SHARE
TWEET

Swagshop

CryptoJones Jun 29th, 2019 171 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. ### SOFTWARE #############################################
  2. [-] Sudo version:
  3. Sudo version 1.8.16
  4.  
  5.  
  6. [-] MYSQL version:
  7. mysql  Ver 14.14 Distrib 5.7.26, for Linux (x86_64) using  EditLine wrapper
  8.  
  9.  
  10. [-] Apache version:
  11. Server version: Apache/2.4.18 (Ubuntu)
  12. Server built:   2019-04-03T13:34:47
  13.  
  14.  
  15. [-] Apache user configuration:
  16. APACHE_RUN_USER=www-data
  17. APACHE_RUN_GROUP=www-data
  18.  
  19.  
  20. [-] Installed Apache modules:
  21. Loaded Modules:
  22.  core_module (static)
  23.  so_module (static)
  24.  watchdog_module (static)
  25.  http_module (static)
  26.  log_config_module (static)
  27.  logio_module (static)
  28.  version_module (static)
  29.  unixd_module (static)
  30.  access_compat_module (shared)
  31.  alias_module (shared)
  32.  auth_basic_module (shared)
  33.  authn_core_module (shared)
  34.  authn_file_module (shared)
  35.  authz_core_module (shared)
  36.  authz_host_module (shared)
  37.  authz_user_module (shared)
  38.  autoindex_module (shared)
  39.  deflate_module (shared)
  40.  dir_module (shared)
  41.  env_module (shared)
  42.  filter_module (shared)
  43.  mime_module (shared)
  44.  mpm_prefork_module (shared)
  45.  negotiation_module (shared)
  46.  php5_module (shared)
  47.  setenvif_module (shared)
  48.  status_module (shared)
  49.  
  50.  
  51. ### INTERESTING FILES ####################################
  52. [-] Useful file locations:
  53. /bin/nc
  54. /bin/netcat
  55. /usr/bin/wget
  56. /usr/bin/curl
  57.  
  58.  
  59. [-] Can we read/write sensitive files:
  60. -rw-r--r-- 1 root root 1612 May  8 08:11 /etc/passwd
  61. -rw-r--r-- 1 root root 811 May  2 14:48 /etc/group
  62. -rw-r--r-- 1 root root 575 Oct 22  2015 /etc/profile
  63. -rw-r----- 1 root shadow 970 May  2 14:48 /etc/shadow
  64.  
  65.  
  66. [-] SUID files:
  67. -rwsr-xr-x 1 root root 40152 May 16  2018 /bin/mount
  68. -rwsr-xr-x 1 root root 44168 May  7  2014 /bin/ping
  69. -rwsr-xr-x 1 root root 44680 May  7  2014 /bin/ping6
  70. -rwsr-xr-x 1 root root 40128 Mar 26 15:34 /bin/su
  71. -rwsr-xr-x 1 root root 27608 May 16  2018 /bin/umount
  72. -rwsr-xr-x 1 root root 30800 Jul 12  2016 /bin/fusermount
  73. -rwsr-xr-x 1 root root 84120 Apr  9 15:54 /usr/lib/x86_64-linux-gnu/lxc/lxc-user-nic
  74. -rwsr-xr-x 1 root root 428240 Mar  4 09:09 /usr/lib/openssh/ssh-keysign
  75. -rwsr-sr-x 1 root root 98472 Mar 22 18:38 /usr/lib/snapd/snap-confine
  76. -rwsr-xr-x 1 root root 14864 Mar 27 10:40 /usr/lib/policykit-1/polkit-agent-helper-1
  77. -rwsr-xr-- 1 root messagebus 42992 Jan 12  2017 /usr/lib/dbus-1.0/dbus-daemon-launch-helper
  78. -rwsr-xr-x 1 root root 10232 Mar 27  2017 /usr/lib/eject/dmcrypt-get-device
  79. -rwsr-xr-x 1 root root 136808 Jul  4  2017 /usr/bin/sudo
  80. -rwsr-xr-x 1 root root 32944 Mar 26 15:34 /usr/bin/newgidmap
  81. -rwsr-sr-x 1 daemon daemon 51464 Jan 14  2016 /usr/bin/at
  82. -rwsr-xr-x 1 root root 32944 Mar 26 15:34 /usr/bin/newuidmap
  83. -rwsr-xr-x 1 root root 71824 Mar 26 15:34 /usr/bin/chfn
  84. -rwsr-xr-x 1 root root 75304 Mar 26 15:34 /usr/bin/gpasswd
  85. -rwsr-xr-x 1 root root 54256 Mar 26 15:34 /usr/bin/passwd
  86. -rwsr-xr-x 1 root root 39904 Mar 26 15:34 /usr/bin/newgrp
  87. -rwsr-xr-x 1 root root 23376 Mar 27 10:40 /usr/bin/pkexec
  88. -rwsr-xr-x 1 root root 40432 Mar 26 15:34 /usr/bin/chsh
  89.  
  90.  
  91. [-] SGID files:
  92. -rwxr-sr-x 1 root shadow 35632 Apr  9  2018 /sbin/pam_extrausers_chkpwd
  93. -rwxr-sr-x 1 root shadow 35600 Apr  9  2018 /sbin/unix_chkpwd
  94. -rwxr-sr-x 1 root utmp 10232 Mar 11  2016 /usr/lib/x86_64-linux-gnu/utempter/utempter
  95. -rwsr-sr-x 1 root root 98472 Mar 22 18:38 /usr/lib/snapd/snap-confine
  96. -rwxr-sr-x 1 root tty 27368 May 16  2018 /usr/bin/wall
  97. -rwxr-sr-x 1 root shadow 62336 Mar 26 15:34 /usr/bin/chage
  98. -rwsr-sr-x 1 daemon daemon 51464 Jan 14  2016 /usr/bin/at
  99. -rwxr-sr-x 1 root ssh 358624 Mar  4 09:09 /usr/bin/ssh-agent
  100. -rwxr-sr-x 1 root tty 14752 Mar  1  2016 /usr/bin/bsd-write
  101. -rwxr-sr-x 1 root shadow 22768 Mar 26 15:34 /usr/bin/expiry
  102. -rwxr-sr-x 1 root crontab 36080 Apr  5  2016 /usr/bin/crontab
  103. -rwxr-sr-x 1 root mlocate 39520 Nov 18  2014 /usr/bin/mlocate
  104. -rwxr-sr-x 1 root utmp 434216 Feb  7  2016 /usr/bin/screen
  105.  
  106.  
  107. [+] Files with POSIX capabilities set:
  108. /usr/bin/systemd-detect-virt = cap_dac_override,cap_sys_ptrace+ep
  109. /usr/bin/traceroute6.iputils = cap_net_raw+ep
  110. /usr/bin/mtr = cap_net_raw+ep
  111.  
  112.  
  113. [-] Can't search *.conf files as no keyword was entered
  114.  
  115. [-] Can't search *.php files as no keyword was entered
  116.  
  117. [-] Can't search *.log files as no keyword was entered
  118.  
  119. [-] Can't search *.ini files as no keyword was entered
  120.  
  121. [-] All *.conf files in /etc (recursive 1 level):
  122. -rw-r--r-- 1 root root 34 Jan 27  2016 /etc/ld.so.conf
  123. -rw-r--r-- 1 root root 144 May  2 14:48 /etc/kernel-img.conf
  124. -rw-r--r-- 1 root root 100 Jan 10  2017 /etc/sos.conf
  125. -rw-r--r-- 1 root root 497 May  4  2014 /etc/nsswitch.conf
  126. -rw-r--r-- 1 root root 191 Jan 18  2016 /etc/libaudit.conf
  127. -rw-r--r-- 1 root root 604 Jul  2  2015 /etc/deluser.conf
  128. -rw-r--r-- 1 root root 2084 Sep  6  2015 /etc/sysctl.conf
  129. -rw-r--r-- 1 root root 967 Oct 30  2015 /etc/mke2fs.conf
  130. -rw-r--r-- 1 root root 2584 Feb 18  2016 /etc/gai.conf
  131. -rw-r--r-- 1 root root 552 Mar 16  2016 /etc/pam.conf
  132. -rw-r--r-- 1 root root 350 May  2 14:45 /etc/popularity-contest.conf
  133. -rw-r--r-- 1 root root 338 Nov 18  2014 /etc/updatedb.conf
  134. -rw-r--r-- 1 root root 2969 Nov 10  2015 /etc/debconf.conf
  135. -rw-r--r-- 1 root root 4781 Mar 17  2016 /etc/hdparm.conf
  136. -rw-r--r-- 1 root root 280 Jun 20  2014 /etc/fuse.conf
  137. -rw-r--r-- 1 root root 8464 May  2 14:55 /etc/ca-certificates.conf
  138. -rw-r--r-- 1 root root 1260 Mar 16  2016 /etc/ucf.conf
  139. -rw-r--r-- 1 root root 771 Mar  6  2015 /etc/insserv.conf
  140. -rw-r--r-- 1 root root 703 May  6  2015 /etc/logrotate.conf
  141. -rw-r--r-- 1 root root 6920 Oct  1  2018 /etc/overlayroot.conf
  142. -rw-r--r-- 1 root root 3028 Aug  1  2017 /etc/adduser.conf
  143. -rw-r--r-- 1 root root 92 Oct 22  2015 /etc/host.conf
  144. -rw-r--r-- 1 root root 1371 Jan 27  2016 /etc/rsyslog.conf
  145. -rw-r--r-- 1 root root 14867 Apr 12  2016 /etc/ltrace.conf
  146.  
  147.  
  148. [-] Location and contents (if accessible) of .bash_history file(s):
  149. /home/haris/.bash_history
  150.  
  151.  
  152. [-] Any interesting mail in /var/mail:
  153. total 8
  154. drwxrwsr-x  2 root mail 4096 Aug  1  2017 .
  155. drwxr-xr-x 14 root root 4096 May  2 14:46 ..
  156.  
  157.  
  158. ### SCAN COMPLETE ####################################
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top