WooYun.org

00:13:25 /usr/local/java/bin/java -Djava.util.logging.config.file=/usr/local/tomcat/conf/logging.properties -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager -Djava.endorsed.dirs=/usr/local/tomcat/endorsed -classpath /usr/local/tomcat/bin/bootstrap.jar -Dcatalina.base=/usr/local/tomcat -Dcatalina.home=/usr/local/tomcat -D**.**.**.**.tmpdir=/usr/local/tomcat/temp org.apache.catalina.startup.Bootstrap start
root 2345 1 0 2013 ? 00:00:00 [kjournald]
root 2346 1 0 2013 ? 00:07:59 [kjournald]
root 3565 1 0 2013 ? 00:00:23 syslogd -r -x -m 240
root 3569 1 0 2013 ? 00:00:00 klogd -x
root 3583 1 0 2013 ? 00:00:06 irqbalance
rpc 3602 1 0 2013 ? 00:00:00 portmap
rpcuser 3622 1 0 2013 ? 00:00:00 rpc.statd
root 3656 1 0 2013 ? 00:00:00 rpc.idmapd
root 3675 1 0 2013 ? 00:00:00 /usr/bin/vmware-usbarbitrator
root 3822 1 0 2013 ? 00:00:00 /usr/bin/vmnet-bridge -s 6 -d /var/run/vmnet-bridge-0.pid -n 0
root 3830 1 0 2013 ? 00:00:00 /usr/bin/vmnet-dhcpd -s 6 -cf /etc/vmware/vmnet1/dhcpd/dhcpd.conf -lf /etc/vmware/vmnet1/dhcpd/dhcpd.leases -pf /var/run/vmnet-dhcpd-vmnet1.pid vmnet1
root 3833 1 0 2013 ? 00:00:00 /usr/bin/vmnet-netifup -s 6 -d /var/run/vmnet-netifup-vmnet1.pid /dev/vmnet1 vmnet1
root 3836 1 0 2013 ? 00:00:00 /usr/bin/vmnet-dhcpd -s 6 -cf /etc/vmware/vmnet8/dhcpd/dhcpd.conf -lf /etc/vmware/vmnet8/dhcpd/dhcpd.leases -
查看配置文件
pf /var/run/vmnet-dhcpd-vmnet8.pid vmnet8
root 3839 1 0 2013 ? 00:00:00 /usr/bi
查看配置文件，看能能不能找到数据库信息。

，弱口令但是不能登录。看了下端口开放着SSH端口。

，查看shadow文件，
root:$1$egNA7Nja$WKXLk9Xf95wZSxaBYy4P//:15770:0:99999:7:::
remote:$1$Nti8GudW$h1pllbYESp0pueOZOdJ6f1:15770:0:99999:7:::
用自己的字典跑了下，也是没跑出来！哎……