command-line-murders/i-07446aeab4e6b0923
by SadServersMore by SadServers
admin@i-0a31e5daa0d7a50e2:~$ ss -tlpn State Recv-Q Send-Q Local Address:Port Peer Address:Port Process LISTEN 0 128 127.0.0.1:5000 0.0.0.0:* LISTEN 0 128 0.0.0.0:22 0.0.0.0:* LISTEN 0 4096 *:6767 *:* users:(("sLISTEN 0 4096 *:8080 *:* users:(("gLISTEN 0 128 [::]:22 [::]:* admin@i-0a31e5daa0d7a50e2:~$ curl 127.0.0.1:5000 Unauthorizedadmin@i-0a31e5daa0d7a50e2:~$ sudo su
paris/i-0a31e5daa0d7a50e2 00:35
by SadServersadmin 801 0.0 4.1 98188 19424 pts/0 S<l+ 10:11 0:00 /usr/bin/pythec -t kihei/i-025570eb46de4c5ab -q -i 2 /var/log/cast/i-025570eb46de4c5ab admin 804 0.0 3.0 24456 14368 pts/0 S<+ 10:11 0:00 /usr/bin/pythec -t kihei/i-025570eb46de4c5ab -q -i 2 /var/log/cast/i-025570eb46de4c5ab admin 953 0.0 0.1 5264 640 pts/1 S<+ 10:16 0:00 grep kihei admin@i-025570eb46de4c5ab:~$ kill 801 admin@i-025570eb46de4c5ab:~$ ps aux | grep kihei admin 987 2.0 4.1 98188 19436 pts/0 S<l+ 10:16 0:00 /usr/bin/pythec -t kihei/i-025570eb46de4c5ab --append -q -i 2 /var/log/cast/i-025570eb46de4c5admin 990 0.0 3.1 24456 14872 pts/0 S<+ 10:16 0:00 /usr/bin/pythec -t kihei/i-025570eb46de4c5ab --append -q -i 2 /var/log/cast/i-025570eb46de4c5admin 996 0.0 0.1 5264 640 pts/1 S<+ 10:16 0:00 grep kihei admin@i-025570eb46de4c5ab:~$ ls -al /var/log/cast/i-025570eb46de4c5ab -rw-r--r-- 1 admin admin 19241 Nov 5 10:17 /var/log/cast/i-025570eb46de4c5ab admin@i-025570eb46de4c5ab:~$ l /var/log/cast/i-025570eb46de4c5ab
kihei/i-025570eb46de4c5ab 05:17
by SadServerscloud-release fstab.old issue manpath.cron.d/ gai.conf issue.net mime.typadmin@i-05b159a64108ff162:~$ vi /etc/apache2/conf-available/javascript-common.coadmin@i-05b159a64108ff162:~$ vi /etc/apache2/conf-available/javascript-common.coadmin@i-05b159a64108ff162:~$ vi /etc/ng^C admin@i-05b159a64108ff162:~$ curl -Llocalhost:5000 curl: no URL specified! curl: try 'curl --help' or 'curl --manual' for more information admin@i-05b159a64108ff162:~$ curl -L localhost:5000 Unauthorizedadmin@i-05b159a64108ff162:~$ curl -L ^Ccalhost:5000 admin@i-05b159a64108ff162:~$ curl -L localhost:5000 -u admin Enter host password for user 'admin': admin@i-05b159a64108ff162:~$ ls agent mysolution webserver.py admin@i-05b159a64108ff162:~$ ls -la