4.0K    media                                                                   4.0K    mnt                                                                     4.0K    opt                                                                     du: cannot access 'proc/908/task/908/fd/4': No such file or directory           du: cannot access 'proc/908/task/908/fdinfo/4': No such file or directory       du: cannot access 'proc/908/fd/3': No such file or directory                    du: cannot access 'proc/908/fdinfo/3': No such file or directory                0       proc                                                                    64K     root                                                                    384K    run                                                                     0       sbin                                                                    4.0K    srv                                                                     0       sys                                                                     40K     tmp                                                                                                                                                     

nvme1n1      259:0    0    1G  0 disk                                           nvme0n1      259:1    0    8G  0 disk                                           ├─nvme0n1p1  259:3    0  7.9G  0 part /                                         ├─nvme0n1p14 259:4    0    3M  0 part                                           └─nvme0n1p15 259:5    0  124M  0 part /boot/efi                                 nvme2n1      259:2    0    1G  0 disk                                           root@i-00902e8d05acc4504:/home/admin# pvs                                       root@i-00902e8d05acc4504:/home/admin# lvs                                       root@i-00902e8d05acc4504:/home/admin# mount|grep nvme                           /dev/nvme0n1p1 on / type ext4 (rw,relatime,discard,errors=remount-ro)           /dev/nvme0n1p15 on /boot/efi type vfat (rw,relatime,fmask=0022,dmask=0022,codepaortname=mixed,utf8,errors=remount-ro)                                           root@i-00902e8d05acc4504:/home/admin# pvcreate nvme1n1                            No device found for nvme1n1.                                                  root@i-00902e8d05acc4504:/home/admin# pvcreate /dev/nvme1n1                     

MISC:                                                                             -6: Enable IPv6 scanning                                                        -A: Enable OS detection, version detection, script scanning, and traceroute     --datadir <dirname>: Specify custom Nmap data file location                     --send-eth/--send-ip: Send using raw ethernet frames or IP packets              --privileged: Assume that the user is fully privileged                          --unprivileged: Assume the user lacks raw socket privileges                     -V: Print version number                                                        -h: Print this help summary page.                                             EXAMPLES:                                                                         nmap -v -A scanme.nmap.org                                                      nmap -v -sn 192.168.0.0/16 10.0.0.0/8                                           nmap -v -iR 10000 -Pn -p 80                                                   SEE THE MAN PAGE (https://nmap.org/book/man.html) FOR MORE OPTIONS AND EXAMPLES admin@i-0ae0f2e45a0830612:~$ nmap                                               

admin@i-016fc9e6460102905:~$ curl localhost 5000                                curl: (7) Failed to connect to localhost port 80: Connection refused            ^C                                                                              admin@i-016fc9e6460102905:~$ curl localhost:5000                                Unauthorizedadmin@i-016fc9e6460102905:~$ vim /usr/bin/as                        as         asciinema                                                            admin@i-016fc9e6460102905:~$ vim /usr/bin/asciinema                             admin@i-016fc9e6460102905:~$ /usr/bin/python3 /usr/bin/asciinema rec -t paris   asciinema: recording asciicast to /tmp/tmpf1dsbhc8-ascii.cast                   asciinema: press <ctrl-d> or type "exit" when you're done                       admin@i-016fc9e6460102905:~$ vim /usr/bin/asciinema                             admin@i-016fc9e6460102905:~$ vim /tmp/tmpf1dsbhc8-ascii.cast                    admin@i-016fc9e6460102905:~$ vim /usr/bin/asciinema                             admin@i-016fc9e6460102905:~$ vim /home/admin/.bash_history                      admin@i-016fc9e6460102905:~$                                                    

                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                ^G Help        ^O Write Out   ^W Where Is    ^K Cut         ^T Execute     ^C Lo^X Exit        ^R Read File   ^\ Replace     ^U Paste       ^J Justify     ^_ Go

                                                                                [GIN-debug] [WARNING] Running in "debug" mode. Switch to "release" mode in produ - using env:   export GIN_MODE=release                                          - using code:  gin.SetMode(gin.ReleaseMode)                                                                                                                    [GIN-debug] GET    /ping                     --> main.setupRouter.func1 (3 handl[GIN-debug] GET    /checkscript/:md5sum      --> main.setupRouter.func2 (3 handl[GIN-debug] GET    /checkcommand             --> main.setupRouter.func3 (3 handl[GIN-debug] GET    /gethistory               --> main.setupRouter.func4 (3 handl[GIN-debug] GET    /getlog                   --> main.setupRouter.func5 (3 handl[GIN-debug] Listening and serving HTTP on :6767                                 [GIN-debug] [ERROR] listen tcp :6767: bind: address already in use              admin@i-0a03c1c0d563d7772:~/agent$                                              admin@i-0a03c1c0d563d7772:~/agent$                                              admin@i-0a03c1c0d563d7772:~/agent$ bash check.sh                                

     --help      Show this help                                                   -H --halt      Halt the machine                                                 -P --poweroff  Power-off the machine                                            -r --reboot    Reboot the machine                                               -h             Equivalent to --poweroff, overridden by --halt                   -k             Don't halt/power-off/reboot, just send warnings                     --no-wall   Don't send wall message before halt/power-off/reboot             -c             Cancel a pending shutdown                                                                                                                      See the shutdown(8) man page for details.                                       admin@i-01318c13a92295c75:/etc/systemd/system$ sudo shutdown -^C                admin@i-01318c13a92295c75:/etc/systemd/system$ cd                               admin@i-01318c13a92295c75:~$ ls                                                 a.py  agent                                                                     admin@i-01318c13a92295c75:~$                                                    

apt                 cloud-init-output.log  dpkg.log    messages       syslog.2.gauth.log            cloud-init.log         dpkg.log.1  messages.1     unattendedauth.log.1          daemon.log             faillog     messages.2.gz  user.log  auth.log.2.gz       daemon.log.1           journal     minio.log      user.log.1btmp                daemon.log.2.gz        kern.log    private        user.log.2btmp.1              debug                  kern.log.1  runit          wtmp      admin@i-0742bf7ca8414ac5b:/var/log$ cd ^C                                       admin@i-0742bf7ca8414ac5b:/var/log$ cd /                                        admin@i-0742bf7ca8414ac5b:/$ ls                                                 bin   dev  home  lib32  libx32      media  opt   root  sbin  sys  usr           boot  etc  lib   lib64  lost+found  mnt    proc  run   srv   tmp  var           admin@i-0742bf7ca8414ac5b:/$ cd                                                 admin@i-0742bf7ca8414ac5b:~$ ls                                                 agent  webserver.py                                                             admin@i-0742bf7ca8414ac5b:~$                                                    

                                                                                    #1) Respect the privacy of others.                                              #2) Think before you type.                                                      #3) With great power comes great responsibility.                                                                                                            [sudo] password for admin:                                                      sudo: a password is required                                                    admin@i-03a33d25bb83c1431:~$ ls                                                 agent  webserver.py                                                             admin@i-03a33d25bb83c1431:~$ su ^C                                              admin@i-03a33d25bb83c1431:~$ ls -l                                              total 8                                                                         drwxr-xr-x 2 admin root 4096 Sep 24 23:20 agent                                 -rwxrwx--- 1 root  root  360 Sep 24 23:20 webserver.py                          admin@i-03a33d25bb83c1431:~$ python3                                            

drwxr-xr-x 2 admin root  4096 Sep 24 23:20 agent                                -rwxrwx--- 1 root  root   360 Sep 24 23:20 webserver.py                         admin@i-08d654c3783758f46:~$ vim webserver.py                                   admin@i-08d654c3783758f46:~$ sudo vim webserver.py                                                                                                              We trust you have received the usual lecture from the local System              Administrator. It usually boils down to these three things:                                                                                                         #1) Respect the privacy of others.                                              #2) Think before you type.                                                      #3) With great power comes great responsibility.                                                                                                            [sudo] password for admin:                                                      sudo: a password is required                                                    admin@i-08d654c3783758f46:~$                                                    

       users:(("sadagent",pid=562,fd=7))                                        LISTEN        0          4096                                *:8080                    users:(("gotty",pid=561,fd=6))                                           LISTEN        0          128                              [::]:22                                                                                               ESTAB         0          0              [::ffff:172.31.39.204]:8080           [:2      users:(("gotty",pid=561,fd=7))                                           admin@i-041eafe1d5ef8ef0a:~$ curl localhost:5000                                Unauthorizedadmin@i-041eafe1d5ef8ef0a:~$ curl -X POST localhost:5000            <!doctype html>                                                                 <html lang=en>                                                                  <title>405 Method Not Allowed</title>                                           <h1>Method Not Allowed</h1>                                                     <p>The method is not allowed for the requested URL.</p>                         admin@i-041eafe1d5ef8ef0a:~$                                                    

<h1>Not Found</h1>                                                              <p>The requested URL was not found on the server. If you entered the URL manuall* Closing connection 0                                                          admin@i-090e1ba20f8016e6e:~$ ss -tulpen                                         Netid      State       Recv-Q      Send-Q                            Local Addreudp        UNCONN      0           0                                     127.0.0udp        UNCONN      0           0                                       0.0.0udp        UNCONN      0           0                [fe80::80f:2ff:fe9b:f6e1]%enudp        UNCONN      0           0                                         [::tcp        LISTEN      0           128                                   127.0.0tcp        LISTEN      0           128                                     0.0.0tcp        LISTEN      0           4096                                         tcp        LISTEN      0           4096                                         tcp        LISTEN      0           128                                        [:(reverse-i-search)`statu': systemctl status flaskapp.service                    

drwxr-xr-x 2 admin root        4096 Nov  6 03:17 data                           drwxr-xr-x 7 admin admin       4096 Nov  6 03:17 .                              drwxr-xr-x 3 admin admin       4096 Nov  6 03:17 .config                        drwxr-xr-x 2 admin root        4096 Sep 17 17:28 agent                          -rwxr-xr-x 1 admin root     2207109 Sep 17 17:28 kihei                          -rw-r--r-- 1 root  root  5368709120 Sep 17 17:28 datafile                       drwx------ 3 admin admin       4096 Sep 17 17:15 .ansible                       drwx------ 2 admin admin       4096 Sep 17 16:44 .ssh                           drwxr-xr-x 3 root  root        4096 Sep 17 16:44 ..                             -rw-r--r-- 1 admin admin        220 Aug  4  2021 .bash_logout                   -rw-r--r-- 1 admin admin       3526 Aug  4  2021 .bashrc                        -rw-r--r-- 1 admin admin        807 Aug  4  2021 .profile                       admin@i-0053f9210f2384812:~$ cd /ad                                             bash: cd: /ad: No such file or directory                                        admin@i-0053f9210f2384812:~$ cd /hom                                            

drwx------   4 root root  4096 Nov  5 20:22 root                                drwxr-xr-x  23 root root   680 Nov  5 20:22 run                                 lrwxrwxrwx   1 root root     8 Sep 28  2021 sbin -> usr/sbin                    drwxr-xr-x   2 root root  4096 Sep 28  2021 srv                                 dr-xr-xr-x  13 root root     0 Nov  5 20:21 sys                                 drwxrwxrwt   9 root root  4096 Nov  5 20:22 tmp                                 drwxr-xr-x  14 root root  4096 Sep 28  2021 usr                                 drwxr-xr-x  11 root root  4096 Sep 28  2021 var                                 root@i-00052c2fc51abf45d:/# cd /media/                                          root@i-00052c2fc51abf45d:/media# ls -la                                         total 8                                                                         drwxr-xr-x  2 root root 4096 Sep 28  2021 .                                     drwxr-xr-x 18 root root 4096 Nov  5 20:22 ..                                    root@i-00052c2fc51abf45d:/media# cd ..                                          root@i-00052c2fc51abf45d:/# du -h