中文 | English
Whoamifuck,Eonian sharp's first open source tool. This is a tool written by shell to detect intruders, after the function update, is not limited to checking users' login information.
The current functions of the tool basically meet the basic needs of emergency response, and more intrusion detection points will be added in the future and the code will be improved.
- February 8, 2021 Release whoamifuck2.
- June 3, 2021 Format to optimize.
- June 6, 2021 Whoamifuck3, add user basic information.
- June 3, 2022 New features added.
- June 6, 2022 Release whoamifuck4.0.
- System Version information
- History Command
history
Information - Enabling Service Information
- Process analysis information
- User Information Verification
- File Status information
- Scheduled Task
crontab
Information
git clone https://github.com/enomothem/Whoamifuck.git
cd Whoamifuck
chmod +x whoamifuck.sh
usage:
-v --version show version.
-h --help show help guide.
-f --file [filepath] select file path, Default file: /var/log/auth.log
-n --nomal nomal show.
-a --process-and-service check service and process information.
-u --user-device check device information.