Sep 3 00:01:24 bastion LinuxCommandsWazuh: User abhijeet [285834]: 1998 sudo su ayush Sep 3 00:01:26 bastion LinuxCommandsWazuh: User ayush [285848]: 415 cool-server Sep 3 00:13:33 bastion LinuxCommandsWazuh: User ayush [285848]: 415 cool-server Sep 3 00:32:06 bastion LinuxCommandsWazuh: User abhijeet [288489]: 1998 sudo su ayush Sep 3 00:32:08 bastion LinuxCommandsWazuh: User ayush [288503]: 415 cool-server Sep 3 00:42:47 bastion LinuxCommandsWazuh: User abhijeet [289443]: 1998 sudo su ayush Sep 3 00:50:08 bastion LinuxCommandsWazuh: User abhijeet [290271]: 1998 sudo su ayush Sep 3 00:50:09 bastion LinuxCommandsWazuh: User ayush [290285]: 415 cool-server Sep 3 00:51:45 bastion LinuxCommandsWazuh: User ayush [288503]: 415 cool-server Sep 3 01:01:11 bastion LinuxCommandsWazuh: User ayush [290285]: 415 cool-server Sep 3 11:42:25 bastion LinuxCommandsWazuh: User ankur [348803]: 1878 exit Sep 3 11:42:27 bastion LinuxCommandsWazuh: User ankur [348803]: 1879 k get pods -o wide | grep datapulse Sep 3 11:42:33 bastion LinuxCommandsWazuh: User ankur [176760]: 1881 k get hpa Sep 3 12:05:13 bastion LinuxCommandsWazuh: User abhijeet [353477]: 1998 internal-server Sep 3 12:05:16 bastion LinuxCommandsWazuh: User abhijeet [353477]: 1999 lsc Sep 3 12:19:53 bastion LinuxCommandsWazuh: User abhijeet [355029]: 1998 exit Sep 3 12:19:54 bastion LinuxCommandsWazuh: User abhijeet [355029]: 1999 ls Sep 3 12:20:09 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2000 kubectl get pods Sep 3 12:20:33 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2001 kubectl get pods -n loki Sep 3 12:21:37 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2002 kubectl get cm -n loki Sep 3 12:21:39 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2002 kubectl get cm -n loki Sep 3 12:21:53 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2003 kubectl get cm prometheus-server -n loki Sep 3 12:22:00 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2004 kubectl describe cm prometheus-server -n loki Sep 3 12:33:09 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2005 ls Sep 3 12:33:45 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2006 #$(date +%Y%m%d_%H%M%S) Sep 3 12:34:05 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2007 kubectl get cm -n loki Sep 3 12:35:19 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2008 kubectl get configmap prometheus-server -n loki -o yaml > prometheus-server-cm-backup-$(date +%Y%m%d_%H%M%S).yaml Sep 3 12:35:26 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2009 cat prometheus-server-cm-backup-20250903_123519.yaml Sep 3 12:38:12 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2010 kubectl edit cm prometheus-server -n loki Sep 3 12:38:23 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2011 kubectl describe cm prometheus-server -n loki Sep 3 12:39:12 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2012 kubectl get deployment Sep 3 12:39:20 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2013 kubectl get deployment -n loki Sep 3 12:39:43 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2014 kubectl rollout restart prometheus-server -n loki Sep 3 12:39:51 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2015 kubectl rollout restart deployment prometheus-server -n loki Sep 3 12:41:13 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2016 kubectl rollout status deployment prometheus-server -n loki Sep 3 12:41:22 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2017 kubectl get deployment -n loki Sep 3 12:41:28 bastion LinuxCommandsWazuh: User abhijeet [355029]: 2018 kubectl get pods -n loki Sep 3 12:48:07 bastion LinuxCommandsWazuh: User abhijeet [357635]: 1998 exit Sep 3 12:48:08 bastion LinuxCommandsWazuh: User abhijeet [357635]: 1999 l Sep 3 12:48:15 bastion LinuxCommandsWazuh: User abhijeet [357635]: 2000 kubectl get cm -n loki Sep 3 12:48:26 bastion LinuxCommandsWazuh: User abhijeet [357635]: 2001 kubectl get pods -n loki Sep 3 12:49:11 bastion LinuxCommandsWazuh: User abhijeet [357635]: 2002 kubectl describe cm prometheus-alertmanager -n loki Sep 3 12:50:23 bastion LinuxCommandsWazuh: User abhijeet [357635]: 2003 exitr Sep 3 12:57:54 bastion LinuxCommandsWazuh: User ankur [358587]: 1880 byobu Sep 3 12:58:03 bastion LinuxCommandsWazuh: User ankur [176760]: 1881 k get hpa Sep 3 12:59:24 bastion LinuxCommandsWazuh: User ankur [176760]: 1881 k get hpa Sep 3 13:03:30 bastion LinuxCommandsWazuh: User ankur [176760]: 1881 k get hpa Sep 3 13:06:59 bastion LinuxCommandsWazuh: User abhijeet [367838]: 1998 exit Sep 3 13:07:06 bastion LinuxCommandsWazuh: User ayush [367967]: 415 cool-server Sep 3 13:08:36 bastion LinuxCommandsWazuh: User ankur [176760]: 1881 k get hpa Sep 3 13:09:39 bastion LinuxCommandsWazuh: User ankur [176760]: 1881 k get hpa Sep 3 13:10:58 bastion LinuxCommandsWazuh: User ankur [176760]: 1881 k get hpa Sep 3 13:11:10 bastion LinuxCommandsWazuh: User ankur [176760]: 1881 k get hpa Sep 3 13:11:42 bastion LinuxCommandsWazuh: User mohtashim [372439]: 800 stern cookie-cutter | grep "DEBUG::SSO" Sep 3 13:13:57 bastion LinuxCommandsWazuh: User ayush [367967]: 415 cool-server Sep 3 13:13:59 bastion LinuxCommandsWazuh: User abhijeet [367838]: 1999 sudo su ayush Sep 3 13:14:46 bastion LinuxCommandsWazuh: User ankur [176760]: 1881 k get hpa Sep 3 13:21:02 bastion LinuxCommandsWazuh: User abhijeet [381884]: 1998 exit Sep 3 13:21:10 bastion LinuxCommandsWazuh: User abhijeet [381884]: 1999 kubectl describe cm prometheus-alertmanager -n loki Sep 3 13:29:16 bastion LinuxCommandsWazuh: User ankur [176760]: 1881 k get hpa Sep 3 13:29:19 bastion LinuxCommandsWazuh: User ankur [358587]: 1880 byobu Sep 3 13:48:22 bastion LinuxCommandsWazuh: User ayush [392208]: 416 exit Sep 3 13:56:39 bastion LinuxCommandsWazuh: User ankur [393087]: 1881 exit Sep 3 13:56:47 bastion LinuxCommandsWazuh: User ankur [2755510]: 1610 k exec -it nitrox-dj-5bddf989cb-6ckq4 bash Sep 3 13:56:50 bastion LinuxCommandsWazuh: User ankur [2755510]: 1610 k exec -it nitrox-dj-5bddf989cb-6ckq4 bash Sep 3 13:56:55 bastion LinuxCommandsWazuh: User ankur [2755510]: 1611 k get pods | grep nitrox-dj Sep 3 13:56:56 bastion LinuxCommandsWazuh: User ankur [2755510]: 1611 k get pods | grep nitrox-dj Sep 3 13:58:09 bastion LinuxCommandsWazuh: User ankur [2755510]: 1611 k get pods | grep nitrox-dj Sep 3 13:58:52 bastion LinuxCommandsWazuh: User ankur [176760]: 1881 k get hpa Sep 3 13:59:12 bastion LinuxCommandsWazuh: User ankur [176760]: 1881 k get hpa Sep 3 13:59:45 bastion LinuxCommandsWazuh: User ankur [176760]: 1882 k get hpa | grep -i "vortex" | grep -i "cookie-cutter" Sep 3 13:59:55 bastion LinuxCommandsWazuh: User ankur [176760]: 1883 k get hpa | grep -i "vortex" Sep 3 14:00:01 bastion LinuxCommandsWazuh: User ankur [176760]: 1884 k get hpa | grep "vortex" Sep 3 14:00:06 bastion LinuxCommandsWazuh: User ankur [176760]: 1885 k get hpa | grep "vortex" | grep cookie-cutter Sep 3 14:00:12 bastion LinuxCommandsWazuh: User ankur [176760]: 1886 k get hpa | grep "vortex" | grep "cookie-cutter Sep 3 14:00:14 bastion LinuxCommandsWazuh: User ankur [176760]: 1887 k get hpa | grep "vortex" | grep "cookie-cutter" Sep 3 14:00:18 bastion LinuxCommandsWazuh: User ankur [176760]: 1888 k get hpa | grep "vortex" Sep 3 14:00:21 bastion LinuxCommandsWazuh: User ankur [176760]: 1889 k get hpa | grep "cookie-cutter" Sep 3 14:11:46 bastion LinuxCommandsWazuh: User ankur [2755510]: 1612 k exec -it nitrox-dj-5bddf989cb-6ckq4 bash Sep 3 14:11:49 bastion LinuxCommandsWazuh: User ankur [2755510]: 1613 k get pods | grep nitrox-dj Sep 3 14:17:20 bastion LinuxCommandsWazuh: User ankur [2755510]: 1613 k get pods | grep nitrox-dj Sep 3 14:21:38 bastion LinuxCommandsWazuh: User ankur [176760]: 1889 k get hpa | grep "cookie-cutter" Sep 3 14:21:42 bastion LinuxCommandsWazuh: message repeated 4 times: [ User ankur [176760]: 1889 k get hpa | grep "cookie-cutter"] Sep 3 14:21:45 bastion LinuxCommandsWazuh: User ankur [176760]: 1890 k get hpa | grep "vortex" Sep 3 14:21:49 bastion LinuxCommandsWazuh: message repeated 3 times: [ User ankur [176760]: 1890 k get hpa | grep "vortex"] Sep 3 14:21:51 bastion LinuxCommandsWazuh: User ankur [176760]: 1891 k get hpa | grep "cookie-cutter" Sep 3 14:21:53 bastion LinuxCommandsWazuh: User ankur [176760]: 1891 k get hpa | grep "cookie-cutter" Sep 3 14:21:57 bastion LinuxCommandsWazuh: User ankur [176760]: 1892 k get hpa Sep 3 14:22:04 bastion LinuxCommandsWazuh: User ankur [176760]: 1892 k get hpa Sep 3 14:23:01 bastion LinuxCommandsWazuh: User ankur [176760]: 1892 k get hpa Sep 3 14:23:08 bastion LinuxCommandsWazuh: message repeated 3 times: [ User ankur [176760]: 1892 k get hpa] Sep 3 14:23:22 bastion LinuxCommandsWazuh: User ankur [176760]: 1892 k get hpa Sep 3 14:23:36 bastion LinuxCommandsWazuh: User ankur [176760]: 1893 stern vortex Sep 3 14:24:28 bastion LinuxCommandsWazuh: User ankur [176760]: 1894 stern vortex | grep -i "DRAMATIQ_TASK:" | grep -i "URLBird:-" Sep 3 14:24:35 bastion LinuxCommandsWazuh: User ankur [176760]: 1895 stern vortex | grep -i "DRAMATIQ_TASK:" Sep 3 14:24:51 bastion LinuxCommandsWazuh: message repeated 5 times: [ User ankur [176760]: 1895 stern vortex | grep -i "DRAMATIQ_TASK:"] Sep 3 14:25:00 bastion LinuxCommandsWazuh: User ankur [176760]: 1896 stern vortex | grep -i "URLBird:-" Sep 3 14:25:07 bastion LinuxCommandsWazuh: User ankur [176760]: 1896 stern vortex | grep -i "URLBird:-" Sep 3 14:25:12 bastion LinuxCommandsWazuh: User ankur [176760]: 1897 k get hpa Sep 3 14:26:41 bastion LinuxCommandsWazuh: User ankur [176760]: 1897 k get hpa Sep 3 14:27:16 bastion LinuxCommandsWazuh: User ankur [176760]: 1897 k get hpa Sep 3 14:27:24 bastion LinuxCommandsWazuh: message repeated 2 times: [ User ankur [176760]: 1897 k get hpa] Sep 3 14:28:03 bastion LinuxCommandsWazuh: User ankur [176760]: 1898 k logs -f vortex-dramatiq-exports Sep 3 14:28:15 bastion LinuxCommandsWazuh: User ankur [176760]: 1899 stern vortex-dramatiq-exports Sep 3 14:31:52 bastion LinuxCommandsWazuh: User ankur [176760]: 1899 stern vortex-dramatiq-exports Sep 3 14:31:54 bastion LinuxCommandsWazuh: User ankur [176760]: 1900 k get hpa Sep 3 14:32:02 bastion LinuxCommandsWazuh: message repeated 3 times: [ User ankur [176760]: 1900 k get hpa] Sep 3 14:32:06 bastion LinuxCommandsWazuh: User ankur [176760]: 1900 k get hpa Sep 3 14:32:11 bastion LinuxCommandsWazuh: User abhijeet [381884]: 2000 kubectl get hpa Sep 3 14:32:12 bastion LinuxCommandsWazuh: User ankur [176760]: 1900 k get hpa Sep 3 14:32:18 bastion LinuxCommandsWazuh: User abhijeet [381884]: 2001 kubectl get hpa -n nitrox-production Sep 3 14:32:39 bastion LinuxCommandsWazuh: User abhijeet [381884]: 2002 ls Sep 3 14:33:11 bastion LinuxCommandsWazuh: User ankur [176760]: 1900 k get hpa Sep 3 14:33:13 bastion LinuxCommandsWazuh: message repeated 2 times: [ User ankur [176760]: 1900 k get hpa] Sep 3 14:33:23 bastion LinuxCommandsWazuh: User abhijeet [431263]: 1998 exit Sep 3 14:33:26 bastion LinuxCommandsWazuh: User abhijeet [431263]: 1999 kubectl get hpa -n nitrox-production Sep 3 14:33:46 bastion LinuxCommandsWazuh: User abhijeet [431263]: 1999 kubectl get hpa -n nitrox-production Sep 3 14:34:12 bastion LinuxCommandsWazuh: message repeated 12 times: [ User abhijeet [431263]: 1999 kubectl get hpa -n nitrox-production] Sep 3 14:34:13 bastion LinuxCommandsWazuh: User abhijeet [431263]: 1999 kubectl get hpa -n nitrox-production Sep 3 14:34:36 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2000 kubectl top deployment vortex-dramatiq -n nitrox-production Sep 3 14:34:47 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2001 kubectl top --help Sep 3 14:34:58 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2002 kubectl top pods | grep vorte Sep 3 14:35:05 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2003 kubectl get hpa -n nitrox-production Sep 3 14:35:12 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2003 kubectl get hpa -n nitrox-production Sep 3 14:35:22 bastion LinuxCommandsWazuh: message repeated 3 times: [ User abhijeet [431263]: 2003 kubectl get hpa -n nitrox-production] Sep 3 14:35:24 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2004 ls Sep 3 14:36:40 bastion LinuxCommandsWazuh: User ankur [176760]: 1900 k get hpa Sep 3 14:36:42 bastion LinuxCommandsWazuh: User ankur [176760]: 1900 k get hpa Sep 3 14:36:45 bastion LinuxCommandsWazuh: message repeated 3 times: [ User ankur [176760]: 1900 k get hpa] Sep 3 14:37:41 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2005 kubectl get hpa -n nitrox-production Sep 3 14:37:45 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2005 kubectl get hpa -n nitrox-production Sep 3 14:41:21 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2005 kubectl get hpa -n nitrox-production Sep 3 14:41:33 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2005 kubectl get hpa -n nitrox-production Sep 3 14:41:55 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2005 kubectl get hpa -n nitrox-production Sep 3 14:42:42 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2006 kubectl get --help Sep 3 14:42:45 bastion LinuxCommandsWazuh: User ankur [176760]: 1900 k get hpa Sep 3 14:42:46 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2007 kubectl get --help | grep sec Sep 3 14:42:47 bastion LinuxCommandsWazuh: User ankur [176760]: 1900 k get hpa Sep 3 14:42:48 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2008 kubectl get --help | grep se Sep 3 14:42:48 bastion LinuxCommandsWazuh: User ankur [176760]: 1900 k get hpa Sep 3 14:42:50 bastion LinuxCommandsWazuh: User ankur [176760]: 1900 k get hpa Sep 3 14:42:57 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2009 kubectl get --help | grep sec Sep 3 14:43:01 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2010 kubectl get --help Sep 3 14:43:29 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2011 ls Sep 3 14:43:43 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2012 kubectl get hpa -n nitrox-production Sep 3 14:44:14 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2013 ls Sep 3 14:52:39 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2014 curl -X POST --data-urlencode "payload={\"channel\": \"#my-channel-here\", \"username\": \"webhookbot\", \"text\": \"This is posted to #my-channel-here and comes from a bot named webhookbot.\", \"icon_emoji\": \":ghost:\"}" https://hooks.slack.com/services/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 Sep 3 14:52:43 bastion LinuxCommandsWazuh: message repeated 2 times: [ User abhijeet [431263]: 2014 curl -X POST --data-urlencode "payload={\"channel\": \"#my-channel-here\", \"username\": \"webhookbot\", \"text\": \"This is posted to #my-channel-here and comes from a bot named webhookbot.\", \"icon_emoji\": \":ghost:\"}" https://hooks.slack.com/services/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] Sep 3 14:53:13 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2015 curl -X POST --data-urlencode "payload={\"channel\": \"#my-channel-here\"devops-alters \"webhookbot\", \"text\": \"This is posted to #my-channel-here and comes from a bot named webhookbot.\", \"icon_emoji\": \":ghost:\"}" https://hooks.slack.com/services/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 Sep 3 14:53:48 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2016 curl -X POST --data-urlencode "payload={\"channel\": \"#my-channel-here\", \"username\": \"webhookbot\", \"text\": \"This is posted to #my-channel-here and comes from a bot named webhookbot.\", \"icon_emoji\": \":ghost:\"}" https://hooks.slack.com/services/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 Sep 3 14:54:08 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2017 curl -X POST --data-urlencode "payload={\"channel\": \"#my-channel-here\"devops-alters \"webhookbot\", \"text\": \"This is posted to #my-channel-here and comes from a bot named webhookbot.\", \"icon_emoji\": \":ghost:\"}" https://hooks.slack.com/services/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 Sep 3 14:57:04 bastion LinuxCommandsWazuh: User ashish [456018]: 412 byobu Sep 3 14:57:06 bastion LinuxCommandsWazuh: User ashish [456018]: 413 ls Sep 3 14:57:22 bastion LinuxCommandsWazuh: User ashish [456018]: 414 docker ps Sep 3 14:57:28 bastion LinuxCommandsWazuh: User ashish [3925123]: 413 mongo Sep 3 14:57:31 bastion LinuxCommandsWazuh: User ashish [3925123]: 414 docker ps Sep 3 14:57:33 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2018 curl -X POST -H "Content-Type: application/json" -d '{"message" :}' YOUR_WEBHOOK_URL Sep 3 14:57:39 bastion LinuxCommandsWazuh: User ashish [3925123]: 415 kubectl get pods Sep 3 14:57:51 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2019 curl -X POST -H "Content-Type: application/json" -d '{"message":"testing the webhook"}' https://hooks.slack.com/services/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 Sep 3 14:58:16 bastion LinuxCommandsWazuh: User ashish [3925123]: 415 kubectl get pods Sep 3 14:58:16 bastion LinuxCommandsWazuh: User ashish [456018]: 415 byobu Sep 3 14:58:20 bastion LinuxCommandsWazuh: User mohtashim [458401]: 801 psql Sep 3 14:58:21 bastion LinuxCommandsWazuh: User mohtashim [458401]: 802 clear Sep 3 15:00:01 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2020 vim test.json Sep 3 15:00:05 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2020 vim test.json Sep 3 15:00:08 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2021 cat test. Sep 3 15:00:10 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2022 cat test.json Sep 3 15:00:20 bastion LinuxCommandsWazuh: User mohtashim [458401]: 803 mongo pixel_v1 Sep 3 15:00:35 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2023 curl -d @test.json -H 'Content-Type: application/json' https://hooks.slack.com/services/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 Sep 3 15:03:36 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2024 curl -X POST --data-urlencode 'payload={"text":"Hello!"}' https://hooks.slack.com/services/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 Sep 3 15:05:25 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2024 curl -X POST --data-urlencode 'payload={"text":"Hello!"}' https://hooks.slack.com/services/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 Sep 3 15:05:37 bastion LinuxCommandsWazuh: User ashish [465508]: 419 byobu Sep 3 15:05:44 bastion LinuxCommandsWazuh: message repeated 3 times: [ User ashish [465508]: 419 byobu] Sep 3 15:05:54 bastion LinuxCommandsWazuh: User ashish [465508]: 420 kubectl get pods Sep 3 15:06:04 bastion LinuxCommandsWazuh: User ashish [465508]: 420 kubectl get pods Sep 3 15:06:05 bastion LinuxCommandsWazuh: message repeated 3 times: [ User ashish [465508]: 420 kubectl get pods] Sep 3 15:08:24 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2025 kubectl get all -n loki Sep 3 15:10:39 bastion LinuxCommandsWazuh: User rihan [471048]: 1314 byobu Sep 3 15:16:37 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2026 nslookup grafana.getnitro.co.in Sep 3 15:16:59 bastion LinuxCommandsWazuh: User abhijeet [431263]: 2027 ssh ubuntu@34.36.80.16 Sep 3 15:18:31 bastion LinuxCommandsWazuh: User abhijeet [478975]: 1998 exit Sep 3 15:19:09 bastion LinuxCommandsWazuh: User abhijeet [478975]: 1999 internal-server Sep 3 15:19:18 bastion LinuxCommandsWazuh: User abhijeet [478975]: 2000 kubectl get service -n loki Sep 3 15:19:42 bastion LinuxCommandsWazuh: User abhijeet [478975]: 2001 ls Sep 3 15:19:54 bastion LinuxCommandsWazuh: User abhijeet [478975]: 2002 kubectl get ingress -n loki Sep 3 15:20:11 bastion LinuxCommandsWazuh: User abhijeet [478975]: 2003 kubectl describe ingress -n loki Sep 3 15:23:02 bastion LinuxCommandsWazuh: User abhijeet [478975]: 2004 kubectl get service -n loki Sep 3 15:24:13 bastion LinuxCommandsWazuh: User abhijeet [478975]: 2005 kubectl port-forward service prometheus-alertmanager -n loki :9093 Sep 3 15:32:28 bastion LinuxCommandsWazuh: User rihan [471048]: 1315 mongo Sep 3 15:42:32 bastion LinuxCommandsWazuh: User ashish [465508]: 420 kubectl get pods Sep 3 15:42:33 bastion LinuxCommandsWazuh: message repeated 4 times: [ User ashish [465508]: 420 kubectl get pods] Sep 3 15:42:41 bastion LinuxCommandsWazuh: User ashish [465508]: 420 kubectl get pods Sep 3 15:42:42 bastion LinuxCommandsWazuh: message repeated 2 times: [ User ashish [465508]: 420 kubectl get pods] Sep 3 15:43:08 bastion LinuxCommandsWazuh: User ankur [176760]: 1900 k get hpa Sep 3 15:43:09 bastion LinuxCommandsWazuh: User ankur [176760]: 1900 k get hpa Sep 3 15:43:23 bastion LinuxCommandsWazuh: User ankur [176760]: 1901 stern vortex Sep 3 15:45:45 bastion LinuxCommandsWazuh: User abhijeet [505850]: 1998 exit Sep 3 15:45:55 bastion LinuxCommandsWazuh: User ashish [506678]: 419 byobu Sep 3 15:45:57 bastion LinuxCommandsWazuh: User ayush [506809]: 416 exit Sep 3 15:47:53 bastion LinuxCommandsWazuh: User ashish [506678]: 420 make cookie-bash Sep 3 16:11:40 bastion LinuxCommandsWazuh: User ayush [506809]: 417 cool-server Sep 3 16:11:42 bastion LinuxCommandsWazuh: User abhijeet [505850]: 1999 sudo su ayush Sep 3 16:11:45 bastion LinuxCommandsWazuh: User abhijeet [505850]: 2000 ks Sep 3 16:11:57 bastion LinuxCommandsWazuh: User abhijeet [505850]: 2001 kubectl get pod -n loki Sep 3 16:12:35 bastion LinuxCommandsWazuh: User abhijeet [505850]: 2002 kubectl logs grafana-769c7b685f-tzkrt -n loki --tail 100 -f Sep 3 16:13:14 bastion LinuxCommandsWazuh: User abhijeet [505850]: 2002 kubectl logs grafana-769c7b685f-tzkrt -n loki --tail 100 -f Sep 3 16:13:47 bastion LinuxCommandsWazuh: User abhijeet [505850]: 2002 kubectl logs grafana-769c7b685f-tzkrt -n loki --tail 100 -f Sep 3 16:24:38 bastion LinuxCommandsWazuh: User abhijeet [505850]: 2002 kubectl logs grafana-769c7b685f-tzkrt -n loki --tail 100 -f Sep 3 16:26:56 bastion LinuxCommandsWazuh: User abhijeet [505850]: 2002 kubectl logs grafana-769c7b685f-tzkrt -n loki --tail 100 -f Sep 3 16:38:17 bastion LinuxCommandsWazuh: User ubuntu [608448]: 1880 exit Sep 3 16:38:22 bastion LinuxCommandsWazuh: User anshika [608613]: 158 kubectl get pods Sep 3 16:38:22 bastion LinuxCommandsWazuh: User anshika [608613]: 159 cd Sep 3 16:38:23 bastion LinuxCommandsWazuh: User anshika [608613]: 160 ls Sep 3 16:38:29 bastion LinuxCommandsWazuh: User anshika [608613]: 161 cd .ssh/\ Sep 3 16:38:30 bastion LinuxCommandsWazuh: User anshika [608613]: 162 cd .ssh Sep 3 16:38:34 bastion LinuxCommandsWazuh: User anshika [608613]: 163 sudo vi authorized_keys \ Sep 3 16:38:37 bastion LinuxCommandsWazuh: User anshika [608613]: 164 sudo vi authorized_keys Sep 3 16:38:54 bastion LinuxCommandsWazuh: User anshika [608613]: 165 vi authorized_keys Sep 3 16:38:57 bastion LinuxCommandsWazuh: User ubuntu [608448]: 1881 sudo su anshika Sep 3 16:47:37 bastion LinuxCommandsWazuh: User abhijeet [505850]: 2003 ls Sep 3 16:54:09 bastion LinuxCommandsWazuh: User ankur [176760]: 1901 stern vortex Sep 3 16:54:10 bastion LinuxCommandsWazuh: message repeated 5 times: [ User ankur [176760]: 1901 stern vortex] Sep 3 16:54:11 bastion LinuxCommandsWazuh: User ankur [393087]: 1882 byobu Sep 3 16:54:17 bastion LinuxCommandsWazuh: User ankur [176760]: 1902 k get hpa Sep 3 16:54:28 bastion LinuxCommandsWazuh: User ankur [393087]: 1882 byobu Sep 3 16:56:29 bastion LinuxCommandsWazuh: User rihan [642122]: 1315 mongo Sep 3 16:58:05 bastion LinuxCommandsWazuh: User abhijeet [505850]: 2004 internal-server Sep 3 17:01:00 bastion LinuxCommandsWazuh: User rihan [642122]: 1316 byobu Sep 3 17:02:08 bastion LinuxCommandsWazuh: User rihan [652004]: 1316 byobu Sep 3 17:03:04 bastion LinuxCommandsWazuh: User ankur [653863]: 1883 exit Sep 3 17:03:08 bastion LinuxCommandsWazuh: User ankur [176760]: 1902 k get hpa Sep 3 17:03:10 bastion LinuxCommandsWazuh: User ankur [176760]: 1902 k get hpa Sep 3 17:53:01 bastion LinuxCommandsWazuh: User rihan [652004]: 1316 byobu Sep 3 17:55:26 bastion LinuxCommandsWazuh: User ashish [506678]: 420 make cookie-bash Sep 3 18:26:24 bastion LinuxCommandsWazuh: User ashish [788907]: 421 byobu Sep 3 18:34:05 bastion LinuxCommandsWazuh: User ankur [176760]: 1902 k get hpa Sep 3 18:36:27 bastion LinuxCommandsWazuh: User ankur [176760]: 1902 k get hpa Sep 3 18:38:38 bastion LinuxCommandsWazuh: User ashish [506678]: 421 mongo Sep 3 18:39:03 bastion LinuxCommandsWazuh: User ankur [176760]: 1902 k get hpa Sep 3 19:13:08 bastion LinuxCommandsWazuh: User ayush [879075]: 418 exit Sep 3 19:25:10 bastion LinuxCommandsWazuh: User ashish [506678]: 421 mongo Sep 3 19:25:10 bastion LinuxCommandsWazuh: User ashish [788907]: 421 byobu