Public recordings

Sort by

admin@i-02dd1b8dbee12a939:/proc/685$

paris/i-02dd1b8dbee12a939 03:59

by SadServers 11 months ago

nobody:x:65534:65534:nobody:/nonexistent:/usr/sbin/nologin                      _apt:x:100:65534::/nonexistent:/usr/sbin/nologin                                messagebus:x:101:101::/nonexistent:/usr/sbin/nologin                            uuidd:x:102:102::/run/uuidd:/usr/sbin/nologin                                   tcpdump:x:103:103::/nonexistent:/usr/sbin/nologin                               _chrony:x:104:104:Chrony daemon,,,:/var/lib/chrony:/usr/sbin/nologin            systemd-network:x:105:106:systemd Network Management,,,:/run/systemd:/usr/sbin/nsystemd-resolve:x:106:107:systemd Resolver,,,:/run/systemd:/usr/sbin/nologin    sshd:x:107:65534::/run/sshd:/usr/sbin/nologin                                   systemd-timesync:x:999:999:systemd Time Synchronization:/:/usr/sbin/nologin     systemd-coredump:x:998:998:systemd Core Dumper:/:/usr/sbin/nologin              admin:x:1000:1000:Debian:/home/admin:/bin/bash                                  admin@i-0033d221d79134049:~$ cat ~.profile                                      cat: '~.profile': No such file or directory                                     admin@i-0033d221d79134049:~$

paris/i-0033d221d79134049 04:02

by SadServers 11 months ago

admin@i-08c43809f7342e8fa:~$ cat ~/mysolution                                   Unauthorized                                                                    admin@i-08c43809f7342e8fa:~$ md5sum ~/mysolution                                be3c5cdccf225ae191b14b7dcef21246  /home/admin/mysolution                        admin@i-08c43809f7342e8fa:~$ echo "Unauthorized" > ~/mysolution ^C              admin@i-08c43809f7342e8fa:~$ curl --user admin  -D- http://localhost:5000/      Enter host password for user 'admin':                                           HTTP/1.1 200 OK                                                                 Server: Werkzeug/2.3.7 Python/3.9.2                                             Date: Wed, 27 Dec 2023 18:56:03 GMT                                             Content-Type: text/html; charset=utf-8                                          Content-Length: 12                                                              Connection: close                                                                                                                                               Unauthorizedadmin@i-08c43809f7342e8fa:~$

paris/i-08c43809f7342e8fa 03:11

by SadServers 11 months ago

swaplabel  swapoff    swapon                                                    admin@i-022881715555faf1e:~$ swap                                               swaplabel  swapoff    swapon                                                    admin@i-022881715555faf1e:~$ swap^C                                             admin@i-022881715555faf1e:~$ df -kh                                             Filesystem       Size  Used Avail Use% Mounted on                               udev             217M     0  217M   0% /dev                                     tmpfs             46M  368K   46M   1% /run                                     /dev/nvme0n1p1   7.7G  6.1G  1.2G  84% /                                        tmpfs            228M   12K  228M   1% /dev/shm                                 tmpfs            5.0M     0  5.0M   0% /run/lock                                /dev/nvme0n1p15  124M  5.9M  118M   5% /boot/efi                                admin@i-022881715555faf1e:~$ ls                                                 agent  data  datafile  kihei                                                    admin@i-022881715555faf1e:~$ strace .

kihei/i-022881715555faf1e 03:35

by SadServers 11 months ago

admin@i-080f9c28de7721356:~$ curl localhost:5000/../../../../../proc/cpuinfo    <!doctype html>                                                                 <html lang=en>                                                                  <title>404 Not Found</title>                                                    <h1>Not Found</h1>                                                              <p>The requested URL was not found on the server. If you entered the URL manuallcheck your spelling and try again.</p>                                          admin@i-080f9c28de7721356:~$ curl localhost:5000/secret                         <!doctype html>                                                                 <html lang=en>                                                                  <title>404 Not Found</title>                                                    <h1>Not Found</h1>                                                              <p>The requested URL was not found on the server. If you entered the URL manuallcheck your spelling and try again.</p>                                          admin@i-080f9c28de7721356:~$ curl localhost:5000/webse

paris/i-080f9c28de7721356 02:33

by SadServers 11 months ago

tracefs on /sys/kernel/tracing type tracefs (rw,nosuid,nodev,noexec,relatime)   fusectl on /sys/fs/fuse/connections type fusectl (rw,nosuid,nodev,noexec,relatimconfigfs on /sys/kernel/config type configfs (rw,nosuid,nodev,noexec,relatime)  /dev/nvme0n1p15 on /boot/efi type vfat (rw,relatime,fmask=0022,dmask=0022,codepaadmin@i-00d3a594a6b0ea456:~$ ls lkb                                             ls: cannot access 'lkb': No such file or directory                              admin@i-00d3a594a6b0ea456:~$ lsblk                                              NAME         MAJ:MIN RM  SIZE RO TYPE MOUNTPOINT                                nvme0n1      259:0    0    8G  0 disk                                           ├─nvme0n1p1  259:2    0  7.9G  0 part /                                         ├─nvme0n1p14 259:3    0    3M  0 part                                           └─nvme0n1p15 259:4    0  124M  0 part /boot/efi                                 nvme2n1      259:1    0    1G  0 disk                                           nvme1n1      259:5    0    1G  0 disk                                           admin@i-00d3a594a6b0ea456:~$ lsblk -

kihei/i-00d3a594a6b0ea456 01:27

by SadServers 11 months ago

tcp   LISTEN 0      128                          127.0.0.1:5000      0.0.0.0:*  admin@i-0c8aeb0a6e13b348e:~$ nmap localhost -p 5000                             Starting Nmap 7.80 ( https://nmap.org ) at 2023-12-27 11:24 UTC                 Nmap scan report for localhost (127.0.0.1)                                      Host is up (0.000090s latency).                                                                                                                                 PORT     STATE SERVICE                                                          5000/tcp open  upnp                                                                                                                                             Nmap done: 1 IP address (1 host up) scanned in 0.21 seconds                     admin@i-0c8aeb0a6e13b348e:~$ ps aux | grep upnp                                 admin        704  0.0  0.1   5264   708 pts/1    S<+  11:24   0:00 grep upnp    admin@i-0c8aeb0a6e13b348e:~$ px aux | grep 5000                                 bash: px: command not found                                                     admin@i-0c8aeb0a6e13b348e:~$ ps aux | grep 5000

paris/i-0c8aeb0a6e13b348e 01:26

by SadServers 11 months ago

admin@i-0d65d9fded9a150e0:~$ cd /home/admin/                                    admin@i-0d65d9fded9a150e0:~$ ls -lrth                                           total 5.1G                                                                      -rw-r--r-- 1 root  root 5.0G Sep 17 17:28 datafile                              drwxr-xr-x 2 admin root 4.0K Sep 17 17:28 data                                  -rwxr-xr-x 1 admin root 2.2M Sep 17 17:28 kihei                                 drwxr-xr-x 2 admin root 4.0K Sep 17 17:28 agent                                 admin@i-0d65d9fded9a150e0:~$ c

kihei/i-0d65d9fded9a150e0 00:20

by SadServers 11 months ago

admin@i-028fb5071741e4aa4:~$ curl --user-agent                                  curl: option --user-agent: requires parameter                                   curl: try 'curl --help' or 'curl --manual' for more information                 admin@i-028fb5071741e4aa4:~$ curl --user-agent 'test' locah

paris/i-028fb5071741e4aa4 00:30

by SadServers 11 months ago

> Host: 127.0.0.1:5000                                                          > Authorization: Basic YWRtaW46YWRtaW4=                                         > User-Agent: curl/7.74.0                                                       > Accept: */*                                                                   >                                                                               * Mark bundle as not supporting multiuse                                        < HTTP/1.1 200 OK                                                               < Server: Werkzeug/2.3.7 Python/3.9.2                                           < Date: Wed, 27 Dec 2023 10:00:47 GMT                                           < Content-Type: text/html; charset=utf-8                                        < Content-Length: 12                                                            < Connection: close                                                             <                                                                               * Closing connection 0                                                          Unauthorizedadmin@i-0be5e4664c35e2594:~$ curl -u 'test:test' 127.0.0.1:5000 -v

paris/i-0be5e4664c35e2594 02:51

by SadServers 11 months ago

total 11M                                                                       -rwxr-xr-x 1 admin root  11M Sep 20 15:53 sadagent                              -rw-r--r-- 1 admin admin   0 Sep 20 15:53 sadagent.txt                          -rwxr-xr-x 1 admin admin 230 Sep 24 23:20 check.sh                              admin@i-0cfcaf1d38addd2ba:~/agent$ cat sadagent.txt                             admin@i-0cfcaf1d38addd2ba:~/agent$ nc localhost 5000                                                                                                                                                                                            admin@i-0cfcaf1d38addd2ba:~/agent$ GET /                                        bash: GET: command not found                                                    admin@i-0cfcaf1d38addd2ba:~/agent$ GET /                                        bash: GET: command not found                                                    admin@i-0cfcaf1d38addd2ba:~/agent$ curl --user-agent "password" localhost:5000  Welcome! Password is FDZPmh5AX3oiJtadmin@i-0cfcaf1d38addd2ba:~/agent$ curl --use5000

paris/i-0cfcaf1d38addd2ba 03:22

by SadServers 11 months ago

exit                                                                            admin@i-0170ad5571dd64107:~$ ls                                                 agent  data  datafile  kihei                                                    admin@i-0170ad5571dd64107:~$ ./kihei                                            panic: exit status 1                                                                                                                                            goroutine 1 [running]:                                                          main.main()                                                                             ./main.go:64 +0x47d                                                     admin@i-0170ad5571dd64107:~$ cd data/                                           admin@i-0170ad5571dd64107:~/data$ ls                                            admin@i-0170ad5571dd64107:~/data$ cd ..                                         admin@i-0170ad5571dd64107:~$ ls                                                 agent  data  datafile  kihei                                                    admin@i-0170ad5571dd64107:~$ vi dataf

kihei/i-0170ad5571dd64107 01:45

by SadServers 11 months ago

admin@i-09298877e62f2a64a:~$ curl -s http://localhost:5000 |

paris/i-09298877e62f2a64a 00:46

by SadServers 11 months ago

openat(AT_FDCWD, "/home/admin/webserver.py", O_RDONLY|O_CLOEXEC) = -1 EACCES (Pestat("/home/admin/webserver.py", {st_mode=S_IFREG|0770, st_size=360, ...}) = 0  readlink("/home/admin/webserver.py", 0x7ffcd0b15d90, 4096) = -1 EINVAL (Invalid lstat("/home", {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0                   lstat("/home/admin", {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0             lstat("/home/admin/webserver.py", {st_mode=S_IFREG|0770, st_size=360, ...}) = 0 openat(AT_FDCWD, "/home/admin/webserver.py", O_RDONLY) = -1 EACCES (Permission dwrite(2, "python3: can't open file '/home/"..., 82python3: can't open file '/homrrno 13] Permission denied                                                      ) = 82                                                                          rt_sigaction(SIGINT, {sa_handler=SIG_DFL, sa_mask=[], sa_flags=SA_RESTORER, sa_r{sa_handler=0x6402c0, sa_mask=[], sa_flags=SA_RESTORER, sa_restorer=0x7f1915bdf1exit_group(2)                           = ?                                     +++ exited with 2 +++                                                           admin@i-0c85c5a418bb83a0e:/etc/systemd/system$ strace python3 /home/admin/webser

paris/i-0c85c5a418bb83a0e 02:08

by SadServers 11 months ago