtesy of: http://www./netcat.html
Talking to syslogd -r
Syslog Daemons running with the r switch log not only their own hosts data but accept remote
broadcasts. They listen in on UDP port 514.
&echo '&0&message' | nc -w 1 -u loggerhost 514&
If loggerhost is running syslogd r and can accept your messages.
Note the -u switch here, to put netcat into UDP mode. Specifying the &0& before your message
that your message receives top priority within syslog (kern.emerg)
The scanning features of netcat can be used against yours or your friends networks to get useful
information about which hosts have certain ports open. You can also send a precompiled data file
each. For example:
Echo EXIT | nc -w 1 127.0.0.1 20-250 500-600
Will scan 127.0.0.1 on ports 20-250, 500-600 and . Every port that it finds is open,
pipe the output of echo &EXIT& being the word &EXIT& to that port.
The results are as follows:
(For the sanity of my server, I have blocked out a number of parts from certain service banners.)
And now with UDP scanning: nc -v -w 1 127.0.0.1 u 20-250 500-600
we receive:
adam@adamp:~$ nc -u -v -w 1 127.0.0.1 20-250 500-600 localhost [127.0.0.1] 250 (?) openadam@adamp:~$
-v was to put netcat into verbose mode, and u was telling netcat to fall into UDP mode.
&Your TCP spoofing possibilities are mostly limited to destinations you can source-route to,
locally bound to your phony address.
Many sites block source-routed packets these days for precisely this reason.
If your kernel does oddball things when sending source-routed packets, try moving the pointer
around with -G. You may also have to fiddle with the routing on your own
machine before you start receiving packets back.
Warning: some machines still send out traffic using the source address of the outbound interface,
regardless of your binding, especially in the case of localhost.
Check first. If you can open a connection but then get no data back from it, the target host
is probably
killing the IP options on its end [this is an option inside TCP wrappers and several other packages],
which happens after the 3-way handshake is completed.
If you send some data and observe the &send-q& side of &netstat& for that connection increasing
never getting sent, that's another symptom. Beware: if Sendmail 8.7.x detects a source-routed SMTP
connection, it extracts the hop list and sticks it in the Received: header!&
http://www./netcat.html
Spoofing is a useful technique, as is source routing.
Source routing is almost obsolete now, and the majority of routers filter out source routed packets.
Source routing in a nutshell is basically setting the route that the packet will take at the source,
storing that information along with the packet.
Normally, each router makes its own mind up as to where a packet will get routed, and follows
predefined routing tables. If we have access to all routers between our device and the target device
(which can be one machine if youre talking about your local LAN server), then we are able to modify
the routing entries on those devices, bind a phoney address to our machine and source route packets
the intended destination.
Spoofing is where we modify the source address of a packet so that the recipient believes it
a different address. There are tw
A number of clever ISP routers will drop packets with incorrect source addresses.
If the destination host does get to receive your spoofed packet, it will send data back to the
spoofed address (instead of ours). This does have a number of uses however in the example of
ICMP ping flooding a host and spoofing the source address
(as a theoretical
Simple Response Service
echo -e &GET
HTTP/1.0\n\n& | nc w
We make a connection
on port 80 (Web server port), and put in an HTTP request for
. At this point, we are presented with the HTML spurted out by the web server.
We can pipe this to &| less& or similar or even our favourite HTML interpreter.
Take a look at this example, and you will see what we have done here. In one instance we have
an HTML file webfrontend and we now pipe that HTML to any incoming connection to netcat on port
We then make a connection on the larger window, using lynx http://127.0.0.1:1111 and we have
made ourselves a tiny http server, possibly could be used as a holding page server or something
Advanced Uses
Now we'll set up a server netcat to listen on port 1111. We'll also set up a client netcat to
talk to the real
web server on port 81. By getting them to pass all data they receive to each other, together they
something that sits in the middle of a network connection. Here are the commands we use:
mknod backpipe p
nc -l -p 1111 0backpipe
Because bash pipes only carry data in one direction, we need to provide a way to carry the responses
well. We can create a pipe on the local filesystem to carry the data in the backwards direction
this only needs to be run once.
Requests coming into the proxy from the client arrive at the first nc, listening on port 1111.
handed off to the &tee& command, which logs them to the inflow file, then continue on to the second
command which hands them off to the real web server. When a response comes back from the server,
arrives back at the second nc command, gets logged in the second tee command to the outflow file,
then gets pushed into the backpipe pipe on the local filesystem. Since the first netcat is listening
pipe, these responses get handed to that first netcat, which then dutifully gives them back to the
While the above example is for watching tcp streams going to and from a web server, the above
technique is useful for watching any tcp connection. In fact, since nc also works with udp packets
something telnet can't do - it should be possible to even set up udp proxies this way.
Windows Command Shell
As we can see from the image above, we have started netcat with options of l p 1234 e
&c:\windows\system32\cmd.exe&. These are the same options as with the Unix shell, and this should
theoretically start a cmd.exe shell listening in on port 1234:
As you see from above, this has succeeded. Netcat and program execution for Windows can be used
exactly the same way.
Unauthorised Proxying
Assume you are an administrator of a Linux router. Using the methods above, as well as your iptables
software, you can proxy a users outgoing connection through your nc proxy. Using iptables with the
DNAT target and the j REDIRECT target, you can transparently proxy outgoing connections through
to any other ports you want, and what better to use than your nc proxy?
Cryptcat can be found at: http://sourceforge.net/projects/cryptcat/ and is the ultimate companion
Netcat. It includes a lightweight version of Netcat, featuring encrypted transport properties. (Just
those superbly paranoid!). Useful for encrypting communications out of a network.
Final Thoughts
If I was given one tool on a freshly installed PC, I would ask for Netcat. Due to its versatility
huge range of uses, it can be used as a transfer tool, a scanning tool, a server, a proxy and so
more. I have put down everything useful I can think of, and welcome any further suggestions directed
Command Cheat Sheet
The following are the most useful uses of netcat:
For windows nc d can be used to detach from the console.
nc -l -p [port] will create a simple listening tcp port. Add u to put into UDP mode.
nc -e [program] To redirect stdin/stdout from program.
nc -w [timeout] To set a timeout before netcat automatically quits. (Used within a loop usually)
program | nc To pipe output of program to netcat
nc | program To pipe output of netcat to program
nc -h Help sheet
nc -v To put into verbose mode, or use v v to put into ultra-verbose mode!
nc -g or nc G Source routing flags
nc -t Use telnet negotiation (If performing telnet negotiation)
nc -o [file] Hex dump traffic to file
nc -z No I/O (Used for scanning ports)
Netcat is a featured networking utility which reads and writes data across network connections,
using the TCP/IP protocol. It is designed to be a reliable &back-end& tool that can be used directly
or easily driven by other programs and scripts. At the same time, it is a feature-rich network debugging
and exploration tool, since it can create almost any kind of connection you would need and has several
interesting built-in capabilities.
It provides access to the following main features:
Outbound and inbound connections, TCP or UDP, to or from any ports.
Featured tunneling mode which allows also special tunneling such as UDP to TCP, with
the possibility of specifying all network parameters (source port/interface, listening port/interface,
and the remote host allowed to connect to the tunnel.
Built-in port-scanning capabilities, with randomizer.
Advanced usage options, such as buffered send-mode (one line every N seconds), and hexdump
(to stderr or to a specified file) of trasmitted and received data.
Optional RFC854 telnet codes parser and responder.
netcat could forward data stream from stdin to a TCP or UDP socket, and from a TCP or UDP socket
to stdout. Just like the cat program to forward data from stdin to stdout. According
to unconfirmed sources, that's the origin of the netcat program name.
/usr/bin/yes generates stream of y
zw@q ~ % yes
Press ctrl-C to stop the y's. You can generated stream on no too.
zw@q ~ % yes no
The hub ()
and cable ()
utilities are certainly inspired by netcat which could forward data stream from a socket to stdout,
and from stdin to a socket. Did I forget to recommend the netcat companion documentation for you
to read? ;-) Hub is designed to be like a server, and cable is designed to be like a client. Instead
of forwarding data between stdin/stdout and a socket, hub and cable forward and multiplex
data from a socket to any other sockets. That's where the names come from. They're just like Ethernet
hub and cable. Lets' see a screenshot. Yeah, screenshot! ;-)
zw@q ~ % ./hub
lullaby internetworks lab: (server alike) hub $Revision: 1.2 $
Copyright (C) 2001
zhaoway &zw@debian.org&
Usage: hub [hub buffer size] [tcp port number] [number of hub ports]
o hub buffer size is in bytes. for example 10240.
o tcp port number is at least 1024 so i do not need to be root.
o number of hub ports is at least 2. happy.
Hub will listen on a TCP port simulating a many port Ethernet hub. Data come in from one hub
port will be forwarded to other hub ports. You could test the hub alone without cable using netcat.
Note: nc is the acronym for netcat.
Launch hub in the console A: ConA % ./hub
From console B, connect a netcat: ConB % nc localhost 10000
From console C, connect another netcat: ConC % nc localhost 10000
Then you could type in ConC and read the output in ConB, vice versa.
Then there is cable:
zw@q ~ % ./cable
lullaby internetworks lab: (client alike) cable $Revision: 1.2 $
Copyright (C) 2001
zhaoway &zw@debian.org&
Usage: cable [cable buffer size] [1st ip] [1st port] [2nd ip] [2nd port] ..
o cable buffer size is in bytes. for example 10240.
o ports should be listening or connection attempts will fail.
o number of ip addr and port pairs is at least 2.
Cable is more or less like a shared Ethernet bus coaxial cable. It forwards and multiplexes data
between listening socket daemons. Let's test it too.
Launch a netcat daemon in ConA: ConA % nc -l -p 10000
Launch another netcat daemon in ConB: ConB % nc -l -p 10001
Arrange the cable: ConC % ./cable .0.1 .0.1 10001
Then you could type in ConA and read the output from ConB, vice versa.
There are some interesting techniques used in developing hub and cable. Notably the select()
function call. But for now, we will focus on our course to reinvent the /usr/bin/yes
first. ;-)
It's not a very easy task to reinvent /usr/bin/yes using netcat and hub and cable.
I could only give a cheat answer. And that's why I need to set the buffer size command line argument.
But anyway, let's begin!
The main idea is as following. First we set up a three-port hub, then we using cable to connect
two hub port together, after that we could using netcat to echo any character into the remain free
hub port. It's like the following diagram:
,---------,
,--[ ]-------[ ]-------[ ]--.
three-port hub
`---------------------------'
Because the nature of the hub, data sent in from port A, will be forwarded to port B and port
C, since port B and C are connected by a cable, the data come out of the hub will go right back
in, and then being multiplexed and forwarded to port A and circulating in the cable loop to eternity.
Eventually port A will receive infinite copies of the original data sent in.
Lets' construct the device.
In ConA, we launch the three-port hub: ConA % ./hub
In ConB, we loop the cable: ConB % ./cable .0.1 .0.1 10000
Now after we finished construction of our device, then we will using netcat to finally finish
our reinvention of /usr/bin/yes.
ConC % echo &y& | nc localhost 10000
The tricky exercises left for the reader is: what if we change the buffer size of both cable
and hub from 10240 to 1? You could try and see for yourself.
Have fun and good luck!
Your browser does not support iframes.
Softpanorama Recommended
FAIR USE NOTICE This site contains
copyrighted material the use of which has not always been specifically
authorized by the copyright owner. We are making such material available
in our efforts to advance understanding of environmental, political,
human rights, economic, democracy, scientific, and social justice
issues, etc. We believe this constitutes a 'fair use' of any such
copyrighted material as provided for in section 107 of the US Copyright
Law. In accordance with Title 17 U.S.C. Section 107, the material on
this site is distributed without profit exclusivly for research and educational purposes.&& If you wish to use
copyrighted material from this site for purposes of your own that go
beyond 'fair use', you must obtain permission from the copyright owner.
Classic books:
Most popular humor pages:
Copyright (C)
by Dr. Nikolai Bezroukov.
was created as a service to the UN Sustainable Development Networking Programme ()
in the author free time. This document is an industrial compilation designed and created exclusively
for educational use and is distributed under the .
Site uses AdSense so you need to be aware of Google privacy policy. Original materials copyright belong
to respective owners. Quotes are made for educational purposes only
in compliance with the fair use doctrine.
FAIR USE NOTICE This site contains
copyrighted material the use of which has not always been specifically
authorized by the copyright owner. We are making such material available
to advance understanding of computer science, IT technology, economic, scientific, and social
issues. We believe this constitutes a 'fair use' of any such
copyrighted material as provided by section 107 of the US Copyright Law according to which
such material can be distributed without profit exclusively for research and educational purposes.
This is a Spartan WHYFF (We Help You For Free)
site written by people for whom English is not a native language. Grammar and spelling errors should
be expected. The site contain some broken links as it develops like a living tree...
You can use PayPal to make a contribution, supporting hosting
of this site with different providers to distribute and speed up access. Currently there are
two functional mirrors:
(the fastest) and softpanorama.net.
Disclaimer:
The statements, views and opinions presented on this web page are those of the author and are
not endorsed by, nor do they necessarily reflect, the opinions of the author present and former employers,
SDNP or any other organization the author may be associated with. We do not warrant the correctness
of the information provided or its fitness for any purpose.
Last modified:
February, 19, 2014}
More Actions:
Print View
Render as Docbook
Delete Cache
------------------------
Check Spelling
Like Pages
Local Site Map
------------------------
Rename Page
Delete Page
------------------------
Subscribe User
------------------------
Remove Spam
Revert to this revision
Package Pages
------------------------
Frequently Asked Questions about the GNU C Library
This document tries to answer questions a user might have when installing and using glibc.
Please make sure you read this before sending questions or bug reports to the maintainers. The GNU C library is very complex.
The installation process has not been
there are too many variables.
You can do substantial damage to your system by installing the library incorrectly.
Make sure you understand what you are undertaking before you begin.May the source be with you, but remember the KISS-)
Netcat -- reading from and writing to network connections on either TCP or UDP
netcat is a network utility for reading from and writing to network connections on either
TCP or UDP. Hobbit () created netcat in 1995 as
a network analog of Unix .& The flexibility and
usefulness of this tool have prompted people to write numerous other Netcat implementations -- often
with modern features not found in the original.&
Netcat& is designed to be a reliable &back-end& tool that can be used directly or easily driven
by other programs and scripts. At the same time, it is a feature-rich network debugging and exploration
tool, since it can create almost any kind of connection you would need and has several interesting built-in
capabilities.
Most common version is 1.1:
Relocations: (not relocatable)
Vendor: SUSE LINUX Products GmbH, Nuernberg, Germany
Build Date: Fri Jun 16 10:04:19 2006
Install Date: Mon Dec 15 16:02:36 2008
Build Host: bassani.suse.de
: Productivity/Networking/Other
Source RPM: netcat-1.10-883.2.src.rpm
License: Other License(s), see package, distributable
: DSA/SHA1, Fri Jun 16 10:07:49 2006, Key ID a84edae89c800aca
: http://bugs.opensuse.org
: A Simple But Powerful Network Tool
Description :
Netcat is a simple Unix utility that reads and writes data across
network connections using TCP or UDP protocols. It is designed to be a
reliable back-end tool that can be used directly or easily driven by
other programs and scripts.
At the same time, it is a feature-rich
network debugging and exploration tool, because it can create almost
any kind of connection you may need and has several interesting
built-in capabilities.
Find the documentation in /usr/share/doc/packages/netcat/README.
hobbit@avian.org
Distribution: SUSE Linux Enterprise 10 (X86-64)
/usr/bin/netcat
/usr/share/doc/packages/netcat
/usr/share/doc/packages/netcat/Changelog
/usr/share/doc/packages/netcat/README
/usr/share/doc/packages/netcat/data
/usr/share/doc/packages/netcat/data/Makefile
/usr/share/doc/packages/netcat/data/README
/usr/share/doc/packages/netcat/data/data.c
/usr/share/doc/packages/netcat/data/dns-any.d
/usr/share/doc/packages/netcat/data/nfs-0.d
/usr/share/doc/packages/netcat/data/pm.d
/usr/share/doc/packages/netcat/data/pmap-dump.d
/usr/share/doc/packages/netcat/data/pmap-mnt.d
/usr/share/doc/packages/netcat/data/rip.d
/usr/share/doc/packages/netcat/data/rservice.c
/usr/share/doc/packages/netcat/data/showmount.d
/usr/share/doc/packages/netcat/data/xor.c
/usr/share/doc/packages/netcat/scripts
/usr/share/doc/packages/netcat/scripts/README
/usr/share/doc/packages/netcat/scripts/alta
/usr/share/doc/packages/netcat/scripts/bsh
/usr/share/doc/packages/netcat/scripts/dist.sh
/usr/share/doc/packages/netcat/scripts/irc
/usr/share/doc/packages/netcat/scripts/iscan
/usr/share/doc/packages/netcat/scripts/ncp
/usr/share/doc/packages/netcat/scripts/probe
/usr/share/doc/packages/netcat/scripts/web
/usr/share/doc/packages/netcat/scripts/webproxy
/usr/share/doc/packages/netcat/scripts/webrelay
/usr/share/doc/packages/netcat/scripts/websearch
/usr/share/man/man1/netcat.1.gz
Among the most interesting clones under active development is socat, which extends Netcat
to support many other socket types, SSL encryption, SOCKS proxies, and more. See
It can be used, for example, as a TCP relay.&
Another interesting implementation is Chris Gibson's
which is available from&
Web version of user guide is available from . Code
repository is
Other takes on Netcat include OpenBSD's nc, Cryptcat, Netcat6, PNetcat, SBD.
A Windows version of netcat was created by Chris Wysopal.& See
Several projects look dead. For example
by Giovanni Giacobbi. The project was not updated since Jan 2004.
It provides the possibility to connect two arbitrary scripts running on different computers with
one writing and the second reading from a pipe. This makes it useful for wide range application. Because
of its versatility, netcat is also called the &
Swiss Army knife&.& According to Hobbit notable features of netcat are:
Outbound or inbound connections, TCP or UDP, to or from any ports
Full DNS forward/reverse checking, with appropriate warnings
Ability to use any local source port
Ability to use any locally-configured network source address
Ability to reconnect
Built-in loose source-routing capability
Can read command line arguments from standard input
Slow-send mode, one line every N seconds
Optional ability to let another program service inbound connections
One of the most practical usages of this network connection is the file transfer. As a basic Netcat
function, this feature may be used during installation. For a freshly installed computer, setting up
servers often involves importing configuration files from the other computer. And initially neither&&
ftp or scp protocols may be available. For example, ftp protocol can be blocked
by DMZ firewall or channeled via proxy. In other words multiple layers of control mechanisms may interfere
with their functionality. And people responsible for firewall forget to do their work in time. In this
environment you can still transfer files with just one nc command using any open port visible
in nmap, for example port 25
At the server console:
$ netcat -v -w 3 -p 25 l- & settings.tgz
and on the client side:
$ netcat -v 10.0.1.1 25 & settings.tgz
The command line for the server uses the& argument -w to cause Netcat to wait for a few seconds.& Magically, the file is
transferred from the client to the server. Now you can unzip them and configure the server. Think of this as a pipeline over TCP/IP.&
Additional examples can be found at
&Among other potential uses of netcat:
Script backends
Testing services& such as telnet of http.
Quick and dirty backup handlers
Simulation of services behaviour for testing.
Security related uses, for example firewall testing
Network performance testing
Among alternative implementations we again would like to single our socat
has some interesting new& functionality, but the idea is
the same as netcat . It extends Netcat to support several other socket types, SSL encryption,
SOCKS proxies, and more. It can be used, for example, as a TCP relay.
Top updates
Your browser does not support iframes.
Google Search
[Jan 12, 2014]&
November 6, 2006&
One of the Linux command line tools I had initially under-estimated
is netcat or just nc. By default,
netcat creates a TCP socket either in listening mode (server socket)
or a socket that is used in order to connect to a server (client
mode). Actually, netcat does not care whether the socket is meant to
be a server or a client. All it does is to take the data from stdin
and transfer it to the other end across the network.The simplest example of its usage is to create a server-client chat
system. Although this is a very primitive way to chat, it shows how
netcat works. In the following examples it is assumed that the
machine that creates the listening socket (server) has the
192.168.0.1 IP address. So, create the chat server on this machine
and set it to listen to 3333 TCP port:$ nc -l 3333
On the other end, connect to the server with the following:
$ nc 192.168.0.1 3333
In this case, the keyboard acts as the stdin. Anything you type
in the server machine’s terminal is transfered to the client machine
and vice-versa.
Transfering Files
In the very same way it can be used to transfer files between two
computers. You can create a server that serves the file with the
following:
$ cat backup.iso | nc -l 3333
Receive backup.iso on the client machine with the following:
$ nc 192.168.0.1 3333 & backup.iso
As you may have noticed, netcat does not show any info about the
progress of the data transfer. This is inconvenient when dealing
with large files. In such cases, a pipe-monitoring utility like
can be used
to show a progress indicator. For example, the following shows the
total amount of data that has been transfered in real-time on the
server side:
$ cat backup.iso | pv -b | nc -l 3333
Of course, the same can be implemented on the client side by
piping netcat’s output through pv:
$ nc 192.168.0.1 3333 | pv -b & backup.iso
Other Examples
Netcat is extremely useful for creating a partition image and
sending it to a remote machine on-the-fly:
$ dd if=/dev/hdb5 | gzip -9 | nc -l 3333
On the remote machine, connect to the server and receive the
partition image with the following command:
$ nc 192.168.0.1 3333 | pv -b & myhdb5partition.img.gz
This might not be as classy as the
, but it is efficient.
Another useful thing is to compress the critical files on the
server machine with tar and have them pulled by a
remote machine:
$ tar -czf - /etc/ | nc -l 3333
As you can see, there is a dash in the tar options instead of a
filename. This is because tar’s output needs to be passed to netcat.
On the remote machine, the backup is pulled in the same way as
$ nc 192.168.0.1 3333 | pv -b & mybackup.tar.gz
It is obvious that using netcat in the way described above, the
data travels in the clear across the network. This is acceptable in
case of a local network, but, in case of transfers across the
internet, then it would be a wise choice to do it through an SSH
Using an SSH tunnel has two advantages:
The data is transfered inside an encrypted tunnel, so it is
well-protected.
You do not need to keep any open ports in the firewall
configuration of the machine that will act as the server, as the
connections will take place through SSH.
You pipe the file to a listening socket on the server machine in
the same way as before. It is assumed that an SSH server runs on
this machine too.
$ cat backup.iso | nc -l 3333
On the client machine connect to the listening socket through an
SSH tunnel:
$ ssh -f -L .0.1:3333 me@192.168.0.1 sleep 10; \
nc 127.0.0.1 23333 | pv -b & backup.iso
This way of creating and using the SSH tunnel has the advantage
that the tunnel is automagically closed after file
transfer finishes. For more information and explanation about it
please read my article about
Telnet-like Usage
Netcat can be used in order to talk to servers like telnet does.
For example, in order to get the definition of the word “server”
from the “WordNet” database at the dict.org dictionary server, I’d
$ nc dict.org 2628
220 ..............some WELCOME.....
DEFINE wn server
150 1 definitions retrieved
151 &server& wn &WordNet (r) 2.0&
n 1: a person whose occupation is to serve at table (as in a
restaurant) [syn: {waiter}]
2: (court games) the player who serves to start a point
3: (computer science) a computer that provides client stations
with access to files and printers as shared resources to a
computer network [syn: {host}]
4: utensil used in serving food or drink
250 ok [d/m/c = 1/0/18; 0.000r 0.000u 0.000s]
221 bye [d/m/c = 0/0/0; 16.000r 0.000u 0.000s]
Works as a Port Scanner too
A useful command line flag is -z. When it is
used, netcat does not initiate a connection to the server, but just
informs about the open port it has found. Also, instead of a single
port, it can accept a port-range to scan. For example:
$ nc -z 192.168.0.1 80-90
Connection to 192.168.0.1 80 port [tcp/http] succeeded!
In this example, netcat scanned the 80-90 range of ports and
reported that port 80 is open on the remote machine.
The man page contains some more interesting examples, so take the
time to read it.
... ... ...
[Jan 12, 2014]
Port scanning is done by system admin and hackers to find the open ports at some machine. It
helps them to identify the venerability in the system.
$nc -z -v -n 172.31.100.7 21-25
It can work in both TCP and UDP mode, default is TCP mode, to change to udp use -u option
z& option tell netcat to use zero IO .i.e the connection is closed as soon as it
opens and no actual data exchange take place.
v& option is used for verbose option.
n& option tell netcat not to use the DNS lookup for the address.
This command will print all the open ports between 21 to 25.
Banner is a text that services sends when you connects to them. Banner are very usefull when
you are trying to velberability in the system as it identify the type and version of the services.
NOTE not all services may send banner.
Once You have found the open ports you can easily grab the service banner by connecting to them
using netcat.
$ nc -v 172.31.100.7 21
The Linux netcat command will connect to open port 21 and will print the banner of the service
running at that port.
[Jan 19, 2011]
I always bet on dd + netcat to do imaging over network.
On the system where you will store the image (192.168.0.10):
netcat –l –p 7000 & file.iso
On the system to be cloned:
dd if=/dev/sda | netcat 192.168.0.10 7000 -q
where: dd if=volume_to_be_cloned| netcat ip_of_destination_ip port -q
You can even do it to full clone the system instead store it.
Give a look here:
Ncat is a feature-packed networking utility which will read and write data across a network from
the command line. Ncat was written for the Nmap Project as a much-improved reimplementation of the
venerable . It uses both TCP and UDP for communication
and is designed to be a reliable back-end tool to instantly provide network connectivity to other
applications and users. Ncat will not only work with IPv4 and IPv6 but provides the user with a
virtually limitless number of potential uses.
Among Ncat’s vast number of features there is the ability to chain Ncats together, redirect both
TCP and UDP ports to other sites, SSL support, and proxy connections via SOCKS4 or HTTP (CONNECT
method) proxies (with optional proxy authentication as well). Some general principles apply to most
applications and thus give you the capability of instantly adding networking support to software
that would normally never support it.
Ncat is integrated with Nmap in the
and is also available in Nmap version 4.85BETA1 and later (see the
contains full documentation
including many tips, tricks, and practical real-life examples! There is also an
for a quick usage summary.
Netcat is a simple Unix utility that reads and writes data across network connections, using TCP
or UDP protocols. It is designed to be a reliable &back-end& tool that can be used directly or easily
driven by other programs and scripts. At the same time, it is a feature-rich network debugging and
exploration tool, since it can create almost any kind of connection you may need and has several
interesting built-in capabilities.
You can find the documentation in /opt/freeware/share/doc/packages/netcat/README.
Homepage:&
Current version:& v1.10
Source RPM:&
[May 12, 2010]
The simplest example of its usage is to create a server-client chat system. Although this is
a very primitive way to chat, it shows how netcat works. In the following examples it is assumed
that the machine that creates the listening socket (server) has the 192.168.0.1 IP address. So,
create the chat server on this machine and set it to listen to 3333 TCP port:
$ nc -l 3333
On the other end, connect to the server with the following:
$ nc 192.168.0.1 3333
In this case, the keyboard acts as the stdin. Anything you type in the server machine’s terminal
is transfered to the client machine and vice-versa.
Transfering Files
In the very same way it can be used to transfer files between two computers. You can create a
server that serves the file with the following:
$ cat backup.iso | nc -l 3333
Receive backup.iso on the client machine with the following:
$ nc 192.168.0.1 3333 & backup.iso
As you may have noticed, netcat does not show any info about the progress of the data transfer.
This is inconvenient when dealing with large files. In such cases, a pipe-monitoring utility like
can be used to show a progress indicator.
For example, the following shows the total amount of data that has been transfered in real-time
on the server side:
$ cat backup.iso | pv -b | nc -l 3333
Of course, the same can be implemented on the client side by piping netcat’s output through pv:
$ nc 192.168.0.1 3333 | pv -b & backup.iso
Other Examples
Netcat is extremely useful for creating a partition image and sending it to a remote machine
on-the-fly:
$ dd if=/dev/hdb5 | gzip -9 | nc -l 3333
On the remote machine, connect to the server and receive the partition image with the following
$ nc 192.168.0.1 3333 | pv -b & myhdb5partition.img.gz
This might not be as classy as the
, but it is efficient.
Another useful thing is to compress the critical files on the server machine with tar
and have them pulled by a remote machine:
$ tar -czf - /etc/ | nc -l 3333
As you can see, there is a dash in the tar options instead of a filename. This is because tar’s
output needs to be passed to netcat.
On the remote machine, the backup is pulled in the same way as before:
$ nc 192.168.0.1 3333 | pv -b & mybackup.tar.gz
It is obvious that using netcat in the way described above, the data travels in the clear across
the network. This is acceptable in case of a local network, but, in case of transfers across the
internet, then it would be a wise choice to do it through an SSH tunnel.
Using an SSH tunnel has two advantages:
The data is transfered inside an encrypted tunnel, so it is well-protected.
You do not need to keep any open ports in the firewall configuration of the machine that
will act as the server, as the connections will take place through SSH.
You pipe the file to a listening socket on the server machine in the same way as before. It is
assumed that an SSH server runs on this machine too.
$ cat backup.iso | nc -l 3333
On the client machine connect to the listening socket through an SSH tunnel:
$ ssh -f -L .0.1:3333 me@192.168.0.1 sleep 10; \
nc 127.0.0.1 23333 | pv -b & backup.iso
This way of creating and using the SSH tunnel has the advantage that the tunnel is automagically
closed& after file transfer finishes. For more information and explanation about it please
read my article about .
Telnet-like Usage
Netcat can be used in order to talk to servers like telnet does. For example, in order to get
the definition of the word “server” from the “WordNet” database at the dict.org dictionary server,
$ nc dict.org 2628
220 ..............some WELCOME.....
DEFINE wn server
150 1 definitions retrieved
151 &server& wn &WordNet (r) 2.0&
n 1: a person whose occupation is to serve at table (as in a
restaurant) [syn: {waiter}]
2: (court games) the player who serves to start a point
3: (computer science) a computer that provides client stations
with access to files and printers as shared resources to a
computer network [syn: {host}]
4: utensil used in serving food or drink
250 ok [d/m/c = 1/0/18; 0.000r 0.000u 0.000s]
221 bye [d/m/c = 0/0/0; 16.000r 0.000u 0.000s]
Works as a Port Scanner too
A useful command line flag is -z. When it is used, netcat does not initiate a connection
to the server, but just informs about the open port it has found. Also, instead of a single port,
it can accept a port-range to scan. For example:
$ nc -z 192.168.0.1 80-90
Connection to 192.168.0.1 80 port [tcp/http] succeeded!
In this example, netcat scanned the 80-90 range of ports and reported that port 80 is open on
the remote machine.
The man page contains some more interesting examples, so take the time to read it.
: on RedHat based systems CFLAGS may have -Wall predefined which breaks socat's build
process with something like #error HAVE_BASIC_OFF_T is out of range: HAVE_BASIC_OFF_T...,
please report this as bug. In this case replace the configure file with
) and restart the
build process:
: socat version 1.7.1.1 fixes a couple of bugs, some of which could crash socat under
some circumstances ().
: Gentil Kiwi updated his Cygwin based binary socat packages at
: the third beta version (2.0.0-b3) of
is ready for
. It contains
all new bug fixes and features of 1.7.1.0 (plus fix:setenv, see below) and introduces the possibility
to integrate external programs in address chains (see
: Todd Stansell reported a bug that crashed socat versions 1.7.0.0 to 1.7.1.0 (and
all earlier versions with option su) on systems without a native setenv() function, especially Solaris
up to version 9. Here is the
: socat version 1.7.1.0 provides a few new address options to better control its closing
behaviour - see .
: socat version 1.7.0.1 fixes some bugs (connect-timeout, SIGSEGV on listen, end-close).
: a public
containing socat 1.6.0.0 and all later releases is available.
: socat version 1.7.0.0 brings support for
New option
to interrupt raw terminal connections. Listening and receiving sockets can set a couple of environment
variables. Added base control of System V STREAMS. Lots of corrections were performed. socat compiles
on Mac OS X again.
1 Preliminary Note
I'm using two systems in this article:
: IP address 192.168.0.100
: IP address 192.168.0.101
netcat should already be installed on your system - you can check with
To learn more about netcat, take a look at its man page:
2 Copying A File From One System To The Other
Let's say we want to copy the file ISPConfig-2.2.27.tar.gz from server1
to server2. To do this, run
nc -lp 1234 & ISPConfig-2.2.27.tar.gz
on server2 (1234 is some unused port - you can replace it with another
value if you like). server2 will then wait for the file ISPConfig-2.2.27.tar.gz on
port 1234.
On server1, run
1234 & ISPConfig-2.2.27.tar.gz
to start the file transfer.
Selected Comments
Maximo Migliari:
More recent versions of the netcat command (nc) will not allow the -p and -l options to be
used at the same time, so instead of:
nc -l -p 1234 | dd of=/dev/sda
you would type:
nc -l 1234 | dd of=/dev/sda
If you are using nc with dd to transfer an image of a partition from one machine to the other,
one of the problems is that dd and netcat won't show you a progress bar of the operation. One
solution to this is to install pipe viewer by Andrew Wood. It then allows you to pipe the netcat
command to the pipe viewer, allowing you to view the progress of the entire operation and for
debugging.
target machine:
nc -l 1234 | pv | dd of=/dev/sda
source machine:
dd if=/dev/sda | nc 192.168.0.12 1234
[Jul 2, 2008]
by Vivek Gite
How do I use nc / netcat instead of messing with syslogd?
This is called one minute configuration. You can easily get output on 192.168.1.100 without using
syslogd. All you have to do is run netcat (nc) command, on 192.168.1.100:
$ nc -l -p 30000 -u
Login to any other box, enter command:
# modprobe netconsole .1.5/eth0,8.1.100/00:19:D1:2A:BA:A8
Output should start to appear on 192.168.1.100 from 192.168.1.5 without configuring syslogd or anything
Further readings:
man pages nc, modeprobe
Our sample setup
-----------------------
HostA // 192.168.1.1
------------------------
------------------------
HostB // 192.168.1.2
-------------------------
Your task is copy HostA /dev/sda to HostB's /dev/sdb using netcat command. First login as root
Command to type on hostB (receiving end ~ write image mode)
You need to open port on hostB using netcat, enter :
# netcat -p 2222 -l |bzip2 -d | dd of=/dev/sdb
-p 2222& : Specifies the source port nc should use, subject to privilege restrictions
and availability. Make sure port 2222 is not used by another process.
-l& : Used to specify that nc should listen for an incoming connection rather
than initiate a connection to a remote host.
bzip2 -d : Compresses image using the Burrows-Wheeler block sorting text compression
algorithm, and Huffman coding. This will speed up network transfer ( -d : force decompression
dd of=/dev/sda& : /dev/sda is your hard disk. You can also specify partition
such as /dev/sda1
Command to type on hostA (send data over a network ~ read image mode)
Now all you have to do is start copying image. Again login as root and enter:
# bzip2 -c /dev/sda | netcat hostA 2222
OR use IP address:
# bzip2 -c /dev/sda | netcat 192.168.1.1 2222
This process takes its own time.
A note about latest netcat version 1.84-10 and above
If you are using latest nc / netcat version above syntax will generate an error. It is an error
to use -l option in conjunction with the -p, -s, or -z options. Additionally, any timeouts specified
with the -w option are ignored. So use nc command as follows.
On hostA, enter:
# nc -l 2222 & /dev/sdb
On hostB, enter:
# nc hostA 2222& /dev/sda
# nc 192.168.1.1 2222& /dev/sda
Using a second machine (hostB), connect to the listening nc process at 2222 (hostA), feeding
it the file (/dev/sda)which is to be transferred. You can use bzip2 as follows.
On hostA, enter:
# nc -l 2222 | bzip2 -d & /dev/sdb
On hostB, enter:
# bzip2 -c /dev/sda | nc 192.168.1.1 2222
Further readings
netcat command other usage -
(you can also use
nc and bzip2 command man page
How do I improve performance?
As suggested by anonymous user:
You should definitely use bs=16M or something like that. Otherwise, the copy will take forever.
Copying a 300 GB hard drive over a 1 Gbps cross-over cable took about 1 1/2 hours or so using
bs=16M Without this option, the same thing would have taken about 7 hours.
In short use command as follows:
# netcat -p 2222 -l |bzip2 -d | dd of=/dev/sdb
Netcat - The TCP/IP Swiss Army Knife
Tom Armstrong
February 15, 2001Overview
Netcat is a tool that every security professional should be aware of and possibly have in their
‘security tool box’. In May/June of 2000, insecure.org conducted a survey of 1200 Nmap users from
the Nmap-hackers mailing list to determine their favorite security tools. Netcat was the second
most popular tool, not including Nmap. A quick search on securityportal ()
found 166 matches of netcat. Most of the matches describe or use netcat in some way. Netcat is a
utility that is able to write and read data across TCP and UDP network connections. If you are responsible
for network or system security it essential that you understand the capabilities of netcat.
Netcat should not be installed unless you have authority to do so. Never install any executable
unless you can trust the providor. If possible review the source and compile it yourself. To be
safe only use netcat in a test environment.
Hobbit () created netcat in 1995 as a feature-rich
network debugging and exploration tool. Its purpose was to be able to create just about any type
of network connection. According to Hobbit-
Some of the features of netcat are:
Outbound or inbound connections, TCP or UDP, to or from any ports
Full DNS forward/reverse checking, with appropriate warnings
Ability to use any local source port
Ability to use any locally-configured network source address&
Built-in port-scanning capabilities, with randomizer
Built-in loose source-routing capability
Can read command line arguments from standard input&
Slow-send mode, one line every N seconds
Optional ability to let another program service inbound connections&
Some of the potential uses of netcat:
Script backends
Scanning ports and inventorying services
Backup handlers
File transfers
Server testing and simulation
Firewall testing
Proxy gatewaying
Network performance testing
Address spoofing tests
Protecting X servers
1001 other uses you`ll likely come up with
The original version of netcat was released to run on Unix and Linux. Weld Pond ()
released the Windows NT version in 1998. The source code is available for both versions.
Remote command prompt anyone?
On a Windows NT server issue the following command in the directory that contains netcat:
nc -l -p1234 -d -e cmd.exe –L
This –l puts netcat into listen mode, the -p1234 tells netcat to use port 1234, the –d allows
netcat to run detached from the console, the –e cmd.exe tells netcat to execute the cmd.exe program
when a connection is made, and the –L will restart Netcat with the same command line when the connection
is terminated.
On the client system issue the following command:
nc destination 1234
This command causes netcat to connect to the server named destination on port 1234. Immediately
you are given a console connection to the destination server. Be careful! To exit the remote console
session type:
You will be returned to your own console and will be able to reconnect to the destination server
because netcat was started on the destination server with the –L option.
FTP & drive mapping blocked?
To receive a file named newfile on the destination system start netcat with the following command:
nc –l –p 1234 &newfile
On the source system send a file named origfile to the destination system with the following
nc destination 1234 &origfile
Issue a ^C on the source system and your done. Be sure to check the file to be sure it is the
same size as the original.
Hiding Netcat on Windows NT
Here are a few ways that a hacker could use to hide netcat on a system or use it behind a firewall:
Rename the executable or recompile with a different name. Beware that using a copy of netcat
that you aren’t sure how the source was compiled is very dangerous. If possible review the source
code and compile it yourself.
Detach from the console option (-d)
Use a port that is well known and allowed through any firewalls between the two systems.
Port Scanning
A scanning example from Hobbit is &nc -v -w 2 -z target 20-30&. Netcat will try connecting to
every port between 20 and 30 [inclusive] at the target, and will likely inform you about an FTP
server, telnet server, and mailer along the way. The -z switch prevents sending any data to a TCP
connection and very limited probe data to a UDP connection, and is thus useful as a fast scanning
mode just to see what ports the target is listening on. To limit scanning speed if desired, -i will
insert a delay between each port probe. Even though netcat can be used for port scanning it isn’t
its strength. A tool such as nmap is better suited for port scanning.
Netcat + Encryption = Cryptcat
Netcat is a useful tool as it is, but if someone were using it you would be able to at least
get a feel for what they were doing. At least you could before Cryptcat! Cryptcat is the standard
netcat enhanced with Bruce Schneier’s twofish encryption. It can be found at
. Linux, OpenBSD, FreeBSD, and
Windows versions are available. So much for sniffing any netcat traffic!
Command Option Overview
Netcat accepts its commands with options first, then the target host, and everything thereafter
is interpreted as port names or numbers, or ranges of ports in M-N syntax. Netcat does not currently
handle portnames with hyphens.
Description
Allows netcat to detach from the console on Windows NT.
Executes a program if netcat is compiled with the
–DGAPING_SECURITY_HOLE.
Sets the interval time. Netcat uses large 8K reads and writes.
This basically sends data one line at a time. This is normally used when data is read from
files or pipes.
Used to construct a loose-source-routed path for your connection.
This is modeled after &traceroute&.
Positions the &hop pointer& within the list.
Forces netcat to listen for an inbound connection. An example
&nc –l –p 1234 &filename& tells netcat to listen for a connection on port 1234 and once
a connection is made to send the file named filename. The file is sent whether the connecting
system wants it or not. If you specify a target host netcat will only accept an bound connection
only from that host and if you specify one, only from the specified foreign source port.
Restarts Netcat with the same command line that was used when
the connection was started.. This way you can connect over and over to the same Netcat process.
Forces netcat to only accept numeric IP addresses and to not
do any DNS lookups for anything
Used to obtain a hex dump file of the data sent either way,
use &-o logfile&. The dump lines begin with &&& or &&& to respectively indicate &from the
net& or &to the net&, and contain the total count per direction, and hex or ascii representations
of the traffic.
Required for outbound connections. The parameter can be numeric
or a name as listed in the services file. If –p is not used netcat will bind to whatever
unused port the systems gives it, unless the –r option is used.
Causes port scanning to be done randomly. Normally it is done
highest to lowest.
Used to specifiy local network source address. Usage &-s ip-addr&
or &-s name&.
Enables netcat to respond to telnet option negotiation if netcat
is compiled with –DTELNET parameter. Telnet daemons will get no useful answers, as they
would from a telnet program.
Tells netcat to use UDP instead of TCP.
Controls the level of verbosity.
(without –n) netcat will do a full forward and reverse name and address lookup for
the host, and warn you about the all-to-common problem of mismatched names in the DNS.
Usually want to use the –w 3, which limits the time spent trying to make a connection.
If multiple ports are given –v must be specified twice.
Limits the time spent trying to make a connection.
Prevents sending any data to a TCP connection and very limited
probe data to a UDP connection. Use –i to insert a delay between each port probe. This is
useful as a fast scanning mode just to see what ports the target is listening on.
Conclusion
Netcat is a powerful tool that every security professional should be familiar with. It should
be used with caution. I would not recommend installing netcat on your production networks. I would
suggest using it to test your firewall, and router configurations in a test environment. It can
also be used to test your operating system lockdown procedures. Be certain that you have the authority
to install and use netcat on your network before doing so. You might even want to review the source
code to learn how Hobbit built netcat and how Weld Pond ported it to the Windows platform.
References
1. Insecure.org, &Top 50 Security Tools&
(August 21, 2000)
2. Hobbit, &New tool available: Netcat&
(October 28, 1995)
3. Weld Pond, &Netcat 1.10 for NT&
(February 2, 1998)
4. Hobbit, &Netcat 1.10&
(March 20, 1996)
5. Farm9, &cryptcat = netcat + encryption&
(October 2, 2000)
6. Hobbit, &Netcat 1.10&
(March 20, 1996)
Simple File Transfer
So as an example, I will start two copies of netcat on the same machine locally:
adam@adamp:~$ netcat -l -p 1111
Here, using the -l switch, we are able to specify that netcat should go into listen mode i.e.
to listen on
the specified port. Using p 1111 we are able to specify that we are using port 1111. To summarize,
netcat will sit and listen for TCP connections on port 1111 and print any data it receives out to
screen. In another window we start netcat as:
adam@adamp:~$ netcat 127.0.0.1 1111
This will connect to host 127.0.0.1 (Locally) on port 1111.
We are now able to have a full two way data transmission, in Window 1:
adam@adamp:~$ netcat -l -p 1111This message was typed in WINDOW1. This message was typed in WINDOW2Now
I'm going to end communication with ^C (Ctrl-C)
adam@adamp:~$
And in Window 2:
adam@adamp:~$ netcat 127.0.0.1 1111
This message was typed in WINDOW1 This message was typed in WINDOW2 Now I'm going to end communication
with ^C (Ctrl-C)
adam@adamp:~$
This is the most basic use of netcat described. Here, we are using a BASH shell, and thus we
may pipe |
data to and from netcat, as well as using the redirection (&, &&, &, &&) to allow netcat to integrate
the shell environment. We will now examine using netcat with one of the redirection operators. Lets
say we wanted to simply transmit a plaintext file. In one window, we will start netcat as:
adam@adamp:~$ netcat -l -p 1111 & outputfile
This will run netcat with the same parameters specified above, except it will redirect
all text received into outputfile.
adam@adamp:~$ echo & infile && EOF
& This is a test file.
& I am going to attempt to transmit this.
& Using Netcat.
adam@adamp:~
Here, we have created some text in a file, and this is the file we are going to attempt to transmit:
adam@adamp:~$ cat infile | netcat 127.0.0.1 1111 q 10adam@adamp:~$
(C) Learn Security Online, Inc.
Hopefully tbr& $
And here we can confirm that it has. The -q 10 in the command line will quit after EOF (Otherwise
netcat will hang waiting for more input for cat and we will have to terminate it manually). The
parameter 10 causes it to quit after 10 seconds anyway.
Now, there is no reason why we can’t integrate tar and netcat together, and use this to transmit
directory across a netcat socket:
On one side: tar zcfp - /path/to/directory | nc -w 3 127.0.0.1 1234
The tar statement before the pipe tars and compresses (using gzip) every file within that directory,
before printing its output to stdout (The screen). It is then caught by the pipe, and piped to nc
this example, connects to 127.0.0.1 on port 1234 and sends it the data which would normally hit
screen. The w 3 switch causes nc to allow for a 3 second timeout (In the event of a temporary
disconnection or similar).
On the other side: nc -l -p 1234 | tar xvfpz
This will listen on port 1234 for a connection, and will pass any data received to tar. Using
the option v
we can print out filenames to screen:
Simple Socket Reply
With what we have learned so far, we are easily able to get netcat to listen in on a socket,
and pump out
any data we wish when it receives a connection.
As an example:
do echo &Leave me alone& | netcat -l -p 1234 w10; done
Consider this line. Firstly lets examine echo &Leave me alone& | netcat -l -p 1234 -w10
What we are doing here, is listening in on port 1234 with a wait time of 10 seconds. If/when
we receive
a connection, pipe the results of echo &Leave me alone& to netcat. The w 10 is necessary, as otherwise
any connection made in will remain open forever. We can also optionally add a v in to the netcat
command line which will give us verbose information, i.e. who is connecting.
Every time a connection times out (either with the w 10 command line switch, or because a connection
has been made and then closed), netcat will exit. As this is not what we want, we put the command
within a standard BASH: while CONDITION; do STATEMENT; done clause, which when the
condition is set to true will run forever.
If you build netcat with GAPING_SECURITY_HOLE defined, you can use it as an &inetd& substitute
to test experimental network servers that would otherwise run under &inetd&.
A script or program will have its input and output hooked to the network the same way, perhaps
some fancier signal handling.
Given that most network services do not bind to a particular local address, whether they are
&inetd& or not, it is possible for netcat avoid the &address already in use& error by binding to
a specific
This lets you [as root, for low ports] place netcat &in the way& of a standard service, since
connections are generally sent to such specifically-bound listeners first and fall back to the ones
This allows for a one-off experimental simulation of some service, without having to screw around
with inetd.conf. Running with -v turned on and collecting a connection log from standard error is
recommended.
Netcat as well can make an outbound connection and then run a program or script on the originating
end, with input and output connected to the same network port.
This &inverse inetd& capability could enhance the backup-server concept described above or help
facilitate things such as a &network dialback& concept.
The possibilities are
if such things are intended as security mechanisms,
be best to modify netcat specifically for the purpose instead of wrapping such functions in scripts.
Speaking of inetd, netcat will function perfectly well *under* inetd as a TCP connection redirector
inbound services, like a &plug-gw& without the authentication step.
This is very useful for doing stuff like redirecting traffic through your firewall out to other
places like
web servers and mail hubs, while posing no risk to the firewall machine itself.
Put netcat behind inetd and tcp_wrappers, perhaps thusly:
www stream tcp nowait nobody /etc/tcpd /bin/nc -w 3 realwww 80
and you have a simple and effective &application relay& with access control and logging. Note
the wait time as a &safety& in case realwww isn't reachable or the calling user aborts the connection
otherwise the relay may hang there forever.
Inetd/tcp_wrappers and netcat information, courtesy of: http://www./netcat.html
Talking to syslogd -r
Syslog Daemons running with the r switch log not only their own hosts data but accept remote
broadcasts. They listen in on UDP port 514.
&echo '&0&message' | nc -w 1 -u loggerhost 514&
If loggerhost is running syslogd r and can accept your messages.
Note the -u switch here, to put netcat into UDP mode. Specifying the &0& before your message
that your message receives top priority within syslog (kern.emerg)
The scanning features of netcat can be used against yours or your friends networks to get useful
information about which hosts have certain ports open. You can also send a precompiled data file
each. For example:
Echo EXIT | nc -w 1 127.0.0.1 20-250 500-600
Will scan 127.0.0.1 on ports 20-250, 500-600 and . Every port that it finds is open,
pipe the output of echo &EXIT& being the word &EXIT& to that port.
The results are as follows:
(For the sanity of my server, I have blocked out a number of parts from certain service banners.)
And now with UDP scanning: nc -v -w 1 127.0.0.1 u 20-250 500-600
we receive:
adam@adamp:~$ nc -u -v -w 1 127.0.0.1 20-250 500-600 localhost [127.0.0.1] 250 (?) openadam@adamp:~$
-v was to put netcat into verbose mode, and u was telling netcat to fall into UDP mode.
&Your TCP spoofing possibilities are mostly limited to destinations you can source-route to,
locally bound to your phony address.
Many sites block source-routed packets these days for precisely this reason.
If your kernel does oddball things when sending source-routed packets, try moving the pointer
around with -G. You may also have to fiddle with the routing on your own
machine before you start receiving packets back.
Warning: some machines still send out traffic using the source address of the outbound interface,
regardless of your binding, especially in the case of localhost.
Check first. If you can open a connection but then get no data back from it, the target host
is probably
killing the IP options on its end [this is an option inside TCP wrappers and several other packages],
which happens after the 3-way handshake is completed.
If you send some data and observe the &send-q& side of &netstat& for that connection increasing
never getting sent, that's another symptom. Beware: if Sendmail 8.7.x detects a source-routed SMTP
connection, it extracts the hop list and sticks it in the Received: header!&
http://www./netcat.html
Spoofing is a useful technique, as is source routing.
Source routing is almost obsolete now, and the majority of routers filter out source routed packets.
Source routing in a nutshell is basically setting the route that the packet will take at the source,
storing that information along with the packet.
Normally, each router makes its own mind up as to where a packet will get routed, and follows
predefined routing tables. If we have access to all routers between our device and the target device
(which can be one machine if youre talking about your local LAN server), then we are able to modify
the routing entries on those devices, bind a phoney address to our machine and source route packets
the intended destination.
Spoofing is where we modify the source address of a packet so that the recipient believes it
a different address. There are tw
A number of clever ISP routers will drop packets with incorrect source addresses.
If the destination host does get to receive your spoofed packet, it will send data back to the
spoofed address (instead of ours). This does have a number of uses however in the example of
ICMP ping flooding a host and spoofing the source address
(as a theoretical
Simple Response Service
echo -e &GET
HTTP/1.0\n\n& | nc w
We make a connection
on port 80 (Web server port), and put in an HTTP request for
. At this point, we are presented with the HTML spurted out by the web server.
We can pipe this to &| less& or similar or even our favourite HTML interpreter.
Take a look at this example, and you will see what we have done here. In one instance we have
an HTML file webfrontend and we now pipe that HTML to any incoming connection to netcat on port
We then make a connection on the larger window, using lynx http://127.0.0.1:1111 and we have
made ourselves a tiny http server, possibly could be used as a holding page server or something
Advanced Uses
Now we'll set up a server netcat to listen on port 1111. We'll also set up a client netcat to
talk to the real
web server on port 81. By getting them to pass all data they receive to each other, together they
something that sits in the middle of a network connection. Here are the commands we use:
mknod backpipe p
nc -l -p 1111 0backpipe
Because bash pipes only carry data in one direction, we need to provide a way to carry the responses
well. We can create a pipe on the local filesystem to carry the data in the backwards direction
this only needs to be run once.
Requests coming into the proxy from the client arrive at the first nc, listening on port 1111.
handed off to the &tee& command, which logs them to the inflow file, then continue on to the second
command which hands them off to the real web server. When a response comes back from the server,
arrives back at the second nc command, gets logged in the second tee command to the outflow file,
then gets pushed into the backpipe pipe on the local filesystem. Since the first netcat is listening
pipe, these responses get handed to that first netcat, which then dutifully gives them back to the
While the above example is for watching tcp streams going to and from a web server, the above
technique is useful for watching any tcp connection. In fact, since nc also works with udp packets
something telnet can't do - it should be possible to even set up udp proxies this way.
Windows Command Shell
As we can see from the image above, we have started netcat with options of l p 1234 e
&c:\windows\system32\cmd.exe&. These are the same options as with the Unix shell, and this should
theoretically start a cmd.exe shell listening in on port 1234:
As you see from above, this has succeeded. Netcat and program execution for Windows can be used
exactly the same way.
Unauthorised Proxying
Assume you are an administrator of a Linux router. Using the methods above, as well as your iptables
software, you can proxy a users outgoing connection through your nc proxy. Using iptables with the
DNAT target and the j REDIRECT target, you can transparently proxy outgoing connections through
to any other ports you want, and what better to use than your nc proxy?
Cryptcat can be found at: http://sourceforge.net/projects/cryptcat/ and is the ultimate companion
Netcat. It includes a lightweight version of Netcat, featuring encrypted transport properties. (Just
those superbly paranoid!). Useful for encrypting communications out of a network.
Final Thoughts
If I was given one tool on a freshly installed PC, I would ask for Netcat. Due to its versatility
huge range of uses, it can be used as a transfer tool, a scanning tool, a server, a proxy and so
more. I have put down everything useful I can think of, and welcome any further suggestions directed
Command Cheat Sheet
The following are the most useful uses of netcat:
For windows nc d can be used to detach from the console.
nc -l -p [port] will create a simple listening tcp port. Add u to put into UDP mode.
nc -e [program] To redirect stdin/stdout from program.
nc -w [timeout] To set a timeout before netcat automatically quits. (Used within a loop usually)
program | nc To pipe output of program to netcat
nc | program To pipe output of netcat to program
nc -h Help sheet
nc -v To put into verbose mode, or use v v to put into ultra-verbose mode!
nc -g or nc G Source routing flags
nc -t Use telnet negotiation (If performing telnet negotiation)
nc -o [file] Hex dump traffic to file
nc -z No I/O (Used for scanning ports)
Netcat is a featured networking utility which reads and writes data across network connections,
using the TCP/IP protocol. It is designed to be a reliable &back-end& tool that can be used directly
or easily driven by other programs and scripts. At the same time, it is a feature-rich network debugging
and exploration tool, since it can create almost any kind of connection you would need and has several
interesting built-in capabilities.
It provides access to the following main features:
Outbound and inbound connections, TCP or UDP, to or from any ports.
Featured tunneling mode which allows also special tunneling such as UDP to TCP, with
the possibility of specifying all network parameters (source port/interface, listening port/interface,
and the remote host allowed to connect to the tunnel.
Built-in port-scanning capabilities, with randomizer.
Advanced usage options, such as buffered send-mode (one line every N seconds), and hexdump
(to stderr or to a specified file) of trasmitted and received data.
Optional RFC854 telnet codes parser and responder.
netcat could forward data stream from stdin to a TCP or UDP socket, and from a TCP or UDP socket
to stdout. Just like the cat program to forward data from stdin to stdout. According
to unconfirmed sources, that's the origin of the netcat program name.
/usr/bin/yes generates stream of y
zw@q ~ % yes
Press ctrl-C to stop the y's. You can generated stream on no too.
zw@q ~ % yes no
The hub ()
and cable ()
utilities are certainly inspired by netcat which could forward data stream from a socket to stdout,
and from stdin to a socket. Did I forget to recommend the netcat companion documentation for you
to read? ;-) Hub is designed to be like a server, and cable is designed to be like a client. Instead
of forwarding data between stdin/stdout and a socket, hub and cable forward and multiplex
data from a socket to any other sockets. That's where the names come from. They're just like Ethernet
hub and cable. Lets' see a screenshot. Yeah, screenshot! ;-)
zw@q ~ % ./hub
lullaby internetworks lab: (server alike) hub $Revision: 1.2 $
Copyright (C) 2001
zhaoway &zw@debian.org&
Usage: hub [hub buffer size] [tcp port number] [number of hub ports]
o hub buffer size is in bytes. for example 10240.
o tcp port number is at least 1024 so i do not need to be root.
o number of hub ports is at least 2. happy.
Hub will listen on a TCP port simulating a many port Ethernet hub. Data come in from one hub
port will be forwarded to other hub ports. You could test the hub alone without cable using netcat.
Note: nc is the acronym for netcat.
Launch hub in the console A: ConA % ./hub
From console B, connect a netcat: ConB % nc localhost 10000
From console C, connect another netcat: ConC % nc localhost 10000
Then you could type in ConC and read the output in ConB, vice versa.
Then there is cable:
zw@q ~ % ./cable
lullaby internetworks lab: (client alike) cable $Revision: 1.2 $
Copyright (C) 2001
zhaoway &zw@debian.org&
Usage: cable [cable buffer size] [1st ip] [1st port] [2nd ip] [2nd port] ..
o cable buffer size is in bytes. for example 10240.
o ports should be listening or connection attempts will fail.
o number of ip addr and port pairs is at least 2.
Cable is more or less like a shared Ethernet bus coaxial cable. It forwards and multiplexes data
between listening socket daemons. Let's test it too.
Launch a netcat daemon in ConA: ConA % nc -l -p 10000
Launch another netcat daemon in ConB: ConB % nc -l -p 10001
Arrange the cable: ConC % ./cable .0.1 .0.1 10001
Then you could type in ConA and read the output from ConB, vice versa.
There are some interesting techniques used in developing hub and cable. Notably the select()
function call. But for now, we will focus on our course to reinvent the /usr/bin/yes
first. ;-)
It's not a very easy task to reinvent /usr/bin/yes using netcat and hub and cable.
I could only give a cheat answer. And that's why I need to set the buffer size command line argument.
But anyway, let's begin!
The main idea is as following. First we set up a three-port hub, then we using cable to connect
two hub port together, after that we could using netcat to echo any character into the remain free
hub port. It's like the following diagram:
,---------,
,--[ ]-------[ ]-------[ ]--.
three-port hub
`---------------------------'
Because the nature of the hub, data sent in from port A, will be forwarded to port B and port
C, since port B and C are connected by a cable, the data come out of the hub will go right back
in, and then being multiplexed and forwarded to port A and circulating in the cable loop to eternity.
Eventually port A will receive infinite copies of the original data sent in.
Lets' construct the device.
In ConA, we launch the three-port hub: ConA % ./hub
In ConB, we loop the cable: ConB % ./cable .0.1 .0.1 10000
Now after we finished construction of our device, then we will using netcat to finally finish
our reinvention of /usr/bin/yes.
ConC % echo &y& | nc localhost 10000
The tricky exercises left for the reader is: what if we change the buffer size of both cable
and hub from 10240 to 1? You could try and see for yourself.
Have fun and good luck!
Your browser does not support iframes.
Softpanorama Recommended
FAIR USE NOTICE This site contains
copyrighted material the use of which has not always been specifically
authorized by the copyright owner. We are making such material available
in our efforts to advance understanding of environmental, political,
human rights, economic, democracy, scientific, and social justice
issues, etc. We believe this constitutes a 'fair use' of any such
copyrighted material as provided for in section 107 of the US Copyright
Law. In accordance with Title 17 U.S.C. Section 107, the material on
this site is distributed without profit exclusivly for research and educational purposes.&& If you wish to use
copyrighted material from this site for purposes of your own that go
beyond 'fair use', you must obtain permission from the copyright owner.
Classic books:
Most popular humor pages:
Copyright (C)
by Dr. Nikolai Bezroukov.
was created as a service to the UN Sustainable Development Networking Programme ()
in the author free time. This document is an industrial compilation designed and created exclusively
for educational use and is distributed under the .
Site uses AdSense so you need to be aware of Google privacy policy. Original materials copyright belong
to respective owners. Quotes are made for educational purposes only
in compliance with the fair use doctrine.
FAIR USE NOTICE This site contains
copyrighted material the use of which has not always been specifically
authorized by the copyright owner. We are making such material available
to advance understanding of computer science, IT technology, economic, scientific, and social
issues. We believe this constitutes a 'fair use' of any such
copyrighted material as provided by section 107 of the US Copyright Law according to which
such material can be distributed without profit exclusively for research and educational purposes.
This is a Spartan WHYFF (We Help You For Free)
site written by people for whom English is not a native language. Grammar and spelling errors should
be expected. The site contain some broken links as it develops like a living tree...
You can use PayPal to make a contribution, supporting hosting
of this site with different providers to distribute and speed up access. Currently there are
two functional mirrors:
(the fastest) and softpanorama.net.
Disclaimer:
The statements, views and opinions presented on this web page are those of the author and are
not endorsed by, nor do they necessarily reflect, the opinions of the author present and former employers,
SDNP or any other organization the author may be associated with. We do not warrant the correctness
of the information provided or its fitness for any purpose.
Last modified:
February, 19, 2014}
我要回帖
更多推荐
- ·注册微信公众号怎么推广和引流需要多少钱
- ·话说短视频怎么做才能上热门,请问怎么才有突破?
- ·电商开发系统前景如何?
- ·如何选购购买血糖仪哪个品牌好?有哪些好的品牌推荐?
- ·申请中邮消费金融贷款流程有手续费吗?
- ·喝山楂麦曲颗粒好像回奶时有硬块怎么办了怎么办
- ·平卧人工少女3体位修改突然坐起后突然晕倒2秒钟后恢复正常应该怎样锻炼预防
- ·易思宝is-e4-s怎么无法iscsi启动器
- ·有机棉认证婴儿服哪个品牌做的好
- ·请帮忙, 防妊辰纹图片;我想知道该怎么办啊!~
- ·漏胎甲胎蛋白偏高怎么办办
- ·海蓝之谜面霜瓶底数字是什么意思
- ·关于清华学霸韩衍隽怎么读的时事评析文QAQ急求!!!800字,实在写不出来的亲就发个大概的文章结构,我自
- ·最简单的220V电接真空压力表表自动控制水泵上水的接线图谁有?原理图看不懂!最好是实物的接线图,求大侠指
- ·我是自考本科,专科时学的会计电算化,自考时学的微观经济学自考,如果考研的话要报考什么科目
- ·在YABcD中,E是Bc边上的点,AE交BD于点F,BE:Bc=2:3,则BF:DF的值是多少
- ·消防秃鹰专用气瓶呼吸碳纤维气瓶多少钱一个
- ·精锐一对一网上兼职靠谱吗吗?
- ·a required source file was404 file not foundd:g:\readme.h
- ·贵州省大方县第三中学有多少出门务工人员人
- ·希望…却用常常造句有造句
- ·我是13年毕业的本科生毕业论文格式,想考在职研究生,教育类,15年可以考吗?
- ·30o0÷125用9 0.125简便计算方法计算
- ·学习美丽的汉字作文中的困难300字作文
- ·英棒外研社点读笔笔a900627b10需要多少钱
- ·负五分之四x的平方加8x已知p等于3xy减8x加1几
- ·判断英标插头是否正确this,is中的/s/正确吗
- ·我喜欢描写冬天的英语作文英语小作文十句话
- ·有谁在精锐教育官网补课啊? a想了解一下效果如何了?
- ·世界上第一座清真寺每一座孤单的岛中冯宥对纪瓷说的夏天去看什么星,冬天去看什么星
- ·向含亚铁离子的电子排布式溶液里加氟化铵会怎么样
- ·东南亚的高架屋,西亚村庄,因纽特人的冰屋,山西黄土高原窑洞的窑洞,蒙古包,龙都杨
- ·闫出入 森林冰火人双人闯关坐 引进针 穿进线 代表什么数字
- ·tan(x-兀/4)中自变量x的取值范围围
