Jul 15 01:57:07 bastion LinuxCommandsWazuh: User mohtashim [592711]:  1259  exit
Jul 15 01:58:18 bastion LinuxCommandsWazuh: User mohtashim [592711]:  1260  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 10:13:22 bastion LinuxCommandsWazuh: User ankur [635489]: 1  exit
Jul 15 10:13:59 bastion LinuxCommandsWazuh: User ankur [635489]: 2  byobu
Jul 15 10:32:08 bastion LinuxCommandsWazuh: User abhijeet [637766]:   519  exit
Jul 15 10:32:22 bastion LinuxCommandsWazuh: User abhijeet [637766]:   520  kubectl get pod -n nitrox-production
Jul 15 10:32:44 bastion LinuxCommandsWazuh: User abhijeet [637766]:   521  kubectl logs dakiya-5f4d6cf89c-mtzmr -n nitrox-production
Jul 15 10:32:51 bastion LinuxCommandsWazuh: User abhijeet [637766]:   522  l
Jul 15 10:34:14 bastion LinuxCommandsWazuh: User abhijeet [637766]:   523  git 
Jul 15 10:34:18 bastion LinuxCommandsWazuh: User abhijeet [637766]:   524  git clone https://github.com/Abhijeetsingh0/K8s-tools.git
Jul 15 10:34:27 bastion LinuxCommandsWazuh: User abhijeet [637766]:   525  ls
Jul 15 10:34:29 bastion LinuxCommandsWazuh: User abhijeet [637766]:   526  cd K8s-tools/
Jul 15 10:34:29 bastion LinuxCommandsWazuh: User abhijeet [637766]:   527  l
Jul 15 10:35:06 bastion LinuxCommandsWazuh: User abhijeet [637766]:   528  bash kubeScrib.sh 
Jul 15 10:35:12 bastion LinuxCommandsWazuh: User abhijeet [637766]:   529  l
Jul 15 10:52:55 bastion LinuxCommandsWazuh: User mohtashim [639668]:  1260  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 10:53:04 bastion LinuxCommandsWazuh: User mohtashim [639668]:  1260  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 10:53:07 bastion LinuxCommandsWazuh: User mohtashim [639668]:  1261  exiy
Jul 15 10:53:08 bastion LinuxCommandsWazuh: User mohtashim [639668]:  1261  exiy
Jul 15 11:25:36 bastion LinuxCommandsWazuh: User ashish [642599]:   138  mongo
Jul 15 11:39:50 bastion LinuxCommandsWazuh: User ashish [644319]:   138  mongo
Jul 15 11:42:20 bastion LinuxCommandsWazuh: User ashish [644319]:   139  psql -h vortexdb -p 5432 -U postgres
Jul 15 11:51:04 bastion LinuxCommandsWazuh: User mohtashim [645244]:  1262  exit
Jul 15 11:52:11 bastion LinuxCommandsWazuh: User mohtashim [645346]:  1262  exit
Jul 15 11:53:58 bastion LinuxCommandsWazuh: User mohtashim [645346]:  1263  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 11:54:05 bastion LinuxCommandsWazuh: User mohtashim [645346]:  1264  clear
Jul 15 11:57:06 bastion LinuxCommandsWazuh: User mohtashim [646293]:  1262  exit
Jul 15 11:57:12 bastion LinuxCommandsWazuh: User mohtashim [646293]:  1263  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 11:57:49 bastion LinuxCommandsWazuh: User mohtashim [646293]:  1264  psql -h 10.94.16.3 -U postgres -d vortex_v1
Jul 15 11:57:56 bastion LinuxCommandsWazuh: User mohtashim [646293]:  1264  psql -h 10.94.16.3 -U postgres -d vortex_v1
Jul 15 11:58:00 bastion LinuxCommandsWazuh: User mohtashim [646293]:  1265  psql -h 10.94.16.3 -U postgres -d vortex_v2
Jul 15 12:04:22 bastion LinuxCommandsWazuh: User mohtashim [646293]:  1265  psql -h 10.94.16.3 -U postgres -d vortex_v2
Jul 15 12:10:22 bastion LinuxCommandsWazuh: User abhijeet [647522]:   529  l
Jul 15 12:10:29 bastion LinuxCommandsWazuh: User abhijeet [647522]:   530  bash kubeScrib.sh 
Jul 15 12:10:31 bastion LinuxCommandsWazuh: User abhijeet [647522]:   531  ls
Jul 15 12:10:35 bastion LinuxCommandsWazuh: User abhijeet [647522]:   532  cd K8s-tools/
Jul 15 12:10:53 bastion LinuxCommandsWazuh: User abhijeet [647522]:   533  bash kubeScrib.sh 
Jul 15 12:11:14 bastion LinuxCommandsWazuh: User abhijeet [647522]:   534  kubectl get pod -n nitrox-production -o wide
Jul 15 12:11:28 bastion LinuxCommandsWazuh: User abhijeet [647522]:   535  kubectl get pod -n nitrox-production -o wide | grep "10.84"
Jul 15 12:13:22 bastion LinuxCommandsWazuh: User mohtashim [647836]:  1266  exit
Jul 15 12:14:06 bastion LinuxCommandsWazuh: User mohtashim [647836]:  1267  psql -h 10.94.16.3 -U postgres -d vortex_v2
Jul 15 12:17:40 bastion LinuxCommandsWazuh: User mohtashim [647836]:  1267  psql -h 10.94.16.3 -U postgres -d vortex_v2
Jul 15 12:18:13 bastion LinuxCommandsWazuh: User mohtashim [648702]:  1268  exit
Jul 15 12:18:15 bastion LinuxCommandsWazuh: User mohtashim [648702]:  1269  merasql
Jul 15 12:18:22 bastion LinuxCommandsWazuh: User mohtashim [648702]:  1270  kubectl get pod -n nitrox-production -o wide | grep "10.84"
Jul 15 12:18:23 bastion LinuxCommandsWazuh: User mohtashim [648702]:  1271  clear
Jul 15 12:18:35 bastion LinuxCommandsWazuh: User mohtashim [648702]:  1272  kubectl get pod -n nitrox-production -o wide | grep "10.84.17.68"
Jul 15 12:21:07 bastion LinuxCommandsWazuh: User mohtashim [645346]:  1265  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 12:45:32 bastion LinuxCommandsWazuh: User mohtashim [650522]:  1275  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 12:46:11 bastion LinuxCommandsWazuh: User mohtashim [651321]:  1275  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 12:46:48 bastion LinuxCommandsWazuh: User mohtashim [651321]:  1276  kubectl get pod -n nitrox-production -o wide | grep "10.84"
Jul 15 12:46:48 bastion LinuxCommandsWazuh: message repeated 7 times: [ User mohtashim [651321]:  1276  kubectl get pod -n nitrox-production -o wide | grep "10.84"]
Jul 15 12:46:49 bastion LinuxCommandsWazuh: User mohtashim [651321]:  1277  clear
Jul 15 12:46:58 bastion LinuxCommandsWazuh: User mohtashim [650522]:  1275  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 12:46:59 bastion LinuxCommandsWazuh: User mohtashim [650522]:  1276  clear
Jul 15 12:47:10 bastion LinuxCommandsWazuh: User mohtashim [651321]:  1278  kubectl get pod -n nitrox-production -o wide | grep " 10.84.0.4"
Jul 15 12:47:22 bastion LinuxCommandsWazuh: User mohtashim [651321]:  1279  kubectl get pod -n nitrox-production -o wide | grep " 10.84.2.128"
Jul 15 12:49:44 bastion LinuxCommandsWazuh: User mohtashim [651321]:  1280  kubectl get pods
Jul 15 12:54:56 bastion LinuxCommandsWazuh: User ankur [651626]: 3  exit
Jul 15 12:55:02 bastion LinuxCommandsWazuh: User ankur [651714]: 3  exit
Jul 15 12:56:46 bastion LinuxCommandsWazuh: User ankur [651714]: 4  ls
Jul 15 13:00:50 bastion LinuxCommandsWazuh: User ankur [651714]: 5  byobu
Jul 15 13:20:27 bastion LinuxCommandsWazuh: User ankur [657635]: 6  exit
Jul 15 13:35:09 bastion LinuxCommandsWazuh: User ashish [672046]:   140  psql -h 10.94.16.3 -p 5432 -U postgres
Jul 15 13:36:21 bastion LinuxCommandsWazuh: User abhijeet [673936]:   535  kubectl get pod -n nitrox-production -o wide | grep "10.84"
Jul 15 13:36:41 bastion LinuxCommandsWazuh: User abhijeet [673936]:   536  ls
Jul 15 13:40:24 bastion LinuxCommandsWazuh: User ankur [657635]: 7  byobu
Jul 15 13:45:47 bastion LinuxCommandsWazuh: User ashish [672046]:   141  redis
Jul 15 13:51:59 bastion LinuxCommandsWazuh: User mohtashim [678623]:  1282  kubectl get pods
Jul 15 13:53:53 bastion LinuxCommandsWazuh: User rihan [678726]:  1126  byobu
Jul 15 13:54:10 bastion LinuxCommandsWazuh: User rihan [678726]:  1127  kubectl get pods |  grep cookie
Jul 15 13:55:10 bastion LinuxCommandsWazuh: User rihan [678726]:  1127  kubectl get pods |  grep cookie
Jul 15 14:01:32 bastion LinuxCommandsWazuh: User mohtashim [679660]:  1283  exit
Jul 15 14:01:34 bastion LinuxCommandsWazuh: User mohtashim [679660]:  1284  clear
Jul 15 14:01:46 bastion LinuxCommandsWazuh: User mohtashim [679660]:  1285  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 14:02:42 bastion LinuxCommandsWazuh: User ankur [679779]: 8  exit
Jul 15 14:02:45 bastion LinuxCommandsWazuh: User ankur [679903]: 8  exit
Jul 15 15:13:13 bastion LinuxCommandsWazuh: User ashish [750133]:   141  redis
Jul 15 16:48:38 bastion LinuxCommandsWazuh: User abhijeet [845682]:   535  kubectl get pod -n nitrox-production -o wide | grep "10.84"
Jul 15 16:48:41 bastion LinuxCommandsWazuh: User abhijeet [845682]:   536  cd K8s-tools/
Jul 15 16:48:42 bastion LinuxCommandsWazuh: User abhijeet [845682]:   537  s
Jul 15 16:51:42 bastion LinuxCommandsWazuh: User abhijeet [845682]:   538  bash kubeScrib.sh 
Jul 15 16:53:20 bastion LinuxCommandsWazuh: User abhijeet [845682]:   538  bash kubeScrib.sh 
Jul 15 16:54:54 bastion LinuxCommandsWazuh: User abhijeet [845682]:   538  bash kubeScrib.sh 
Jul 15 16:58:51 bastion LinuxCommandsWazuh: User abhijeet [845682]:   539  kubectl get daemonsets -l app.kubernetes.io/name=promtail -n loki
Jul 15 16:59:06 bastion LinuxCommandsWazuh: User abhijeet [845682]:   540  kubectl get pods -l app.kubernetes.io/name=promtail -n loki
Jul 15 16:59:29 bastion LinuxCommandsWazuh: User abhijeet [845682]:   541  POD_NAME=$(kubectl get pods -l app.kubernetes.io/name=promtail -n your-namespace -o jsonpath='{.items[0].metadata.name}')
Jul 15 16:59:46 bastion LinuxCommandsWazuh: User abhijeet [845682]:   542  POD_NAME=$(kubectl get pods -l app.kubernetes.io/name=promtail -n loki -o jsonpath='{.items[0].metadata.name}')
Jul 15 17:00:09 bastion LinuxCommandsWazuh: User abhijeet [845682]:   543  kubectl exec -it $POD_NAME -n loki -- du -sh /tmp/positions.yaml
Jul 15 17:02:19 bastion LinuxCommandsWazuh: User abhijeet [845682]:   544  kubectl exec -it $POD_NAME -n loki -- du -sh /run/promtail
Jul 15 17:02:29 bastion LinuxCommandsWazuh: User abhijeet [845682]:   545  printev
Jul 15 17:02:32 bastion LinuxCommandsWazuh: User abhijeet [845682]:   546  printenv
Jul 15 17:02:55 bastion LinuxCommandsWazuh: User abhijeet [845682]:   547  echo $POD_NAME
Jul 15 17:03:22 bastion LinuxCommandsWazuh: User abhijeet [845682]:   548  kubectl exec -it promtail-8ckxw -n loki -- du -sh /run/promtail
Jul 15 17:03:47 bastion LinuxCommandsWazuh: User abhijeet [845682]:   549  kubectl exec -it promtail-8ckxw -n loki -- du -sh /var/lib/docker/containers
Jul 15 17:03:56 bastion LinuxCommandsWazuh: User abhijeet [845682]:   550  kubectl exec -it promtail-8ckxw -n loki -- du -sh /var/log/pods
Jul 15 17:05:24 bastion LinuxCommandsWazuh: User abhijeet [845682]:   551  for pod in $(kubectl get pods -l app.kubernetes.io/name=promtail -n loki -o jsonpath='{.items[*].metadata.name}'); do   echo "--- Storage for pod: $pod ---";   kubectl exec -it $pod -n loki -- du -sh /var/log/pods; done
Jul 15 17:06:31 bastion LinuxCommandsWazuh: User mohtashim [864961]:  1286  exit
Jul 15 17:06:38 bastion LinuxCommandsWazuh: User abhijeet [865166]:   535  kubectl get pod -n nitrox-production -o wide | grep "10.84"
Jul 15 17:07:12 bastion LinuxCommandsWazuh: User mohtashim [865785]:  1286  exit
Jul 15 17:10:37 bastion LinuxCommandsWazuh: User abhijeet [845682]:   552  for pod in $(kubectl get pods -l app.kubernetes.io/name=prometheus-prometheus-node-exporter -n loki -o jsonpath='{.items[*].metadata.name}'); do   echo "--- Storage for pod: $pod ---";   kubectl exec -it $pod -n loki -- du -sh /var/log/pods; done
Jul 15 17:12:49 bastion LinuxCommandsWazuh: User abhijeet [845682]:   553  bash kubeScrib.sh 
Jul 15 17:13:23 bastion LinuxCommandsWazuh: User abhijeet [845682]:   553  bash kubeScrib.sh 
Jul 15 17:14:18 bastion LinuxCommandsWazuh: User abhijeet [845682]:   553  bash kubeScrib.sh 
Jul 15 17:15:17 bastion LinuxCommandsWazuh: User abhijeet [845682]:   553  bash kubeScrib.sh 
Jul 15 17:15:26 bastion LinuxCommandsWazuh: User mohtashim [874204]:  1286  exit
Jul 15 17:15:30 bastion LinuxCommandsWazuh: User mohtashim [874204]:  1287  kubectl get pods
Jul 15 17:16:11 bastion LinuxCommandsWazuh: User abhijeet [845682]:   553  bash kubeScrib.sh 
Jul 15 17:16:12 bastion LinuxCommandsWazuh: User mohtashim [874204]:  1287  kubectl get pods
Jul 15 17:16:20 bastion LinuxCommandsWazuh: User mohtashim [874204]:  1288  clear
Jul 15 17:16:21 bastion LinuxCommandsWazuh: User mohtashim [874204]:  1289  kubectl get pods
Jul 15 17:16:35 bastion LinuxCommandsWazuh: User abhijeet [845682]:   554  k get pods -n nitrox-production
Jul 15 17:16:41 bastion LinuxCommandsWazuh: User abhijeet [845682]:   554  k get pods -n nitrox-production
Jul 15 17:16:42 bastion LinuxCommandsWazuh: User abhijeet [845682]:   554  k get pods -n nitrox-production
Jul 15 17:16:49 bastion LinuxCommandsWazuh: User abhijeet [845682]:   555  k get pods -n nitrox-production | grep "celery"
Jul 15 17:16:54 bastion LinuxCommandsWazuh: message repeated 6 times: [ User abhijeet [845682]:   555  k get pods -n nitrox-production | grep "celery"]
Jul 15 17:18:01 bastion LinuxCommandsWazuh: User abhijeet [845682]:   556  ls
Jul 15 17:18:13 bastion LinuxCommandsWazuh: User abhijeet [845682]:   557  chmod +x kubeScrib.sh 
Jul 15 17:18:16 bastion LinuxCommandsWazuh: User abhijeet [845682]:   558  ./kubeScrib.sh 
Jul 15 17:18:18 bastion LinuxCommandsWazuh: User abhijeet [845682]:   558  ./kubeScrib.sh 
Jul 15 17:18:19 bastion LinuxCommandsWazuh: User abhijeet [845682]:   559  ls
Jul 15 17:18:57 bastion LinuxCommandsWazuh: User abhijeet [845682]:   560  ./kubeScrib.sh 
Jul 15 17:20:36 bastion LinuxCommandsWazuh: User abhijeet [845682]:   561  kubectl exec -it loki-compactor-0 -n loki -- du -sh /var/loki
Jul 15 17:20:44 bastion LinuxCommandsWazuh: User abhijeet [845682]:   562  kubectl exec -it loki-compactor-0 -n loki -- du -sh /
Jul 15 17:21:07 bastion LinuxCommandsWazuh: User abhijeet [845682]:   563  kubectl exec -it loki-distributor-787d5bd67c-w5mzc -n loki -- du -sh /
Jul 15 17:21:26 bastion LinuxCommandsWazuh: User abhijeet [845682]:   564  kubectl exec -it loki-gateway-5855788648-6sh79 -n loki -- du -sh /
Jul 15 17:21:42 bastion LinuxCommandsWazuh: User abhijeet [845682]:   565  kubectl exec -it loki-ingester-0 -n loki -- du -sh /
Jul 15 17:22:09 bastion LinuxCommandsWazuh: User abhijeet [845682]:   566  kubectl describe pods loki-ingester-0 -n loki 
Jul 15 17:22:27 bastion LinuxCommandsWazuh: User abhijeet [845682]:   567  kubectl exec -it loki-ingester-0 -n loki -- du -sh /var
Jul 15 17:22:32 bastion LinuxCommandsWazuh: User abhijeet [845682]:   568  kubectl exec -it loki-ingester-0 -n loki -- du -sh /var/loki
Jul 15 17:24:08 bastion LinuxCommandsWazuh: User abhijeet [845682]:   569  kubectl exec -it loki-ingester-1 -n loki -- du -sh /
Jul 15 17:25:06 bastion LinuxCommandsWazuh: User abhijeet [845682]:   570  kubectl exec -it loki-ingester-2 -n loki -- du -sh /var/loki
Jul 15 17:26:08 bastion LinuxCommandsWazuh: User abhijeet [845682]:   571  kubectl describe loki-querier-0 -n loki
Jul 15 17:26:38 bastion LinuxCommandsWazuh: User abhijeet [845682]:   572  kubectl describe pods loki-querier-0 -n loki
Jul 15 17:26:53 bastion LinuxCommandsWazuh: User abhijeet [845682]:   573  kubectl exec -it loki-querier-0 -n loki -- du -sh /var/loki
Jul 15 17:27:11 bastion LinuxCommandsWazuh: User abhijeet [845682]:   574  kubectl exec -it loki-querier-1 -n loki -- du -sh /var/loki
Jul 15 17:27:52 bastion LinuxCommandsWazuh: User abhijeet [845682]:   575  kubectl descibe pods loki-gateway-5855788648-6sh79 -n loki
Jul 15 17:27:58 bastion LinuxCommandsWazuh: User abhijeet [845682]:   576  kubectl describe pods loki-gateway-5855788648-6sh79 -n loki
Jul 15 17:28:34 bastion LinuxCommandsWazuh: User abhijeet [845682]:   577  kubectl exec -it  loki-gateway-5855788648-6sh79 -n loki -- du -sh /tmp
Jul 15 17:28:38 bastion LinuxCommandsWazuh: User abhijeet [845682]:   578  kubectl exec -it  loki-gateway-5855788648-6sh79 -n loki -- du -sh /
Jul 15 17:29:49 bastion LinuxCommandsWazuh: User abhijeet [845682]:   579  kubectl exec -it loki-querier-0 -n loki -- du -sh /
Jul 15 17:29:53 bastion LinuxCommandsWazuh: User abhijeet [845682]:   580  kubectl exec -it loki-querier-0 -n loki -- du -sh /var
Jul 15 17:32:04 bastion LinuxCommandsWazuh: User mohtashim [864961]:  1287  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 17:36:22 bastion LinuxCommandsWazuh: User abhijeet [845682]:   581  ./kubeScrib.sh 
Jul 15 17:51:40 bastion LinuxCommandsWazuh: User mohtashim [912073]:  1288  exit
Jul 15 17:51:47 bastion LinuxCommandsWazuh: User mohtashim [912073]:  1289  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 17:58:35 bastion LinuxCommandsWazuh: User ubuntu [919271]:  1707  psql
Jul 15 17:58:36 bastion LinuxCommandsWazuh: User ubuntu [919271]:  1708  cd ..
Jul 15 17:58:36 bastion LinuxCommandsWazuh: User ubuntu [919271]:  1709  ls
Jul 15 17:58:38 bastion LinuxCommandsWazuh: User ubuntu [919271]:  1710  cat s
Jul 15 17:58:40 bastion LinuxCommandsWazuh: User ubuntu [919271]:  1711  cat service.json 
Jul 15 18:01:39 bastion LinuxCommandsWazuh: User mohtashim [922616]:  1290  exit
Jul 15 18:01:53 bastion LinuxCommandsWazuh: User mohtashim [922616]:  1291  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 18:03:17 bastion LinuxCommandsWazuh: User mohtashim [924241]:  1292  exit
Jul 15 18:03:23 bastion LinuxCommandsWazuh: User mohtashim [924241]:  1293  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 18:15:08 bastion LinuxCommandsWazuh: User mohtashim [924241]:  1293  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 18:39:26 bastion LinuxCommandsWazuh: User mohtashim [960767]:  1294  exit
Jul 15 18:39:28 bastion LinuxCommandsWazuh: User mohtashim [960890]:  1294  exit
Jul 15 18:39:47 bastion LinuxCommandsWazuh: User mohtashim [960890]:  1295  psql -h 10.94.16.3 -U postgres -d datapulse_v1
Jul 15 19:14:59 bastion LinuxCommandsWazuh: User mohtashim [996051]:  1296  exit
Jul 15 19:15:04 bastion LinuxCommandsWazuh: User mohtashim [996051]:  1297  psql -h 10.94.16.3 -U postgres -d datapulse_v1