kihei/i-06078a63b0d535733

by SadServers 1 year ago

GNU/Linux ◆ xterm-256color ◆ bash 624 views

More by SadServers

> GET / HTTP/1.1                                                                > Host: localhost:5000                                                          > User-Agent: curl/7.74.0                                                       > Accept: */*                                                                   >                                                                               * Mark bundle as not supporting multiuse                                        < HTTP/1.1 200 OK                                                               < Server: Werkzeug/2.3.7 Python/3.9.2                                           < Date: Tue, 06 Feb 2024 07:30:57 GMT                                           < Content-Type: text/html; charset=utf-8                                        < Content-Length: 12                                                            < Connection: close                                                             <                                                                               * Closing connection 0                                                          Unauthorizedadmin@i-03d5c3bada9b64230:~$

paris/i-03d5c3bada9b64230 03:12

by SadServers 1 year ago

[sudo] password for admin:                                                      ^Csudo: 1 incorrect password attempt                                            admin@i-09b7dc79be18d538a:~$ ^C                                                 admin@i-09b7dc79be18d538a:~$ netstat -an --tcp --program                        (Not all processes could be identified, non-owned process info                   will not be shown, you would have to be root to see it all.)                   Active Internet connections (servers and established)                           Proto Recv-Q Send-Q Local Address           Foreign Address         State       tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      tcp        0      0 127.0.0.1:5000          0.0.0.0:*               LISTEN      tcp6       0      0 :::6767                 :::*                    LISTEN      tcp6       0      0 :::8080                 :::*                    LISTEN      tcp6       0      0 :::22                   :::*                    LISTEN      tcp6       0    249 172.31.37.243:8080      172.31.16.109:41784     ESTABLISHED admin@i-09b7dc79be18d538a:~$

paris/i-09b7dc79be18d538a 01:13

by SadServers 9 months ago

view-6894000                                                                    admin@i-09e2748c8c2f8a9e0:~/clmystery/mystery$ cat interviews/interview-699607  Interviewed Ms. Church at 2:04 pm.  Witness stated that she did not see anyone sshooter, that she ran away as soon as the shots were fired.                                                                                                     However, she reports seeing the car that fled the scene.  Describes it as a blueate that starts with "L337" and ends with "9"                                   admin@i-09e2748c8c2f8a9e0:~/clmystery/mystery$ ls                               ls           lsb_release  lscpu        lsipc        lslogins     lsmod        lslsattr       lsblk        lsinitramfs  lslocks      lsmem        lsns         lsadmin@i-09e2748c8c2f8a9e0:~/clmystery/mystery$ ls                               crimescene  interviews  memberships  people  streets  vehicles                  admin@i-09e2748c8c2f8a9e0:~/clmystery/mystery$ ls streets/                      Display all 222 possibilities? (y or n)                                         admin@i-09e2748c8c2f8a9e0:~/clmystery/mystery$ ls v

command-line-murders/i-09e2748c8c2f8a9e0 09:37

by SadServers 1 year ago

    2  2023-09-20T15:58:02 exit                                                     3  2023-12-18T23:23:28 ls                                                       4  2023-12-18T23:23:32 vim webserver.py                                         5  2023-12-18T23:23:35 ls -l                                                    6  2023-12-18T23:23:37 sudo -l                                                  7  2023-12-18T23:23:44 sudo view webserver.py                                   8  2023-12-18T23:24:00 ls                                                       9  2023-12-18T23:24:02 ls agent                                                10  2023-12-18T23:24:08 view agent/check.sh                                     11  2023-12-18T23:24:22 netstat -nl4                                            12  2023-12-18T23:24:29 curl 127.0.0.1:5000                                     13  2023-12-18T23:24:40 curl -v 127.0.0.1:5000                                  14  2023-12-18T23:25:09 history                                              admin@i-091ee8f6864cabf76:~$ view .bash_history                                 admin@i-091ee8f6864cabf76:~$

paris/i-091ee8f6864cabf76 02:11

by SadServers 1 year ago

See all

You can download this recording in asciicast v2 format, as a .cast file.

Download

Replay in terminal

You can replay this recording in your terminal with asciinema play command:

asciinema play 1365.cast

If you don't have asciinema cli installed then see installation instructions.

Use with stand-alone player on your website

Download asciinema player from player's releases page (you only need .js and .css file), then use it like this:

<!DOCTYPE html>
<html>
<head>
  <link rel="stylesheet" type="text/css" href="asciinema-player.css" />
</head>
<body>
  <div id="player"></div>
  <script src="asciinema-player.min.js"></script>
  <script>
    AsciinemaPlayer.create(
      '1365.cast',
      document.getElementById('player'),
      { cols: 106, rows: 39 }
    );
  </script>
</body>
</html>

See asciinema player README for full usage instructions.