How do I install Network 101?

Install Network 101 with a single command: npx mdskills install sickn33/network-101. This downloads the skill files into your project and your AI agent picks them up automatically.

What platforms support Network 101?

Network 101 works with Claude Code, Claude Desktop, Cursor, Vscode Copilot, Windsurf, Continue Dev, Codex, Gemini Cli, Amp, Roo Code, Goose, Opencode, Trae, Qodo, Command Code. Skills use the open SKILL.md format which is compatible with any AI coding agent that reads markdown instructions.

← Back to skills

Network 101

Name: Network 101: AI Agent Skill
Rating: 9 (1 reviews)
Author: sickn33

Verified

Testing & QAIntermediate

This skill should be used when the user asks to "set up a web server", "configure HTTP or HTTPS", "perform SNMP enumeration", "configure SMB shares", "test network services", or needs guidance on configuring and testing network services for penetration testing labs.

by @sickn330Updated 2 weeks ago

Add this skill

npx mdskills install sickn33/network-101

Fork & Edit

Skill Advisor9.0

Comprehensive penetration testing lab setup guide with actionable commands and troubleshooting

+Provides clear step-by-step instructions for multiple network services
+Includes extensive enumeration commands and practical examples
+Offers quick reference tables and troubleshooting guidance
-Lacks explicit security warnings about isolating lab environments from production

SKILL.md

Edit in Browser

1---
2name: Network 101
3description: This skill should be used when the user asks to "set up a web server", "configure HTTP or HTTPS", "perform SNMP enumeration", "configure SMB shares", "test network services", or needs guidance on configuring and testing network services for penetration testing labs.
4metadata:
5  author: zebbern
6  version: "1.1"
7---
8 
9# Network 101
10 
11## Purpose
12 
13Configure and test common network services (HTTP, HTTPS, SNMP, SMB) for penetration testing lab environments. Enable hands-on practice with service enumeration, log analysis, and security testing against properly configured target systems.
14 
15## Inputs/Prerequisites
16 
17- Windows Server or Linux system for hosting services
18- Kali Linux or similar for testing
19- Administrative access to target system
20- Basic networking knowledge (IP addressing, ports)
21- Firewall access for port configuration
22 
23## Outputs/Deliverables
24 
25- Configured HTTP/HTTPS web server
26- SNMP service with accessible communities
27- SMB file shares with various permission levels
28- Captured logs for analysis
29- Documented enumeration results
30 
31## Core Workflow
32 
33### 1. Configure HTTP Server (Port 80)
34 
35Set up a basic HTTP web server for testing:
36 
37**Windows IIS Setup:**
381. Open IIS Manager (Internet Information Services)
392. Right-click Sites → Add Website
403. Configure site name and physical path
414. Bind to IP address and port 80
42 
43**Linux Apache Setup:**
44 
45```bash
46# Install Apache
47sudo apt update && sudo apt install apache2
48 
49# Start service
50sudo systemctl start apache2
51sudo systemctl enable apache2
52 
53# Create test page
54echo "<html><body><h1>Test Page</h1></body></html>" | sudo tee /var/www/html/index.html
55 
56# Verify service
57curl http://localhost
58```
59 
60**Configure Firewall for HTTP:**
61 
62```bash
63# Linux (UFW)
64sudo ufw allow 80/tcp
65 
66# Windows PowerShell
67New-NetFirewallRule -DisplayName "HTTP" -Direction Inbound -Protocol TCP -LocalPort 80 -Action Allow
68```
69 
70### 2. Configure HTTPS Server (Port 443)
71 
72Set up secure HTTPS with SSL/TLS:
73 
74**Generate Self-Signed Certificate:**
75 
76```bash
77# Linux - Generate certificate
78sudo openssl req -x509 -nodes -days 365 -newkey rsa:2048 \
79  -keyout /etc/ssl/private/apache-selfsigned.key \
80  -out /etc/ssl/certs/apache-selfsigned.crt
81 
82# Enable SSL module
83sudo a2enmod ssl
84sudo systemctl restart apache2
85```
86 
87**Configure Apache for HTTPS:**
88 
89```bash
90# Edit SSL virtual host
91sudo nano /etc/apache2/sites-available/default-ssl.conf
92 
93# Enable site
94sudo a2ensite default-ssl
95sudo systemctl reload apache2
96```
97 
98**Verify HTTPS Setup:**
99 
100```bash
101# Check port 443 is open
102nmap -p 443 192.168.1.1
103 
104# Test SSL connection
105openssl s_client -connect 192.168.1.1:443
106 
107# Check certificate
108curl -kv https://192.168.1.1
109```
110 
111### 3. Configure SNMP Service (Port 161)
112 
113Set up SNMP for enumeration practice:
114 
115**Linux SNMP Setup:**
116 
117```bash
118# Install SNMP daemon
119sudo apt install snmpd snmp
120 
121# Configure community strings
122sudo nano /etc/snmp/snmpd.conf
123 
124# Add these lines:
125# rocommunity public
126# rwcommunity private
127 
128# Restart service
129sudo systemctl restart snmpd
130```
131 
132**Windows SNMP Setup:**
1331. Open Server Manager → Add Features
1342. Select SNMP Service
1353. Configure community strings in Services → SNMP Service → Properties
136 
137**SNMP Enumeration Commands:**
138 
139```bash
140# Basic SNMP walk
141snmpwalk -c public -v1 192.168.1.1
142 
143# Enumerate system info
144snmpwalk -c public -v1 192.168.1.1 1.3.6.1.2.1.1
145 
146# Get running processes
147snmpwalk -c public -v1 192.168.1.1 1.3.6.1.2.1.25.4.2.1.2
148 
149# SNMP check tool
150snmp-check 192.168.1.1 -c public
151 
152# Brute force community strings
153onesixtyone -c /usr/share/seclists/Discovery/SNMP/common-snmp-community-strings.txt 192.168.1.1
154```
155 
156### 4. Configure SMB Service (Port 445)
157 
158Set up SMB file shares for enumeration:
159 
160**Windows SMB Share:**
1611. Create folder to share
1622. Right-click → Properties → Sharing → Advanced Sharing
1633. Enable sharing and set permissions
1644. Configure NTFS permissions
165 
166**Linux Samba Setup:**
167 
168```bash
169# Install Samba
170sudo apt install samba
171 
172# Create share directory
173sudo mkdir -p /srv/samba/share
174sudo chmod 777 /srv/samba/share
175 
176# Configure Samba
177sudo nano /etc/samba/smb.conf
178 
179# Add share:
180# [public]
181#    path = /srv/samba/share
182#    browsable = yes
183#    guest ok = yes
184#    read only = no
185 
186# Restart service
187sudo systemctl restart smbd
188```
189 
190**SMB Enumeration Commands:**
191 
192```bash
193# List shares anonymously
194smbclient -L //192.168.1.1 -N
195 
196# Connect to share
197smbclient //192.168.1.1/share -N
198 
199# Enumerate with smbmap
200smbmap -H 192.168.1.1
201 
202# Full enumeration
203enum4linux -a 192.168.1.1
204 
205# Check for vulnerabilities
206nmap --script smb-vuln* 192.168.1.1
207```
208 
209### 5. Analyze Service Logs
210 
211Review logs for security analysis:
212 
213**HTTP/HTTPS Logs:**
214 
215```bash
216# Apache access log
217sudo tail -f /var/log/apache2/access.log
218 
219# Apache error log
220sudo tail -f /var/log/apache2/error.log
221 
222# Windows IIS logs
223# Location: C:\inetpub\logs\LogFiles\W3SVC1\
224```
225 
226**Parse Log for Credentials:**
227 
228```bash
229# Search for POST requests
230grep "POST" /var/log/apache2/access.log
231 
232# Extract user agents
233awk '{print $12}' /var/log/apache2/access.log | sort | uniq -c
234```
235 
236## Quick Reference
237 
238### Essential Ports
239 
240| Service | Port | Protocol |
241|---------|------|----------|
242| HTTP | 80 | TCP |
243| HTTPS | 443 | TCP |
244| SNMP | 161 | UDP |
245| SMB | 445 | TCP |
246| NetBIOS | 137-139 | TCP/UDP |
247 
248### Service Verification Commands
249 
250```bash
251# Check HTTP
252curl -I http://target
253 
254# Check HTTPS
255curl -kI https://target
256 
257# Check SNMP
258snmpwalk -c public -v1 target
259 
260# Check SMB
261smbclient -L //target -N
262```
263 
264### Common Enumeration Tools
265 
266| Tool | Purpose |
267|------|---------|
268| nmap | Port scanning and scripts |
269| nikto | Web vulnerability scanning |
270| snmpwalk | SNMP enumeration |
271| enum4linux | SMB/NetBIOS enumeration |
272| smbclient | SMB connection |
273| gobuster | Directory brute forcing |
274 
275## Constraints
276 
277- Self-signed certificates trigger browser warnings
278- SNMP v1/v2c communities transmit in cleartext
279- Anonymous SMB access is often disabled by default
280- Firewall rules must allow inbound connections
281- Lab environments should be isolated from production
282 
283## Examples
284 
285### Example 1: Complete HTTP Lab Setup
286 
287```bash
288# Install and configure
289sudo apt install apache2
290sudo systemctl start apache2
291 
292# Create login page
293cat << 'EOF' | sudo tee /var/www/html/login.html
294<html>
295<body>
296<form method="POST" action="login.php">
297Username: <input type="text" name="user"><br>
298Password: <input type="password" name="pass"><br>
299<input type="submit" value="Login">
300</form>
301</body>
302</html>
303EOF
304 
305# Allow through firewall
306sudo ufw allow 80/tcp
307```
308 
309### Example 2: SNMP Testing Setup
310 
311```bash
312# Quick SNMP configuration
313sudo apt install snmpd
314echo "rocommunity public" | sudo tee -a /etc/snmp/snmpd.conf
315sudo systemctl restart snmpd
316 
317# Test enumeration
318snmpwalk -c public -v1 localhost
319```
320 
321### Example 3: SMB Anonymous Access
322 
323```bash
324# Configure anonymous share
325sudo apt install samba
326sudo mkdir /srv/samba/anonymous
327sudo chmod 777 /srv/samba/anonymous
328 
329# Test access
330smbclient //localhost/anonymous -N
331```
332 
333## Troubleshooting
334 
335| Issue | Solution |
336|-------|----------|
337| Port not accessible | Check firewall rules (ufw, iptables, Windows Firewall) |
338| Service not starting | Check logs with `journalctl -u service-name` |
339| SNMP timeout | Verify UDP 161 is open, check community string |
340| SMB access denied | Verify share permissions and user credentials |
341| HTTPS certificate error | Accept self-signed cert or add to trusted store |
342| Cannot connect remotely | Bind service to 0.0.0.0 instead of localhost |
343

Full transparency — inspect the skill content before installing.