Public recordings

Sort by

admin@i-0264325fffd925a1b:/etc$ cd apache2/                                     admin@i-0264325fffd925a1b:/etc/apache2$ sl                                      bash: sl: command not found                                                     admin@i-0264325fffd925a1b:/etc/apache2$ ls                                      conf-available                                                                  admin@i-0264325fffd925a1b:/etc/apache2$ cd conf-available/                      admin@i-0264325fffd925a1b:/etc/apache2/conf-available$ ls                       javascript-common.conf                                                          admin@i-0264325fffd925a1b:/etc/apache2/conf-available$ cd ..                    admin@i-0264325fffd925a1b:/etc/apache2$ cd ..                                   admin@i-0264325fffd925a1b:/etc$ cd ..                                           admin@i-0264325fffd925a1b:/$ cd usr/share/java                                  admin@i-0264325fffd925a1b:/usr/share/java$ ls                                   libintl-0.21.jar  libintl.jar                                                   admin@i-0264325fffd925a1b:/usr/share/java$ cd ..

paris/i-0264325fffd925a1b 05:48

by SadServers 11 months ago

write(2, ":", 1:)                        = 1                                    write(2, "64", 264)                       = 2                                   write(2, " +", 2 +)                       = 2                                   write(2, "0x47d", 50x47d)                    = 5                                write(2, "\n", 1                                                                )                       = 1                                                     exit_group(2)                           = ?                                     +++ exited with 2 +++                                                           admin@i-0383999b6e9ab8158:~$ ls                                                 agent  data  datafile  kihei                                                    admin@i-0383999b6e9ab8158:~$ ls datafile                                        datafile                                                                        admin@i-0383999b6e9ab8158:~$ ls /usr/local/sbin/fallocate                       ls: cannot access '/usr/local/sbin/fallocate': No such file or directory        admin@i-0383999b6e9ab8158:~$ whereis fallo

kihei/i-0383999b6e9ab8158 01:37

by SadServers 11 months ago

admin@i-08879619296430879:~$ curl localhost:5000

paris/i-08879619296430879 00:08

by SadServers 11 months ago

admin@i-05d06dde62f4b6584:~$ ls                                                 agent  webserver.py                                                             admin@i-05d06dde62f4b6584:~$ ss -lt

paris/i-05d06dde62f4b6584 00:10

by SadServers 11 months ago

admin@i-098f51c40d385ad86:~$

paris/i-098f51c40d385ad86 00:02

by SadServers 11 months ago

admin@i-08a444166c635c74f:~$                                                    admin@i-08a444166c635c74f:~$ cd /home/admin/                                    admin@i-08a444166c635c74f:~$ ls                                                 agent  data  datafile  kihei                                                    admin@i-08a444166c635c74f:~$ ./kihei

kihei/i-08a444166c635c74f 00:30

by SadServers 11 months ago

admin@i-0acdf8d66dddf4e47:~$ nc localhost 5000

paris/i-0acdf8d66dddf4e47 00:14

by SadServers 11 months ago

le="unconfined" name="man_filter" pid=355 comm="apparmor_parser"                [    4.838571] audit: type=1400 audit(1703061908.844:6): apparmor="STATUS" operale="unconfined" name="man_groff" pid=355 comm="apparmor_parser"                                                                                                 [    4.854310] audit: type=1400 audit(1703061908.884:7): apparmor="STATUS" operale="unconfined" name="lsb_release" pid=356 comm="apparmor_parser"               [    4.869891] audit: type=1400 audit(1703061908.892:8): apparmor="STATUS" operale="unconfined" name="tcpdump" pid=357 comm="apparmor_parser"                   [    4.885181] audit: type=1400 audit(1703061908.908:9): apparmor="STATUS" operale="unconfined" name="/usr/sbin/chronyd" pid=358 comm="apparmor_parser"         [   56.344814] IPv6: ADDRCONF(NETDEV_CHANGE): ens5: link becomes ready          [   58.685545] device-mapper: uevent: version 1.0.3                             [   58.690960] device-mapper: ioctl: 4.43.0-ioctl (2020-10-01) initialised: dm-dadmin@i-0934faf01c3d7420c:~$ vim /home/admin/kihei                              root@i-0934faf01c3d7420c:/home/admin# tar czf datafile > /tmp/datafile.tar.gz

kihei/i-0934faf01c3d7420c 04:53

by SadServers 11 months ago

admin@i-0fb8051e728b834c8:~$ culr

paris/i-0fb8051e728b834c8 00:07

by SadServers 11 months ago

tcp     ESTAB        0         0                                 [::ffff:172.31. [::ffff:172.31.16.109]:49770    timer:(keepalive,3.216ms,0)                    admin@i-0bce630416db45b25:~$                                                    admin@i-0bce630416db45b25:~$                                                    admin@i-0bce630416db45b25:~$                                                    admin@i-0bce630416db45b25:~$ lsof -i:5000                                       admin@i-0bce630416db45b25:~$                                                    admin@i-0bce630416db45b25:~$ lsof -i                                            COMMAND  PID  USER   FD   TYPE DEVICE SIZE/OFF NODE NAME                        gotty    558 admin    6u  IPv6  10895      0t0  TCP *:http-alt (LISTEN)         gotty    558 admin    7u  IPv6  12340      0t0  TCP ip-172-31-40-35.us-east-2.co>ip-172-31-16-109.us-east-2.compute.internal:49770 (ESTABLISHED)                sadagent 559 admin    7u  IPv6   1958      0t0  TCP *:6767 (LISTEN)             admin@i-0bce630416db45b25:~$                                                    admin@i-0bce630416db45b25:~$

paris/i-0bce630416db45b25 03:00

by SadServers 11 months ago

admin@i-0e7438ffc9d086e73:~$ sudo tune2fs -r 500 /dev/n                         net/        nvme0       nvme0n1p1   nvme0n1p15  nvme1n1     nvme2n1             null        nvme0n1     nvme0n1p14  nvme1       nvme2       nvram               admin@i-0e7438ffc9d086e73:~$ sudo tune2fs -r 500 /dev/n

kihei/i-0e7438ffc9d086e73 00:25

by SadServers 11 months ago

root         685       2  0 23:37 ?        00:00:00 [kworker/0:4-events]        admin        687     563  0 23:37 pts/0    00:00:00 bash -l                     admin        691     687  0 23:37 pts/0    00:00:00 /usr/bin/python3 /usr/bin/asadmin        694     691  0 23:37 pts/0    00:00:00 /usr/bin/python3 /usr/bin/asadmin        695     691  0 23:37 pts/1    00:00:00 sh -c /bin/bash             admin        696     695  0 23:37 pts/1    00:00:00 /bin/bash                   root         704       2  0 23:37 ?        00:00:00 [kworker/u4:4-events_unboundadmin        957     696  0 23:43 pts/1    00:00:00 ps -ef                      admin@i-0c6e74f29b5339b88:~$ ps -ef | grep web                                  root         580       1  0 23:37 ?        00:00:00 /usr/bin/python3 /home/adminadmin        960     696  0 23:43 pts/1    00:00:00 grep web                    admin@i-0c6e74f29b5339b88:~$ cat /proc/580/mem                                  cat: /proc/580/mem: Permission denied                                           admin@i-0c6e74f29b5339b88:~$ ^Ct /proc/580/mem                                  admin@i-0c6e74f29b5339b88:~$ cd /

paris/i-0c6e74f29b5339b88 06:10

by SadServers 11 months ago

[pid   871] <... futex resumed>)        = ?                                     [pid   869] <... futex resumed>)        = ?                                     [pid   871] +++ exited with 2 +++                                               [pid   870] <... futex resumed>)        = ?                                     [pid   869] +++ exited with 2 +++                                               [pid   868] <... nanosleep resumed> <unfinished ...>) = ?                       [pid   870] +++ exited with 2 +++                                               [pid   868] +++ exited with 2 +++                                               +++ exited with 2 +++                                                           admin@i-0b023b3f4c45754c6:~$ ^C                                                 admin@i-0b023b3f4c45754c6:~$ ls                                                 agent  data  datafile  kihei                                                    admin@i-0b023b3f4c45754c6:~$ ll                                                 bash: ll: command not found                                                     admin@i-0b023b3f4c45754c6:~$

kihei/i-0b023b3f4c45754c6 03:07

by SadServers 11 months ago

) = 37                                                                          write(2, "  -verbose\n    \tVerbose mode (pr"..., 48  -verbose                          Verbose mode (print extra info)                                         ) = 48                                                                          exit_group(0)                           = ?                                     +++ exited with 0 +++                                                           admin@i-031497702ee010c76:~$ ./kihei -h                                         Usage: ./kihei [options]                                                          -h    Display help                                                              -help                                                                                 Display help                                                              -v    Verbose mode (print extra info)                                           -verbose                                                                              Verbose mode (print extra info)                                         admin@i-031497702ee010c76:~$ chmod 000 /home/admin/data/newdatafile

kihei/i-031497702ee010c76 04:42

by SadServers 11 months ago