Tag Archives: bash

encrypt bash

Leave a reply

hide bash code using c: apt install shc shc -f mybash.sh

save remote files to array

Leave a reply

n=0; for i in `cat ttt` ; do readarray arr$n < <(ssh $i 'cat /etc/passwd'); n=$(( $n + 1 )) ; done

printf '%s\n' "${#arr0[@]}" 20 printf '%s\n' "${#arr1[@]}" 26

bash printf align output

Leave a reply

for l in 1 10 100 1000 10000 100000 1000000; do printf "%7s %s\n" $l "test string"; done

      1 test string
     10 test string
    100 test string
   1000 test string
  10000 test string
 100000 test string
1000000 test string

linux add hostname to stdout

Leave a reply

base64 /dev/urandom | head -c 1000 | sed "1 i\\`hostname`" | head -n 5

localhost.localdomain brXE3yBW/afyXoZXigNc+bTaw71rW7Ykz9xFD01ZeXeglA/vubg9eJPmldDN3qQEOZongJbjSIEl D6tu8lfhoYboc8eJTPPPasoQP1RcbdX/kVRbrxV2cLTaKVik2o3sywpjLZl+0Dow/9Of8iToahOw JdWXPrkmsZZ9le4uN+qGU55Z2TO2Mc/baY0UUmBXaWX9NsNTsO4HwfqnT62Gs0BVtbMaWw0vWf3n 4QxJGcNl/gi5WUM/aamcUFe5exb8YlEk6Nj3szqf3b4DQE4XODe46W/4qCzg/UFzCb5SOC0YBnEa

run cron random time

Leave a reply

0 0 * * * sleep `shuf -i 1-86400 -n 1`; mktemp

Run: echo '0 0 * * * sleep `shuf -i 1-86400 -n 1`; mktemp' | sudo tee -a /var/spool/cron/$USER

bash process substitution

Leave a reply

expr $RANDOM % 14400 | tee >(xargs sleep)

vit 14357 0.0 0.0 215528 708 pts/8 S 14:21 0:00 xargs sleep vit 14358 0.0 0.0 215220 704 pts/8 S 14:21 0:00 sleep 157

bash print before pipe

Leave a reply

expr $RANDOM % 14400 | tee /dev/tty | xargs sleep

monitor process io

Leave a reply


ps -eo state,pid,cmd | awk '/^D/ { print "proccess: " $3 ; system("cat /proc/"$2"/io") }'
proccess: [md1_raid10]

rchar: 0

wchar: 0

syscr: 0

syscw: 0

read_bytes: 0

write_bytes: 0

cancelled_write_bytes: 0

proccess :/opt/cpanel/ea-php56/root/usr/bin/php-cgi

rchar: 334932

wchar: 3941

syscr: 177

syscw: 26

read_bytes: 4096

write_bytes: 8192

cancelled_write_bytes: 4096

check ip by country linux

Leave a reply

yum install geoip
geoipupdate
geoiplookup 1.1.1.1

GeoIP Country Edition: AU, Australia
ipaddr: 1.1.1.1
range_by_ip: 1.1.1.0 – 1.1.1.255
network: 1.1.1.0 – 1.1.1.255 ::24
ipnum: 16843009
range_by_num: 16843008 – 16843263
network num: 16843008 – 16843263 ::24

history date bash

Leave a reply

echo 'export HISTTIMEFORMAT="%d/%m/%y %T "' >> ~/.bash_profile

bash move process to screen

Leave a reply

If you forgot run process on screen, you can move procesas on it:

yum install reptyr
screen
reptyr $(pgrep name_of_proccess)

bash grep ip regex

Leave a reply

grep -oE "\b([0-9]{1,3}\.){3}[0-9]{1,3}\b"

monitor IP connections per IP

Leave a reply

#!/bin/bash # IP BAN v. 1.0.0


WORK_DIR='/root/ddos'

IGNORE_IP_LIST="$WORK_DIR/ignoreip"

BLOCKED_IP_LIST="$WORK_DIR/blockedip"

LOG_FILE="$WORK_DIR/ban.log"
NO_OF_CONNECTIONS=20

APF_BAN=0

KILL=1
add__cron()

{

set="$(readlink -f "$0")"
if [ ! -f $WORK_DIR/ddos.sh ]; then

#        mkdir /root/ddos >/dev/null 2>&1

        cp $set $WORK_DIR/ddos.sh

    chmod +x $WORK_DIR/ddos.sh

fi

if [ ! -f /etc/cron.d/check_ddos ]; then

    echo "* * * * * root $WORK_DIR/ddos.sh >/dev/null 2>&1" > /etc/cron.d/check_ddos

fi
}

mk_ignore()

{

if [ ! -d "$WORK_DIR" ]; then

  mkdir $WORK_DIR

fi

if [ ! -f $WORK_DIR/systemip ]; then

    ip addr show | grep -w inet | awk '{ print $2 }' | cut -d"/" -f1 > $WORK_DIR/systemip

    echo "0.0.0.0" >> $WORK_DIR/systemip

fi
}
prog_check()

{

if ! which netstat >/dev/null; then

    apt-get install net-tools

fi

}
prog_check

mk_ignore

add__cron

TMP_PREFIX='/tmp/ddos'

TMP_FILE=`mktemp $TMP_PREFIX.XXXXXXXX`

SYSIP="$WORK_DIR/systemip"
BAD_IP_LIST="$TMP_FILE"

netstat -an | grep -o '[0-9]\{1,3\}\.[0-9]\{1,3\}\.[0-9]\{1,3\}\.[0-9]\{1,3\}' | sort | uniq -c | sort -nr > $BAD_IP_LIST

if [ $KILL -eq 1 ]; then

        IP_BAN_NOW=0

        while read line; do

                CURR_LINE_CONN=$(echo $line | cut -d" " -f1)

                CURR_LINE_IP=$(echo $line | cut -d" " -f2)

                if [ $CURR_LINE_CONN -lt $NO_OF_CONNECTIONS ]; then

                        break

                fi

                IGNORE_BAN=`grep -c $CURR_LINE_IP $IGNORE_IP_LIST`

                IGNORE_BAN2=`grep -c $CURR_LINE_IP $SYSIP`

                IGNORE_BAN3=`grep -c $CURR_LINE_IP $BLOCKED_IP_LIST`

if [[ $IGNORE_BAN -ge 1 || $IGNORE_BAN2 -ge 1 || $IGNORE_BAN3 -ge 1 ]] ; then continue fi IP_BAN_NOW=1 dt=$(date '+%Y/%m/%d %H:%M:%S'); echo "$CURR_LINE_IP was blocked at $dt" >> $LOG_FILE echo $CURR_LINE_IP >> $BLOCKED_IP_LIST if [ $APF_BAN -eq 1 ]; then $APF -d $CURR_LINE_IP else echo $CURR_LINE_IP /sbin/iptables -I INPUT 1 -s $CURR_LINE_IP -j DROP /sbin/iptables -I OUTPUT 1 -d $CURR_LINE_IP -j DROP fi done < $BAD_IP_LIST fi rm -f $TMP_PREFIX.*

bash completion

Leave a reply

yum install bash-completion

linux find files created today

Leave a reply


find `pwd` -mtime -1 -type f -print

Server 24/7

I am Vitalijus Ryzakovas. This is my LINUX/UNIX blog.

Tag Archives: bash

encrypt bash

save remote files to array

bash printf align output

linux add hostname to stdout

run cron random time

bash process substitution

bash print before pipe

monitor process io

check ip by country linux

history date bash

bash move process to screen

bash grep ip regex

monitor IP connections per IP

bash completion

linux find files created today