Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ### SOFTWARE #############################################
- [-] Sudo version:
- Sudo version 1.8.16
- [-] MYSQL version:
- mysql Ver 14.14 Distrib 5.7.26, for Linux (x86_64) using EditLine wrapper
- [-] Apache version:
- Server version: Apache/2.4.18 (Ubuntu)
- Server built: 2019-04-03T13:34:47
- [-] Apache user configuration:
- APACHE_RUN_USER=www-data
- APACHE_RUN_GROUP=www-data
- [-] Installed Apache modules:
- Loaded Modules:
- core_module (static)
- so_module (static)
- watchdog_module (static)
- http_module (static)
- log_config_module (static)
- logio_module (static)
- version_module (static)
- unixd_module (static)
- access_compat_module (shared)
- alias_module (shared)
- auth_basic_module (shared)
- authn_core_module (shared)
- authn_file_module (shared)
- authz_core_module (shared)
- authz_host_module (shared)
- authz_user_module (shared)
- autoindex_module (shared)
- deflate_module (shared)
- dir_module (shared)
- env_module (shared)
- filter_module (shared)
- mime_module (shared)
- mpm_prefork_module (shared)
- negotiation_module (shared)
- php5_module (shared)
- setenvif_module (shared)
- status_module (shared)
- ### INTERESTING FILES ####################################
- [-] Useful file locations:
- /bin/nc
- /bin/netcat
- /usr/bin/wget
- /usr/bin/curl
- [-] Can we read/write sensitive files:
- -rw-r--r-- 1 root root 1612 May 8 08:11 /etc/passwd
- -rw-r--r-- 1 root root 811 May 2 14:48 /etc/group
- -rw-r--r-- 1 root root 575 Oct 22 2015 /etc/profile
- -rw-r----- 1 root shadow 970 May 2 14:48 /etc/shadow
- [-] SUID files:
- -rwsr-xr-x 1 root root 40152 May 16 2018 /bin/mount
- -rwsr-xr-x 1 root root 44168 May 7 2014 /bin/ping
- -rwsr-xr-x 1 root root 44680 May 7 2014 /bin/ping6
- -rwsr-xr-x 1 root root 40128 Mar 26 15:34 /bin/su
- -rwsr-xr-x 1 root root 27608 May 16 2018 /bin/umount
- -rwsr-xr-x 1 root root 30800 Jul 12 2016 /bin/fusermount
- -rwsr-xr-x 1 root root 84120 Apr 9 15:54 /usr/lib/x86_64-linux-gnu/lxc/lxc-user-nic
- -rwsr-xr-x 1 root root 428240 Mar 4 09:09 /usr/lib/openssh/ssh-keysign
- -rwsr-sr-x 1 root root 98472 Mar 22 18:38 /usr/lib/snapd/snap-confine
- -rwsr-xr-x 1 root root 14864 Mar 27 10:40 /usr/lib/policykit-1/polkit-agent-helper-1
- -rwsr-xr-- 1 root messagebus 42992 Jan 12 2017 /usr/lib/dbus-1.0/dbus-daemon-launch-helper
- -rwsr-xr-x 1 root root 10232 Mar 27 2017 /usr/lib/eject/dmcrypt-get-device
- -rwsr-xr-x 1 root root 136808 Jul 4 2017 /usr/bin/sudo
- -rwsr-xr-x 1 root root 32944 Mar 26 15:34 /usr/bin/newgidmap
- -rwsr-sr-x 1 daemon daemon 51464 Jan 14 2016 /usr/bin/at
- -rwsr-xr-x 1 root root 32944 Mar 26 15:34 /usr/bin/newuidmap
- -rwsr-xr-x 1 root root 71824 Mar 26 15:34 /usr/bin/chfn
- -rwsr-xr-x 1 root root 75304 Mar 26 15:34 /usr/bin/gpasswd
- -rwsr-xr-x 1 root root 54256 Mar 26 15:34 /usr/bin/passwd
- -rwsr-xr-x 1 root root 39904 Mar 26 15:34 /usr/bin/newgrp
- -rwsr-xr-x 1 root root 23376 Mar 27 10:40 /usr/bin/pkexec
- -rwsr-xr-x 1 root root 40432 Mar 26 15:34 /usr/bin/chsh
- [-] SGID files:
- -rwxr-sr-x 1 root shadow 35632 Apr 9 2018 /sbin/pam_extrausers_chkpwd
- -rwxr-sr-x 1 root shadow 35600 Apr 9 2018 /sbin/unix_chkpwd
- -rwxr-sr-x 1 root utmp 10232 Mar 11 2016 /usr/lib/x86_64-linux-gnu/utempter/utempter
- -rwsr-sr-x 1 root root 98472 Mar 22 18:38 /usr/lib/snapd/snap-confine
- -rwxr-sr-x 1 root tty 27368 May 16 2018 /usr/bin/wall
- -rwxr-sr-x 1 root shadow 62336 Mar 26 15:34 /usr/bin/chage
- -rwsr-sr-x 1 daemon daemon 51464 Jan 14 2016 /usr/bin/at
- -rwxr-sr-x 1 root ssh 358624 Mar 4 09:09 /usr/bin/ssh-agent
- -rwxr-sr-x 1 root tty 14752 Mar 1 2016 /usr/bin/bsd-write
- -rwxr-sr-x 1 root shadow 22768 Mar 26 15:34 /usr/bin/expiry
- -rwxr-sr-x 1 root crontab 36080 Apr 5 2016 /usr/bin/crontab
- -rwxr-sr-x 1 root mlocate 39520 Nov 18 2014 /usr/bin/mlocate
- -rwxr-sr-x 1 root utmp 434216 Feb 7 2016 /usr/bin/screen
- [+] Files with POSIX capabilities set:
- /usr/bin/systemd-detect-virt = cap_dac_override,cap_sys_ptrace+ep
- /usr/bin/traceroute6.iputils = cap_net_raw+ep
- /usr/bin/mtr = cap_net_raw+ep
- [-] Can't search *.conf files as no keyword was entered
- [-] Can't search *.php files as no keyword was entered
- [-] Can't search *.log files as no keyword was entered
- [-] Can't search *.ini files as no keyword was entered
- [-] All *.conf files in /etc (recursive 1 level):
- -rw-r--r-- 1 root root 34 Jan 27 2016 /etc/ld.so.conf
- -rw-r--r-- 1 root root 144 May 2 14:48 /etc/kernel-img.conf
- -rw-r--r-- 1 root root 100 Jan 10 2017 /etc/sos.conf
- -rw-r--r-- 1 root root 497 May 4 2014 /etc/nsswitch.conf
- -rw-r--r-- 1 root root 191 Jan 18 2016 /etc/libaudit.conf
- -rw-r--r-- 1 root root 604 Jul 2 2015 /etc/deluser.conf
- -rw-r--r-- 1 root root 2084 Sep 6 2015 /etc/sysctl.conf
- -rw-r--r-- 1 root root 967 Oct 30 2015 /etc/mke2fs.conf
- -rw-r--r-- 1 root root 2584 Feb 18 2016 /etc/gai.conf
- -rw-r--r-- 1 root root 552 Mar 16 2016 /etc/pam.conf
- -rw-r--r-- 1 root root 350 May 2 14:45 /etc/popularity-contest.conf
- -rw-r--r-- 1 root root 338 Nov 18 2014 /etc/updatedb.conf
- -rw-r--r-- 1 root root 2969 Nov 10 2015 /etc/debconf.conf
- -rw-r--r-- 1 root root 4781 Mar 17 2016 /etc/hdparm.conf
- -rw-r--r-- 1 root root 280 Jun 20 2014 /etc/fuse.conf
- -rw-r--r-- 1 root root 8464 May 2 14:55 /etc/ca-certificates.conf
- -rw-r--r-- 1 root root 1260 Mar 16 2016 /etc/ucf.conf
- -rw-r--r-- 1 root root 771 Mar 6 2015 /etc/insserv.conf
- -rw-r--r-- 1 root root 703 May 6 2015 /etc/logrotate.conf
- -rw-r--r-- 1 root root 6920 Oct 1 2018 /etc/overlayroot.conf
- -rw-r--r-- 1 root root 3028 Aug 1 2017 /etc/adduser.conf
- -rw-r--r-- 1 root root 92 Oct 22 2015 /etc/host.conf
- -rw-r--r-- 1 root root 1371 Jan 27 2016 /etc/rsyslog.conf
- -rw-r--r-- 1 root root 14867 Apr 12 2016 /etc/ltrace.conf
- [-] Location and contents (if accessible) of .bash_history file(s):
- /home/haris/.bash_history
- [-] Any interesting mail in /var/mail:
- total 8
- drwxrwsr-x 2 root mail 4096 Aug 1 2017 .
- drwxr-xr-x 14 root root 4096 May 2 14:46 ..
- ### SCAN COMPLETE ####################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement