├── LICENSE
├── README.md
├── command_bk
└── template.py


/LICENSE:
--------------------------------------------------------------------------------
 1 | MIT License
 2 | 
 3 | Copyright (c) 2022 Muhammad Ismail Zam Zam
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
  1 | # CentOS/Red-Hat-Command-Cheatsheet
  2 | 
  3 | The below list are not covering all the commands for Linux Administration. These are commands that are not oftenly used but would be needed extermely in hours of matter of troubleshooting. This list is limited but can be improved much more. 
  4 | 
  5 | <details><summary>Redhat Package Manager (RPM)</summary>
  6 | <p>
  7 | 
  8 | ```bash   
  9 | #Check RPM signature  
 10 | rpm --checksig <.rpm pkg>
 11 | ```
 12 | ```bash
 13 | #Install RPM package
 14 | rpm -ivh <.rpm pkg> 
 15 | ```
 16 | ```bash
 17 | #Check dependencies of RPM pkg 
 18 | rpm -qpR <.rpm pkg> 
 19 | ```
 20 | ```bash
 21 | #Install RPM pkg without dependencies
 22 | rpm -ivh --nodeps <.rpm pkg>  
 23 | ```
 24 | ```bash
 25 | #List all files of installed RPM packages
 26 | rpm -ql <.rpm pkg> 
 27 | ```
 28 | ```bash
 29 | #List installed RPM packages
 30 | rpm -qa  
 31 | ```
 32 | ```bash
 33 | #List installed RPM packages
 34 | rpm -q <.rpm pkg> 
 35 | ```
 36 | ```bash
 37 | #List all recently installed RPM packages
 38 |  rpm -qa --last  
 39 | ```
 40 | ```bash
 41 | #Upgrade a RPM package
 42 | rpm -Uvh <.rpm pkg> 
 43 | ```
 44 | ```bash
 45 | #Remove RPM package 
 46 | rpm -evvnx <.rpm pkg> 
 47 | ```
 48 | ```bash
 49 | #Remove RPM package without dependencies 
 50 | rpm -ev --nodeps 
 51 | ```
 52 | ```bash
 53 | #Query a file that belongs which RPM package 
 54 | rpm -qf /usr/bin/htpasswd 
 55 | ```
 56 | ```bash
 57 | #Show the information of installed RPM package 
 58 | rpm -qi vsftpd 
 59 | ```
 60 | ```bash
 61 | #Show the information of RPM package before install 
 62 | rpm -qip <.rpm pkg> 
 63 | ```
 64 | ```bash
 65 | #Show documentation of instal RPM package 
 66 | rpm -qdf /usr/bin/vmstat 
 67 | ```
 68 | ```bash
 69 | #Verifying a package compares information of installed files against rpm db 
 70 | rpm -Vp <.rpm pkg> 
 71 | ```
 72 | ```bash
 73 | #Verifying all packages 
 74 | rpm -Va 
 75 | ```
 76 | </p>
 77 | </details>
 78 |   
 79 | <details><summary>YUM (Yellowdog Updater and Modifier)</summary>
 80 | <p>
 81 | 
 82 | ```bash
 83 | yum upgrade <pkg>
 84 | 
 85 | ```
 86 | ```bash
 87 | yum localinsatll <pkg*>
 88 | 
 89 | ```
 90 | ```bash
 91 | yum remove <pkg/command/rpm>
 92 | 
 93 | ```
 94 | ```bash
 95 | #install/update/upgrade or transaction history
 96 | yum history list 
 97 | 
 98 | ```
 99 | ```bash
100 | yum history list all 
101 | 
102 | ```
103 | ```bash
104 | #pkg info install/update/upgrade or transaction history by id
105 | yum history info <id> 
106 | 
107 | ```
108 | ```bash
109 | #undo the transaction by id
110 | yum history undo <id> 
111 | 
112 | ```
113 | ```bash
114 | #redo the transaction by id
115 | yum history redo <id> 
116 | 
117 | ```
118 | ```bash
119 | #yum stores transaction in single SQLite db. To start new transaction history
120 | yum history new 
121 | 
122 | ```
123 | ```bash
124 | yum whatprovides <pkg/command>
125 | 
126 | ```
127 | ```bash
128 | yum --showduplicates list httpd | expand
129 | 
130 | ```
131 | ```bash
132 | yum list available java*
133 | 
134 | ```
135 | ```bash
136 | yum list installed
137 | 
138 | ```
139 | </p>
140 | </details>  
141 | 
142 | 
143 |  <details><summary>Permission </summary>
144 | <p>
145 | 
146 | ```bash
147 | #set suid bit such as -rwSr-xr-x. capital S means (rws)
148 | chmod 4655 <file> 
149 | 
150 | ```
151 | ```bash
152 | #Setgid on dir, all dir/files in it will get same ownership as parent dir. It doesn't matter who is creating
153 | ```
154 | ```bash
155 | #setting setgid bit
156 | chmod g+s <dir/file> 
157 | ```
158 | ```bash
159 | #setting sticky bit such as drwxrwxrwt. small t means (rwxt)
160 | chmod 1777 <dir> 
161 | ```
162 | ```bash
163 | #setting sticky bit such as drwxrwxrwT. capital T means (rwt)
164 | chmod 1776 <dir> 
165 | ```
166 | ```bash
167 | #asssigning recursive permission of all files/dir in  target dir
168 | chown -R <user>:<group> <dir> 
169 | ```
170 | </p>
171 | </details>
172 |   
173 |   
174 | <details><summary>User Administration</summary>
175 | <p>
176 | 
177 | ```bash
178 | useradd -g itadmin -c "DB User" -u 1135 -s "/bin/sh" -d /home/techguy1 
179 | #In the above command, we are creating the new user with custom options as simple "#useradd <user>" will create with default setting. The -g (group) -c (description) -u (user id) -s (which shell to be assigned) -d (landed home dir)
180 | ```
181 | ```bash
182 | useradd -g <primary group> -G <secondary group> <user> # assign the user primary and secondary group
183 | 
184 | ```
185 | ```bash
186 | passwd -l <user> #locking password of user
187 | 
188 | ```
189 | ```bash
190 | passwd -u <user> #unlocking password of user
191 | 
192 | ```
193 | ```bash
194 | passwd -e <user> #expire password 
195 | 
196 | ```
197 | ```bash
198 | echo 'myPassword123' | sudo passwd --stdin <user> 
199 | 
200 | ```
201 | ```bash
202 | passwd -x -1 <user> #Turnoff password expiry
203 | 
204 | ```
205 | ```bash
206 | usermod -L <user> #locking user
207 | 
208 | ```
209 | ```bash
210 | usermod -U <user> #unlocking user
211 | 
212 | ```
213 | ```bash
214 | chage #set password expiry
215 | 
216 | ```
217 | 
218 | </p>
219 | </details>
220 |  
221 | 
222 | <details><summary>Access Control Lists (ACLs)</summary>
223 | <p>
224 | 
225 | ```bash
226 | setfacl -m u:priya:rw <file> #assiging the a new user 'priya' with read/write permission on the file. -m (modifying) -u (user)
227 | ```
228 | ```bash
229 | setfacl -m mask:r <file> #setting mask on file
230 | ```
231 | ```bash
232 | setfacl -d -m u:priya:rw <dir> #setting ACL for directory
233 | ```
234 | ```bash
235 | getfacl -R <dir> > permissions.acl #BackUp ACL's in file having all info related ownership/dir inside the dir,subdir,files
236 | ```
237 | ```bash
238 | setfacl --restore=permissions.acl #Restore the Permissions/Ownership
239 | ```
240 | 
241 | </p>
242 | </details>
243 | 
244 | 
245 | <details><summary>Crontab</summary>
246 | <p>
247 | 
248 | ```bash
249 | crontab -l #show crontab for all users
250 | ```
251 | ```bash
252 | crontab -u <user> -l #show crontab for specific user
253 | ```
254 | ```bash
255 | crontab -e #add cron entry in crontab file
256 | ```
257 | 
258 | </p>
259 | </details>
260 | 
261 | 
262 | <details><summary>Process</summary>
263 | <p>
264 | 
265 | ```bash
266 | ps -a #all terminal 
267 | ```
268 | ```bash
269 | ps -e #list of all the processes
270 | ```
271 | ```bash
272 | ps -o #customer properties
273 | 
274 | ```
275 | ```bash
276 | ps -ao tty,comm,pid,%mem,%cpu #<command/script> & #run the task in background
277 | 
278 | ```
279 | ```bash
280 | ps -fp $(pgrep -d, -x logrotate)
281 | 
282 | ```
283 | ```bash
284 | pgrep -u <userid> unison
285 | 
286 | ```
287 | ```bash
288 | ps -p <pid> -o etime #process execution time
289 | 
290 | ```
291 | ```bash
292 | ps -eo user,pid,ppid,%mem,%cpu --sort=-%cpu | head
293 | 
294 | ```
295 | ```bash
296 | ps lax
297 | 
298 | ```
299 | ```bash
300 | ps fax
301 | 
302 | ```
303 | 
304 | 
305 | </p>
306 | </details>
307 | 
308 | 
309 | <details><summary>Network</summary>
310 | <p>
311 | 
312 | 
313 | ```bash
314 | dig +trace www.google.com
315 | 
316 | ```
317 | ```bash
318 | nmcli dev status
319 | 
320 | ```
321 | ```bash
322 | nmcli con del <interface name>
323 | 
324 | ```
325 | ```bash
326 | ip addr show <interface name>
327 | 
328 | ```
329 | ```bash
330 | nmcli con show
331 | 
332 | ```
333 | ```bash
334 | nmcli con add con-name <interface name> type <ethernet> ifname <interface name> ip4 <ip address> gw4 <gateway>
335 | 
336 | ```
337 | ```bash
338 | nmcli con up <interface name>
339 | 
340 | ```
341 | ```bash
342 | nmcli con mod <interface name> ipv4.gateway <ip address>
343 | 
344 | ```
345 | ```bash
346 | hostnamectl set-hostname <hostname>
347 | 
348 | ```
349 | ```bash
350 | netstat -rn
351 | 
352 | ```
353 | ```bash
354 | route -n
355 | 
356 | ```
357 | ```bash
358 | tcpdump -i <interface>
359 | 
360 | ```
361 | ```bash
362 | tcpdump -i <interface> host <ipaddress>  -nn
363 | 
364 | ```
365 | ```bash
366 | tcpdump -i <interface> -s 0 -w <output file name example.pcap> host <ipaddress/hostname> and udp
367 | 
368 | ```
369 | ```bash
370 | ping <hostname/ipaddress>
371 | 
372 | ```
373 | ```bash
374 | telnet <hostname/ipaddress> <port>
375 | 
376 | ```
377 | ```bash
378 | nslookup <domain/hostname>
379 | 
380 | ```
381 | ```bash
382 | netstat -an |grep <ipaddress>.<port>|grep ESTAB|awk '{print $5}'|awk -F: '{print $1}'|sort|uniq -c|sort -rn #show which remote hosts make how many connection to specfic port, the output is sort on number of connections by host to port 
383 | 
384 | ```
385 | 
386 | </p>
387 | </details>
388 | 
389 | 
390 | <details><summary>Memory</summary>
391 | <p>
392 | 
393 | 
394 | ```bash
395 | egrep --color 'Mem|Cache|Swap' /proc/meminfo | awk '{print $1 " " $2/1000/1000 "GB"}' #show information in GB
396 | 
397 | ```
398 | ```bash
399 | smem -s swap -t -k -n -r
400 | 
401 | ```
402 | ```bash
403 | smem -u -p -r
404 | 
405 | ```
406 | ```bash
407 | free -h
408 | 
409 | ```
410 | 
411 | </p>
412 | </details>
413 | 
414 | 
415 | <details><summary>Disk</summary>
416 | <p>
417 | 
418 | ```bash
419 | df -h
420 | 
421 | ```
422 | ```bash
423 | df -Th
424 | 
425 | ```
426 | ```bash
427 | du -sh <path/*>
428 | 
429 | ```
430 | ```bash
431 | df --local -P #in KBs
432 | ```
433 | ```bash
434 | du -sch .[!.]* * | grep --regex="[0-9]*G"
435 | 
436 | ```
437 | ```bash
438 | lsof -u <user> #list of openfiles by specific user
439 | 
440 | ```
441 | ```bash
442 | lsof | grep delete #list of openfiles that are deleted
443 | 
444 | ```
445 | ```bash
446 | lsof | awk '{print $1}' | sort | uniq -c | sort -r -n #sort number of open files by process
447 | 
448 | ```
449 | 
450 | </p>
451 | </details>
452 | 
453 | 
454 | <details><summary>SFTP/SCP</summary>
455 | <p>
456 | 
457 | ```bash
458 | sftp -oPort=<port> <user>@<ipaddress/domain>
459 | 
460 | ```
461 | ```bash
462 | sftp -oPort=<port> -oIdentityFile=<path to key> <user>@<ipaddress/domain>
463 | 
464 | ```
465 | ```bash
466 | sftp -o KexAlgorithms=<keyExchangeAlgo> -o HostKeyAlgorithms=<HostKeyAlgoName> -oIdentityFile=<path to key> -oPort=<port> <user>@<domain/ipaddress>
467 | 
468 | ```
469 | ```bash
470 | sftp -oPort=<port> -o KexAlgorithms=diffie-hellman-group14-sha1 -o HostKeyAlgorithms=+ssh-dss -oIdentityfile=<path to key> <user>@<domain/ipaddress>
471 | 
472 | ```
473 | ```bash
474 | scp -P <port> <path to src file> <user>@<domain/ipaddress>:<target path> #send the file to target system
475 | 
476 | ```
477 | ```bash
478 | scp -P <port> <user>@<domain/ipaddress>:<src file path> <target file path locally> #fetch/download file from the target system
479 | 
480 | ```
481 | 
482 | ```bash
483 | scp -r /path/to/local/source user@ssh.example.com:/path/to/remote/destination #send dir from the target system
484 | 
485 | ```
486 | 
487 | ```bash
488 | scp -r user@ssh.example.com:/path/to/remote/source /path/to/local/destination #fetch/download dirctory from the target system
489 | 
490 | ```
491 | 
492 | </p>
493 | </details>
494 | 
495 | 
496 | <details><summary>Bolt</summary>
497 | <p>
498 | 
499 | <i>For the --tmpdir flag we can use the home directory path of the remote user which will logged in on the behalf of the bolt. At some time /tmp is not executable due to which the command gets failed. (~mizz - will be confirm) </i>
500 | 
501 | ```bash
502 | bolt command run "<command>"  --no-host-key-check --tmpdir=/tmp -p <password>  --tty --targets @<ipaddress/hostname list file>  -u <user>
503 | 
504 | ```
505 | ```bash
506 | bolt command run "<command>"  --no-host-key-check --tmpdir=/tmp -p <password>  --tty --targets <ipaddress/hostname separate by ,>  -u <user>
507 | 
508 | ```
509 | ```bash
510 | bolt script run <script>  --no-host-key-check --tmpdir=/tmp -p <password>  --tty --targets @<ipaddress/hostname list file>  -u <user>
511 | 
512 | ```
513 | ```bash
514 | bolt script run <script>  --no-host-key-check --tmpdir=/tmp -p <password>  --tty --targets <ipaddress/hostname separate by ,>  -u <user>
515 | 
516 | ```
517 | 
518 | </p>
519 | </details>
520 | 
521 | 
522 | <details><summary>Sed</summary>
523 | <p>
524 | 
525 | ```bash
526 | sed -n -e "/<$hostname>/,/ismail.com/ p" <targetfile> #replace the string by variable, result will be stdout
527 | 
528 | ```
529 | ```bash
530 | sed -i -n -e "/<$hostname>/,/ismail.com/ p" <targetfile> #replace the string by variable, result will be saved in target file
531 | 
532 | ```
533 | ```bash
534 | sed -i 's/stringtoreplace/newstring/g' myfile.txt #replace the string from the file globally
535 | 
536 | ```
537 | 
538 | </p>
539 | </details>
540 | 
541 | 
542 | <details><summary>find</summary>
543 | <p>
544 | 
545 | ```bash
546 | find /tmp/* -mtime +7 -exec rm {} \; #remove files from dir "tmp/" that are older than 7 days 
547 | 
548 | ```
549 | ```bash
550 | find /home/ -type f -name ".errors*.gz" -mtime +7 -exec rm {} \; #remove files from dir "tmp/" that are older than 7 days - with filename
551 | 
552 | ```
553 | ```bash
554 | find /home/ -type f -size +500M -name "*tempfile*" -exec du -sh {} \; #found the tempfile that has file size >500MB
555 | 
556 | ```
557 | ```bash
558 | find /home/ -type f -size +1G -exec ls -lh {} \; | awk '{ print $9 "|| Size : " $5 }' #find output in custom defined format like in this "dirname || Size:_"
559 | 
560 | ```
561 | 
562 | ```bash
563 | #Combine find exec multiple commands
564 | find /tmp/dir1/ -type f -exec chown root:root {} \; -exec chmod o+x {} \;
565 | ``` 
566 | 
567 | ```bash
568 | #Combine find exec multiple commands
569 | find /tmp/dir1/ -type f -exec chown root:root {} \; -exec chmod o+x {} \;
570 | ```
571 | ```bash 
572 | #World-Writable dir
573 | #CIS
574 | find / -path /proc -prune -o -path /sys -prune -o -type d -perm -0002 -mindepth 3 -maxdepth 4 -printf "World-Writable dir %p\n" 2>/dev/null
575 | ```
576 | 
577 | 
578 | ```bash 
579 | #find files with permission
580 | find / -xdev \( -perm -4000 -o -perm -2000 \) -type f 
581 | #4000 for suid, 2000 for guid
582 | ```
583 |  
584 | ```bash
585 | #Combine find exec shell script function
586 | #[Ref: https://www.golinuxcloud.com/find-exec-multiple-commands-examples-unix/#:~:text=Linux%20or%20Unix.-,Find%20exec%20multiple%20commands%20syntax,%5C%3B%20or%20as%20%22%20%3B%20%22.]
587 | find /tmp/dir1/ -type f -exec bash -c '
588 | for item do
589 | [[ $item =~ "file1" ]] && mv -v $item ${item}_renamed
590 | done
591 | ' bash {} +
592 | ```
593 | 
594 | </p>
595 | </details>
596 | 
597 | 
598 | <details><summary>grep</summary>
599 | <p>
600 | 
601 | 
602 | ```bash
603 | cat myfile | grep -B 1 -A 4 -i 'string one\|string two' #it will show 1 line before and 4 lines after matching the strings form myfile
604 | 
605 | ```
606 | ```bash
607 | grep -lr "string" * #search recursively the string from all filesystem hierarchy, as its start from which current dir you are standing and it will list files
608 | 
609 | ```
610 | ```bash
611 | grep -ir "string" <* or file> #search recursively the string from all filesystem hierarchy and show the content what matches - * for all files otherwise specify a single file
612 | 
613 | ```
614 | 
615 | ```bash
616 | grep -E -s "<regex>" <file>
617 | #grep with -E extended regex -s with silent mode as no error message on screen
618 | ```
619 | 
620 | ```bash
621 | grep -P -s -- "<regex>" <file>
622 | #grep with -P perl regex -s with silent mode as no error message on screen
623 | ```
624 | 
625 | ```bash
626 | grep -Eq '<regex>' <file> && grep -Eq '<regex>' file2 && result=pass
627 | #grep with -E extended regex -q with quite mode as no error/stdout message on screen
628 | ```
629 |  
630 | </p>
631 | </details>
632 | 
633 | 
634 | <details><summary>Gzip/Tar/Compress directory</summary>
635 | <p>
636 | 
637 | ```bash
638 | #The gzip command in Linux can only be used to compress a single file. In order to compress a folder, tar + gzip (which is basically tar -z) is used.
639 | #ref: https://www.educative.io/edpresso/how-to-gzip-a-directory-in-linux
640 | ```
641 | 
642 | ```bash
643 | tar -zcvf myfolder.tar.gz myfolder #Compress folder/dir with -z in Linux
644 | 
645 | ```
646 | ```bash
647 | tar -tf myfolder.tar.gz #view the content of compressed file
648 | ```
649 | 
650 | ```bash
651 | gzip filename #view the content of compressed file
652 | ```
653 | 
654 | ```bash
655 | unzip file.gz #uncompress the zip file
656 | ```
657 | 
658 | </p>
659 | </details>
660 | 
661 | <details><summary>AWK</summary>
662 | <p>
663 | 
664 | ```bash
665 | #Multiple Conditional Statement - Not Equal, Regex, Equal
666 | awk -F: '($1!="root" && $1!="sync" ) {print}' /etc/passwd
667 | awk -F: '($1!="root" && $1!~/^\+/) {print}' /etc/passwd
668 | awk -F: '($1=="virusgroup") {print $3}' /etc/group
669 | du -sh * | grep G | awk '($1~/[0-9]+\.?[0-9]*G$/)'
670 | awk '/^\s*UID_MIN/{print $2}' /etc/login.defs
671 | df --local -P | awk {'if (NR!=1) print $6'} #skip first or header line
672 | ```
673 | ```bash
674 | df --local -P | awk {'if (NR!=1) print $6'} #skip first or header line
675 | ```
676 | ```bash
677 | #Variable in awk statement
678 | awk -F: -v GID="$(awk -F: '($1=="shadow") {print $3}' /etc/group)" '($4==GID) {print $1}' /etc/passwd
679 | ```
680 | ```bash
681 | #Awk result with loop
682 | awk -F: -v GID="$(awk -F: '($1=="shadow") {print $3}' /etc/group)" '($4==GID) {print $1}' /etc/passwd | (while read -r usr; do
683 |         [ -z "$output" ] && output="\"$usr\"" || output=",\"$usr\""
684 | done
685 | ```
686 | 
687 | </p>
688 | </details>
689 |  
690 | <details><summary>XARGS</summary>
691 | <p>
692 | 
693 | ```bash
694 | #XARGS Application - to use last command result for next command
695 | df --local -P | awk {'if (NR!=1) print $6'} | xargs -I '{}' find '{}' -xdev -nouser -printf "%p has no owner\n" 2>/dev/null
696 | 
697 | ```
698 |  
699 | </p>
700 | </details>
701 |  
702 | <details><summary>stat</summary>
703 | <p>
704 | 
705 | ```bash
706 | stat -L -c "%A" "$dir"
707 | 
708 | ```
709 | ```bash
710 | stat --printf='Name: %n\nPermissions: %a\n' /etc
711 | 
712 | ```
713 | ```bash
714 | stat --printf='User: %U | Group: %G' /etc 
715 | 
716 | ```
717 | 
718 | </p>
719 | </details>
720 | 
721 | <details><summary>lsof</summary>
722 | <p>
723 | 
724 | ```bash
725 | lsof -u <user> #list the openfiles by a user
726 | 
727 | ```
728 | 
729 | </p>
730 | </details>
731 | 
732 |  
733 | <details><summary>Other</summary>
734 | <p>
735 | 
736 | ```bash
737 | top -b -n 1 | head -n +5
738 | 
739 | ```
740 | ```bash
741 | uptime
742 | 
743 | ```
744 | ```bash
745 | sestatus #check selinux status
746 | 
747 | ```
748 | 
749 | ```bash
750 | collectl -sc -p /var/log/collectl/server1-20220411-000000.raw.gz --top --from 00:00-03:00 -oTm
751 | collectl -scn -p /var/log/collectl/server2-20220411-000000.raw.gz --from 00:15-00:41 --top
752 | collectl -scD -p server1-000000.raw.gz --from 00:00-00:55 --top iokb | grep -w 'cp\|sdb\|Wait\|Pct\|PID' | less
753 | 
754 | ```
755 |  
756 | </p>
757 | </details>
758 | 
759 |   
760 | 


--------------------------------------------------------------------------------
/command_bk:
--------------------------------------------------------------------------------
  1 | ### YUM (Yellowdog Updater and Modifier)
  2 | 
  3 | 	~$yum install <pkg>
  4 | 	~$yum upgrade <pkg>
  5 | 	~$yum localinsatll <pkg*>
  6 | 	~$yum remove <pkg/command/rpm>
  7 | 	~$yum history list #install/update/upgrade or transaction history
  8 | 	~$yum history list all 
  9 | 	~$yum history info <id> #pkg info install/update/upgrade or transaction history by id
 10 | 	~$yum history undo <id> #undo the transaction by id
 11 | 	~$yum history redo <id> #redo the transaction by id
 12 | 	~$yum history new #yum stores transaction in single SQLite db. To start new transaction history
 13 | 	~$yum whatprovides <pkg/command>
 14 | 	~$yum --showduplicates list httpd | expand
 15 | 	~$yum list available java*
 16 | 	~$yum list installed
 17 | 	
 18 | 
 19 | ### Permission 
 20 | 
 21 | 	~$chmod u+s <file> #set suid bit such as -rwsr-xr-x. small s means (rwxs)
 22 | 	~$chmod 4655 <file> #set suid bit such as -rwSr-xr-x. capital S means (rws)
 23 | 	~$Setgid on dir, all dir/files in it will get same ownership as parent dir. It doesn't matter who is creating
 24 | 	~$chmod g+s <dir/file> #setting setgid bit
 25 | 	~$chmod 1777 <dir> #setting sticky bit such as drwxrwxrwt. small t means (rwxt)
 26 | 	~$chmod 1776 <dir> #setting sticky bit such as drwxrwxrwT. capital T means (rwt)
 27 | 	~$chown -R <user>:<group> <dir> #asssigning recursive permission of all files/dir in  target dir
 28 | 
 29 | ### User Administration 
 30 | 
 31 | 	~$useradd <user>
 32 | 	~$useradd -g itadmin -c "DB User" -u 1135 -s "/bin/sh" -d /home/techguy1 
 33 | 	In the above command, we are creating the new user with custom options as simple "#useradd <user>" will create with default setting. The -g (group) -c (description) -u (user id) -s (which shell to be assigned) -d (landed home dir)
 34 | 	~$useradd -g <primary group> -G <secondary group> <user> # assign the user primary and secondary group
 35 | 	~$passwd -l <user> #locking password of user
 36 | 	~$passwd -u <user> #unlocking password of user
 37 | 	~$passwd -e <user> #expire password 
 38 | 	~$echo 'myPassword123' | sudo passwd --stdin <user> 
 39 | 	~$passwd -x -1 <user> #Turnoff password expiry
 40 | 	~$usermod -L <user> #locking user
 41 | 	~$usermod -U <user> #unlocking user
 42 | 	~$chage #set password expiry
 43 | 
 44 | ### Access Control Lists (ACLs)
 45 | 
 46 | 	~$getfacl <file/dir> #to view the access control list of file/dir
 47 | 	~$setfacl -m u:priya:rw <file> #assiging the a new user 'priya' with read/write permission on the file. -m (modifying) -u (user)
 48 | 	~$setfacl -m mask:r <file> #setting mask on file
 49 | 	~$setfacl -d -m u:priya:rw <dir> #setting ACL for directory
 50 | 
 51 | ### Crontab
 52 | 
 53 | 	~$crontab -l #show crontab for all users
 54 | 	~$crontab -u <user> -l #show crontab for specific user
 55 | 	~$crontab -e #add cron entry in crontab file
 56 |  
 57 | ### Process
 58 | 
 59 | 	~$ps -a #all terminal 
 60 | 	~$ps -e #list of all the processes
 61 | 	~$ps -o #customer properties
 62 | 	~$ps -ao tty,comm,pid,%mem,%cpu #<command/script> & #run the task in background
 63 | 	~$ps -fp $(pgrep -d, -x logrotate)
 64 | 	~$pgrep -u <userid> unison
 65 | 	~$ps -p <pid> -o etime #process execution time
 66 | 	~$ps -eo user,pid,ppid,%mem,%cpu --sort=-%cpu | head
 67 | 	~$ps lax
 68 | 	~$ps fax
 69 | 
 70 | ### Network 
 71 | 
 72 | 	~$dig +trace www.google.com
 73 | 	~$nmcli dev status
 74 | 	~$nmcli con del <interface name>
 75 | 	~$ip addr show <interface name>
 76 | 	~$nmcli con show
 77 | 	~$nmcli con add con-name <interface name> type <ethernet> ifname <interface name> ip4 <ip address> gw4 <gateway>
 78 | 	~$nmcli con up <interface name>
 79 | 	~$nmcli con mod <interface name> ipv4.gateway <ip address>
 80 | 	~$hostnamectl set-hostname <hostname>
 81 | 	~$netstat -rn
 82 | 	~$route -n
 83 | 	~$tcpdump -i <interface>
 84 | 	~$tcpdump -i <interface> host <ipaddress>  -nn
 85 | 	~$tcpdump -i <interface> -s 0 -w <output file name example.pcap> host <ipaddress/hostname> and udp
 86 | 	~$ping <hostname/ipaddress>
 87 | 	~$telnet <hostname/ipaddress> <port>
 88 | 	~$nslookup <domain/hostname>
 89 | 	~$netstat -an |grep <ipaddress>.<port>|grep ESTAB|awk '{print $5}'|awk -F: '{print $1}'|sort|uniq -c|sort -rn #show which remote hosts make how many connection to specfic port, the output is sort on number of connections by host to port 
 90 | 
 91 | ### Memory/Swap
 92 | 
 93 | 	~$egrep --color 'Mem|Cache|Swap' /proc/meminfo | awk '{print $1 " " $2/1000/1000 "GB"}' #show information in GB
 94 | 	~$smem -s swap -t -k -n -r
 95 | 	~$smem -u -p -r
 96 | 	~$free -h
 97 | 
 98 | ### Disk 
 99 | 
100 | 	~$df -h
101 | 	~$df -Th
102 | 	~$du -sh <path/*>
103 | 	~$du -sch .[!.]* * | grep --regex="[0-9]*G"
104 | 	~$lsof -u <user> #list of openfiles by specific user
105 | 	~$lsof | grep delete #list of openfiles that are deleted
106 | 	~$lsof | awk '{print $1}' | sort | uniq -c | sort -r -n #sort number of open files by process
107 | 
108 | ### SFTP/SCP
109 | 	
110 | 	~$sftp -oPort=<port> <user>@<ipaddress/domain>
111 | 	~$sftp -oPort=<port> -oIdentityFile=<path to key> <user>@<ipaddress/domain>
112 | 	~$sftp -o KexAlgorithms=<keyExchangeAlgo> -o HostKeyAlgorithms=<HostKeyAlgoName> -oIdentityFile=<path to key> -oPort=<port> <user>@<domain/ipaddress>
113 | 	~$sftp -oPort=<port> -o KexAlgorithms=diffie-hellman-group14-sha1 -o HostKeyAlgorithms=+ssh-dss -oIdentityfile=<path to key> <user>@<domain/ipaddress>
114 | 	~$scp -P <port> <path to src file> <user>@<domain/ipaddress>:<target path> #send the file to target system
115 | 	~$scp -P <port> <user>@<domain/ipaddress>:<src file path> <target file path locally> #fetch file from the target system
116 | 
117 | ### Puppet Bolt
118 | ####For the --tmpdir flag we can use the home directory path of the remote user which will logged in on the behalf of the bolt. At some time /tmp is not executable due to which the command gets failed. (~mizz - will be confirm)
119 | 
120 | 
121 | 	~$bolt command run "<command>"  --no-host-key-check --tmpdir=/tmp -p <password>  --tty --targets @<ipaddress/hostname list file>  -u <user>
122 | 	~$bolt command run "<command>"  --no-host-key-check --tmpdir=/tmp -p <password>  --tty --targets <ipaddress/hostname separate by ,>  -u <user>
123 | 	~$bolt script run <script>  --no-host-key-check --tmpdir=/tmp -p <password>  --tty --targets @<ipaddress/hostname list file>  -u <user>
124 | 	~$bolt script run <script>  --no-host-key-check --tmpdir=/tmp -p <password>  --tty --targets <ipaddress/hostname separate by ,>  -u <user>
125 | 	
126 | ### Sed
127 | 	
128 | 	~$sed -n -e "/<$hostname>/,/ismail.com/ p" <targetfile> #replace the string by variable, result will be stdout
129 | 	~$sed -i -n -e "/<$hostname>/,/ismail.com/ p" <targetfile> #replace the string by variable, result will be saved in target file
130 | 	~$sed -i 's/stringtoreplace/newstring/g' myfile.txt #replace the string from the file globally
131 | 
132 | ### find
133 | 	
134 | 	~$find /tmp/* -mtime +7 -exec rm {} \; #remove files from dir "tmp/" that are older than 7 days 
135 | 	~$find /home/ -type f -name ".errors*.gz" -mtime +7 -exec rm {} \; #remove files from dir "tmp/" that are older than 7 days - with filename
136 | 	~$find /home/ -type f -size +500M -name "*tempfile*" -exec du -sh {} \; #found the tempfile that has file size >500MB
137 | 	~$find /home/ -type f -size +1G -exec ls -lh {} \; | awk '{ print $9 "|| Size : " $5 }' #find output in custom defined format like in this "dirname || Size:_"
138 | 
139 | ### Cool Grep
140 | 
141 | 	~$cat myfile | grep -B 1 -A 4 -i 'string one\|string two' #it will show 1 line before and 4 lines after matching the strings form myfile
142 | 	~$grep -lr "string" * #search recursively the string from all filesystem hierarchy, as its start from which current dir you are standing and it will list files
143 | 	~$grep -ir "string" <* or file> #search recursively the string from all filesystem hierarchy and show the content what matches - * for all files otherwise specify a single file
144 | 	
145 | ### Additional 
146 | 
147 | 	~$top -b -n 1 | head -n +5
148 | 	~$uptime
149 | 	~$sestatus #check selinux status
150 | 


--------------------------------------------------------------------------------
/template.py:
--------------------------------------------------------------------------------
 1 | #The file.txt should contain the list of commands
 2 | #The script will create the required template of
 3 | #dropdown list as we are using in this repo.
 4 | 
 5 | 
 6 | print("<details><summary>Redhat Package Manager (RPM)</summary>")
 7 | print("<p>")
 8 |        
 9 | filepath = 'file.txt'
10 | with open(filepath) as fp:
11 |    line = fp.readline()
12 |    while line:
13 |         line = fp.readline()
14 |         print("```bash")
15 |         print(line)
16 |         print("```")
17 | print("</p>")
18 | print("</details>")
19 | 


--------------------------------------------------------------------------------