command-line-murders/i-0935916d913d46029
by SadServersMore by SadServers
tmpfs 46M 368K 46M 1% /run /dev/nvme0n1p1 7.7G 6.1G 1.2G 84% / tmpfs 228M 12K 228M 1% /dev/shm tmpfs 5.0M 0 5.0M 0% /run/lock /dev/nvme0n1p15 124M 5.9M 118M 5% /boot/efi admin@i-01d29b6753c5b092d:~$ /home/admin/kihei panic: exit status 1 goroutine 1 [running]: main.main() ./main.go:64 +0x47d admin@i-01d29b6753c5b092d:~$ cd /home/admin admin@i-01d29b6753c5b092d:~$ ls agent data datafile kihei admin@i-01d29b6753c5b092d:~$
kihei/i-01d29b6753c5b092d 01:04
by SadServersnt-Type: application/x-www-form-urlencoded' --data-urlencode 'password=" or 1=1'Access denied!admin@i-09f0e7c74e34fbdd9:~$ curl --location --request POST 'localnt-Type: application/x-www-form-urlencoded' --data-urlencode 'password=" or "1"=Access denied!admin@i-09f0e7c74e34fbdd9:~$ curl --location --request POST 'localnt-Type: application/x-www-form-urlencoded' --data-urlencode 'password=^Cor "1"=admin@i-09f0e7c74e34fbdd9:~$ curl --location --request POST 'localhost:5000' \ --header 'Content-Type: application/x-www-form-urlencoded' \ --data-urlencode 'password='\'' or '\''1'\''='\''1' admin@i-09f0e7c74e34fbdd9:~$ curl --location --request POST 'localhost:5000' \al--header 'Content-Type: application/x-www-form-urlencoded' \ --data-urlencode 'password=' admin@i-09f0e7c74e34fbdd9:~$ curl --location --request POST 'localhost:5000' \al--form 'password="admin"' Access denied!admin@i-09f0e7c74e34fbdd9:~$ curl --location --request POST 'locald="admin"'
monaco/i-09f0e7c74e34fbdd9 05:55
by SadServers- admin 683 0.0 3.1 24456 14820 pts/0 S<+ 19:43 0:00 /usr/bin/python3 /usr/bin/asciinema rec -t paris/i-0186dcafc18038e54 -q - admin 684 0.0 0.1 2480 508 pts/1 S<s 19:43 0:00 sh -c /bin/bash admin 685 0.0 1.0 6952 4772 pts/1 S< 19:43 0:00 /bin/bash root 691 0.0 0.0 0 0 ? I 19:43 0:00 [kworker/u4:4-events_unbound] root 853 0.0 0.0 0 0 ? I 19:47 0:00 [kworker/0:0] admin 855 0.0 0.6 8648 3164 pts/1 R<+ 19:48 0:00 ps aux admin@i-0186dcafc18038e54:~$ ps aux
paris/i-0186dcafc18038e54 04:39
by SadServersmmap(0x7f6d4f8a6000, 151552, PROT_READ, MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, mmap(0x7f6d4f8cb000, 24576, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_DENY6d4f8cb000 mmap(0x7f6d4f8d1000, 848, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYM000 close(3) = 0 openat(AT_FDCWD, "/usr/lib/sudo/libpam.so.0", O_RDONLY|O_CLOEXEC) = -1 ENOENT (Nopenat(AT_FDCWD, "/etc/ld.so.cache", O_RDONLY|O_CLOEXEC) = 3 fstat(3, {st_mode=S_IFREG|0644, st_size=17664, ...}) = 0 mmap(NULL, 17664, PROT_READ, MAP_PRIVATE, 3, 0) = 0x7f6d4f8e6000 close(3) = 0 openat(AT_FDCWD, "/lib/x86_64-linux-gnu/libpam.so.0", O_RDONLY|O_CLOEXEC) = 3 read(3, "\177ELF\2\1\1\0\0\0\0\0\0\0\0\0\3\0>\0\1\0\0\0\2005\0\0\0\0\0\0"..., 83fstat(3, {st_mode=S_IFREG|0644, st_size=67584, ...}) = 0 :