SadServers Joined on September 10, 2023

lsof      791                    admin  mem       REG              259,1   149524-linux-gnu/libpthread-2.31.so                                                  lsof      791                    admin  mem       REG              259,1    18684-linux-gnu/libdl-2.31.so                                                       lsof      791                    admin  mem       REG              259,1   617124-linux-gnu/libpcre2-8.so.0.10.1                                                lsof      791                    admin  mem       REG              259,1  1901534-linux-gnu/libc-2.31.so                                                        lsof      791                    admin  mem       REG              259,1   166124-linux-gnu/libselinux.so.1                                                     lsof      791                    admin  mem       REG              259,1   177924-linux-gnu/ld-2.31.so                                                          lsof      791                    admin    4r     FIFO               0,11      0tlsof      791                    admin    7w     FIFO               0,11      0tadmin@i-08470b485bf6eb405:~$ ss -tulnp                                          

admin@i-0139974abc9a432af:~$ ls -lah                                            total 5.1G                                                                      drwxr-xr-x 7 admin admin 4.0K Oct 24 12:11 .                                    drwxr-xr-x 3 root  root  4.0K Sep 17  2023 ..                                   drwx------ 3 admin admin 4.0K Sep 17  2023 .ansible                             -rw-r--r-- 1 admin admin  220 Aug  4  2021 .bash_logout                         -rw-r--r-- 1 admin admin 3.5K Aug  4  2021 .bashrc                              drwxr-xr-x 3 admin admin 4.0K Oct 24 12:11 .config                              -rw-r--r-- 1 admin admin  807 Aug  4  2021 .profile                             drwx------ 2 admin admin 4.0K Sep 17  2023 .ssh                                 drwxr-xr-x 2 admin root  4.0K Sep 17  2023 agent                                drwxr-xr-x 2 admin root  4.0K Oct 24 12:19 data                                 -rw-r--r-- 1 admin admin 5.0G Sep 17  2023 datafile                             -rwxr-xr-x 1 admin root  2.2M Sep 17  2023 kihei                                admin@i-0139974abc9a432af:~$ ls -lah                                            

> GET / HTTP/1.1                                                                > Host: localhost:5000                                                          > User-Agent: curl/7.74.0                                                       > Accept: */*                                                                   >                                                                               * Mark bundle as not supporting multiuse                                        < HTTP/1.1 200 OK                                                               < Server: Werkzeug/2.3.7 Python/3.9.2                                           < Date: Wed, 23 Oct 2024 22:33:37 GMT                                           < Content-Type: text/html; charset=utf-8                                        < Content-Length: 12                                                            < Connection: close                                                             <                                                                               * Closing connection 0                                                          Unauthorizedadmin@i-02901696405e883e3:~$ systemctl l                            

cat: /home/admin/webserver.py: Permission denied                                admin@i-041ba6e4c2ebedf78:~$ sudo su                                                                                                                            We trust you have received the usual lecture from the local System              Administrator. It usually boils down to these three things:                                                                                                         #1) Respect the privacy of others.                                              #2) Think before you type.                                                      #3) With great power comes great responsibility.                                                                                                            [sudo] password for admin:                                                      sudo: a password is required                                                    admin@i-041ba6e4c2ebedf78:~$                                                    admin@i-041ba6e4c2ebedf78:~$                                                    admin@i-041ba6e4c2ebedf78:~$                                                    

admin@i-0346e20b3ceb89391:~$ nmap -v -O localhost -P 5000                       Warning: The -P option is deprecated. Please use -PE                            Warning:  You are not root -- using TCP pingscan rather than ICMP               TCP/IP fingerprinting (for OS scan) requires root privileges.                   QUITTING!                                                                       admin@i-0346e20b3ceb89391:~$                                                    

> GET / HTTP/1.1                                                                > Host: 127.0.0.1:5000                                                          > User-Agent: curl/7.74.0                                                       > Accept: */*                                                                   >                                                                               * Mark bundle as not supporting multiuse                                        < HTTP/1.1 200 OK                                                               < Server: Werkzeug/2.3.7 Python/3.9.2                                           < Date: Tue, 22 Oct 2024 20:08:00 GMT                                           < Content-Type: text/html; charset=utf-8                                        < Content-Length: 12                                                            < Connection: close                                                             <                                                                               * Closing connection 0                                                          Unauthorizedadmin@i-06c199eebaada38e7:~$ curl --insecure --verbose http://127.0.

unix  3      [ ]         STREAM     CONNECTED     11453                         unix  3      [ ]         STREAM     CONNECTED     10664                         unix  2      [ ]         DGRAM                    11425                         unix  3      [ ]         STREAM     CONNECTED     10681                         unix  3      [ ]         SEQPACKET  CONNECTED     11434                         unix  3      [ ]         STREAM     CONNECTED     11349    /run/systemd/journal/unix  3      [ ]         STREAM     CONNECTED     11478    /run/systemd/journal/unix  2      [ ]         DGRAM                    10394                         admin@i-0b15957f6074fd500:~$ netstat -tuln | grep LISTEN                        tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      tcp        0      0 127.0.0.1:5000          0.0.0.0:*               LISTEN      tcp6       0      0 :::22                   :::*                    LISTEN      tcp6       0      0 :::6767                 :::*                    LISTEN      tcp6       0      0 :::8080                 :::*                    LISTEN      admin@i-0b15957f6074fd500:~$ curl 127.0.0.1:                                    

admin@i-08df9bd773b8904af:~$ ls           agent  data  datafile  kihei              admin@i-08df9bd773b8904af:~$              

admin@i-004c8caee241be1c3:~$ ll                                                 bash: ll: command not found                                                     admin@i-004c8caee241be1c3:~$ ls                                                 agent  webserver.py                                                             admin@i-004c8caee241be1c3:~$                                                    

 pop3        POP3 protocol options                                               post        HTTP Post specific options                                          proxy       All options related to proxies                                      scp         SCP protocol options                                                sftp        SFTP protocol options                                               smtp        SMTP protocol options                                               ssh         SSH protocol options                                                telnet      TELNET protocol options                                             tftp        TFTP protocol options                                               tls         All TLS/SSL related options                                         upload      All options for uploads                                             verbose     Options related to any kind of command line output of curl         admin@i-0e66fd296bbb878b4:~$ curl --header 'Authorization: Bearer token' localhoUnauthorizedadmin@i-0e66fd296bbb878b4:~$ curl --header 'Authorization: root' locUnauthorizedadmin@i-0e66fd296bbb878b4:~$ curl --header 'Authorization: Broot' lo

udev             217M     0  217M   0% /dev                                     tmpfs             46M  368K   46M   1% /run                                     /dev/nvme0n1p1   7.7G  6.1G  1.2G  84% /                                        tmpfs            228M   12K  228M   1% /dev/shm                                 tmpfs            5.0M     0  5.0M   0% /run/lock                                /dev/nvme0n1p15  124M  5.9M  118M   5% /boot/efi                                admin@i-051941ba15b672aa1:~$ du -shx                                            5.1G    .                                                                       admin@i-051941ba15b672aa1:~$ ls -l                                              total 5245048                                                                   drwxr-xr-x 2 admin root       4096 Sep 17  2023 agent                           drwxr-xr-x 2 admin root       4096 Oct 22 10:34 data                            -rw-r--r-- 1 root  root 5368709120 Sep 17  2023 datafile                        -rwxr-xr-x 1 admin root    2207109 Sep 17  2023 kihei                           admin@i-051941ba15b672aa1:~$                                                    

[Unit]                                                                          Description=Flask Application                                                   After=network.target                                                                                                                                            [Service]                                                                       ExecStart=/usr/bin/python3 /home/admin/webserver.py                                                                                                             [Install]                                                                       WantedBy=multi-user.target                                                      admin@i-031b3c138eab9863b:~$ ls -la/etc/systemd/system/flaskapp.service         ls: invalid option -- '/'                                                       Try 'ls --help' for more information.                                           admin@i-031b3c138eab9863b:~$ ls -la /etc/systemd/system/flaskapp.service        -rw-r--r-- 1 root root 159 Sep 24  2023 /etc/systemd/system/flaskapp.service    admin@i-031b3c138eab9863b:~$                                                    

udev             217M     0  217M   0% /dev                                     tmpfs             46M  368K   46M   1% /run                                     /dev/nvme0n1p1   7.7G  6.1G  1.2G  84% /                                        tmpfs            228M   12K  228M   1% /dev/shm                                 tmpfs            5.0M     0  5.0M   0% /run/lock                                /dev/nvme0n1p15  124M  5.9M  118M   5% /boot/efi                                admin@i-0c435ed64c4447867:~$ lsblk -l                                           NAME       MAJ:MIN RM  SIZE RO TYPE MOUNTPOINT                                  nvme0n1    259:0    0    8G  0 disk                                             nvme2n1    259:1    0    1G  0 disk                                             nvme1n1    259:2    0    1G  0 disk                                             nvme0n1p1  259:3    0  7.9G  0 part /                                           nvme0n1p14 259:4    0    3M  0 part                                             nvme0n1p15 259:5    0  124M  0 part /boot/efi                                   admin@i-0c435ed64c4447867:~$ sudo pvcreate /de                                  

 -i, --include       Include protocol response headers in the output             -o, --output <file> Write to file instead of stdout                             -O, --remote-name   Write output to a file named as the remote file             -s, --silent        Silent mode                                                 -T, --upload-file <file> Transfer local FILE to destination                     -u, --user <user:password> Server user and password                             -A, --user-agent <name> Send User-Agent <name> to server                        -v, --verbose       Make the operation more talkative                           -V, --version       Show version number and quit                                                                                                               This is not the full help, this menu is stripped into categories.               Use "--help category" to get an overview of all categories.                     For all options use the manual or "--help all".                                 admin@i-0ebadfe95bbd0eb1b:~$ curl -A 'whatever' localhost:5000                  Welcome! Password is FDZPmh5AX3oiJtadmin@i-0ebadfe95bbd0eb1b:~$