💻 Windows CMD Full Tutorial (2025) | Command Prompt for Beginners to Advanced | CMD Commands Explained

 Perfect 🔥 Let’s create a “Windows CMD — One Shot Tutorial (Beginner to Advanced 2025)” guide that you can use to learn fully, make notes, or even teach on YouTube.

We’ll go from 0 to expert, covering every practical and powerful CMD concept you’ll actually use in 2025.

---

🧠 CMD (Command Prompt) — One Shot Tutorial (Beginner to Advanced 2025)

🎯 Overview

CMD (Command Prompt) is the Windows command-line interpreter — used to automate tasks, manage files, control networking, and access system info.

---

🧩 1. Getting Started

🔹 Open CMD

• Search: cmd → Run as administrator

• Shortcut: Win + R → type cmd → Enter

• Admin Mode: Ctrl + Shift + Enter

🔹 Basic Info

ver                # Show Windows version
help               # List all available commands
help <command>     # Detailed help for a specific command

---

🗂️ 2. File & Folder Commands

📁 Navigation

dir                # List files and folders
cd                 # Show current directory
cd <path>          # Change directory
cd ..              # Go up one folder
cls                # Clear screen

🧱 File Operations

mkdir <folder>     # Create folder
rmdir <folder>     # Remove folder (empty)
del <file>         # Delete file
copy <src> <dest>  # Copy file
move <src> <dest>  # Move file
rename <old> <new> # Rename file

🧾 View Content

type <file>        # Display file contents
more <file>        # Display one page at a time

---

⚙️ 3. System & Device Info

systeminfo         # Full system details
hostname           # Show computer name
ipconfig           # Network details
ipconfig /all      # Full network details
tasklist           # All running processes
taskkill /IM <process.exe> /F   # Force close process
driverquery        # List installed drivers
wmic cpu get name  # CPU info
wmic bios get serialnumber

---

🌐 4. Network & Internet Commands

ping <website>             # Test connection
tracert <website>          # Trace route to website
netstat -ano               # View active connections and ports
nslookup <website>         # Get IP of website
netsh wlan show profile    # Show saved Wi-Fi profiles
netsh wlan show profile name=<WiFiName> key=clear  # Show Wi-Fi password

💡 Pro Tip: netstat -b shows which programs are using which ports (use admin CMD).

---

🧮 5. System Control & Utilities

shutdown /s /t 0           # Shutdown immediately
shutdown /r /t 5           # Restart after 5 seconds
chkdsk                     # Check disk errors
sfc /scannow               # Scan and repair system files
taskmgr                    # Open Task Manager
control                    # Open Control Panel
appwiz.cpl                 # Programs & Features

---

💡 6. User Management (Admin Required)

net user                   # Show all users
net user <username> <pass> /add   # Add user
net localgroup administrators <username> /add  # Make admin
net user <username> /delete       # Delete user

---

🧠 7. Environment & Variables

set                        # Show all environment variables
set <var>=<value>          # Create variable
echo %<var>%               # Print variable
path                       # Show PATH

Example:

set name=RedMark
echo Hello %name%

---

💻 8. Batch File Basics (.bat Scripts)

You can automate commands using a .bat file.

Example:

@echo off
echo Starting Backup...
xcopy C:\Users\RedMark\Documents D:\Backup /E /I /Y
echo Backup Complete!
pause

Save as backup.bat → Run.

---

🧰 9. Advanced Commands (2025 Pro Level)

powercfg /batteryreport /output "battery.html"   # Generate battery health report
getmac                                          # Get MAC address
net share                                        # List network shares
wmic product get name,version                    # Installed apps list
schtasks /create /sc daily /tn "Backup" /tr "C:\backup.bat" /st 21:00

---

🧨 10. CMD Tricks & Customization

🎨 Customize Look

color a     # Green text
color 4e    # Red on gray background
title RedMark CMD PowerShell

⏰ Time & Date

time /t
date /t

🪄 Fun Tricks

tree /f               # Show folder structure
echo Hello, World!

---

⚡ 11. Combining Commands

&&, ||, and |

mkdir Test && cd Test       # Run second only if first succeeds
ping google.com || echo "Failed"
dir | find "txt"            # Filter output

---

🛡️ 12. Security & Permissions

attrib +h +s <file>         # Hide and protect file
attrib -h -s <file>         # Unhide
cipher /w:C:\               # Wipe free space securely

---

🧾 13. Log & Output Handling

dir > output.txt            # Save output to file
echo Hello >> log.txt       # Append text

---

🧩 14. Power CMD (For Devs)

assoc .py=Python.File
where python                # Find path of installed program
fc file1.txt file2.txt      # Compare files

---

🎓 15. Mastery Projects

1. Create a System Cleaner Script

2. Auto Backup Scheduler using Task Scheduler + CMD

3. Wi-Fi Password Viewer

4. Disk Space Report Generator

5. Custom Command Launcher

---

🧠 BONUS: CMD vs PowerShell

Feature	CMD	PowerShell
Syntax	Basic	Object-oriented
Scripting	.bat	.ps1
Automation	Limited	Advanced
Output	Text only	Objects & JSON

---

🏁 Conclusion

✅ You now know everything from Beginner → Advanced CMD (2025 Edition)
✅ You can automate, control, and troubleshoot Windows fully using CMD
✅ Next Step: Learn PowerShell for modern scripting + automation

---

Fluxion – The Future of MITM WPA Security Research

Fluxion is a security auditing and social-engineering research tool designed to study Wi-Fi security. It is a remake of Linset with more features and fewer bugs, making it one of the most effective tools for understanding WPA/WPA2 vulnerabilities.

This tool works by simulating real-world attack scenarios to help security researchers and ethical hackers test the strength of wireless networks. Fluxion is compatible with the latest Kali Linux rolling release and also supports Arch-based distributions.

---

🔧 Installation Guide

Before installation, make sure you are using a Linux-based operating system (Kali Linux recommended). An external Wi-Fi adapter is also suggested for better performance.

Step 1: Download Fluxion

Clone the latest version from GitHub:

git clone https://www.github.com/FluxionNetwork/fluxion.git

Step 2: Switch to the Tool’s Directory

cd fluxion

Step 3: Run Fluxion

./fluxion.sh

Fluxion will automatically install missing dependencies during the first run.

For Arch Linux users, it can also be installed via:

cd bin/arch
makepkg

or directly using the BlackArch repository:

pacman -S fluxion

---

📖 How It Works

Fluxion uses a series of steps to perform a captive portal-based phishing test on wireless networks:

1. Scan for target networks – Detect nearby Wi-Fi signals.

2. Handshake Snooper – Capture a WPA/WPA2 handshake.

3. Captive Portal Attack – Create a fake access point that imitates the target network.

4. DNS Redirection – Redirect requests to the researcher’s system.

5. Web Server Setup – Serve a login page (captive portal) for password entry testing.

6. Deauthentication – Disconnect clients from the original AP, luring them to the fake one.

7. Verification – Submitted passwords are verified against the handshake file.

Once the correct WPA/WPA2 key is identified, the process ends and users are allowed to reconnect normally.

---

⚡ Features & Updates

• Frequent updates with bug fixes and new features.

• Manual and auto-modes for flexibility.

• Supports Kali Linux, Parrot OS, and Arch Linux.

• Wide community support on GitHub and chat platforms.

---

❗ Important Notes

• Fluxion is intended for educational and research purposes only.

• Do not use it on networks without explicit permission.

• For best results, use Parrot OS to avoid compatibility issues.

• Not supported on Windows Subsystem for Linux (WSL).

---

🌍 Conclusion

Fluxion represents the future of wireless security testing by combining classic penetration testing techniques with social engineering research. With regular updates and strong community contributions, it continues to be one of the most widely used tools for studying WPA/WPA2 vulnerabilities.

---

Would you like me to also make this SEO-optimized (adding meta description, keywords, and formatting for Blogspot) so your blog ranks better on Google?

Login System in Python Source Code

---

🎉 Download Source Code for My YouTube Coding Tutorials! - Login System Using Python

Hey everyone! 👋

I’ve been getting a lot of questions about where to find the source code for the projects I cover in my YouTube tutorials — so I’ve made it super easy for you!

👉 All source code files are now available right here on my blog!

Whenever you watch one of my videos and want to follow along, just check the "Download Source Code" section at the end of each related blog post. You’ll find:

• ✅ Fully commented source code

• ✅ Organized folders by video/project

• ✅ GitHub links (if applicable)

• ✅ Easy-to-download ZIP files

---

🔗 Where to Download

Just scroll to the bottom of the blog post that matches the video you're watching. Look for a section like this:

📥 Download Source Code

💬 Questions or Suggestions?

If you run into issues with the code or want to suggest a feature, leave a comment on the blog or drop a comment on the YouTube video — I read them all!

Thanks for coding along with me, and happy building! 🚀

---

Let me know if you’d like a downloadable template for this or help setting up the download buttons or GitHub integration.

TOP 20 PYTHON MODULES

 Python has a rich ecosystem of modules and libraries that extend its capabilities. Here’s a list of 20 popular Python modules along with brief explanations of each:

### 1. **NumPy**

   - **Purpose**: Provides support for large, multi-dimensional arrays and matrices, along with a collection of mathematical functions to operate on these arrays.

   - **Use Cases**: Numerical computations, data manipulation.

### 2. **Pandas**

   - **Purpose**: Offers data structures and functions needed to work with structured data, particularly DataFrames.

   - **Use Cases**: Data analysis, manipulation, and preparation.

### 3. **Matplotlib**

   - **Purpose**: A plotting library that produces static, interactive, and animated visualizations in Python.

   - **Use Cases**: Data visualization, plotting graphs and charts.

### 4. **Seaborn**

   - **Purpose**: Built on top of Matplotlib, it provides a high-level interface for drawing attractive and informative statistical graphics.

   - **Use Cases**: Data visualization with a focus on statistical plots.

### 5. **Scikit-Learn**

   - **Purpose**: A machine learning library that provides simple and efficient tools for data mining and data analysis.

   - **Use Cases**: Machine learning algorithms, model evaluation, and data preprocessing.

### 6. **TensorFlow**

   - **Purpose**: An end-to-end open-source platform for machine learning with comprehensive tools, libraries, and community resources.

   - **Use Cases**: Deep learning, neural networks, and artificial intelligence.

### 7. **Keras**

   - **Purpose**: An API for building and training deep learning models, designed to be user-friendly and modular.

   - **Use Cases**: Deep learning model development, neural networks.

### 8. **Flask**

   - **Purpose**: A lightweight web framework for building web applications and APIs.

   - **Use Cases**: Web development, RESTful APIs.

### 9. **Django**

   - **Purpose**: A high-level web framework that encourages rapid development and clean, pragmatic design.

   - **Use Cases**: Full-stack web development, database-driven websites.

### 10. **Requests**

   - **Purpose**: A simple and elegant HTTP library for sending HTTP requests and handling responses.

   - **Use Cases**: Web scraping, interacting with web APIs.

### 11. **Beautiful Soup**

   - **Purpose**: A library for parsing HTML and XML documents, providing Pythonic idioms for iterating, searching, and modifying the parse tree.

   - **Use Cases**: Web scraping, HTML/XML parsing.

### 12. **Scrapy**

   - **Purpose**: An open-source and collaborative web crawling framework for extracting the data you need from websites.

   - **Use Cases**: Web scraping, data mining.

### 13. **SQLAlchemy**

   - **Purpose**: A SQL toolkit and Object-Relational Mapping (ORM) library for Python, providing a full suite of well-known enterprise-level persistence patterns.

   - **Use Cases**: Database access, ORM.

### 14. **Pytest**

   - **Purpose**: A framework that makes building simple and scalable test cases easy, with support for fixtures and various plugins.

   - **Use Cases**: Unit testing, test automation.

### 15. **Pillow**

   - **Purpose**: A library for image processing, adding capabilities to create, modify, and manipulate images.

   - **Use Cases**: Image manipulation, file format conversions.

### 16. **Pygame**

   - **Purpose**: A library for making video games, providing functionalities for graphics, sound, and input handling.

   - **Use Cases**: Game development, multimedia applications.

### 17. **NLTK**

   - **Purpose**: The Natural Language Toolkit for working with human language data (text), providing libraries for text processing and analysis.

   - **Use Cases**: Natural language processing, linguistic data analysis.

### 18. **SymPy**

   - **Purpose**: A Python library for symbolic mathematics, allowing for algebraic computations, calculus, and equation solving.

   - **Use Cases**: Symbolic math, algebraic computations.

### 19. **OpenCV**

   - **Purpose**: A library focused on real-time computer vision, offering tools for image processing, video analysis, and computer vision tasks.

   - **Use Cases**: Computer vision, image and video processing.

### 20. **Plotly**

   - **Purpose**: A graphing library that makes interactive, publication-quality graphs online, with a focus on web-based visualization.

   - **Use Cases**: Interactive data visualization, web-based graphing.

Each of these modules is widely used in its respective domain and can significantly enhance your Python development experience, depending on your specific needs and projects.

 

Unicornscan – Penetration Testing Tool in Kali Linux

Unicornscan is a free and open-source Automated Penetration Testing tool available on GitHub which is very useful for security researchers for information gathering and testing of the security of websites and web servers.Unicornscan provides many integrated tools to perform penetration testing on the target system. This tool is also known as an active web application security reconnaissance tool. This tool was designed as it should be accurate, scalable, flexible for the users who are using it. This tool is released under GPL General Public License. This tool offers and performs scanning of TCP and UDP network protocols. This tool is very useful for finding network discovery patterns. This tool is used to find remote hosts. Unicornscan can also give you information about the target operating system.

Features and Uses of Unicornscan tool :

• Unicornscan can detect asynchronous TCP banner.
• Unicornscan can tell you information about OS, application and system service detection on the host.
• Unicornscan tool has ability to use custom data sets to perform reconnaissance.
• Unicornscan tool supports  SQL relational output from networks.
• Unicornscan can perform TCP asynchronous scan on hosts
• Unicornscan can perform asynchronous UDP scan on hosts.

Installation 

Step 1: Use the following command to install the tool on your kali linux machine.

sudo apt install unicorn

Step 2: The tool has been downloaded into your kali linux machine. Now to open the flags and help menu of the tool use the following command.

unicorn -h

 Now you can see that the tool is finally installed into your machine as the tool is opening its help menu. Now lets see some examples of how to use the tool.

Usage:

Example 1: 

Use the unicorn tool to scan a ip address to get details of open and closed ports of a website called adaptercart.

sudo unicornscan -r30 -mT adaptercart.com

You can see that it showing all the open ports this is how you can also use unicorn scan tool for your ip address or on your target host.

Example 2:

 Use the unicorn tool to scan an ip address to get details of open and closed ports of a website called geeksforgeeks.

sudo unicornscan -r30 -mT geeksforgeeks.org

Two ports are opened on the site geeksforgeeks.org.  This is how you can also perform 

Example 3 : 

Use the unicorn tool to scan a ip address to get details of open and closed ports of a website called google.com

sudo unicornscan -r30 -mT google.com

You can refer to above example to perform scanning on your target.

Example 4:

 Use the Unicornscan tool to perform a UDP scan on the whole network

sudo unicornscan –mU –v –I 192.168.1.1/24

Example 5: 

Use the Unicornscan tool to perform a TCP SYN Scan on a whole network.

 unicornscan -msf -v 192.168.1.1/24

 

Hacking Tools for Penetration Testing – Fsociety in Kali Linux

Fsociety is a free and open-source tool available on GitHub which is used as an information-gathering tool. Fsociety is used to scanning websites for information gathering and finding vulnerabilities in websites and web apps. Fsociety is one of the easiest and useful tools for performing reconnaissance on websites and web apps. The Fsociety tool is also available for Linux, Windows, and Android phones ( termux ), which is coded in both bash and Python. Fsociety provides a command-line interface that you can run on Kali Linux. This tool can be used to get information about our target(domain). We can target any domain using Fsociety. The interactive console provides a number of helpful features, such as command completion and contextual help. Fsociety is based upon Mr. Robotincludes series. 

Menu of Fsociety :

1. Information gathering

The first step to security assessment or ethical hacking is collecting all the possible information about the target, and that is why this Fsociety provides some famous information-gathering tools such as:

• Nmap
• Setoolkit
• Host To IP
• WPScan
• CMS Scanner
• XSStrike
• Dork – Google Dorks Passive Vulnerability Auditor
• Scan A server’s Users
• Crips

2. Password Attacks

For performing any kind of password attack, Fsociety has mainly 2 tools. Those are  Cupp – for generating password lists, Nc rack – network Authentication protocol.

3. Wireless Testing

It also has tools such as Reaver Pixiewps and Bluetooth Honeypot for performing any kind of wireless attack.

4. Exploitation Tools

After you are done with information gathering and finding any kind of vulnerabilities, the next thing you have to do is to exploit those vulnerabilities, so for exploiting the vulnerabilities Fsociety provides the following tools:

• sqlmap
• ATSCAN
• Shellnoob
• Commix
• FTP Auto Bypass
• JBoss Autopwn

5. Sniffing & Spoofing

Fsociety lets you perform Sniffing and Spoofing by providing several numbers of tools such as:

• Setoolkit
• SSLtrip
• pyPISHER
• SMTP Mailer

6. Web Hacking

Web hacking and Web pentestings tools are also available in Fsociety These are the following tools:

• Drupal Hacking
• Inurlbr
• WordPress & Joomla Scanner
• Gravity Form Scanner
• File Upload Checker
• WordPress Exploit Scanner
• WordPress Plugins Scanner
• Shell and Directory Finder
• Joomla! 1.5 – 3.4.5 remote code execution
• Vbulletin 5.X remote code execution
• BruteX – Automatically brute force all services running on a target
• Arachni – Web Application Security Scanner Framework

7. Private Web Hacking

It also includes some private Web hacking tools such as:

• Get all websites
• Get joomla websites
• Get wordpress websites
• Control Panel Finder
• Zip Files Finder
• Upload File Finder
• Get server users
• SQli Scanner
• Ports Scan (range of ports)
• Ports Scan (common ports)
• Get server Info
• Bypass Cloudflare

8. Post-Exploitation

After you are done with exploitation you have to perform some post-exploitation attacks to maintain persistent access to the system according to your need so for that also Fsociety provides some tools such as  Shell Checker, POET, Weema.

9. Contributors – Contain a contributors list.

10. Install & Update is used to update the framework.

Installation

Step 1: Open your kali linux operating system and use the following command to install the tool from GitHub.

git clone https://github.com/Manisso/fsociety.git

Step 2: The tool has been downloaded and now move it to the directory using the following command.

cd fsociety
ls

Step 3: Now install the tool using the following command.

./install.sh

Step 4: All the dependencies have been downloaded and now run the tool using the following command.

./fsociety.py

Usage:

Example 1: Use the Fsociety framework to perform reconnaissance in a domain.

1

After that, select nmap.

1

enter the IP address of the target.

Type 2 for port scan.

2

The framework has started nmap and this is how you can also perform on your target ip address.

Example 2: Use the Fsociety framework tool to find the IP address of a domain.

Select the host for IP tool in the framework, then enter the hostname. The tool will give you the IP address of the host.

 

Using the Metasploit Framework for Penetration Testing

Share:

 

 esting

Penetration testing is an important aspect of an organization’s security strategy as it helps to identify vulnerabilities in their systems and networks before attackers can exploit them. The Metasploit Framework is a popular tool for performing penetration testing as it provides security professionals and Penetration Testers with a powerful and flexible platform for simulating attacks and testing the security of their systems and networks. The framework’s extensive library of pre-built exploits and payloads, modular architecture, and regular updates make it a valuable tool for ensuring an organization’s infrastructure security and protecting against real-world attacks.

What is a Metasploit?

Metasploit is a powerful and widely-used open-source framework for penetration testing, exploitation, and vulnerability scanning. It provides a suite of tools and modules for ethical hacking and testing, including exploits, payloads, auxiliary modules, and post-exploitation modules, which can be used to identify and exploit vulnerabilities in target systems or networks. It provides a controlled and structured approach to penetration testing, which can help organizations to identify and remediate potential security risks before they can be exploited by attackers. It enables security professionals to develop effective security strategies and measures to prevent real-world attacks.

Metasploit is widely used in the field of cybersecurity for both offensive and defensive purposes. It can be used for identifying vulnerabilities in systems, testing the effectiveness of security measures, and conducting simulated attacks to find weaknesses in a system. It is used on various operating systems, including Windows, Linux, and macOS.

Penetration testing using Metasploit Framework

The Metasploit Framework is an excellent tool for penetration testing as it provides a comprehensive set of features and modules that enable security professionals and Penetration Testers to simulate real-world attacks against a target system or network. It is highly customizable, allowing Penetration Testers to tailor their testing activities to meet their organization’s or customers’ specific needs. Here are a few penetration testing use cases for the Metasploit Framework.

• Discovery and scanning: It can be used to scan for vulnerabilities in a target system, identify open ports and services, and gather information about the system.
• Exploitation: It provides a wide range of exploit modules that can be used to simulate real-world attacks against a target system and identify vulnerabilities that can be exploited.
• Post-exploitation: Once a system has been compromised, it can be used to perform various post-exploitation activities such as privilege escalation, lateral movement, and data exfiltration.
• Payloads: It provides a variety of payloads, such as meterpreter, that can be used to establish a remote connection to a target system, execute commands, and transfer files.
• Reporting: It can generate detailed reports of the penetration testing results, which can be used to identify areas of weakness and plan remediation strategies.
• Social engineering: It can be used to simulate social engineering attacks, such as spear-phishing attacks, to test the susceptibility of users to such attacks.