1
.TH "UNHIDE-TCP" "8" "August 2012" "Administration commands"
3
3
unhide-tcp \(em forensic tool to find hidden TCP/UDP ports
9
\fBunhide-tcp\fR is a forensic tool that identifies TCP/UDP
10
ports that are listening but are not listed in /bin/netstat
11
through brute forcing of all TCP/UDP ports available.
17
This manual page was written by Francois Marier francois@debian.org for
18
the \fBDebian\fP system (but may be used by others). Permission is
19
granted to copy, distribute and/or modify this document under
20
the terms of the GNU General Public License, Version 3 any
21
later version published by the Free Software Foundation.
24
On Debian systems, the complete text of the GNU General Public
25
License can be found in /usr/share/common-licenses/GPL.
27
.\" created by instant / docbook-to-man, Thu 06 Dec 2007, 17:59
6
\fBunhide-tcp [options]\fR
9
\fBunhide-tcp\fR is a forensic tool that identifies TCP/UDP
10
ports that are listening but are not listed by /sbin/ss (or
11
alternatively by /bin/netstat) through brute forcing of all
12
TCP/UDP ports available.
14
Note : If iproute2 is not available on the system, option \-n or \-s SHOULD be
15
given on the command line.
23
Don't display warning messages, that's the default behavior.
26
Display fuser output (if available) for the hidden port
29
Display lsof output (if available) for the hidden port
32
Use /bin/netstat instead of /sbin/ss. On system with many opened ports, this can
33
slow down the test dramatically.
36
Use a very quick strategy of scanning. On system with a lot of opened ports,
37
it is hundreds times faster than ss method and ten thousands times faster than
41
Write a log file (unhide-tcp-AAAA-MM-DD.log) in the current directory.
47
Be verbose, display warning message (default : don't display).
48
This option may be repeated more than once.
53
if no hidden port is found,
56
if one or more hidden TCP port(s) is(are) found,
59
if one or more hidden UDP port(s) is(are) found,
62
if one or more hidden TCP and UDP ports are found.
69
This manual page was written by Francois Marier francois@debian.org and Patrick Gouin.
70
Permission is granted to copy, distribute and/or modify this document under
71
the terms of the GNU General Public License, Version 3 or any
72
later version published by the Free Software Foundation.
74
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>.
76
This is free software: you are free to change and redistribute it.
77
There is NO WARRANTY, to the extent permitted by law.