API tools faq
paste
Advertisement
CryptoJones

Swagshop

CryptoJones
Jun 29th, 2019
476
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 5.91 KB | None | 0 0
raw download clone embed print report
  1. ### SOFTWARE #############################################
  2. [-] Sudo version:
  3. Sudo version 1.8.16
  4.  
  5.  
  6. [-] MYSQL version:
  7. mysql Ver 14.14 Distrib 5.7.26, for Linux (x86_64) using EditLine wrapper
  8.  
  9.  
  10. [-] Apache version:
  11. Server version: Apache/2.4.18 (Ubuntu)
  12. Server built: 2019-04-03T13:34:47
  13.  
  14.  
  15. [-] Apache user configuration:
  16. APACHE_RUN_USER=www-data
  17. APACHE_RUN_GROUP=www-data
  18.  
  19.  
  20. [-] Installed Apache modules:
  21. Loaded Modules:
  22. core_module (static)
  23. so_module (static)
  24. watchdog_module (static)
  25. http_module (static)
  26. log_config_module (static)
  27. logio_module (static)
  28. version_module (static)
  29. unixd_module (static)
  30. access_compat_module (shared)
  31. alias_module (shared)
  32. auth_basic_module (shared)
  33. authn_core_module (shared)
  34. authn_file_module (shared)
  35. authz_core_module (shared)
  36. authz_host_module (shared)
  37. authz_user_module (shared)
  38. autoindex_module (shared)
  39. deflate_module (shared)
  40. dir_module (shared)
  41. env_module (shared)
  42. filter_module (shared)
  43. mime_module (shared)
  44. mpm_prefork_module (shared)
  45. negotiation_module (shared)
  46. php5_module (shared)
  47. setenvif_module (shared)
  48. status_module (shared)
  49.  
  50.  
  51. ### INTERESTING FILES ####################################
  52. [-] Useful file locations:
  53. /bin/nc
  54. /bin/netcat
  55. /usr/bin/wget
  56. /usr/bin/curl
  57.  
  58.  
  59. [-] Can we read/write sensitive files:
  60. -rw-r--r-- 1 root root 1612 May 8 08:11 /etc/passwd
  61. -rw-r--r-- 1 root root 811 May 2 14:48 /etc/group
  62. -rw-r--r-- 1 root root 575 Oct 22 2015 /etc/profile
  63. -rw-r----- 1 root shadow 970 May 2 14:48 /etc/shadow
  64.  
  65.  
  66. [-] SUID files:
  67. -rwsr-xr-x 1 root root 40152 May 16 2018 /bin/mount
  68. -rwsr-xr-x 1 root root 44168 May 7 2014 /bin/ping
  69. -rwsr-xr-x 1 root root 44680 May 7 2014 /bin/ping6
  70. -rwsr-xr-x 1 root root 40128 Mar 26 15:34 /bin/su
  71. -rwsr-xr-x 1 root root 27608 May 16 2018 /bin/umount
  72. -rwsr-xr-x 1 root root 30800 Jul 12 2016 /bin/fusermount
  73. -rwsr-xr-x 1 root root 84120 Apr 9 15:54 /usr/lib/x86_64-linux-gnu/lxc/lxc-user-nic
  74. -rwsr-xr-x 1 root root 428240 Mar 4 09:09 /usr/lib/openssh/ssh-keysign
  75. -rwsr-sr-x 1 root root 98472 Mar 22 18:38 /usr/lib/snapd/snap-confine
  76. -rwsr-xr-x 1 root root 14864 Mar 27 10:40 /usr/lib/policykit-1/polkit-agent-helper-1
  77. -rwsr-xr-- 1 root messagebus 42992 Jan 12 2017 /usr/lib/dbus-1.0/dbus-daemon-launch-helper
  78. -rwsr-xr-x 1 root root 10232 Mar 27 2017 /usr/lib/eject/dmcrypt-get-device
  79. -rwsr-xr-x 1 root root 136808 Jul 4 2017 /usr/bin/sudo
  80. -rwsr-xr-x 1 root root 32944 Mar 26 15:34 /usr/bin/newgidmap
  81. -rwsr-sr-x 1 daemon daemon 51464 Jan 14 2016 /usr/bin/at
  82. -rwsr-xr-x 1 root root 32944 Mar 26 15:34 /usr/bin/newuidmap
  83. -rwsr-xr-x 1 root root 71824 Mar 26 15:34 /usr/bin/chfn
  84. -rwsr-xr-x 1 root root 75304 Mar 26 15:34 /usr/bin/gpasswd
  85. -rwsr-xr-x 1 root root 54256 Mar 26 15:34 /usr/bin/passwd
  86. -rwsr-xr-x 1 root root 39904 Mar 26 15:34 /usr/bin/newgrp
  87. -rwsr-xr-x 1 root root 23376 Mar 27 10:40 /usr/bin/pkexec
  88. -rwsr-xr-x 1 root root 40432 Mar 26 15:34 /usr/bin/chsh
  89.  
  90.  
  91. [-] SGID files:
  92. -rwxr-sr-x 1 root shadow 35632 Apr 9 2018 /sbin/pam_extrausers_chkpwd
  93. -rwxr-sr-x 1 root shadow 35600 Apr 9 2018 /sbin/unix_chkpwd
  94. -rwxr-sr-x 1 root utmp 10232 Mar 11 2016 /usr/lib/x86_64-linux-gnu/utempter/utempter
  95. -rwsr-sr-x 1 root root 98472 Mar 22 18:38 /usr/lib/snapd/snap-confine
  96. -rwxr-sr-x 1 root tty 27368 May 16 2018 /usr/bin/wall
  97. -rwxr-sr-x 1 root shadow 62336 Mar 26 15:34 /usr/bin/chage
  98. -rwsr-sr-x 1 daemon daemon 51464 Jan 14 2016 /usr/bin/at
  99. -rwxr-sr-x 1 root ssh 358624 Mar 4 09:09 /usr/bin/ssh-agent
  100. -rwxr-sr-x 1 root tty 14752 Mar 1 2016 /usr/bin/bsd-write
  101. -rwxr-sr-x 1 root shadow 22768 Mar 26 15:34 /usr/bin/expiry
  102. -rwxr-sr-x 1 root crontab 36080 Apr 5 2016 /usr/bin/crontab
  103. -rwxr-sr-x 1 root mlocate 39520 Nov 18 2014 /usr/bin/mlocate
  104. -rwxr-sr-x 1 root utmp 434216 Feb 7 2016 /usr/bin/screen
  105.  
  106.  
  107. [+] Files with POSIX capabilities set:
  108. /usr/bin/systemd-detect-virt = cap_dac_override,cap_sys_ptrace+ep
  109. /usr/bin/traceroute6.iputils = cap_net_raw+ep
  110. /usr/bin/mtr = cap_net_raw+ep
  111.  
  112.  
  113. [-] Can't search *.conf files as no keyword was entered
  114.  
  115. [-] Can't search *.php files as no keyword was entered
  116.  
  117. [-] Can't search *.log files as no keyword was entered
  118.  
  119. [-] Can't search *.ini files as no keyword was entered
  120.  
  121. [-] All *.conf files in /etc (recursive 1 level):
  122. -rw-r--r-- 1 root root 34 Jan 27 2016 /etc/ld.so.conf
  123. -rw-r--r-- 1 root root 144 May 2 14:48 /etc/kernel-img.conf
  124. -rw-r--r-- 1 root root 100 Jan 10 2017 /etc/sos.conf
  125. -rw-r--r-- 1 root root 497 May 4 2014 /etc/nsswitch.conf
  126. -rw-r--r-- 1 root root 191 Jan 18 2016 /etc/libaudit.conf
  127. -rw-r--r-- 1 root root 604 Jul 2 2015 /etc/deluser.conf
  128. -rw-r--r-- 1 root root 2084 Sep 6 2015 /etc/sysctl.conf
  129. -rw-r--r-- 1 root root 967 Oct 30 2015 /etc/mke2fs.conf
  130. -rw-r--r-- 1 root root 2584 Feb 18 2016 /etc/gai.conf
  131. -rw-r--r-- 1 root root 552 Mar 16 2016 /etc/pam.conf
  132. -rw-r--r-- 1 root root 350 May 2 14:45 /etc/popularity-contest.conf
  133. -rw-r--r-- 1 root root 338 Nov 18 2014 /etc/updatedb.conf
  134. -rw-r--r-- 1 root root 2969 Nov 10 2015 /etc/debconf.conf
  135. -rw-r--r-- 1 root root 4781 Mar 17 2016 /etc/hdparm.conf
  136. -rw-r--r-- 1 root root 280 Jun 20 2014 /etc/fuse.conf
  137. -rw-r--r-- 1 root root 8464 May 2 14:55 /etc/ca-certificates.conf
  138. -rw-r--r-- 1 root root 1260 Mar 16 2016 /etc/ucf.conf
  139. -rw-r--r-- 1 root root 771 Mar 6 2015 /etc/insserv.conf
  140. -rw-r--r-- 1 root root 703 May 6 2015 /etc/logrotate.conf
  141. -rw-r--r-- 1 root root 6920 Oct 1 2018 /etc/overlayroot.conf
  142. -rw-r--r-- 1 root root 3028 Aug 1 2017 /etc/adduser.conf
  143. -rw-r--r-- 1 root root 92 Oct 22 2015 /etc/host.conf
  144. -rw-r--r-- 1 root root 1371 Jan 27 2016 /etc/rsyslog.conf
  145. -rw-r--r-- 1 root root 14867 Apr 12 2016 /etc/ltrace.conf
  146.  
  147.  
  148. [-] Location and contents (if accessible) of .bash_history file(s):
  149. /home/haris/.bash_history
  150.  
  151.  
  152. [-] Any interesting mail in /var/mail:
  153. total 8
  154. drwxrwsr-x 2 root mail 4096 Aug 1 2017 .
  155. drwxr-xr-x 14 root root 4096 May 2 14:46 ..
  156.  
  157.  
  158. ### SCAN COMPLETE ####################################
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!