search

Linux Password Hunting

Common Password Attack on Linux Machine

hashtag
Config Files Search

for l in $(echo ".conf .config .cnf");do echo -e "\nFile extension: " $l; find / -name *$l 2>/dev/null | grep -v "lib\|fonts\|share\|core" ;done

hashtag
Credentials in Configuration Files

for i in $(find / -name *.cnf 2>/dev/null | grep -v "doc\|lib");do echo -e "\nFile: " $i; grep "user\|password\|pass" $i 2>/dev/null | grep -v "\#";done

hashtag
Database Backup Search

for l in $(echo ".sql .db .*db .db*");do echo -e "\nDB File extension: " $l; find / -name *$l 2>/dev/null | grep -v "doc\|lib\|headers\|share\|man";done

hashtag
Search Notes/txt Files

find /home/* -type f -name "*.txt"

hashtag
Search Scripts on Linux

for l in $(echo ".py .pyc .pl .go .jar .c .sh");do echo -e "\nFile extension: " $l; find / -name *$l 2>/dev/null | grep -v "doc\|lib\|headers\|share";done

hashtag
Search Cronjob

cat /etc/crontab
ls -la /etc/cron.*/

hashtag
Search SSH Private Key

hashtag
File History

hashtag
Search Password in PHP Files

hashtag
Cracking Linux Credentials

Take a look at the unshadow.txt file. The field after the username (with a number or letter between two dollar signs) is the one that identifies the hash type used. It could be one of the following:

  1. $1$ is MD5

  2. $2a$ is Blowfish

  3. $2y$ is Blowfish

  4. $5$ is SHA-256

  5. $6$ is SHA-512

  6. $y$ is yescrypt

For $y$, for example, you can use the command:

hashtag
Tools

PreviousLinux Post ExploitationNextSimple PHP Webshell

Last updated