command-line-murders/i-0b0133666fd4f7f48
by SadServersMore by SadServers
Sep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'cSep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'fSep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'sSep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'aSep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'dSep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'vSep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'pSep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'nSep 17 16:44:46 i-0632cd9440ade6896 dhclient[485]: XMT: Solicit on ens5, intervaSep 17 16:44:46 i-0632cd9440ade6896 passwd[575]: password for 'admin' changed bySep 17 16:44:47 i-0632cd9440ade6896 cloud-init[536]: Generating public/private rSep 17 16:44:47 i-0632cd9440ade6896 cloud-init[536]: Your identification has beeSep 17 16:44:47 i-0632cd9440ade6896 cloud-init[536]: Your public key has been saSep 17 16:44:47 i-0632cd9440ade6896 cloud-init[536]: The key fingerprint is: lines 601-640
paris/i-0992a0adcae627e51 05:12
by SadServersadmin@i-0a815900e63630b6e:~$ ls agent webserver.py admin@i-0a815900e63630b6e:~$ curl localhost:5000 Unauthorizedadmin@i-0a815900e63630b6e:~$ admin@i-0a815900e63630b6e:~$ md5sum Unauthorized md5sum: Unauthorized: No such file or directory admin@i-0a815900e63630b6e:~$ md5sum "Unauthorized" md5sum: Unauthorized: No such file or directory admin@i-0a815900e63630b6e:~$ echo Unauthorized | md5sum be3c5cdccf225ae191b14b7dcef21246 - admin@i-0a815900e63630b6e:~$ echo localhost:5000 | md5sum 4d3fa77f6d4d68a367a06f34a20eaf03 - admin@i-0a815900e63630b6e:~$ echo localhost | md5sum b8419160170a41ae01abab13a3b887df - admin@i-0a815900e63630b6e:~$ curl -vvv localos
paris/i-0a815900e63630b6e 06:01
by SadServers</html>admin@i-0aba1e71324f27776:~$ cd /var/www/html/ admin@i-0aba1e71324f27776:/var/www/html$ ls index.html admin@i-0aba1e71324f27776:/var/www/html$ cat index.html cat: index.html: Permission denied admin@i-0aba1e71324f27776:/var/www/html$ cd /home/ admin@i-0aba1e71324f27776:/home$ ls admin admin@i-0aba1e71324f27776:/home$ cd ~ admin@i-0aba1e71324f27776:~$ ls agent admin@i-0aba1e71324f27776:~$ cd agent/ admin@i-0aba1e71324f27776:~/agent$ ls check.sh sadagent sadagent.txt admin@i-0aba1e71324f27776:~/agent$ cd ~
taipei/i-0aba1e71324f27776 06:14
by SadServers> GET / HTTP/1.1 > Host: localhost:5000 > User-Agent: curl/7.74.0 > Accept: */* > * Mark bundle as not supporting multiuse < HTTP/1.1 200 OK < Server: Werkzeug/2.3.7 Python/3.9.2 < Date: Thu, 22 Feb 2024 07:21:02 GMT < Content-Type: text/html; charset=utf-8 < Content-Length: 12 < Connection: close < * Closing connection 0 Unauthorizedadmin@i-050cad83ab4faeb81:~$ curl -v localhost:5000