User Tools

Site Tools

Trace:
brute_force

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
brute_force [2015/04/01 13:11] luke7858brute_force [2024/05/23 07:26] (current) – external edit 127.0.0.1
Line 1: Line 1:
-Command  +This command will tell you how many failed ssh attempts have been made, from what IP address and their location in the world \\
 <sxh bash>t1=`mktemp` ; t2=`mktemp` ; t3=`mktemp` ; cat /var/log/secure | grep sshd | grep Failed | sed 's/invalid//' | sed 's/user//' | awk '{print $11}' | sort | uniq -c | sort -rn | head -15 > $t1 ; for x in `cat $t1 | awk '{print $2}'`; do host $x | awk '{print $5}'; done > $t2 ; sed -i 's/3(NXDOMAIN)/N\/A/g' $t2 ; sed -i 's/2(SERVFAIL)/N\/A/g' $t2 ; for y in `cat $t1 | awk '{print $2}'`; do curl -s http://ip-api.com/csv/$y | awk 'BEGIN { FS = "," } ; { print $2, $5 }'; done > $t3 ; paste $t1 $t2 $t3 && rm -f $t1 $t2 $t3 ; unset t1 t2 t3</sxh> <sxh bash>t1=`mktemp` ; t2=`mktemp` ; t3=`mktemp` ; cat /var/log/secure | grep sshd | grep Failed | sed 's/invalid//' | sed 's/user//' | awk '{print $11}' | sort | uniq -c | sort -rn | head -15 > $t1 ; for x in `cat $t1 | awk '{print $2}'`; do host $x | awk '{print $5}'; done > $t2 ; sed -i 's/3(NXDOMAIN)/N\/A/g' $t2 ; sed -i 's/2(SERVFAIL)/N\/A/g' $t2 ; for y in `cat $t1 | awk '{print $2}'`; do curl -s http://ip-api.com/csv/$y | awk 'BEGIN { FS = "," } ; { print $2, $5 }'; done > $t3 ; paste $t1 $t2 $t3 && rm -f $t1 $t2 $t3 ; unset t1 t2 t3</sxh>
brute_force.1427893919.txt.gz · Last modified: 2024/05/23 07:26 (external edit)
Except where otherwise noted, content on this wiki is licensed under the following license: Public Domain
Public Domain Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki