command-line-murders/i-0b0133666fd4f7f48

by SadServers 1 year ago

GNU/Linux ◆ xterm-256color ◆ bash 466 views

More by SadServers

Sep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'cSep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'fSep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'sSep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'aSep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'dSep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'vSep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'pSep 17 16:44:46 i-0632cd9440ade6896 useradd[568]: add 'admin' to shadow group 'nSep 17 16:44:46 i-0632cd9440ade6896 dhclient[485]: XMT: Solicit on ens5, intervaSep 17 16:44:46 i-0632cd9440ade6896 passwd[575]: password for 'admin' changed bySep 17 16:44:47 i-0632cd9440ade6896 cloud-init[536]: Generating public/private rSep 17 16:44:47 i-0632cd9440ade6896 cloud-init[536]: Your identification has beeSep 17 16:44:47 i-0632cd9440ade6896 cloud-init[536]: Your public key has been saSep 17 16:44:47 i-0632cd9440ade6896 cloud-init[536]: The key fingerprint is:    lines 601-640

paris/i-0992a0adcae627e51 05:12

by SadServers 1 year ago

admin@i-0a815900e63630b6e:~$ ls                                                 agent  webserver.py                                                             admin@i-0a815900e63630b6e:~$ curl localhost:5000                                Unauthorizedadmin@i-0a815900e63630b6e:~$                                        admin@i-0a815900e63630b6e:~$ md5sum Unauthorized                                md5sum: Unauthorized: No such file or directory                                 admin@i-0a815900e63630b6e:~$ md5sum "Unauthorized"                              md5sum: Unauthorized: No such file or directory                                 admin@i-0a815900e63630b6e:~$ echo Unauthorized | md5sum                         be3c5cdccf225ae191b14b7dcef21246  -                                             admin@i-0a815900e63630b6e:~$ echo localhost:5000 | md5sum                       4d3fa77f6d4d68a367a06f34a20eaf03  -                                             admin@i-0a815900e63630b6e:~$ echo localhost | md5sum                            b8419160170a41ae01abab13a3b887df  -                                             admin@i-0a815900e63630b6e:~$ curl -vvv localos

paris/i-0a815900e63630b6e 06:01

by SadServers 1 year ago

</html>admin@i-0aba1e71324f27776:~$ cd /var/www/html/                           admin@i-0aba1e71324f27776:/var/www/html$ ls                                     index.html                                                                      admin@i-0aba1e71324f27776:/var/www/html$ cat index.html                         cat: index.html: Permission denied                                              admin@i-0aba1e71324f27776:/var/www/html$ cd /home/                              admin@i-0aba1e71324f27776:/home$ ls                                             admin                                                                           admin@i-0aba1e71324f27776:/home$ cd ~                                           admin@i-0aba1e71324f27776:~$ ls                                                 agent                                                                           admin@i-0aba1e71324f27776:~$ cd agent/                                          admin@i-0aba1e71324f27776:~/agent$ ls                                           check.sh  sadagent  sadagent.txt                                                admin@i-0aba1e71324f27776:~/agent$ cd ~

taipei/i-0aba1e71324f27776 06:14

by SadServers 1 year ago

> GET / HTTP/1.1                                                                > Host: localhost:5000                                                          > User-Agent: curl/7.74.0                                                       > Accept: */*                                                                   >                                                                               * Mark bundle as not supporting multiuse                                        < HTTP/1.1 200 OK                                                               < Server: Werkzeug/2.3.7 Python/3.9.2                                           < Date: Thu, 22 Feb 2024 07:21:02 GMT                                           < Content-Type: text/html; charset=utf-8                                        < Content-Length: 12                                                            < Connection: close                                                             <                                                                               * Closing connection 0                                                          Unauthorizedadmin@i-050cad83ab4faeb81:~$ curl -v localhost:5000

paris/i-050cad83ab4faeb81 00:17

by SadServers 1 year ago

See all

You can download this recording in asciicast v2 format, as a .cast file.

Download

Replay in terminal

You can replay this recording in your terminal with asciinema play command:

asciinema play 176.cast

If you don't have asciinema cli installed then see installation instructions.

Use with stand-alone player on your website

Download asciinema player from player's releases page (you only need .js and .css file), then use it like this:

<!DOCTYPE html>
<html>
<head>
  <link rel="stylesheet" type="text/css" href="asciinema-player.css" />
</head>
<body>
  <div id="player"></div>
  <script src="asciinema-player.min.js"></script>
  <script>
    AsciinemaPlayer.create(
      '176.cast',
      document.getElementById('player'),
      { cols: 105, rows: 41 }
    );
  </script>
</body>
</html>

See asciinema player README for full usage instructions.