command-line-murders/i-056a8687d10bf6838
by SadServersMore by SadServers
admin@i-0346e20b3ceb89391:~$ nmap -v -O localhost -P 5000 Warning: The -P option is deprecated. Please use -PE Warning: You are not root -- using TCP pingscan rather than ICMP TCP/IP fingerprinting (for OS scan) requires root privileges. QUITTING! admin@i-0346e20b3ceb89391:~$
paris/i-0346e20b3ceb89391 00:44
by SadServerssudo: 1 incorrect password attempt admin@i-05bde59437c3d6bbd:~$ ls -la total 44 drwxr-xr-x 6 admin admin 4096 Sep 24 23:20 . drwxr-xr-x 3 root root 4096 Sep 17 16:44 .. drwx------ 3 admin admin 4096 Sep 20 15:52 .ansible -rw------- 1 admin admin 569 Nov 2 08:37 .bash_history -rw-r--r-- 1 admin admin 220 Aug 4 2021 .bash_logout -rw-r--r-- 1 admin admin 3526 Aug 4 2021 .bashrc drwxr-xr-x 3 admin admin 4096 Sep 20 15:56 .config -rw-r--r-- 1 admin admin 807 Aug 4 2021 .profile drwx------ 2 admin admin 4096 Sep 17 16:44 .ssh drwxr-xr-x 2 admin root 4096 Sep 24 23:20 agent -rwxrwx--- 1 root root 360 Sep 24 23:20 webserver.py admin@i-05bde59437c3d6bbd:~$ cd
paris/i-05bde59437c3d6bbd 02:50
by SadServersadmin@i-006f0e9a73bb6b96a:~/.ansible$ cd tmp/ admin@i-006f0e9a73bb6b96a:~/.ansible/tmp$ ls admin@i-006f0e9a73bb6b96a:~/.ansible/tmp$ ls -lah total 8.0K drwx------ 2 admin admin 4.0K Sep 24 2023 . drwx------ 3 admin admin 4.0K Sep 20 2023 .. admin@i-006f0e9a73bb6b96a:~/.ansible/tmp$ chage -l admin Last password change : Sep 17, 2023 Password expires : never Password inactive : never Account expires : never Minimum number of days between password change : 0 Maximum number of days between password change : 99999 Number of days of warning before password expires : 7 admin@i-006f0e9a73bb6b96a:~/.ansible/tmp$ cd /etc
paris/i-006f0e9a73bb6b96a 03:24
by SadServersfind: ‘./var/cache/ldconfig’: Permission denied find: ‘./var/cache/apt/archives/partial’: Permission denied find: ‘./var/cache/apparmor/c08a2770.0’: Permission denied find: ‘./var/spool/rsyslog’: Permission denied find: ‘./var/spool/cron/crontabs’: Permission denied find: ‘./var/tmp/systemd-private-b754c07b3fa742cb9df32f2da130ce62-systemd-logindfind: ‘./var/tmp/systemd-private-b754c07b3fa742cb9df32f2da130ce62-chrony.servicefind: ‘./var/log/private’: Permission denied find: ‘./var/log/chrony’: Permission denied find: ‘./var/lib/private’: Permission denied find: ‘./var/lib/apt/lists/partial’: Permission denied find: ‘./var/lib/chrony’: Permission denied admin@i-0840e6f1dc550a03a:/$ tree bash: tree: command not found admin@i-0840e6f1dc550a03a:/$ find . -iname pass