command-line-murders/i-0cacfee254eeb5d06
by SadServersMore by SadServers
tcp ESTAB 0 0 [::ffff:172.31. [::ffff:172.31.16.109]:49770 timer:(keepalive,3.216ms,0) admin@i-0bce630416db45b25:~$ admin@i-0bce630416db45b25:~$ admin@i-0bce630416db45b25:~$ admin@i-0bce630416db45b25:~$ lsof -i:5000 admin@i-0bce630416db45b25:~$ admin@i-0bce630416db45b25:~$ lsof -i COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME gotty 558 admin 6u IPv6 10895 0t0 TCP *:http-alt (LISTEN) gotty 558 admin 7u IPv6 12340 0t0 TCP ip-172-31-40-35.us-east-2.co>ip-172-31-16-109.us-east-2.compute.internal:49770 (ESTABLISHED) sadagent 559 admin 7u IPv6 1958 0t0 TCP *:6767 (LISTEN) admin@i-0bce630416db45b25:~$ admin@i-0bce630416db45b25:~$
paris/i-0bce630416db45b25 03:00
by SadServers0ef35856b482e3494 (DSA) Feb 10 00:54:59 i-0ef35856b482e3494 ec2: 256 SHA256:P94uHIGmD/z2viiScrIibozGKOmOef35856b482e3494 (ECDSA) Feb 10 00:54:59 i-0ef35856b482e3494 ec2: 256 SHA256:REyM2XPzJ0VEVV14EXpOZazaTWasef35856b482e3494 (ED25519) Feb 10 00:54:59 i-0ef35856b482e3494 ec2: 3072 SHA256:vMSIjLcN3qaIfiUsZDlz3u1dhOS0ef35856b482e3494 (RSA) Feb 10 00:54:59 i-0ef35856b482e3494 ec2: -----END SSH HOST KEY FINGERPRINTS-----Feb 10 00:54:59 i-0ef35856b482e3494 ec2: #######################################admin@i-0ef35856b482e3494:/var/log$ su - Password: admin@i-0ef35856b482e3494:/var/log$ su - Password: ^C admin@i-0ef35856b482e3494:/var/log$ cd /proc/
paris/i-0ef35856b482e3494 02:44
by SadServers* Closing connection 0 Unauthorizedadmin@i-0250e23e35d81792d:~$ admin@i-0250e23e35d81792d:~$ admin@i-0250e23e35d81792d:~$ sudo su We trust you have received the usual lecture from the local System Administrator. It usually boils down to these three things: #1) Respect the privacy of others. #2) Think before you type. #3) With great power comes great responsibility. [sudo] password for admin: ^Csudo: 1 incorrect password attempt admin@i-0250e23e35d81792d:~$ vi exploi