support
Validating & authenticating the newly signed public key and private key against the target SSH server on the port 2222 as the support user
zzinter@itrc:~$ ssh support@172.223.0.1 -o CertificateFile=support-support.pub -i ca-itrc -p 2222
Welcome to Ubuntu 22.04.4 LTS (GNU/Linux 5.15.0-117-generic x86_64)
* Documentation: https://help.ubuntu.com
* Management: https://landscape.canonical.com
* Support: https://ubuntu.com/pro
System information as of Tue Jul 30 08:44:00 AM UTC 2024
System load: 0.56
Usage of /: 66.3% of 10.73GB
Memory usage: 11%
Swap usage: 0%
Processes: 266
Users logged in: 0
IPv4 address for eth0: 10.10.11.27
IPv6 address for eth0: dead:beef::250:56ff:feb9:23c8
Expanded Security Maintenance for Applications is not enabled.
0 updates can be applied immediately.
Enable ESM Apps to receive additional future security updates.
See https://ubuntu.com/esm or run: sudo pro status
Failed to connect to https://changelogs.ubuntu.com/meta-release-lts. Check your Internet connection or proxy settings
Last login: Mon Aug 5 17:35:46 2024 from 172.223.0.3
support@ssg:~$ whoami
support
support@ssg:~$ hostname
ssg
support@ssg:~$ ifconfig
br-495f2e886a97: flags=4099<UP,BROADCAST,MULTICAST> mtu 1500
inet 172.21.0.1 netmask 255.255.0.0 broadcast 172.21.255.255
ether 02:42:b8:6d:12:ef txqueuelen 0 (Ethernet)
RX packets 0 bytes 0 (0.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 0 bytes 0 (0.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
br-eecf04b75daf: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 172.223.0.1 netmask 255.255.0.0 broadcast 172.223.255.255
inet6 fe80::42:1ff:fe97:b55e prefixlen 64 scopeid 0x20<link>
ether 02:42:01:97:b5:5e txqueuelen 0 (Ethernet)
RX packets 929440 bytes 197061374 (197.0 MB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 1245957 bytes 184932436 (184.9 MB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
docker0: flags=4099<UP,BROADCAST,MULTICAST> mtu 1500
inet 172.17.0.1 netmask 255.255.0.0 broadcast 172.17.255.255
ether 02:42:ae:13:93:e6 txqueuelen 0 (Ethernet)
RX packets 0 bytes 0 (0.0 B)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 0 bytes 0 (0.0 B)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 10.10.11.27 netmask 255.255.254.0 broadcast 10.10.11.255
inet6 fe80::250:56ff:fe94:83ee prefixlen 64 scopeid 0x20<link>
inet6 dead:beef::250:56ff:fe94:83ee prefixlen 64 scopeid 0x0<global>
ether 00:50:56:94:83:ee txqueuelen 1000 (Ethernet)
RX packets 322354 bytes 124119865 (124.1 MB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 456259 bytes 184737603 (184.7 MB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
inet6 ::1 prefixlen 128 scopeid 0x10<host>
loop txqueuelen 1000 (Local Loopback)
RX packets 2409 bytes 221428 (221.4 KB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 2409 bytes 221428 (221.4 KB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
veth6d81c93: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet6 fe80::e43c:1bff:fe3b:d811 prefixlen 64 scopeid 0x20<link>
ether e6:3c:1b:3b:d8:11 txqueuelen 0 (Ethernet)
RX packets 2182459 bytes 325428724 (325.4 MB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 2333447 bytes 333179497 (333.1 MB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
vethfbd2cd2: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet6 fe80::d82f:eff:fe36:f0a7 prefixlen 64 scopeid 0x20<link>
ether da:2f:0e:36:f0:a7 txqueuelen 0 (Ethernet)
RX packets 1087480 bytes 148246385 (148.2 MB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 1253038 bytes 115356600 (115.3 MB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0Lateral Movement made to the support user via SSH
Initial Foothold established to the target system