Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [00;31m#########################################################[00m
- [00;31m#[00m [00;33mLocal Linux Enumeration & Privilege Escalation Script[00m [00;31m#[00m
- [00;31m#########################################################[00m
- [00;33m# www.rebootuser.com[00m
- [00;33m# [00m
- [-] Debug Info
- [00;33m[+] Thorough tests = Disabled (SUID/GUID checks will not be perfomed!)[00m
- [00;33mScan started at:
- Fri Apr 13 13:51:25 EDT 2018
- [00m
- [00;33m### SYSTEM ##############################################[00m
- [00;31m[-] Kernel information:[00m
- Linux Nibbles 4.4.0-104-generic #127-Ubuntu SMP Mon Dec 11 12:16:42 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux
- [00;31m[-] Kernel information (continued):[00m
- Linux version 4.4.0-104-generic (buildd@lgw01-amd64-022) (gcc version 5.4.0 20160609 (Ubuntu 5.4.0-6ubuntu1~16.04.5) ) #127-Ubuntu SMP Mon Dec 11 12:16:42 UTC 2017
- [00;31m[-] Specific release information:[00m
- DISTRIB_ID=Ubuntu
- DISTRIB_RELEASE=16.04
- DISTRIB_CODENAME=xenial
- DISTRIB_DESCRIPTION="Ubuntu 16.04.3 LTS"
- NAME="Ubuntu"
- VERSION="16.04.3 LTS (Xenial Xerus)"
- ID=ubuntu
- ID_LIKE=debian
- PRETTY_NAME="Ubuntu 16.04.3 LTS"
- VERSION_ID="16.04"
- HOME_URL="http://www.ubuntu.com/"
- SUPPORT_URL="http://help.ubuntu.com/"
- BUG_REPORT_URL="http://bugs.launchpad.net/ubuntu/"
- VERSION_CODENAME=xenial
- UBUNTU_CODENAME=xenial
- [00;31m[-] Hostname:[00m
- Nibbles
- [00;33m### USER/GROUP ##########################################[00m
- [00;31m[-] Current user/group info:[00m
- uid=1001(nibbler) gid=1001(nibbler) groups=1001(nibbler)
- [00;31m[-] Users that have previously logged onto the system:[00m
- Username Port From Latest
- root tty1 Fri Dec 29 05:21:10 -0500 2017
- [00;31m[-] Who else is logged on:[00m
- 13:51:25 up 2:09, 0 users, load average: 0.07, 0.02, 0.00
- USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT
- [00;31m[-] Group memberships:[00m
- uid=0(root) gid=0(root) groups=0(root)
- uid=1(daemon) gid=1(daemon) groups=1(daemon)
- uid=2(bin) gid=2(bin) groups=2(bin)
- uid=3(sys) gid=3(sys) groups=3(sys)
- uid=4(sync) gid=65534(nogroup) groups=65534(nogroup)
- uid=5(games) gid=60(games) groups=60(games)
- uid=6(man) gid=12(man) groups=12(man)
- uid=7(lp) gid=7(lp) groups=7(lp)
- uid=8(mail) gid=8(mail) groups=8(mail)
- uid=9(news) gid=9(news) groups=9(news)
- uid=10(uucp) gid=10(uucp) groups=10(uucp)
- uid=13(proxy) gid=13(proxy) groups=13(proxy)
- uid=33(www-data) gid=33(www-data) groups=33(www-data)
- uid=34(backup) gid=34(backup) groups=34(backup)
- uid=38(list) gid=38(list) groups=38(list)
- uid=39(irc) gid=39(irc) groups=39(irc)
- uid=41(gnats) gid=41(gnats) groups=41(gnats)
- uid=65534(nobody) gid=65534(nogroup) groups=65534(nogroup)
- uid=100(systemd-timesync) gid=102(systemd-timesync) groups=102(systemd-timesync)
- uid=101(systemd-network) gid=103(systemd-network) groups=103(systemd-network)
- uid=102(systemd-resolve) gid=104(systemd-resolve) groups=104(systemd-resolve)
- uid=103(systemd-bus-proxy) gid=105(systemd-bus-proxy) groups=105(systemd-bus-proxy)
- uid=104(syslog) gid=108(syslog) groups=108(syslog),4(adm)
- uid=105(_apt) gid=65534(nogroup) groups=65534(nogroup)
- uid=106(lxd) gid=65534(nogroup) groups=65534(nogroup)
- uid=107(messagebus) gid=111(messagebus) groups=111(messagebus)
- uid=108(uuidd) gid=112(uuidd) groups=112(uuidd)
- uid=109(dnsmasq) gid=65534(nogroup) groups=65534(nogroup)
- uid=110(sshd) gid=65534(nogroup) groups=65534(nogroup)
- uid=111(mysql) gid=118(mysql) groups=118(mysql)
- uid=1001(nibbler) gid=1001(nibbler) groups=1001(nibbler)
- [00;31m[-] It looks like we have some admin users:[00m
- uid=104(syslog) gid=108(syslog) groups=108(syslog),4(adm)
- [00;31m[-] Contents of /etc/passwd:[00m
- root:x:0:0:root:/root:/bin/bash
- daemon:x:1:1:daemon:/usr/sbin:/usr/sbin/nologin
- bin:x:2:2:bin:/bin:/usr/sbin/nologin
- sys:x:3:3:sys:/dev:/usr/sbin/nologin
- sync:x:4:65534:sync:/bin:/bin/sync
- games:x:5:60:games:/usr/games:/usr/sbin/nologin
- man:x:6:12:man:/var/cache/man:/usr/sbin/nologin
- lp:x:7:7:lp:/var/spool/lpd:/usr/sbin/nologin
- mail:x:8:8:mail:/var/mail:/usr/sbin/nologin
- news:x:9:9:news:/var/spool/news:/usr/sbin/nologin
- uucp:x:10:10:uucp:/var/spool/uucp:/usr/sbin/nologin
- proxy:x:13:13:proxy:/bin:/usr/sbin/nologin
- www-data:x:33:33:www-data:/var/www:/usr/sbin/nologin
- backup:x:34:34:backup:/var/backups:/usr/sbin/nologin
- list:x:38:38:Mailing List Manager:/var/list:/usr/sbin/nologin
- irc:x:39:39:ircd:/var/run/ircd:/usr/sbin/nologin
- gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/usr/sbin/nologin
- nobody:x:65534:65534:nobody:/nonexistent:/usr/sbin/nologin
- systemd-timesync:x:100:102:systemd Time Synchronization,,,:/run/systemd:/bin/false
- systemd-network:x:101:103:systemd Network Management,,,:/run/systemd/netif:/bin/false
- systemd-resolve:x:102:104:systemd Resolver,,,:/run/systemd/resolve:/bin/false
- systemd-bus-proxy:x:103:105:systemd Bus Proxy,,,:/run/systemd:/bin/false
- syslog:x:104:108::/home/syslog:/bin/false
- _apt:x:105:65534::/nonexistent:/bin/false
- lxd:x:106:65534::/var/lib/lxd/:/bin/false
- messagebus:x:107:111::/var/run/dbus:/bin/false
- uuidd:x:108:112::/run/uuidd:/bin/false
- dnsmasq:x:109:65534:dnsmasq,,,:/var/lib/misc:/bin/false
- sshd:x:110:65534::/var/run/sshd:/usr/sbin/nologin
- mysql:x:111:118:MySQL Server,,,:/nonexistent:/bin/false
- nibbler:x:1001:1001::/home/nibbler:
- [00;31m[-] Super user account(s):[00m
- root
- [00;33m[+] We can sudo without supplying a password![00m
- Matching Defaults entries for nibbler on Nibbles:
- env_reset, mail_badpass, secure_path=/usr/local/sbin\:/usr/local/bin\:/usr/sbin\:/usr/bin\:/sbin\:/bin\:/snap/bin
- User nibbler may run the following commands on Nibbles:
- (root) NOPASSWD: /home/nibbler/personal/stuff/monitor.sh
- [00;33m[+] Possible sudo pwnage![00m
- -rwxrwxrwx 1 nibbler nibbler 4015 May 8 2015 /home/nibbler/personal/stuff/monitor.sh
- [00;31m[-] Are permissions on /home directories lax:[00m
- total 12K
- drwxr-xr-x 3 root root 4.0K Dec 10 21:57 .
- drwxr-xr-x 23 root root 4.0K Dec 28 05:57 ..
- drwxr-xr-x 4 nibbler nibbler 4.0K Apr 13 11:59 nibbler
- [00;31m[-] Root is allowed to login via SSH:[00m
- PermitRootLogin yes
- [00;33m### ENVIRONMENTAL #######################################[00m
- [00;31m[-] Environment information:[00m
- USER=nibbler
- PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games:/system/bin:/system/sbin:/system/xbin
- PWD=/var/www/html/nibbleblog/content/private/plugins/my_image
- LANG=C
- HOME=/home/nibbler
- SHLVL=2
- _=/usr/bin/env
- [00;31m[-] Path information:[00m
- /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games:/system/bin:/system/sbin:/system/xbin
- [00;31m[-] Available shells:[00m
- # /etc/shells: valid login shells
- /bin/sh
- /bin/dash
- /bin/bash
- /bin/rbash
- /usr/bin/tmux
- /usr/bin/screen
- [00;31m[-] Current umask value:[00m
- 0022
- u=rwx,g=rx,o=rx
- [00;31m[-] umask value as specified in /etc/login.defs:[00m
- UMASK 022
- [00;31m[-] Password and storage information:[00m
- PASS_MAX_DAYS 99999
- PASS_MIN_DAYS 0
- PASS_WARN_AGE 7
- ENCRYPT_METHOD SHA512
- [00;33m### JOBS/TASKS ##########################################[00m
- [00;31m[-] Cron jobs:[00m
- -rw-r--r-- 1 root root 722 Apr 5 2016 /etc/crontab
- /etc/cron.d:
- total 24
- drwxr-xr-x 2 root root 4096 Dec 28 05:57 .
- drwxr-xr-x 92 root root 4096 Dec 28 05:58 ..
- -rw-r--r-- 1 root root 102 Apr 5 2016 .placeholder
- -rw-r--r-- 1 root root 589 Jul 16 2014 mdadm
- -rw-r--r-- 1 root root 712 Sep 5 2017 php
- -rw-r--r-- 1 root root 191 Sep 22 2017 popularity-contest
- /etc/cron.daily:
- total 60
- drwxr-xr-x 2 root root 4096 Dec 28 05:57 .
- drwxr-xr-x 92 root root 4096 Dec 28 05:58 ..
- -rw-r--r-- 1 root root 102 Apr 5 2016 .placeholder
- -rwxr-xr-x 1 root root 539 Apr 5 2016 apache2
- -rwxr-xr-x 1 root root 376 Mar 31 2016 apport
- -rwxr-xr-x 1 root root 1474 Jun 19 2017 apt-compat
- -rwxr-xr-x 1 root root 355 May 22 2012 bsdmainutils
- -rwxr-xr-x 1 root root 1597 Nov 26 2015 dpkg
- -rwxr-xr-x 1 root root 372 May 6 2015 logrotate
- -rwxr-xr-x 1 root root 1293 Nov 6 2015 man-db
- -rwxr-xr-x 1 root root 539 Jul 16 2014 mdadm
- -rwxr-xr-x 1 root root 435 Nov 18 2014 mlocate
- -rwxr-xr-x 1 root root 249 Nov 12 2015 passwd
- -rwxr-xr-x 1 root root 3449 Feb 26 2016 popularity-contest
- -rwxr-xr-x 1 root root 214 May 24 2016 update-notifier-common
- /etc/cron.hourly:
- total 12
- drwxr-xr-x 2 root root 4096 Sep 22 2017 .
- drwxr-xr-x 92 root root 4096 Dec 28 05:58 ..
- -rw-r--r-- 1 root root 102 Apr 5 2016 .placeholder
- /etc/cron.monthly:
- total 12
- drwxr-xr-x 2 root root 4096 Sep 22 2017 .
- drwxr-xr-x 92 root root 4096 Dec 28 05:58 ..
- -rw-r--r-- 1 root root 102 Apr 5 2016 .placeholder
- /etc/cron.weekly:
- total 24
- drwxr-xr-x 2 root root 4096 Sep 22 2017 .
- drwxr-xr-x 92 root root 4096 Dec 28 05:58 ..
- -rw-r--r-- 1 root root 102 Apr 5 2016 .placeholder
- -rwxr-xr-x 1 root root 86 Apr 13 2016 fstrim
- -rwxr-xr-x 1 root root 771 Nov 6 2015 man-db
- -rwxr-xr-x 1 root root 211 May 24 2016 update-notifier-common
- [00;31m[-] Crontab contents:[00m
- # /etc/crontab: system-wide crontab
- # Unlike any other crontab you don't have to run the `crontab'
- # command to install the new version when you edit this file
- # and files in /etc/cron.d. These files also have username fields,
- # that none of the other crontabs do.
- SHELL=/bin/sh
- PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
- # m h dom mon dow user command
- 17 * * * * root cd / && run-parts --report /etc/cron.hourly
- 25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
- 47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
- 52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
- #
- [00;33m### NETWORKING ##########################################[00m
- [00;31m[-] Network and IP info:[00m
- ens32 Link encap:Ethernet HWaddr 00:50:56:b9:01:26
- inet addr:10.10.10.75 Bcast:10.10.10.255 Mask:255.255.255.0
- inet6 addr: fe80::250:56ff:feb9:126/64 Scope:Link
- inet6 addr: dead:beef::250:56ff:feb9:126/64 Scope:Global
- UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
- RX packets:1589206 errors:0 dropped:0 overruns:0 frame:0
- TX packets:1092439 errors:0 dropped:0 overruns:0 carrier:0
- collisions:0 txqueuelen:1000
- RX bytes:167740463 (167.7 MB) TX bytes:212673612 (212.6 MB)
- lo Link encap:Local Loopback
- inet addr:127.0.0.1 Mask:255.0.0.0
- inet6 addr: ::1/128 Scope:Host
- UP LOOPBACK RUNNING MTU:65536 Metric:1
- RX packets:6212 errors:0 dropped:0 overruns:0 frame:0
- TX packets:6212 errors:0 dropped:0 overruns:0 carrier:0
- collisions:0 txqueuelen:1
- RX bytes:610740 (610.7 KB) TX bytes:610740 (610.7 KB)
- [00;31m[-] ARP history:[00m
- ? (10.10.10.2) at 00:50:56:aa:9c:8d [ether] on ens32
- [00;31m[-] Nameserver(s):[00m
- nameserver 10.10.10.2
- [00;31m[-] Default route:[00m
- default 10.10.10.2 0.0.0.0 UG 0 0 0 ens32
- [00;31m[-] Listening TCP:[00m
- Active Internet connections (servers and established)
- Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
- tcp 0 0 127.0.0.1:3306 0.0.0.0:* LISTEN -
- tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN -
- tcp 0 0 10.10.10.75:33174 10.10.14.199:4444 ESTABLISHED 3496/lGfTC
- tcp 0 0 10.10.10.75:43576 10.10.14.120:1030 ESTABLISHED 5036/bash
- tcp 0 0 10.10.10.75:33146 10.10.14.199:4444 ESTABLISHED -
- tcp 0 0 10.10.10.75:22 10.10.14.217:53114 ESTABLISHED -
- tcp 0 0 10.10.10.75:58736 10.10.14.199:4433 ESTABLISHED 3496/lGfTC
- tcp6 0 0 :::80 :::* LISTEN -
- tcp6 0 0 :::22 :::* LISTEN -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:54891 TIME_WAIT -
- tcp6 0 140 10.10.10.75:80 10.10.15.80:58067 ESTABLISHED -
- tcp6 0 140 10.10.10.75:80 10.10.15.80:60377 ESTABLISHED -
- tcp6 0 0 10.10.10.75:80 10.10.14.116:35924 TIME_WAIT -
- tcp6 1 0 10.10.10.75:80 10.10.14.199:36699 CLOSE_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.14.116:35926 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.14.116:35928 TIME_WAIT -
- tcp6 0 140 10.10.10.75:80 10.10.15.80:48375 ESTABLISHED -
- tcp6 0 140 10.10.10.75:80 10.10.15.80:59081 ESTABLISHED -
- tcp6 0 140 10.10.10.75:80 10.10.15.80:57627 ESTABLISHED -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:34609 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:35073 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.14.116:35930 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:54275 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:57291 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:35485 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:34175 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.133:60556 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.16.32:54644 ESTABLISHED -
- tcp6 0 0 10.10.10.75:80 10.10.15.133:60558 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.14.116:35936 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:42139 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.14.120:53408 ESTABLISHED -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:36353 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:53471 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:33813 ESTABLISHED -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:35337 TIME_WAIT -
- tcp6 0 140 10.10.10.75:80 10.10.15.80:42205 ESTABLISHED -
- tcp6 1 0 10.10.10.75:80 10.10.14.199:39259 CLOSE_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.14.116:35934 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.133:60686 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:39577 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:56183 ESTABLISHED -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:46875 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.14.116:35932 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.14.116:35910 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:56523 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:59233 TIME_WAIT -
- tcp6 0 140 10.10.10.75:80 10.10.15.80:51653 ESTABLISHED -
- tcp6 0 140 10.10.10.75:80 10.10.15.80:51127 ESTABLISHED -
- tcp6 0 0 10.10.10.75:80 10.10.14.116:35922 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:46793 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:44297 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:57111 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:38099 TIME_WAIT -
- tcp6 0 0 10.10.10.75:80 10.10.15.80:43685 TIME_WAIT -
- tcp6 0 140 10.10.10.75:80 10.10.15.80:37209 ESTABLISHED -
- tcp6 0 140 10.10.10.75:80 10.10.15.80:47123 ESTABLISHED -
- tcp6 0 0 10.10.10.75:80 10.10.15.133:60802 FIN_WAIT2 -
- [00;31m[-] Listening UDP:[00m
- Active Internet connections (servers and established)
- Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
- udp 0 0 10.10.10.75:37159 10.10.10.2:53 ESTABLISHED -
- [00;33m### SERVICES #############################################[00m
- [00;31m[-] Running processes:[00m
- USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
- root 1 0.0 0.5 119716 5808 ? Ss 11:42 0:03 /sbin/init
- root 2 0.0 0.0 0 0 ? S 11:42 0:00 [kthreadd]
- root 3 0.0 0.0 0 0 ? S 11:42 0:04 [ksoftirqd/0]
- root 5 0.0 0.0 0 0 ? S< 11:42 0:00 [kworker/0:0H]
- root 7 0.0 0.0 0 0 ? S 11:42 0:02 [rcu_sched]
- root 8 0.0 0.0 0 0 ? S 11:42 0:00 [rcu_bh]
- root 9 0.0 0.0 0 0 ? S 11:42 0:00 [migration/0]
- root 10 0.0 0.0 0 0 ? S 11:42 0:00 [watchdog/0]
- root 11 0.0 0.0 0 0 ? S 11:42 0:00 [kdevtmpfs]
- root 12 0.0 0.0 0 0 ? S< 11:42 0:00 [netns]
- root 13 0.0 0.0 0 0 ? S< 11:42 0:00 [perf]
- root 14 0.0 0.0 0 0 ? S 11:42 0:00 [khungtaskd]
- root 15 0.0 0.0 0 0 ? S< 11:42 0:00 [writeback]
- root 16 0.0 0.0 0 0 ? SN 11:42 0:00 [ksmd]
- root 17 0.0 0.0 0 0 ? SN 11:42 0:00 [khugepaged]
- root 18 0.0 0.0 0 0 ? S< 11:42 0:00 [crypto]
- root 19 0.0 0.0 0 0 ? S< 11:42 0:00 [kintegrityd]
- root 20 0.0 0.0 0 0 ? S< 11:42 0:00 [bioset]
- root 21 0.0 0.0 0 0 ? S< 11:42 0:00 [kblockd]
- root 22 0.0 0.0 0 0 ? S< 11:42 0:00 [ata_sff]
- root 23 0.0 0.0 0 0 ? S< 11:42 0:00 [md]
- root 24 0.0 0.0 0 0 ? S< 11:42 0:00 [devfreq_wq]
- root 28 0.0 0.0 0 0 ? S 11:42 0:00 [kswapd0]
- root 29 0.0 0.0 0 0 ? S< 11:42 0:00 [vmstat]
- root 30 0.0 0.0 0 0 ? S 11:42 0:00 [fsnotify_mark]
- root 31 0.0 0.0 0 0 ? S 11:42 0:00 [ecryptfs-kthrea]
- root 47 0.0 0.0 0 0 ? S< 11:42 0:00 [kthrotld]
- root 48 0.0 0.0 0 0 ? S< 11:42 0:00 [acpi_thermal_pm]
- root 49 0.0 0.0 0 0 ? S< 11:42 0:00 [bioset]
- root 50 0.0 0.0 0 0 ? S< 11:42 0:00 [bioset]
- root 51 0.0 0.0 0 0 ? S< 11:42 0:00 [bioset]
- root 52 0.0 0.0 0 0 ? S< 11:42 0:00 [bioset]
- root 53 0.0 0.0 0 0 ? S< 11:42 0:00 [bioset]
- root 54 0.0 0.0 0 0 ? S< 11:42 0:00 [bioset]
- root 55 0.0 0.0 0 0 ? S< 11:42 0:00 [bioset]
- root 56 0.0 0.0 0 0 ? S< 11:42 0:00 [bioset]
- root 57 0.0 0.0 0 0 ? S 11:42 0:00 [scsi_eh_0]
- root 58 0.0 0.0 0 0 ? S< 11:42 0:00 [scsi_tmf_0]
- root 59 0.0 0.0 0 0 ? S 11:42 0:00 [scsi_eh_1]
- root 60 0.0 0.0 0 0 ? S< 11:42 0:00 [scsi_tmf_1]
- root 66 0.0 0.0 0 0 ? S< 11:42 0:00 [ipv6_addrconf]
- root 79 0.0 0.0 0 0 ? S< 11:42 0:00 [deferwq]
- root 80 0.0 0.0 0 0 ? S< 11:42 0:00 [charger_manager]
- root 81 0.0 0.0 0 0 ? S< 11:42 0:00 [bioset]
- root 150 0.0 0.0 0 0 ? S 11:42 0:00 [scsi_eh_2]
- root 151 0.0 0.0 0 0 ? S< 11:42 0:00 [scsi_tmf_2]
- root 152 0.0 0.0 0 0 ? S< 11:42 0:00 [vmw_pvscsi_wq_2]
- root 154 0.0 0.0 0 0 ? S< 11:42 0:00 [bioset]
- root 170 0.0 0.0 0 0 ? S< 11:42 0:00 [kpsmoused]
- root 177 0.0 0.0 0 0 ? S< 11:42 0:00 [ttm_swap]
- root 270 0.0 0.0 0 0 ? S< 11:42 0:00 [raid5wq]
- root 295 0.0 0.0 0 0 ? S< 11:42 0:00 [kdmflush]
- root 296 0.0 0.0 0 0 ? S< 11:42 0:00 [bioset]
- root 306 0.0 0.0 0 0 ? S< 11:42 0:00 [kdmflush]
- root 307 0.0 0.0 0 0 ? S< 11:42 0:00 [bioset]
- root 322 0.0 0.0 0 0 ? S< 11:42 0:00 [bioset]
- root 350 0.0 0.0 0 0 ? S 11:42 0:00 [jbd2/dm-0-8]
- root 351 0.0 0.0 0 0 ? S< 11:42 0:00 [ext4-rsv-conver]
- root 394 0.0 0.0 0 0 ? S 11:42 0:04 [kworker/0:2]
- root 396 0.0 0.0 0 0 ? S< 11:42 0:00 [kworker/0:1H]
- root 411 0.0 0.2 28336 2668 ? Ss 11:42 0:00 /lib/systemd/systemd-journald
- root 426 0.0 0.0 0 0 ? S< 11:42 0:00 [iscsi_eh]
- root 427 0.0 0.0 0 0 ? S 11:42 0:00 [kauditd]
- root 441 0.0 0.0 0 0 ? S< 11:42 0:00 [ib_addr]
- root 444 0.0 0.1 102972 1596 ? Ss 11:42 0:00 /sbin/lvmetad -f
- root 451 0.0 0.0 0 0 ? S< 11:42 0:00 [ib_mcast]
- root 452 0.0 0.0 0 0 ? S< 11:42 0:00 [ib_nl_sa_wq]
- root 456 0.0 0.0 0 0 ? S< 11:42 0:00 [ib_cm]
- root 461 0.0 0.0 0 0 ? S< 11:42 0:00 [iw_cm_wq]
- root 463 0.0 0.3 44568 3600 ? Ss 11:42 0:00 /lib/systemd/systemd-udevd
- root 469 0.0 0.0 0 0 ? S< 11:42 0:00 [rdma_cm]
- root 731 0.0 0.0 0 0 ? S< 11:42 0:00 [ext4-rsv-conver]
- systemd+ 798 0.0 0.2 100324 2392 ? Ssl 11:42 0:00 /lib/systemd/systemd-timesyncd
- root 901 0.0 0.6 275860 6008 ? Ssl 11:42 0:00 /usr/lib/accountsservice/accounts-daemon
- root 902 0.0 0.1 20104 1132 ? Ss 11:42 0:00 /lib/systemd/systemd-logind
- syslog 905 0.0 0.3 260632 3336 ? Ssl 11:42 0:00 /usr/sbin/rsyslogd -n
- message+ 912 0.0 0.3 42904 3736 ? Ss 11:42 0:00 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation
- root 929 0.0 2.5 277936 25208 ? Ssl 11:42 0:00 /usr/lib/snapd/snapd
- daemon 930 0.0 0.2 26048 2048 ? Ss 11:42 0:00 /usr/sbin/atd -f
- root 939 0.0 0.1 4400 1268 ? Ss 11:42 0:00 /usr/sbin/acpid
- root 942 0.0 0.2 29012 2768 ? Ss 11:42 0:00 /usr/sbin/cron -f
- root 948 0.0 0.4 613544 4708 ? Ssl 11:42 0:00 /usr/bin/lxcfs /var/lib/lxcfs/
- root 949 0.0 1.0 185740 10020 ? Ssl 11:42 0:07 /usr/bin/vmtoolsd
- root 979 0.0 0.5 277092 5864 ? Ssl 11:42 0:00 /usr/lib/policykit-1/polkitd --no-debug
- root 992 0.0 0.0 13376 152 ? Ss 11:42 0:00 /sbin/mdadm --monitor --pid-file /run/mdadm/monitor.pid --daemonise --scan --syslog
- root 1134 0.0 0.5 65524 5984 ? Ss 11:42 0:00 /usr/sbin/sshd -D
- root 1156 0.0 0.0 5224 124 ? Ss 11:42 0:00 /sbin/iscsid
- mysql 1158 0.0 15.6 1115980 156576 ? Ssl 11:42 0:03 /usr/sbin/mysqld
- root 1160 0.0 0.3 5724 3520 ? S<Ls 11:42 0:01 /sbin/iscsid
- root 1245 0.0 0.1 15940 1572 tty1 Ss+ 11:42 0:00 /sbin/agetty --noclear tty1 linux
- root 1336 0.0 1.7 328296 17692 ? Ss 11:42 0:01 /usr/sbin/apache2 -k start
- nibbler 1729 0.0 1.2 329784 12940 ? S 11:50 0:01 /usr/sbin/apache2 -k start
- nibbler 3457 0.0 1.3 329784 13412 ? S 11:53 0:01 /usr/sbin/apache2 -k start
- nibbler 3496 0.0 0.0 1188 960 ? Sl 11:54 0:00 /tmp/lGfTC
- nibbler 3598 0.0 0.0 4508 644 ? S 11:57 0:00 /bin/sh -c /bin/sh
- nibbler 3599 0.0 0.0 4508 564 ? S 11:57 0:00 /bin/sh
- nibbler 3603 0.0 0.2 18220 2088 ? S 11:57 0:00 bash -i
- nibbler 4336 0.0 1.5 332516 15788 ? S 12:12 0:01 /usr/sbin/apache2 -k start
- nibbler 4653 0.0 0.0 4508 752 ? S 12:22 0:00 /bin/sh -c /bin/sh
- nibbler 4654 0.0 0.0 4508 712 ? S 12:22 0:00 /bin/sh
- nibbler 4655 0.0 0.2 18216 2788 ? S 12:22 0:00 bash -i
- root 4842 0.0 0.0 0 0 ? S 12:28 0:00 [kworker/u256:1]
- nibbler 5034 0.0 0.0 4508 848 ? S 12:53 0:00 sh -c cd /tmp; bash mo*.sh 2>&1
- nibbler 5035 0.0 0.1 18032 1648 ? S 12:53 0:00 bash monitor.sh
- nibbler 5036 0.0 0.2 18216 2092 ? S 12:53 0:00 bash -i
- nibbler 5179 0.0 1.8 332528 18232 ? S 13:06 0:00 /usr/sbin/apache2 -k start
- nibbler 5187 0.0 1.8 332528 18548 ? S 13:08 0:00 /usr/sbin/apache2 -k start
- nibbler 5275 0.0 1.7 332020 17060 ? S 13:09 0:00 /usr/sbin/apache2 -k start
- root 5290 0.0 0.0 0 0 ? S 13:18 0:00 [kworker/u256:0]
- root 5301 0.0 0.0 0 0 ? S 13:39 0:00 [kworker/0:0]
- nibbler 5362 0.0 1.4 328928 14876 ? S 13:43 0:00 /usr/sbin/apache2 -k start
- nibbler 5391 0.0 1.7 332008 17204 ? S 13:50 0:00 /usr/sbin/apache2 -k start
- nibbler 5395 0.0 1.7 332524 17624 ? S 13:50 0:00 /usr/sbin/apache2 -k start
- nibbler 5396 0.0 0.9 328532 9280 ? S 13:50 0:00 /usr/sbin/apache2 -k start
- nibbler 5398 0.0 0.0 4508 748 ? S 13:51 0:00 /bin/sh -c /bin/sh
- nibbler 5399 0.0 0.0 4508 700 ? S 13:51 0:00 /bin/sh
- nibbler 5400 0.0 0.9 328556 9416 ? S 13:51 0:00 /usr/sbin/apache2 -k start
- nibbler 5401 0.0 0.9 328532 9272 ? S 13:51 0:00 /usr/sbin/apache2 -k start
- nibbler 5402 0.0 1.5 328928 15032 ? S 13:51 0:00 /usr/sbin/apache2 -k start
- nibbler 5403 0.0 0.3 18216 3204 ? S 13:51 0:00 bash -i
- nibbler 5406 0.0 1.7 332016 17944 ? S 13:51 0:00 /usr/sbin/apache2 -k start
- nibbler 5408 0.0 0.3 18988 3900 ? S 13:51 0:00 bash LinEnum.sh
- nibbler 5409 0.0 0.3 19088 3480 ? S 13:51 0:00 bash LinEnum.sh
- nibbler 5410 0.0 0.0 4384 664 ? S 13:51 0:00 tee -a
- root 5490 0.0 0.6 94036 6396 ? Ss 13:52 0:00 sshd: root [priv]
- sshd 5491 0.0 0.3 66868 3040 ? S 13:52 0:00 sshd: root [net]
- nibbler 5581 0.0 0.9 328368 9156 ? S 13:52 0:00 /usr/sbin/apache2 -k start
- nibbler 5582 0.0 0.9 328368 9156 ? S 13:52 0:00 /usr/sbin/apache2 -k start
- nibbler 5583 0.0 0.8 328360 8080 ? S 13:52 0:00 /usr/sbin/apache2 -k start
- nibbler 5584 0.0 0.8 328360 8080 ? S 13:52 0:00 /usr/sbin/apache2 -k start
- nibbler 5585 0.0 0.8 328360 8080 ? S 13:52 0:00 /usr/sbin/apache2 -k start
- nibbler 5586 0.0 0.8 328360 8080 ? S 13:52 0:00 /usr/sbin/apache2 -k start
- nibbler 5587 0.0 0.8 328360 8080 ? S 13:52 0:00 /usr/sbin/apache2 -k start
- nibbler 5589 0.0 0.8 328336 8080 ? S 13:52 0:00 /usr/sbin/apache2 -k start
- nibbler 5591 0.0 0.8 328360 8080 ? S 13:52 0:00 /usr/sbin/apache2 -k start
- nibbler 5592 0.0 0.8 328336 8080 ? S 13:52 0:00 /usr/sbin/apache2 -k start
- nibbler 5593 0.0 0.8 328320 8080 ? S 13:52 0:00 /usr/sbin/apache2 -k start
- nibbler 5594 0.0 0.8 328336 8080 ? S 13:52 0:00 /usr/sbin/apache2 -k start
- root 5604 0.0 0.0 0 0 ? S 13:52 0:00 [kworker/u256:2]
- nibbler 5612 0.0 0.2 19088 2976 ? S 13:52 0:00 bash LinEnum.sh
- nibbler 5613 0.0 0.2 34428 2804 ? R 13:52 0:00 ps aux
- [00;31m[-] Process binaries and associated permissions (from above list):[00m
- lrwxrwxrwx 1 root root 4 Sep 22 2017 /bin/sh -> dash
- -rwxr-xr-x 1 root root 326224 Oct 27 06:12 /lib/systemd/systemd-journald
- -rwxr-xr-x 1 root root 618520 Oct 27 06:12 /lib/systemd/systemd-logind
- -rwxr-xr-x 1 root root 141904 Oct 27 06:12 /lib/systemd/systemd-timesyncd
- -rwxr-xr-x 1 root root 453240 Oct 27 06:12 /lib/systemd/systemd-udevd
- -rwxr-xr-x 1 root root 44104 Jun 14 2017 /sbin/agetty
- lrwxrwxrwx 1 root root 20 Oct 27 06:11 /sbin/init -> /lib/systemd/systemd
- -rwxr-xr-x 1 root root 783984 Jul 26 2017 /sbin/iscsid
- -rwxr-xr-x 1 root root 51336 Apr 16 2016 /sbin/lvmetad
- -rwxr-xr-x 1 root root 513216 Nov 8 08:18 /sbin/mdadm
- -rwxr-xr-x 1 root root 224208 Jan 12 2017 /usr/bin/dbus-daemon
- -rwxr-xr-x 1 root root 18504 Nov 8 20:43 /usr/bin/lxcfs
- -rwxr-xr-x 1 root root 44528 Feb 9 2017 /usr/bin/vmtoolsd
- -rwxr-xr-x 1 root root 164928 Nov 3 2016 /usr/lib/accountsservice/accounts-daemon
- -rwxr-xr-x 1 root root 15048 Jan 17 2016 /usr/lib/policykit-1/polkitd
- -rwxr-xr-x 1 root root 21178072 Nov 30 14:48 /usr/lib/snapd/snapd
- -rwxr-xr-x 1 root root 48112 Apr 8 2016 /usr/sbin/acpid
- -rwxr-xr-x 1 root root 662496 Sep 18 2017 /usr/sbin/apache2
- -rwxr-xr-x 1 root root 26632 Jan 14 2016 /usr/sbin/atd
- -rwxr-xr-x 1 root root 44472 Apr 5 2016 /usr/sbin/cron
- -rwxr-xr-x 1 root root 24803912 Oct 18 11:23 /usr/sbin/mysqld
- -rwxr-xr-x 1 root root 599328 Apr 5 2016 /usr/sbin/rsyslogd
- -rwxr-xr-x 1 root root 799216 Mar 16 2017 /usr/sbin/sshd
- [00;31m[-] /etc/init.d/ binary permissions:[00m
- total 324
- drwxr-xr-x 2 root root 4096 Dec 28 05:57 .
- drwxr-xr-x 92 root root 4096 Dec 28 05:58 ..
- -rw-r--r-- 1 root root 1183 Dec 28 05:57 .depend.boot
- -rw-r--r-- 1 root root 1065 Dec 28 05:57 .depend.start
- -rw-r--r-- 1 root root 1209 Dec 28 05:57 .depend.stop
- -rw-r--r-- 1 root root 2427 Jan 19 2016 README
- -rwxr-xr-x 1 root root 2243 Feb 9 2016 acpid
- -rwxr-xr-x 1 root root 2210 Apr 5 2016 apache-htcacheclean
- -rwxr-xr-x 1 root root 8087 Apr 5 2016 apache2
- -rwxr-xr-x 1 root root 6223 Mar 3 2017 apparmor
- -rwxr-xr-x 1 root root 2802 Nov 17 13:56 apport
- -rwxr-xr-x 1 root root 1071 Dec 6 2015 atd
- -rwxr-xr-x 1 root root 1275 Jan 19 2016 bootmisc.sh
- -rwxr-xr-x 1 root root 3807 Jan 19 2016 checkfs.sh
- -rwxr-xr-x 1 root root 1098 Jan 19 2016 checkroot-bootclean.sh
- -rwxr-xr-x 1 root root 9353 Jan 19 2016 checkroot.sh
- -rwxr-xr-x 1 root root 1343 Apr 4 2016 console-setup
- -rwxr-xr-x 1 root root 3049 Apr 5 2016 cron
- -rwxr-xr-x 1 root root 937 Mar 28 2015 cryptdisks
- -rwxr-xr-x 1 root root 896 Mar 28 2015 cryptdisks-early
- -rwxr-xr-x 1 root root 2813 Dec 1 2015 dbus
- -rwxr-xr-x 1 root root 1105 Mar 15 2016 grub-common
- -rwxr-xr-x 1 root root 1336 Jan 19 2016 halt
- -rwxr-xr-x 1 root root 1423 Jan 19 2016 hostname.sh
- -rwxr-xr-x 1 root root 3809 Mar 12 2016 hwclock.sh
- -rwxr-xr-x 1 root root 2372 Apr 11 2016 irqbalance
- -rwxr-xr-x 1 root root 1503 Mar 29 2016 iscsid
- -rwxr-xr-x 1 root root 1804 Apr 4 2016 keyboard-setup.dpkg-bak
- -rwxr-xr-x 1 root root 1300 Jan 19 2016 killprocs
- -rwxr-xr-x 1 root root 2087 Dec 20 2015 kmod
- -rwxr-xr-x 1 root root 695 Oct 30 2015 lvm2
- -rwxr-xr-x 1 root root 571 Oct 30 2015 lvm2-lvmetad
- -rwxr-xr-x 1 root root 586 Oct 30 2015 lvm2-lvmpolld
- -rwxr-xr-x 1 root root 2378 Nov 8 20:43 lxcfs
- -rwxr-xr-x 1 root root 2541 Jun 30 2016 lxd
- -rwxr-xr-x 1 root root 2365 Oct 9 2017 mdadm
- -rwxr-xr-x 1 root root 1199 Jul 16 2014 mdadm-waitidle
- -rwxr-xr-x 1 root root 703 Jan 19 2016 mountall-bootclean.sh
- -rwxr-xr-x 1 root root 2301 Jan 19 2016 mountall.sh
- -rwxr-xr-x 1 root root 1461 Jan 19 2016 mountdevsubfs.sh
- -rwxr-xr-x 1 root root 1564 Jan 19 2016 mountkernfs.sh
- -rwxr-xr-x 1 root root 711 Jan 19 2016 mountnfs-bootclean.sh
- -rwxr-xr-x 1 root root 2456 Jan 19 2016 mountnfs.sh
- -rwxr-xr-x 1 root root 5607 Feb 3 2017 mysql
- -rwxr-xr-x 1 root root 4771 Jul 19 2015 networking
- -rwxr-xr-x 1 root root 1581 Oct 15 2015 ondemand
- -rwxr-xr-x 1 root root 2503 Mar 29 2016 open-iscsi
- -rwxr-xr-x 1 root root 1578 Mar 29 2016 open-vm-tools
- -rwxr-xr-x 1 root root 1366 Nov 15 2015 plymouth
- -rwxr-xr-x 1 root root 752 Nov 15 2015 plymouth-log
- -rwxr-xr-x 1 root root 1192 Sep 6 2015 procps
- -rwxr-xr-x 1 root root 6366 Jan 19 2016 rc
- -rwxr-xr-x 1 root root 820 Jan 19 2016 rc.local
- -rwxr-xr-x 1 root root 117 Jan 19 2016 rcS
- -rwxr-xr-x 1 root root 661 Jan 19 2016 reboot
- -rwxr-xr-x 1 root root 4149 Nov 23 2015 resolvconf
- -rwxr-xr-x 1 root root 4355 Jul 10 2014 rsync
- -rwxr-xr-x 1 root root 2796 Feb 3 2016 rsyslog
- -rwxr-xr-x 1 root root 1226 Jun 9 2015 screen-cleanup
- -rwxr-xr-x 1 root root 3927 Jan 19 2016 sendsigs
- -rwxr-xr-x 1 root root 597 Jan 19 2016 single
- -rw-r--r-- 1 root root 1087 Jan 19 2016 skeleton
- -rwxr-xr-x 1 root root 4077 Apr 27 2016 ssh
- -rwxr-xr-x 1 root root 6087 Apr 12 2016 udev
- -rwxr-xr-x 1 root root 2049 Aug 7 2014 ufw
- -rwxr-xr-x 1 root root 2737 Jan 19 2016 umountfs
- -rwxr-xr-x 1 root root 2202 Jan 19 2016 umountnfs.sh
- -rwxr-xr-x 1 root root 1879 Jan 19 2016 umountroot
- -rwxr-xr-x 1 root root 1391 Apr 20 2017 unattended-upgrades
- -rwxr-xr-x 1 root root 3111 Jan 19 2016 urandom
- -rwxr-xr-x 1 root root 1306 May 26 2016 uuidd
- [00;33m### SOFTWARE #############################################[00m
- [00;31m[-] Sudo version:[00m
- Sudo version 1.8.16
- [00;31m[-] MYSQL version:[00m
- mysql Ver 14.14 Distrib 5.7.20, for Linux (x86_64) using EditLine wrapper
- [00;31m[-] Apache version:[00m
- Server version: Apache/2.4.18 (Ubuntu)
- Server built: 2017-09-18T15:09:02
- [00;31m[-] Apache user configuration:[00m
- APACHE_RUN_USER=nibbler
- APACHE_RUN_GROUP=nibbler
- [00;31m[-] Installed Apache modules:[00m
- Loaded Modules:
- core_module (static)
- so_module (static)
- watchdog_module (static)
- http_module (static)
- log_config_module (static)
- logio_module (static)
- version_module (static)
- unixd_module (static)
- access_compat_module (shared)
- alias_module (shared)
- auth_basic_module (shared)
- authn_core_module (shared)
- authn_file_module (shared)
- authz_core_module (shared)
- authz_host_module (shared)
- authz_user_module (shared)
- autoindex_module (shared)
- deflate_module (shared)
- dir_module (shared)
- env_module (shared)
- filter_module (shared)
- mime_module (shared)
- mpm_prefork_module (shared)
- negotiation_module (shared)
- php5_module (shared)
- setenvif_module (shared)
- status_module (shared)
- [00;31m[-] www home dir contents:[00m
- /var/www/:
- total 12K
- drwxr-xr-x 3 root root 4.0K Dec 10 23:27 .
- drwxr-xr-x 14 root root 4.0K Dec 10 23:27 ..
- drwxr-xr-x 3 root root 4.0K Dec 28 15:22 html
- /var/www/html:
- total 16K
- drwxr-xr-x 3 root root 4.0K Dec 28 15:22 .
- drwxr-xr-x 3 root root 4.0K Dec 10 23:27 ..
- -rw-r--r-- 1 root root 93 Dec 28 15:19 index.html
- d-wx-wx--x 7 nibbler nibbler 4.0K Dec 28 08:55 nibbleblog
- [00;33m### INTERESTING FILES ####################################[00m
- [00;31m[-] Useful file locations:[00m
- /bin/nc
- /bin/netcat
- /usr/bin/wget
- /usr/bin/gcc
- /usr/bin/curl
- [00;31m[-] Installed compilers:[00m
- ii g++ 4:5.3.1-1ubuntu1 amd64 GNU C++ compiler
- ii g++-5 5.4.0-6ubuntu1~16.04.5 amd64 GNU C++ compiler
- ii gcc 4:5.3.1-1ubuntu1 amd64 GNU C compiler
- ii gcc-5 5.4.0-6ubuntu1~16.04.5 amd64 GNU C compiler
- [00;31m[-] Can we read/write sensitive files:[00m
- -rw-r--r-- 1 root root 1607 Dec 10 22:42 /etc/passwd
- -rw-r--r-- 1 root root 772 Dec 10 22:42 /etc/group
- -rw-r--r-- 1 root root 575 Oct 22 2015 /etc/profile
- -rw-r----- 1 root shadow 1069 Dec 10 22:42 /etc/shadow
- [-] Can't search *.conf files as no keyword was entered
- [-] Can't search *.php files as no keyword was entered
- [-] Can't search *.log files as no keyword was entered
- [-] Can't search *.ini files as no keyword was entered
- [00;31m[-] All *.conf files in /etc (recursive 1 level):[00m
- -rw-r--r-- 1 root root 350 Sep 22 2017 /etc/popularity-contest.conf
- -rw-r--r-- 1 root root 2969 Nov 10 2015 /etc/debconf.conf
- -rw-r--r-- 1 root root 703 May 6 2015 /etc/logrotate.conf
- -rw-r--r-- 1 root root 2084 Sep 6 2015 /etc/sysctl.conf
- -rw-r--r-- 1 root root 338 Nov 18 2014 /etc/updatedb.conf
- -rw-r--r-- 1 root root 4781 Mar 17 2016 /etc/hdparm.conf
- -rw-r--r-- 1 root root 14867 Apr 12 2016 /etc/ltrace.conf
- -rw-r--r-- 1 root root 34 Jan 27 2016 /etc/ld.so.conf
- -rw-r--r-- 1 root root 771 Mar 6 2015 /etc/insserv.conf
- -rw-r--r-- 1 root root 8464 Dec 10 12:07 /etc/ca-certificates.conf
- -rw-r--r-- 1 root root 144 Sep 22 2017 /etc/kernel-img.conf
- -rw-r--r-- 1 root root 3028 Jul 19 2016 /etc/adduser.conf
- -rw-r--r-- 1 root root 497 May 4 2014 /etc/nsswitch.conf
- -rw-r--r-- 1 root root 92 Oct 22 2015 /etc/host.conf
- -rw-r--r-- 1 root root 552 Mar 16 2016 /etc/pam.conf
- -rw-r--r-- 1 root root 191 Jan 18 2016 /etc/libaudit.conf
- -rw-r--r-- 1 root root 280 Jun 20 2014 /etc/fuse.conf
- -rw-r--r-- 1 root root 2584 Feb 18 2016 /etc/gai.conf
- -rw-r--r-- 1 root root 604 Jul 2 2015 /etc/deluser.conf
- -rw-r--r-- 1 root root 100 Nov 25 2015 /etc/sos.conf
- -rw-r--r-- 1 root root 967 Oct 30 2015 /etc/mke2fs.conf
- -rw-r--r-- 1 root root 6816 May 11 2017 /etc/overlayroot.conf
- -rw-r--r-- 1 root root 1260 Mar 16 2016 /etc/ucf.conf
- -rw-r--r-- 1 root root 1371 Jan 27 2016 /etc/rsyslog.conf
- [00;31m[-] Current user's history files:[00m
- -rw------- 1 nibbler nibbler 0 Dec 29 05:29 /home/nibbler/.bash_history
- [00;31m[-] Location and contents (if accessible) of .bash_history file(s):[00m
- /home/nibbler/.bash_history
- [00;31m[-] Any interesting mail in /var/mail:[00m
- total 8
- drwxrwsr-x 2 root mail 4096 Dec 10 23:27 .
- drwxr-xr-x 14 root root 4096 Dec 10 23:27 ..
- [00;33m### SCAN COMPLETE ####################################[00m
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement