command-line-murders/i-0ae2d814e231a51c4
by SadServersMore by SadServers
root 579 1 0 10:14 ttyS0 00:00:00 /sbin/agetty -o -p -- \u --k_chrony 589 1 0 10:14 ? 00:00:00 /usr/sbin/chronyd -F 1 root 590 1 0 10:14 ? 00:00:00 sshd: /usr/sbin/sshd -D [lis_chrony 591 589 0 10:14 ? 00:00:00 /usr/sbin/chronyd -F 1 root 598 1 0 10:14 ? 00:00:00 /usr/bin/python3 /usr/share/root 678 2 0 10:14 ? 00:00:00 [kworker/0:3-events] root 679 2 0 10:14 ? 00:00:00 [kworker/0:4-mm_percpu_wq] admin 796 561 0 10:18 pts/0 00:00:00 bash -l admin 800 796 0 10:18 pts/0 00:00:00 /usr/bin/python3 /usr/bin/asadmin 803 800 0 10:18 pts/0 00:00:00 /usr/bin/python3 /usr/bin/asadmin 804 800 0 10:18 pts/1 00:00:00 sh -c /bin/bash admin 805 804 0 10:18 pts/1 00:00:00 /bin/bash root 843 2 0 10:19 ? 00:00:00 [kworker/u4:2-events_unboundadmin 846 805 0 10:19 pts/1 00:00:00 ps -ef admin@i-01ba3fb0890c35be2:~$
paris/i-01ba3fb0890c35be2 01:11
by SadServersgoroutine 1 [running]: main.main() ./main.go:64 +0x47d admin@i-0aeb40e1867803400:~$ ls agent data datafile kihei admin@i-0aeb40e1867803400:~$ df -h Filesystem Size Used Avail Use% Mounted on udev 217M 0 217M 0% /dev tmpfs 46M 368K 46M 1% /run /dev/nvme0n1p1 7.7G 6.1G 1.2G 84% / tmpfs 228M 12K 228M 1% /dev/shm tmpfs 5.0M 0 5.0M 0% /run/lock /dev/nvme0n1p15 124M 5.9M 118M 5% /boot/efi admin@i-0aeb40e1867803400:~$ ./str
kihei/i-0aeb40e1867803400 03:37
by SadServersfind: ‘/var/cache/private’: Permission denied find: ‘/var/cache/ldconfig’: Permission denied find: ‘/var/cache/apt/archives/partial’: Permission denied find: ‘/var/cache/apparmor/c08a2770.0’: Permission denied find: ‘/var/spool/rsyslog’: Permission denied find: ‘/var/spool/cron/crontabs’: Permission denied find: ‘/var/tmp/systemd-private-9f2badbbb91d448495163a36e0cc284b-chrony.service-find: ‘/var/tmp/systemd-private-9f2badbbb91d448495163a36e0cc284b-systemd-logind.enied find: ‘/var/log/private’: Permission denied find: ‘/var/log/chrony’: Permission denied find: ‘/var/lib/private’: Permission denied find: ‘/var/lib/apt/lists/partial’: Permission denied find: ‘/var/lib/chrony’: Permission denied admin@i-0f010295ecb30725e:~$ find / -type f | grep webse