dokuwiki

User Tools

Site Tools

Trace: camera pki winsim tvheadend lab wizzair wordpress-setup-and-gain-access git links script_to_find_and_encode_unique_ip_from_appache_access.log
cyberdocs:script_to_find_and_encode_unique_ip_from_appache_access.log
1.Keni me startu nje web apache server, me gjeneru log-sa, me gjeneru spaku 100 lines of code, 
  keni me ndertu nje automated script me kete logjike, ku IP unike i merr dhe i kthen ne base64, 
  dhe i ke echo vetem vlerat e base64. Pra me lexu log-un, access.log edhe me i nxjerr IP me i 
  sortu unike dhe me i kthye vetem vlerat e tyre base64, e jo ne plain text.
  
  Startim i web apache server te gjenerimi i logsave logs of code gjenerete script ku 
  me i nxjerr ip dhe   me i kthy ip ne base 64 

  
Zgjidhja:
#!/bin/bash
cat /var/log/apache2/access.log | grep "172.16" | cut -d " " -f 1 | sort -u > ips.txt
for i in $(cat ips.txt); do echo $i| base64; done

2.Research qysh me shtu user pa kriju home directory-  kur shkon ne Ls /home/ mos me ekzistu, basically i bjen user i fshehte 
  Dhe ne Ssh me u kyc me kete user  qe kemi krijuar pa home directory

3. Heqeni hash-in, shtoni hash-in e juaj, kycuni me passwordin e hash-it juaj, kryeni pune dhe pasi te kryeni pune ktheni hash-in qe ishte fillimisht.
Eshte nje password “ubuntu” ky password e ka nje hash, ky hash nuk mundet kurre me u kthy ne “ubuntu”, gjithmone eshte ky hash value, ky hash eshte i ruajtur ne /etc/shadow, ne nuk e dijme qe ky hash e ka plain text “ubuntu”, per kete arsye duhet me e heq kete hash dhe me shtu nje hash te ri, ku ne e dijme passwrodin. Psh password e kthejme ne hash, dhe kete hash e ruajme atje ku duam ta nderrojme hashin. Pastaj mund tbejme login si password, kryjme pune dhe pastaj e kthejme hashin “ubuntu”.
Ekziston encrypted sh512 ne /etc/shadow  
E kemi harru pass po dojme me bo access ne kete file qysh me e nderru hash qe me e nderru pass me e kry punen dhe me e kthye hashin e vjeter
Sudo cat /etc/shadow

Te zgjidhura nga Arbeni:
Krijimi i nje useri qe nuk ka /home directory: 
https://asciinema.org/a/To1xwcgCmjb06umuOUGIAO2vF

komanda"--no-create-home" e krijon nje user pa home directory por kur mundohemi me ju qas me ssh apo protokol tjeter nuk mundemi sepse nese e lexojm fajllin /etc/passwd e shohim qe ai user nuk ka "entry point" dmth nuk ka shell /bin/bash

komanda "--no-create-home --shell /bin/bash" e ben te kunderten e komandes me lart 
 
Shtimi apo ndrrimi i passwordit te nje useri duke modifikuar fajllin /etc/shadow
Ekzistojn disa metoda, 4 nder to jane:

https://asciinema.org/a/zk6zChlDAhR9fIrXMz5bVPckV           | chpasswd
https://asciinema.org/a/hKSm9dZCY2pOqLWhAC2nr59Db   | openssl
https://asciinema.org/a/PKUxOrkmvLJyuk0DlISJc8Xpb          | perl
https://asciinema.org/a/y0mzjwp4YsoRTE17GGxwTIEcX        | python
----------------------------------------------------------------------------
python -c 'import crypt; print crypt.crypt("arben123", "$6$SalTTeSt$")'
perl -e 'print crypt("arben123","\$6\$saltsalt\$") . "\n"'
openssl passwd -1 -salt CyBeR arben2
echo "username:password" | chpasswd
cyberdocs/script_to_find_and_encode_unique_ip_from_appache_access.log.txt · Last modified: 2019/02/06 14:00 by dardan
Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki