!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686
 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/usr/libexec/webmin/sentry/help/   drwxr-xr-x
Free 50.87 GB of 127.8 GB (39.81%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     hostsentry.html (1.61 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
Hostsentry Configuration
Hostsentry is a host based intrusion detection tool that performs login anomaly detection. This means that it monitors users logging into and out of your server and logs suspicious behaviour, as defined by the options chosen on this page.

The available options are :

  • Logins record file
    The file on your system in which logins and logouts are recorded. Generally, this option should not be changed.

  • Users to ignore logins by
    Any users listed in this field will not have their logins monitored by Hostsentry.

  • Hostsentry modules in processing order
    Hostsentry has a modular design, in which each module performs a specific type of login anomaly detection. This section allows you to choose which modules are used, and the order in which they are run to process logins and logouts.

  • Hosts not to consider foreign
    If the 'Detect login from foreign domain' module is enabled, all hosts except those in this field will be considered foreign and thus subject to reporting.

  • Hosts to trust multiple logins from
    If the 'Detect multiple similtaneous logins' module is enabled, two or more logins by the same user at the same time from a host not in this list will be reported.

At the bottom of the page is a button for either starting Hostsentry (if it is not running), or stopping it (if it is running). Because Hostsentry runs as a background process (or daemon), if it is not running no monitoring of logins and logouts will be done.



:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd

Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 

:: Upload ::
 
[ Read-Only ]

:: Make Dir ::
 
[ Read-Only ]
:: Make File ::
 
[ Read-Only ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0136 ]--