command-line-murders/i-00a6ae2e1d82a8cce

by SadServers 1 year ago

GNU/Linux ◆ xterm-256color ◆ bash 428 views

More by SadServers

root         587  0.0  1.4  13352  6828 ?        Ss   21:55   0:00 sshd: /usr/sbroot         588  0.0  0.3   2872  1664 tty1     Ss+  21:55   0:00 /sbin/agetty root         589  0.0  0.4   4396  2144 ttyS0    Ss+  21:55   0:00 /sbin/agetty _chrony      591  0.0  0.7  10852  3664 ?        S    21:55   0:00 /usr/sbin/chr_chrony      592  0.0  0.1  10724   548 ?        S    21:55   0:00 /usr/sbin/chrroot         610  0.0  3.7  26612 17404 ?        Ss   21:55   0:00 /usr/bin/pythroot         683  0.0  0.0      0     0 ?        I    21:55   0:00 [kworker/1:3-admin        714  0.0  0.9   6740  4368 pts/0    S<s+ 21:56   0:00 bash -l      admin        718  0.2  4.1  98320 19392 pts/0    R<l+ 21:56   0:00 /usr/bin/pythadmin        721  0.0  3.1  24456 14836 pts/0    R<+  21:56   0:00 /usr/bin/pythadmin        722  0.0  0.1   2480   508 pts/1    S<s  21:56   0:00 sh -c /bin/baadmin        723  0.0  0.9   6820  4500 pts/1    S<   21:56   0:00 /bin/bash    admin        819  0.0  0.6   8648  3260 pts/1    R<+  21:59   0:00 ps aux       admin@i-0cdefb94500ecc5ae:~$ vim log                                            admin@i-0cdefb94500ecc5ae:~$ netsstat

paris/i-0cdefb94500ecc5ae 05:03

by SadServers 3 months ago

admin@i-00baa51fad562d866:~$ cat ~/clmystery/hint1                              Try poking around what's in a file by using the 'head' command:                                                                                                   head -n 20 people                                                                                                                                             This will show you the first 20 lines of the 'people' file.                     admin@i-00baa51fad562d866:~$ cat ~/clmystery/hint12                             cat: /home/admin/clmystery/hint12: No such file or directory                    admin@i-00baa51fad562d866:~$ cat ~/clmystery/hint2                              Try using grep to search for the clues in the crimescene file:                                                                                                          grep "CLUE" crimescene                                                  admin@i-00baa51fad562d866:~$

command-line-murders/i-00baa51fad562d866 00:40

by SadServers 1 year ago

_chrony      602  0.0  0.7  10856  3596 ?        S    19:12   0:00 /usr/sbin/chrroot         609  0.0  3.7  26612 17272 ?        Ss   19:12   0:00 /usr/bin/pyth-upgrades/unattended-upgrad                                                     _chrony      611  0.0  0.1  10724   552 ?        S    19:12   0:00 /usr/sbin/chrroot         913  0.0  0.0      0     0 ?        I    19:17   0:00 [kworker/1:1-admin        916  0.0  0.7   5920  3624 pts/0    S<s+ 19:18   0:00 bash -l      admin        918  0.2  4.1  98188 19372 pts/0    R<l+ 19:18   0:00 /usr/bin/pythc -t kihei/i-058f99da3418f9                                                     admin        921  0.0  3.2  24456 14984 pts/0    S<+  19:18   0:00 /usr/bin/pythc -t kihei/i-058f99da3418f9                                                     admin        922  0.0  0.1   2480   568 pts/1    S<s  19:18   0:00 sh -c /bin/baadmin        923  0.0  1.0   6952  4880 pts/1    S<   19:18   0:00 /bin/bash    root         947  0.0  0.0      0     0 ?        I    19:18   0:00 [kworker/0:0-admin       1046  0.0  0.7   8648  3268 pts/1    R<+  19:19   0:00 ps waux      admin@i-058f99da3418f95da:~$

kihei/i-058f99da3418f95da 06:55

by SadServers 1 year ago

admin@i-0249d70369e564da5:/var/log$                                             admin@i-0249d70369e564da5:/var/log$                                             admin@i-0249d70369e564da5:/var/log$                                             admin@i-0249d70369e564da5:/var/log$                                             admin@i-0249d70369e564da5:/var/log$ ls                                          alternatives.log    auth.log       btmp    chrony                 daemon.log    alternatives.log.1  auth.log.1     btmp.1  cloud-init-output.log  daemon.log.1  apt                 auth.log.2.gz  cast    cloud-init.log         daemon.log.2.gadmin@i-0249d70369e564da5:/var/log$                                             admin@i-0249d70369e564da5:/var/log$                                             admin@i-0249d70369e564da5:/var/log$                                             admin@i-0249d70369e564da5:/var/log$                                             admin@i-0249d70369e564da5:/var/log$ nc localhost 5000                           GET /                                                                           curl --user-

paris/i-0249d70369e564da5 03:19

by SadServers 1 year ago

See all

You can download this recording in asciicast v2 format, as a .cast file.

Download

Replay in terminal

You can replay this recording in your terminal with asciinema play command:

asciinema play 541.cast

If you don't have asciinema cli installed then see installation instructions.

Use with stand-alone player on your website

Download asciinema player from player's releases page (you only need .js and .css file), then use it like this:

<!DOCTYPE html>
<html>
<head>
  <link rel="stylesheet" type="text/css" href="asciinema-player.css" />
</head>
<body>
  <div id="player"></div>
  <script src="asciinema-player.min.js"></script>
  <script>
    AsciinemaPlayer.create(
      '541.cast',
      document.getElementById('player'),
      { cols: 105, rows: 55 }
    );
  </script>
</body>
</html>

See asciinema player README for full usage instructions.