command-line-murders/i-008b5638d38d1dbb9
by SadServersMore by SadServers
Config file(s): /etc/rabbitmq/conf.d/10-defaults.conf Starting broker...2023-10-01 18:19:56.635743+00:00 [info] <0.230.0> 2023-10-01 18:19:56.635743+00:00 [info] <0.230.0> node : rabbit@rabbi2023-10-01 18:19:56.635743+00:00 [info] <0.230.0> home dir : /var/lib/rab2023-10-01 18:19:56.635743+00:00 [info] <0.230.0> config file(s) : /etc/rabbitmf 2023-10-01 18:19:56.635743+00:00 [info] <0.230.0> cookie hash : gnzLDuqKcGxM2023-10-01 18:19:56.635743+00:00 [info] <0.230.0> log(s) : <stdout> 2023-10-01 18:19:56.635743+00:00 [info] <0.230.0> data dir : /var/lib/rabitmq1
chennai/i-0898be816234a16a5 12:22
by SadServers-rwxrwx--- 1 root root 360 Sep 24 23:20 webserver.py admin@i-093333d0150041494:~$ cd .. admin@i-093333d0150041494:/home$ find / -perm -4000 -type f 2>/dev/null /usr/lib/openssh/ssh-keysign /usr/lib/dbus-1.0/dbus-daemon-launch-helper /usr/bin/chsh /usr/bin/umount /usr/bin/mount /usr/bin/passwd /usr/bin/newgrp /usr/bin/sudo /usr/bin/chfn /usr/bin/su /usr/bin/gpasswd admin@i-093333d0150041494:/home$
paris/i-093333d0150041494 03:18
by SadServersadmin@i-0e2c9c64a6cc5b706:~$ ls agent webserver.py admin@i-0e2c9c64a6cc5b706:~$ ls agent/ check.sh sadagent sadagent.txt admin@i-0e2c9c64a6cc5b706:~$ ls agent/sadagent agent/sadagent admin@i-0e2c9c64a6cc5b706:~$ file agent/sadagent agent/sadagent: ELF 64-bit LSB executable, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, Go BuildID=H6A8cVluPFUvaNojVwMi/C5t-5rNiA5GJLWeSm5Qz/KXfivG_lDFnrqPGrWEJo/K_OQEFevUZEPr4lPEnoe, not stripped admin@i-0e2c9c64a6cc5b706:~$ ./agent/check.sh md5sum: /home/admin/mysolution: No such file or directory NOadmin@i-0e2c9c64a6cc5b706:~$ ./agent/
paris/i-0e2c9c64a6cc5b706 01:06
by SadServersls: cannot access '/pid/579': No such file or directory admin@i-02fded2ca795f43ce:~$ ls /proc/579 ls: cannot read symbolic link '/proc/579/cwd': Permission denied ls: cannot read symbolic link '/proc/579/root': Permission denied ls: cannot read symbolic link '/proc/579/exe': Permission denied arch_status cgroup coredump_filter environ gid_map map_files mountattr clear_refs cpu_resctrl_groups exe io maps mountautogroup cmdline cpuset fd limits mem net auxv comm cwd fdinfo loginuid mountinfo ns admin@i-02fded2ca795f43ce:~$ ls /proc/579^C admin@i-02fded2ca795f43ce:~$ ^C admin@i-02fded2ca795f43ce:~$ ^C admin@i-02fded2ca795f43ce:~$ /proc/579/root curl localhost:5000 bash: /proc/579/root: Permission denied admin@i-02fded2ca795f43ce:~$