SadServers Joined on September 10, 2023

1565 public recordings by SadServers

chmod: changing permissions of './webserver.py': Operation not permitted        admin@i-0fe5db61e982e9777:~$ chmod -R 755 .                                     chmod: changing permissions of './webserver.py': Operation not permitted        admin@i-0fe5db61e982e9777:~$ grep -ri 'password' | /etc/apache2/*               bash: /etc/apache2/conf-available: Is a directory                               grep: agent/sadagent: binary file matches                                       grep: webserver.py: Permission denied                                           admin@i-0fe5db61e982e9777:~$ grep -ri 'password' | /etc/apache2/conf-available  bash: /etc/apache2/conf-available: Is a directory                               grep: agent/sadagent: binary file matches                                       grep: webserver.py: Permission denied                                           grep: write error: Broken pipe                                                  admin@i-0fe5db61e982e9777:~$                                                    admin@i-0fe5db61e982e9777:~$ grep -ri 'password' /etc/apache2/conf-available    admin@i-0fe5db61e982e9777:~$

paris/i-0fe5db61e982e9777 04:33

by SadServers 4 months ago

#1709941953                                                                     ls -0l                                                                          #1709941954                                                                     ls -l                                                                           #1709941956                                                                     cd ..                                                                           #1709941957                                                                     pwd                                                                             #1709941959                                                                     cd                                                                              #1709941960                                                                     pwd                                                                             #1709941961                                                                     ls -al                                                                          (END)

paris/i-0139bb064c630ece7 01:55

by SadServers 4 months ago

ls -la                                                                          #1709925997                                                                     cat webserver.py                                                                admin@i-042eff4e631813f8b:~$ ls                                                 agent  webserver.py                                                             admin@i-042eff4e631813f8b:~$ ls                                                 agent  webserver.py                                                             admin@i-042eff4e631813f8b:~$ cd ~                                               admin@i-042eff4e631813f8b:~$ l                                                  bash: l: command not found                                                      admin@i-042eff4e631813f8b:~$ sls                                                bash: sls: command not found                                                    admin@i-042eff4e631813f8b:~$ ls                                                 agent  webserver.py                                                             admin@i-042eff4e631813f8b:~$

paris/i-042eff4e631813f8b 02:08

by SadServers 4 months ago

admin@i-0cf337aec03e60149:~$ ./kihei -

kihei/i-0cf337aec03e60149 00:15

by SadServers 4 months ago

nittaskpath.ErrBadPatterngo.itab.*flag.boolValue,flag.Valuego.itab.*os.File,io.WmError,errorgo.itab.*reflect.rtype,reflect.Typego.itab.*flag.durationValue,flag.64Value,flag.Valuego.itab.*flag.intValue,flag.Valuego.itab.*flag.int64Value,flagngValue,flag.Valuego.itab.*flag.uintValue,flag.Valuego.itab.*flag.uint64Value,fl.Builder,io.Writergo.itab.*errors.errorString,errorgo.itab.*fmt.wrapError,errorggo.itab.*os.File,io.Readergo.itab.syscall.Signal,os.Signalgo.itab.*io/fs.PathErrallError,errorgo.itab.syscall.Errno,errorgo.itab.os.onlyWriter,io.Writergo.itab.nfogo.itab.*io.LimitedReader,io.Readergo.itab.*os.File,io.Closergo.itab.*os/exec*os/exec.Error,errorgo.itab.*bufio.Reader,io.Readergo.itab.os/user.UnknownUserIdrnal/reflectlite.rtype,internal/reflectlite.Typego.itab.time.fileSizeError,errort.SortedMap,sort.Interfacego.itab.runtime.errorString,error_cgo_init_cgo_thread__init_done_cgo_callers_cgo_yield_cgo_mmap_cgo_munmap_cgo_sigactionruntime.mainPCeadlineExceededError,errorgo.itab.internal/poll.errNetClosing,errorruntime.defaudVersion.strruntime.modinfo.strtype.*runtime.textsectionmapadmin@i-0ecfba1c645ee/dev/nu /home/admin/kihei

kihei/i-0ecfba1c645ee2ea8 01:24

by SadServers 4 months ago

admin@i-0dbd5dce9178f03c1:~$ ls data                                            lost+found                                                                      admin@i-0dbd5dce9178f03c1:~$ touch data/newdatafile                             touch: cannot touch 'data/newdatafile': Permission denied                       admin@i-0dbd5dce9178f03c1:~$ sudo touch data/newdatafile                        admin@i-0dbd5dce9178f03c1:~$ sudo chown admin:admin data/newdatafile            admin@i-0dbd5dce9178f03c1:~$ ./kihei                                            panic: remove /home/admin/data/newdatafile: permission denied                                                                                                   goroutine 1 [running]:                                                          main.main()                                                                             ./main.go:50 +0x48d                                                     admin@i-0dbd5dce9178f03c1:~$ ls -alh /home/admin/data/newdatafile               -rw-r--r-- 1 admin admin 0 Mar  8 16:31 /home/admin/data/newdatafile            admin@i-0dbd5dce9178f03c1:~$

kihei/i-0dbd5dce9178f03c1 03:59

by SadServers 4 months ago

drwxr-xr-x 2 admin root        4096 Sep 17 17:28 data                           -rw-r--r-- 1 root  root  5368709120 Sep 17 17:28 datafile                       -rwxr-xr-x 1 admin root     2207109 Sep 17 17:28 kihei                          admin@i-0847c56ed353b4fb9:~$ sudo -l                                            Matching Defaults entries for admin on i-0847c56ed353b4fb9:                         env_reset, mail_badpass, secure_path=/usr/local/sbin\:/usr/local/bin\:/usr/sn                                                                                                                                                               User admin may run the following commands on i-0847c56ed353b4fb9:                   (ALL : ALL) ALL                                                                 (ALL) NOPASSWD: ALL                                                             (ALL) NOPASSWD: ALL                                                             (ALL) NOPASSWD: ALL                                                             (ALL) NOPASSWD: /sbin/shutdown                                              admin@i-0847c56ed353b4fb9:~$ rm .bash

kihei/i-0847c56ed353b4fb9 00:43

by SadServers 4 months ago

xxd: Broken pipe                                                                admin@i-032a23e8be421d153:~$ xxd datafile | head ^C                             admin@i-032a23e8be421d153:~$ gzip datafile                                      ^C                                                                              admin@i-032a23e8be421d153:~$ ls                                                 agent  data  datafile  kihei                                                    admin@i-032a23e8be421d153:~$ df -h                                              Filesystem       Size  Used Avail Use% Mounted on                               udev             217M     0  217M   0% /dev                                     tmpfs             46M  368K   46M   1% /run                                     /dev/nvme0n1p1   7.7G  6.1G  1.2G  84% /                                        tmpfs            228M   12K  228M   1% /dev/shm                                 tmpfs            5.0M     0  5.0M   0% /run/lock                                /dev/nvme0n1p15  124M  5.9M  118M   5% /boot/efi                                admin@i-032a23e8be421d153:~$

kihei/i-032a23e8be421d153 03:10

by SadServers 4 months ago

admin@i-01dbf574f5b8ca719:~$                                                    admin@i-01dbf574f5b8ca719:~$ mpstat                                             bash: mpstat: command not found                                                 admin@i-01dbf574f5b8ca719:~$                                                    admin@i-01dbf574f5b8ca719:~$ vmstat                                             procs -----------memory---------- ---swap-- -----io---- -system-- ------cpu----- r  b   swpd   free   buff  cache   si   so    bi    bo   in   cs us sy id wa st 2  0      0 224528  13460 152836    0    0   836   127   99  155  3  2 95  1  0admin@i-01dbf574f5b8ca719:~$ vmstat 1                                           procs -----------memory---------- ---swap-- -----io---- -system-- ------cpu----- r  b   swpd   free   buff  cache   si   so    bi    bo   in   cs us sy id wa st 1  0      0 224272  13460 152872    0    0   800   122   98  156  2  2 95  1  0 0  0      0 223892  13460 152872    0    0     0     0   74  135  0  0 100  0  ^C                                                                              admin@i-01dbf574f5b8ca719:~$

kihei/i-01dbf574f5b8ca719 00:24

by SadServers 4 months ago

                                                                                              Passing  on  a "Transfer-Encoding: chunked" header when doing a HT              quest body, will make curl send the data using chunked encoding.                                                                                                Example:                                                                                                                                                         curl -H "X-First-Name: Joe" http://example.com/                                                                                                                WARNING: headers set with this option will be set in all requests               rects are followed, like when told with -L, --location. This can l              ing sent to other hosts than the original host, so sensitive  head              with caution combined with following redirects.                                                                                                                 This option can be used multiple times to add/replace/remove multi Manual page curl(1) line 1104 (press h for help or q to quit)

paris/i-039b0cfc4259bd692 01:09

by SadServers 4 months ago

admin@i-05463a839cf549c2b:~$ sudo shut

paris/i-05463a839cf549c2b 00:08

by SadServers 4 months ago

root         584  0.0  0.4   4396  2104 ttyS0    Ss+  15:59   0:00 /sbin/agetty root         585  0.0  1.5  13352  7136 ?        Ss   15:59   0:00 sshd: /usr/sb_chrony      587  0.0  0.7  10852  3716 ?        S    15:59   0:00 /usr/sbin/chr_chrony      588  0.0  0.1  10724   552 ?        S    15:59   0:00 /usr/sbin/chrroot         607  0.0  3.7  26612 17324 ?        Ss   15:59   0:00 /usr/bin/pythroot         681  0.0  0.0      0     0 ?        I    15:59   0:00 [kworker/0:3-root         682  0.0  0.0      0     0 ?        I    15:59   0:00 [kworker/0:4-admin        685  0.0  0.9   6740  4500 pts/0    S<s+ 15:59   0:00 bash -l      admin        689  0.2  4.1  98188 19260 pts/0    R<l+ 15:59   0:00 /usr/bin/pythadmin        692  0.0  3.2  24456 14960 pts/0    S<+  15:59   0:00 /usr/bin/pythadmin        693  0.0  0.1   2480   512 pts/1    S<s  15:59   0:00 sh -c /bin/baadmin        694  0.0  1.0   6952  4812 pts/1    S<   15:59   0:00 /bin/bash    root         763  0.0  0.0      0     0 ?        R    16:00   0:00 [kworker/u4:4admin        808  0.0  0.6   8648  3140 pts/1    R<+  16:01   0:00 ps -aux      admin@i-08415f3e4b883b5b6:/etc/apache2/conf-available$

paris/i-08415f3e4b883b5b6 03:06

by SadServers 4 months ago

                                                                                goroutine 1 [running]:                                                          main.main()                                                                             ./main.go:64 +0x47d                                                     admin@i-0643e3d538c33101b:~$ df -h                                              Filesystem       Size  Used Avail Use% Mounted on                               udev             217M     0  217M   0% /dev                                     tmpfs             46M  368K   46M   1% /run                                     /dev/nvme0n1p1   7.7G  6.1G  1.2G  84% /                                        tmpfs            228M   12K  228M   1% /dev/shm                                 tmpfs            5.0M     0  5.0M   0% /run/lock                                /dev/nvme0n1p15  124M  5.9M  118M   5% /boot/efi                                admin@i-0643e3d538c33101b:~$ ls                                                 agent  data  datafile  kihei                                                    admin@i-0643e3d538c33101b:~$ ls data

kihei/i-0643e3d538c33101b 00:22

by SadServers 4 months ago

Creating file /home/admin/data/newdatafile with size 1.5GB...                   panic: exit status 1                                                                                                                                            goroutine 1 [running]:                                                          main.main()                                                                             ./main.go:64 +0x47d                                                     admin@i-052c1c6e295346c50:~$ df -h                                              Filesystem       Size  Used Avail Use% Mounted on                               udev             217M     0  217M   0% /dev                                     tmpfs             46M  368K   46M   1% /run                                     /dev/nvme0n1p1   7.7G  6.1G  1.2G  84% /                                        tmpfs            228M   12K  228M   1% /dev/shm                                 tmpfs            5.0M     0  5.0M   0% /run/lock                                /dev/nvme0n1p15  124M  5.9M  118M   5% /boot/efi                                admin@i-052c1c6e295346c50:~$ df

kihei/i-052c1c6e295346c50 01:59

by SadServers 4 months ago