root         584  0.0  0.4   4396  2104 ttyS0    Ss+  15:59   0:00 /sbin/agetty root         585  0.0  1.5  13352  7136 ?        Ss   15:59   0:00 sshd: /usr/sb_chrony      587  0.0  0.7  10852  3716 ?        S    15:59   0:00 /usr/sbin/chr_chrony      588  0.0  0.1  10724   552 ?        S    15:59   0:00 /usr/sbin/chrroot         607  0.0  3.7  26612 17324 ?        Ss   15:59   0:00 /usr/bin/pythroot         681  0.0  0.0      0     0 ?        I    15:59   0:00 [kworker/0:3-root         682  0.0  0.0      0     0 ?        I    15:59   0:00 [kworker/0:4-admin        685  0.0  0.9   6740  4500 pts/0    S<s+ 15:59   0:00 bash -l      admin        689  0.2  4.1  98188 19260 pts/0    R<l+ 15:59   0:00 /usr/bin/pythadmin        692  0.0  3.2  24456 14960 pts/0    S<+  15:59   0:00 /usr/bin/pythadmin        693  0.0  0.1   2480   512 pts/1    S<s  15:59   0:00 sh -c /bin/baadmin        694  0.0  1.0   6952  4812 pts/1    S<   15:59   0:00 /bin/bash    root         763  0.0  0.0      0     0 ?        R    16:00   0:00 [kworker/u4:4admin        808  0.0  0.6   8648  3140 pts/1    R<+  16:01   0:00 ps -aux      admin@i-08415f3e4b883b5b6:/etc/apache2/conf-available$                          

admin@i-0bb664b967d26d93a:~$ curl 127.0.0.1:80                                  curl: (7) Failed to connect to 127.0.0.1 port 80: Connection refused            admin@i-0bb664b967d26d93a:~$ curl 127.0.0.1:443                                 curl: (7) Failed to connect to 127.0.0.1 port 443: Connection refused           admin@i-0bb664b967d26d93a:~$ curl 127.0.0.1:5000                                Unauthorizedadmin@i-0bb664b967d26d93a:~$                                        admin@i-0bb664b967d26d93a:~$ nc localhost 5000                                  

main.main()                                                                             ./main.go:64 +0x47d                                                     admin@i-0d4b0d36217ba962c:~$ mv datafile.tmp ../                                mv: cannot move 'datafile.tmp' to '../datafile.tmp': Permission denied          admin@i-0d4b0d36217ba962c:~$ cd ..                                              admin@i-0d4b0d36217ba962c:/home$ ll                                             bash: ll: command not found                                                     admin@i-0d4b0d36217ba962c:/home$ ls                                             admin                                                                           admin@i-0d4b0d36217ba962c:/home$ ls -lah                                        total 12K                                                                       drwxr-xr-x  3 root  root  4.0K Sep 17 16:44 .                                   drwxr-xr-x 18 root  root  4.0K Nov 12 17:47 ..                                  drwxr-xr-x  7 admin admin 4.0K Nov 12 17:49 admin                               admin@i-0d4b0d36217ba962c:/home$                                                

/home/admin/clmystery/hint2:Try using grep to search for the clues in the crimes/home/admin/clmystery/hint2:    grep "CLUE" crimescene                          /home/admin/clmystery/instructions:You'll want to start by collecting all the clhe 'crimescene' file).                                                          /home/admin/clmystery/instructions:Fortunately the sergeant went through and marhe word "CLUE" in all caps.                                                     /home/admin/clmystery/mystery/crimescene:CLUE: Footage from an ATM security cameat the perpetrator is a tall male, at least 6'.                                 /home/admin/clmystery/mystery/crimescene:CLUE: Found a wallet believed to belongst loose change, and membership cards for Rotary_Club, Delta SkyMiles, the localof Bash History. The cards are totally untraceable and have no name, for some re/home/admin/clmystery/mystery/crimescene:CLUE: Questioned the barista at the loc woman left right before they heard the shots. The name on her latte was Annabelr and a New Zealand accent.