Use the net/netstat command to become a security expert in Win7/Vista

Some basic commands can often play a big role in protecting network security. The functions of the following commands are very prominent.

Detecting network connections

If you suspect that someone has installed a Trojan on your computer, or if you have a virus, but there is no perfect tool to detect if this is the case. , you can use the Windows network command to see who is connecting to your computer. The specific command format is: netstat -an This command can see all the IPs that are connected to the local computer. It contains four parts - proto (connection mode), local address (local connection address), foreign address (and local establishment). The address of the connection), state (current port state). With the details of this command, we can fully monitor the connection on the computer to achieve the purpose of controlling the computer.

We enter the following at the command prompt: netstat -a shows all ports currently open on your computer, netstat -s -e shows your network data in more detail, including TCP, UDP, ICMP And IP statistics and so on, you may have seen it. Have you ever thought about the knowledge of Vista, Windows 7 display protocol statistics and current TCP/IP network connections?

NETSTAT: Shows protocol statistics and current TCP/IP network connections under Vista/Windows 7. You can run netstat directly without parameters, as shown in the figure:

NETSTAT [-a] [-b] [-e] [-f] [-n] [-o] [-p proto] [-r] [-s] [-t] [interval]

-a Show all connections and listening ports.

-b Displays the executables involved in creating each connection or listening port. In some cases, known executables host multiple independent components, in which case