Windows Command Prompt and DOS Prompt Commands

Windows & DOS
Prompt Commands
Unit 1: Computers & Cyber Security
Abhishek Sonker

What is Windows Command Prompt (DOS
Prompt)?
The Command Prompt (cmd.exe) is a text-based interface used in
Windows to run commands for:
● File & folder management
● System administration
● Network diagnostics
● Cybersecurity investigations
● Troubleshooting

Why are Dos Commands used?
● File Management: Users to navigate through directories and
create, delete, or copy files, enabling efficient file management.
● System Configuration: Users can configure system settings,
manage drives, and analyze hardware issues using Dos
commands, providing a robust toolkit for system customization.
● Program Execution: Facilitate the execution of programs and
scripts, offering a streamlined approach to launching applications
without the need for graphical interfaces.

● dir for listing files,
● cd for changing directories,
● md or mkdir for creating
directories,
● del for deleting files,
● copy for copying files.
● ipconfig for network
information,
● ping for testing connectivity,
● tasklist to see running
programs,
● shutdown to turn off the
computer.
Common DOS prompt (Command Prompt in modern Windows)
commands include:

dir – List Files and Folders
Shows everything in the current
directory.
Output Shows:
● Files
● Folders
● Sizes
● Dates
Example:
C:Users> dir

cd – Change Directory
Used to move between folders.
Example:
To go back:
To go to root:
C:> cd WindowsSystem32
cd ..
cd

mkdir – Create Folder
Creates a new folder.
Example: C:> mkdir cyberlab

rmdir – Remove Folder
Deletes an empty directory.
Example: C:> rmdir emptyfolder
To delete entire folder with ﬁles: rmdir /s /q cyberlab

copy – Copy Files
Copies a ﬁle from source to destination.
Example: C:> copy report.txt backupreport.txt

move – Move or Rename File
Move or rename the ﬁle name.
Example: C:> move a.txt documentsa-old.txt

del – Delete a File
Delete the ﬁle from the folder or the source destination
Example: C:> del secret.txt

type – Display Contents of a File
Display Contents of a File
Example: C:> type notes.txt

SEARCHING & FILTERING
COMMANDS

ﬁndstr – Search Text in Files
Useful for log analysis.
Example: C:> findstr /i "error" server.log
Searches for the word error (case-insensitive) inside server.log.

Pipes (|) – Connect Commands
Example: C:> ipconfig | findstr IPv4
Output is ﬁltered to only show IPv4 addresses.

Redirection (>, >>)
Save output to ﬁle.
Example: C:> dir > filelist.txt
Searches for the word error (case-insensitive) inside server.log.
Append instead of overwrite: >> filename

SYSTEM & NETWORK
COMMANDS
(Cyber Security Essentials)

ipconﬁg – Network Conﬁguration
Displays IP address, gateway, DNS, MAC address.
Example: C:> ipconfig /all

netstat – Active Connections & Ports
Shows open ports and connections.
Example: C:> netstat -ano
Useful to detect malware opening unknown ports.

ping – Test Connectivity
Network utility that checks connectivity between two devices by
sending a packet and measuring the round-trip time for a response, also
known as latency
Example: C:> ping google.com

tracert – Trace Network Route
Traces the path of data packets across a network to a destination,
showing each "hop" (router) along the way and the time it takes to reach
each one.
Example: C:> tracert google.com

nslookup – DNS Lookup
(Name Server Lookup) command-line tool is used to query the Domain
Name System (DNS) to retrieve domain names, IP addresses, and other
DNS records for troubleshooting or network administration purposes.
Example: C:> nslookup example.com

tasklist – List Running Programs
Used to display a list of all currently running processes on your
computer.
Example: C:> tasklist

taskkill – Terminate Program
Used to terminate running processes from the command line. This is
particularly useful when a program becomes unresponsive and cannot
be closed through the graphical user interface.
Example: C:> taskkill /PID 1234 /F
Program can be be terminate by:
● Process ID (/PID)
● ImageName (/IM)
● Force Termination (/F)

ADVANCED/ADMIN COMMANDS
(Used in Cyber Investigations)

systeminfo – System Details
Shows OS type, version, hotﬁxes, BIOS, etc.
Example: C:> systeminfo

net user – User Accounts
You can view a list of all user accounts and used to create, delete, and
modify local user accounts
Example: C:> net user
Check account details: C:> net user Administrator

View details for a speciﬁc user:
Disable a user:
Enable a user:
net user <username>
net user <username> /active:no
net user <username> /active:yes
View all user accounts:
Create a new user:
Delete a user:
net user
net user <username> <password> /add
net user <username> /delete

net share – Shared Folders
To manage shared folders, allowing you to create, view, and delete
network shares from the command line.
Example: C:> net share

ipconﬁg /displaydns – DNS Cache
Shows the contents of the local DNS cache, which is a temporary
storage of domain names and their corresponding IP addresses.
Example: C:> ipconfig

SIMPLE PRACTICAL LAB
(STEP-BY-STEP)

Lab: Create, Copy, View, Search Files
1. mkdir lab
2. cd lab
3. echo Hello Cyber Security > note.txt
4. type note.txt
5. copy note.txt backup.txt
6. dir
7. findstr /i "cyber" note.txt

Expected outcomes:
● Creates folder
● Creates text ﬁle
● Displays contents
● Copies the ﬁle
● Searches content

Command Prompt
Output
User enters command
Windows interprets it

● Windows DOS prompt allows direct interaction with the system.
● Commands like dir, cd, copy, del handle file tasks.
● Commands like ipconfig, netstat, tracert, nslookup are used in
cybersecurity.
● Filtering tools (findstr, pipes) help in log and network analysis.
● CMD is essential for digital forensics, troubleshooting, and
penetration testing.

Windows Command Prompt and DOS Prompt Commands

More Related Content

What's hot

Similar to Windows Command Prompt and DOS Prompt Commands

Recently uploaded

Windows Command Prompt and DOS Prompt Commands