SadServers Joined on September 10, 2023
1667 public recordings by SadServers
#1) Respect the privacy of others. #2) Think before you type. #3) With great power comes great responsibility. [sudo] password for admin: sudo: a password is required admin@i-03a33d25bb83c1431:~$ ls agent webserver.py admin@i-03a33d25bb83c1431:~$ su ^C admin@i-03a33d25bb83c1431:~$ ls -l total 8 drwxr-xr-x 2 admin root 4096 Sep 24 23:20 agent -rwxrwx--- 1 root root 360 Sep 24 23:20 webserver.py admin@i-03a33d25bb83c1431:~$ python3
paris/i-03a33d25bb83c1431 02:18
by SadServersdrwxr-xr-x 2 admin root 4096 Sep 24 23:20 agent -rwxrwx--- 1 root root 360 Sep 24 23:20 webserver.py admin@i-08d654c3783758f46:~$ vim webserver.py admin@i-08d654c3783758f46:~$ sudo vim webserver.py We trust you have received the usual lecture from the local System Administrator. It usually boils down to these three things: #1) Respect the privacy of others. #2) Think before you type. #3) With great power comes great responsibility. [sudo] password for admin: sudo: a password is required admin@i-08d654c3783758f46:~$
paris/i-08d654c3783758f46 01:07
by SadServersusers:(("sadagent",pid=562,fd=7)) LISTEN 0 4096 *:8080 users:(("gotty",pid=561,fd=6)) LISTEN 0 128 [::]:22 ESTAB 0 0 [::ffff:172.31.39.204]:8080 [:2 users:(("gotty",pid=561,fd=7)) admin@i-041eafe1d5ef8ef0a:~$ curl localhost:5000 Unauthorizedadmin@i-041eafe1d5ef8ef0a:~$ curl -X POST localhost:5000 <!doctype html> <html lang=en> <title>405 Method Not Allowed</title> <h1>Method Not Allowed</h1> <p>The method is not allowed for the requested URL.</p> admin@i-041eafe1d5ef8ef0a:~$
paris/i-041eafe1d5ef8ef0a 02:59
by SadServers<h1>Not Found</h1> <p>The requested URL was not found on the server. If you entered the URL manuall* Closing connection 0 admin@i-090e1ba20f8016e6e:~$ ss -tulpen Netid State Recv-Q Send-Q Local Addreudp UNCONN 0 0 127.0.0udp UNCONN 0 0 0.0.0udp UNCONN 0 0 [fe80::80f:2ff:fe9b:f6e1]%enudp UNCONN 0 0 [::tcp LISTEN 0 128 127.0.0tcp LISTEN 0 128 0.0.0tcp LISTEN 0 4096 tcp LISTEN 0 4096 tcp LISTEN 0 128 [:(reverse-i-search)`statu': systemctl status flaskapp.service
paris/i-090e1ba20f8016e6e 02:41
by SadServersdrwxr-xr-x 2 admin root 4096 Nov 6 03:17 data drwxr-xr-x 7 admin admin 4096 Nov 6 03:17 . drwxr-xr-x 3 admin admin 4096 Nov 6 03:17 .config drwxr-xr-x 2 admin root 4096 Sep 17 17:28 agent -rwxr-xr-x 1 admin root 2207109 Sep 17 17:28 kihei -rw-r--r-- 1 root root 5368709120 Sep 17 17:28 datafile drwx------ 3 admin admin 4096 Sep 17 17:15 .ansible drwx------ 2 admin admin 4096 Sep 17 16:44 .ssh drwxr-xr-x 3 root root 4096 Sep 17 16:44 .. -rw-r--r-- 1 admin admin 220 Aug 4 2021 .bash_logout -rw-r--r-- 1 admin admin 3526 Aug 4 2021 .bashrc -rw-r--r-- 1 admin admin 807 Aug 4 2021 .profile admin@i-0053f9210f2384812:~$ cd /ad bash: cd: /ad: No such file or directory admin@i-0053f9210f2384812:~$ cd /hom
kihei/i-0053f9210f2384812 00:55
by SadServersdrwx------ 4 root root 4096 Nov 5 20:22 root drwxr-xr-x 23 root root 680 Nov 5 20:22 run lrwxrwxrwx 1 root root 8 Sep 28 2021 sbin -> usr/sbin drwxr-xr-x 2 root root 4096 Sep 28 2021 srv dr-xr-xr-x 13 root root 0 Nov 5 20:21 sys drwxrwxrwt 9 root root 4096 Nov 5 20:22 tmp drwxr-xr-x 14 root root 4096 Sep 28 2021 usr drwxr-xr-x 11 root root 4096 Sep 28 2021 var root@i-00052c2fc51abf45d:/# cd /media/ root@i-00052c2fc51abf45d:/media# ls -la total 8 drwxr-xr-x 2 root root 4096 Sep 28 2021 . drwxr-xr-x 18 root root 4096 Nov 5 20:22 .. root@i-00052c2fc51abf45d:/media# cd .. root@i-00052c2fc51abf45d:/# du -h
kihei/i-00052c2fc51abf45d 00:50
by SadServersconfigfs on /sys/kernel/config type configfs (rw,nosuid,nodev,noexec,relatime) /dev/nvme0n1p15 on /boot/efi type vfat (rw,relatime,fmask=0022,dmask=0022,codepaortname=mixed,utf8,errors=remount-ro) admin@i-05ccf35c3ef3f4da2:~$ mv datafile /tmp/ admin@i-05ccf35c3ef3f4da2:~$ ./kihei -v Creating file /home/admin/data/newdatafile with size 1.5GB... panic: exit status 1 goroutine 1 [running]: main.main() ./main.go:64 +0x47d admin@i-05ccf35c3ef3f4da2:~$ df -h . Filesystem Size Used Avail Use% Mounted on /dev/nvme0n1p1 7.7G 6.1G 1.2G 84% / admin@i-05ccf35c3ef3f4da2:~$ mv /tmp/datafile
kihei/i-05ccf35c3ef3f4da2 02:26
by SadServersThis is free software: you are free to change and redistribute it. There is NO WARRANTY, to the extent permitted by law. Type "show copying" and "show warranty" for details. This GDB was configured as "x86_64-linux-gnu". Type "show configuration" for configuration details. For bug reporting instructions, please see: <https://www.gnu.org/software/gdb/bugs/>. Find the GDB manual and other documentation resources online at: <http://www.gnu.org/software/gdb/documentation/>. For help, type "help". Type "apropos word" to search for commands related to "word". Attaching to process 574 ptrace: Operation not permitted. (gdb)
paris/i-077ff369d6b5a0a27 00:44
by SadServerssystemd-1 /proc/sys/fs/binfmt_misc autofs rw,relatime,fd=30,pgrp=1,timeout=0,min,pipe_ino=9766 0 0 hugetlbfs /dev/hugepages hugetlbfs rw,relatime,pagesize=2M 0 0 mqueue /dev/mqueue mqueue rw,nosuid,nodev,noexec,relatime 0 0 debugfs /sys/kernel/debug debugfs rw,nosuid,nodev,noexec,relatime 0 0 tracefs /sys/kernel/tracing tracefs rw,nosuid,nodev,noexec,relatime 0 0 fusectl /sys/fs/fuse/connections fusectl rw,nosuid,nodev,noexec,relatime 0 0 configfs /sys/kernel/config configfs rw,nosuid,nodev,noexec,relatime 0 0 /dev/nvme0n1p15 /boot/efi vfat rw,relatime,fmask=0022,dmask=0022,codepage=437,ioixed,utf8,errors=remount-ro 0 0 admin@i-071ad0c6474467efc:/proc/574$ docker ps bash: docker: command not found admin@i-071ad0c6474467efc:/proc/574$ echo $ENV admin@i-071ad0c6474467efc:/proc/574$ echo
paris/i-071ad0c6474467efc 04:32
by SadServersroot 587 0.0 0.4 4396 2156 ttyS0 Ss+ 11:42 0:00 /sbin/agetty 15200,57600,38400,9600 ttyS0 vt220 _chrony 589 0.0 0.7 10852 3696 ? S 11:42 0:00 /usr/sbin/chr_chrony 590 0.0 0.1 10724 548 ? S 11:42 0:00 /usr/sbin/chrroot 601 0.0 3.7 26612 17380 ? Ss 11:42 0:00 /usr/bin/pyth-upgrades/unattended-upgrade-shutdown --wait-for-sign admin 708 0.0 0.9 6740 4428 pts/0 S<s+ 11:43 0:00 bash -l admin 712 0.1 4.1 98188 19252 pts/0 D<l+ 11:43 0:00 /usr/bin/pythc -t paris/i-0295f93e991e74c58 -q -i 2 /var/log/cast/ admin 715 0.0 3.0 24456 14392 pts/0 R<+ 11:43 0:00 /usr/bin/pythc -t paris/i-0295f93e991e74c58 -q -i 2 /var/log/cast/ admin 716 0.0 0.1 2480 512 pts/1 S<s 11:43 0:00 sh -c /bin/baadmin 717 0.0 1.0 6952 4844 pts/1 S< 11:43 0:00 /bin/bash admin 814 0.0 0.7 8648 3316 pts/1 R<+ 11:46 0:00 ps aux admin@i-0295f93e991e74c58:~$ pgrep -lfa
paris/i-0295f93e991e74c58 03:57
by SadServers-rw-r--r-- 1 admin admin 5368709120 Sep 17 17:28 datafile -rwxr-xr-x 1 admin root 2207109 Sep 17 17:28 kihei admin@i-05a00e67658b3d4fa:~$ ll total 5245048 drwxr-xr-x 2 admin root 4096 Sep 17 17:28 agent drwxr-xr-x 2 admin root 4096 Nov 4 20:50 data -rw-r--r-- 1 admin admin 5368709120 Sep 17 17:28 datafile -rwxr-xr-x 1 admin root 2207109 Sep 17 17:28 kihei admin@i-05a00e67658b3d4fa:~$ ./kihei panic: exit status 1 goroutine 1 [running]: main.main() ./main.go:64 +0x47d admin@i-05a00e67658b3d4fa:~$ ll
kihei/i-05a00e67658b3d4fa 11:42
by SadServersMemory: 21.9M CPU: 361ms CGroup: /system.slice/flaskapp.service └─574 /usr/bin/python3 /home/admin/webserver.py Nov 04 08:00:38 i-0ff13c81e3a7b9d0a systemd[1]: Started Flask Application. Nov 04 08:00:39 i-0ff13c81e3a7b9d0a python3[574]: * Serving Flask app 'webserveNov 04 08:00:39 i-0ff13c81e3a7b9d0a python3[574]: * Debug mode: off Nov 04 08:00:39 i-0ff13c81e3a7b9d0a python3[574]: WARNING: This is a developmentNov 04 08:00:39 i-0ff13c81e3a7b9d0a python3[574]: * Running on http://127.0.0.1Nov 04 08:00:39 i-0ff13c81e3a7b9d0a python3[574]: Press CTRL+C to quit Nov 04 08:02:22 i-0ff13c81e3a7b9d0a python3[574]: 127.0.0.1 - - [04/Nov/2023 08:admin@i-0ff13c81e3a7b9d0a:~$ ls agent webserver.py (reverse-i-search)`les': less /etc/systemd/system/flaskapp.service
paris/i-0ff13c81e3a7b9d0a 01:59
by SadServers> User-Agent: curl/7.74.0 > Accept: */* > * Mark bundle as not supporting multiuse < HTTP/1.1 200 OK < Server: Werkzeug/2.3.7 Python/3.9.2 < Date: Sat, 04 Nov 2023 07:51:57 GMT < Content-Type: text/html; charset=utf-8 < Content-Length: 12 < Connection: close < * Closing connection 0 Unauthorizedadmin@i-0370f616b00c1c73f:~$ ls agent webserver.py admin@i-0370f616b00c1c73f:~$ s
paris/i-0370f616b00c1c73f 08:03
by SadServersadmin@i-0c75fca5ccc1a5567:~$ df -h Filesystem Size Used Avail Use% Mounted on udev 217M 0 217M 0% /dev tmpfs 46M 368K 46M 1% /run /dev/nvme0n1p1 7.7G 6.1G 1.2G 84% / tmpfs 228M 12K 228M 1% /dev/shm tmpfs 5.0M 0 5.0M 0% /run/lock /dev/nvme0n1p15 124M 5.9M 118M 5% /boot/efi admin@i-0c75fca5ccc1a5567:~$ ls -lh total 5.1G drwxr-xr-x 2 admin root 4.0K Sep 17 17:28 agent drwxr-xr-x 2 admin root 4.0K Nov 4 07:29 data -rw-r--r-- 1 root root 5.0G Sep 17 17:28 datafile -rwxr-xr-x 1 admin root 2.2M Sep 17 17:28 kihei admin@i-0c75fca5ccc1a5567:~$