// Match user agent string with operating systems
Windows 3.11 => Win16,
Windows 95 => (Windows 95)|(Win95)|(Windows_95),
Windows 98 => (Windows 98)|(Win98),
Windows 2000 => (Windows NT 5.0)|(Windows 2000),
Windows XP => (Windows NT 5.1)|(Windows XP),
Windows Server 2003 => (Windows NT 5.2),
Windows Vista => (Windows NT 6.0),
Windows 7 => (Windows NT 6.1),
Windows 8 => (Windows NT 6.2),
Windows 10 => (Windows NT 10.0),
Windows NT 4.0 => (Windows NT 4.0)|(WinNT4.0)|(WinNT)|(Windows NT),
Windows ME => Windows ME,
Open BSD => OpenBSD,
Sun OS => SunOS,
Linux => (Linux)|(X11),
Mac OS => (Mac_PowerPC)|(Macintosh),
QNX => QNX,
BeOS => BeOS,
OS/2 => OS/2,
Search Bot=>(nuhk)|(Googlebot)|(Yammybot)|(Openbot)|(Slurp)|(MSNBot)|(Ask Jeeves/Teoma)|(ia_archiver)
Windows admin account default RID (Relative Identifier) is 500
Command to see: wmic useraccount get name,sid
Windows: Get pertinent information about a single specific process
Following LM hash means the server is using an empty password for user, but can also mean it doesn't use LM: aad3b435b51404eeaad3b435b51404ee
Use id <username> to see what groups a user is under.
Use jq to find value attached to item from a json file.
Identify hash by id from /etc/shadow
To ignore standard error messages use 2>/dev/null . It sends STDERR (the error messages) to /dev/null, which ignores the errors, so the command prints only STDOUT (the standard output).
Example use: find / -name flag 2>/dev/null
Search all files with setuid set
Run ps command on a docker container
Use Wiresharks manual to figure out what vendor owns a mac address (Give first three bytes)