=============================

Desktops:

Linux allows for several desktop workspaces

A text version (TTY) can be accessed using "Cntl" + "Alt" + "F3 - F9"

Searching:

Grep is the searching tool in Linux

• grep 'word' File (Ignore cases when searching)
• grep -i 'word' File (Ignore cases when searching)
• grep -v 'word' File (Find anything not containing 'word')
• egrep word1|word2|word3 File (Find multiple patterns)
• Man grep (show the help manual for grep tool)




File system:

      Windows uses a hierarchy system. File -> sub file -> documents and files

      Each new hardware or storage system is given a letter which is also formatted

      Linux does not do that it gives a mount point

      It does not use letters instead it is linear



• Terminal:

      When using a terminal to access the file system you have to know your commands

      Pressing the up arrow will show the last command used

      Pressing the up arrow again will scroll through all the previous commands

      Pressing the down arrow with scroll back down the commands

      To show the command history or bash history

            ------------------------------

            root@kali:~# history

            ------------------------------



• To clear the screen of all the information:

            ------------------------------

            root@kali:~# clear

            ------------------------------



• Present Working Directory:

            ------------------------------

            root@kali:~# pwd

            ------------------------------



• List command will show all the files available

      e.g. Desktop, Documents, Downloads, Music, Pictures, Templates, Videos

            ------------------------------

            root@kali:~# ls

            ------------------------------



• To list everything:

      This will show everything including hidden files and anything with a . is a system file

            ------------------------------

            root@kali:~# ls -al

            ------------------------------



• To access the "Document" file:

            ------------------------------

            root@kali:~# cd /root/Document

            ------------------------------



• This will show:

            ------------------------------

            root@kali:~/Document

            ------------------------------



• To see the contents of the file:

            ------------------------------

            root@kali:~/Document# ls

            ------------------------------



• To see everything mounted to the system:

            ------------------------------

            root@kali:~# mount

            ------------------------------



• To copy a file:

            ------------------------------

            root@kali:~# cp "name of file.type" Location

            ------------------------------

• example

              ------------------------------

              root@kali:~\Documents# cp HelloWorld.txt /media/root/GILESUSB   -----> Copy "HelloWorld" to the USB

              root@kali:~\Documents# cp *.txt /media/root/GILESUSB    -----> Copies all text documents

              root@kali:~\Documents# cp TEXT* /media/root/GILESUSB    -----> Copies any files called "TEXT"

              ------------------------------
  
  

• Other useful commands:

            ------------------------------

            root@kali:~# ps -ef   -----> running processes (task list)

            root@kali:~# ifconfig   -----> ipconfig

            root@kali:~# arp   -----> displays connection type, IP and MAC address table

            root@kali:~# hostname   -----> the system's DNS name

            root@kali:~# netstat   -----> lists network related information

            root@kali:~# date   -----> shows date and time

            root@kali:~# whoami   -----> current user

            -----------------------------



• System logs are located in a folder var/log:

            ------------------------------

            root@kali:~# cd var/log

            ------------------------------



Running the list command (ls) will show various .log files

Ones of interest:

• auth.log
• messages
• syslog
• syslog.1
• user.log
• fail.log
• mail

These can be copied in the same way as above



To copy volatile data to your USB:

This will add everything to one file:

            ------------------------------

            root@kali:~# history > /media/root/GILESUSB/Voldata123   -----> Copy the data in a .txt. document "Voldata123@

            ------------------------------

            root@kali:~# ifconfig >> /media/root/GILESUSB/Voldata123   -----> Will add the IP data to the Voldata123.txt file

            ------------------------------

            root@kali:~# ps -ef >> /media/root/GILESUSB/Voldata123   -----> Will add the running processes list to the Voldata123.txt file



To run the programme to copy all the data:

Copy the programme to the Home file

Type the following:

            ------------------------------

            root@kali:~# chmod =x VolData1.sh   -----> Type this to change the file to executable

            root@kali:~# ./VolData1.sh   -----> Type this to run the file

            Volotile Data Collection Linux   -----> This will come up

            Enter Drive Path   -----> This will come up asking for the Drive Path

            /media/root/GILESUSB   -----> Type the path to the USB where the file will be created

            path = /media/root/GILESUSB   -----> This will come up to confirm

            Enter Choen Filename   -----> This will come up asking for the file name

            VOLDATAEX1   -----> Type the name you want the file to be called

            filename = VOLDATAEX1   -----> This will come up to confirm

            Process Complete   -----> ALL DONE

            ------------------------------