command-line-murders/i-05edceda3f2cbe22e

by SadServers 1 year ago

GNU/Linux ◆ xterm-256color ◆ bash 582 views

More by SadServers

                                                                                LISTEN       0         4096                              *:6767                  users:(("sadagent",pid=565,fd=7))                                              LISTEN       0         4096                              *:8080                  users:(("gotty",pid=564,fd=6))                                                 ESTAB        0         0             [::ffff:172.31.33.75]:8080          [::ffff users:(("gotty",pid=564,fd=7))                                                 admin@i-0fefafcf5226688e9:/proc/576$ watch 'ss -antp'                           admin@i-0fefafcf5226688e9:/proc/576$ cd ~                                       admin@i-0fefafcf5226688e9:~$ ls -l                                              total 8                                                                         drwxr-xr-x 2 admin root 4096 Sep 24  2023 agent                                 -rwxrwx--- 1 root  root  360 Sep 24  2023 webserver.py                          admin@i-0fefafcf5226688e9:~$ find / -perm ^C                                    admin@i-0fefafcf5226688e9:~$

paris/i-0fefafcf5226688e9 05:28

by SadServers 4 months ago

for that street name in the 'streets' subdirectory.                             To knock on their door and investigate, read the line number                    they live on from the file.  If a line looks like gibberish, you're at the wrong***************                                                                                                                                                 NAME    GENDER  AGE     ADDRESS                                                 Alicia Fuentes  F       48      Walton Street, line 433                         Jo-Ting Losev   F       46      Hemenway Street, line 390                       admin@i-04b39868f097d5d26:~/clmystery$ cat hint4                                To find all the Annabels' addresses, use the 'people' file:                                                                                                             grep "Annabel" people                                                                                                                                   Notice that not all of the results are worth investigating.  Remember what we knadmin@i-04b39868f097d5d26:~/clmystery$ grep A mystery/people

command-line-murders/i-04b39868f097d5d26 08:34

by SadServers 1 year ago

cast/                  dpkg.log               messages.2.gz          user.log.2.chrony/                dpkg.log.1             minio.log              wtmp       admin@i-069e102734ffdd250:~$ less /var/log/messages                             admin@i-069e102734ffdd250:~$ cd /var/log/                                       admin@i-069e102734ffdd250:/var/log$ ls                                          alternatives.log    cast                   debug.1     kern.log.2.gz  syslog    alternatives.log.1  chrony                 debug.2.gz  lastlog        syslog.1  apt                 cloud-init-output.log  dpkg.log    messages       syslog.2.gauth.log            cloud-init.log         dpkg.log.1  messages.1     unattendedauth.log.1          daemon.log             faillog     messages.2.gz  user.log  auth.log.2.gz       daemon.log.1           journal     minio.log      user.log.1btmp                daemon.log.2.gz        kern.log    private        user.log.2btmp.1              debug                  kern.log.1  runit          wtmp      admin@i-069e102734ffdd250:/var/log$ less auth.log                               admin@i-069e102734ffdd250:/var/log$ less

paris/i-069e102734ffdd250 06:56

by SadServers 6 months ago

sudo: 3 incorrect password attempts                                             admin@i-0151a73fc156ac6e0:~$ ls -lsa                                            total 44                                                                        4 drwxr-xr-x 6 admin admin 4096 Sep 24 23:20 .                                  4 drwxr-xr-x 3 root  root  4096 Sep 17 16:44 ..                                 4 drwx------ 3 admin admin 4096 Sep 20 15:52 .ansible                           4 -rw------- 1 admin admin  231 Oct  9 13:45 .bash_history                      4 -rw-r--r-- 1 admin admin  220 Aug  4  2021 .bash_logout                       4 -rw-r--r-- 1 admin admin 3526 Aug  4  2021 .bashrc                            4 drwxr-xr-x 3 admin admin 4096 Sep 20 15:56 .config                            4 -rw-r--r-- 1 admin admin  807 Aug  4  2021 .profile                           4 drwx------ 2 admin admin 4096 Sep 17 16:44 .ssh                               4 drwxr-xr-x 2 admin root  4096 Sep 24 23:20 agent                              4 -rwxrwx--- 1 root  root   360 Sep 24 23:20 webserver.py                       admin@i-0151a73fc156ac6e0:~$ cat .basg

paris/i-0151a73fc156ac6e0 01:45

by SadServers 1 year ago

See all

You can download this recording in asciicast v2 format, as a .cast file.

Download

Replay in terminal

You can replay this recording in your terminal with asciinema play command:

asciinema play 313.cast

If you don't have asciinema cli installed then see installation instructions.

Use with stand-alone player on your website

Download asciinema player from player's releases page (you only need .js and .css file), then use it like this:

<!DOCTYPE html>
<html>
<head>
  <link rel="stylesheet" type="text/css" href="asciinema-player.css" />
</head>
<body>
  <div id="player"></div>
  <script src="asciinema-player.min.js"></script>
  <script>
    AsciinemaPlayer.create(
      '313.cast',
      document.getElementById('player'),
      { cols: 105, rows: 39 }
    );
  </script>
</body>
</html>

See asciinema player README for full usage instructions.