ablaauwgeers@rp1vm01:~$ sudo su - [sudo] password for ablaauwgeers: root@rp1vm01:~# cat .bash_history r reboot clear mkdir test cd test bro -i ens160 ls head conn.log clear head conn.log | less ls head ssh.log nano ssh.log cat ssh.log | bro-cut apt install bro-aux cat ssh.log | bro-cut -h cat ssh.log | bro-cut -d date bro -i ens160 bro -Ci ens160 ls cat conn.log ifconfig tcpdump -i ens160 q tcpdump -i ens160 -w data.pcap ls tail data.pcap PuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTYPuTTY clear ls -la ls ls -l --block-size=M tcpdump -i ens160 -w data.pcap ip a clear ls ls -la tcpdump -i ens160 -w data.pcap ls ls -l --block-size=M tcpdump -i ens160 -w data.pcap ls ls -l --block-size=M apt install tcpreplay tcpreplay -h ls cat reporter.log cat packet_filter.log wget https://iscxdownloads.cs.unb.ca/iscxdownloads/CIC-IDS-2017/PCAPs/Monday-WorkingHours.pcap wget http://iscxdownloads.cs.unb.ca/iscxdownloads/CIC-IDS-2017/PCAPs/Monday-WorkingHours.pcap ls ~ cd ~ cat .bash_history exit