darnellkeith/PEASS-ng
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

test winpeas flow

Browse Source
This commit is contained in:
Carlos Polop 2021-07-13 12:01:17 +02:00
commit 059460b72a
36 changed files with 769 additions and 431 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

36
.github/workflows/CI-linpeas_dev.yml → .github/workflows/CI-linpeas_dev_test.yml vendored
View File

@ -1,27 +1,17 @@
# This is a basic workflow to help you get started with Actions
name: CI-linpeas_dev_test
name: CI-linpeas_dev
# Controls when the action will run.
on:
# Triggers the workflow on push or pull request events but only for the master branch
push:
branches:
branches:
- linpeas_dev
# Allows you to run this workflow manually from the Actions tab
workflow_dispatch:
# A workflow run is made up of one or more jobs that can run sequentially or in parallel
jobs:
# This workflow contains a single job called "build"
build:
# The type of runner that the job will run on
Build_and_test_linpeas_dev:
runs-on: ubuntu-latest
# Steps represent a sequence of tasks that will be executed as part of the job
steps:
# Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
- uses: actions/checkout@v2
- name: Build linpeas
@ -30,9 +20,8 @@ jobs:
cd linPEAS
python3 -m builder.linpeas_builder
# Runs a single command using the runners shell
- name: Run linpeas
run: linPEAS/linpeas.sh -h
run: linPEAS/linpeas.sh
- name: Create local changes
run: git add linPEAS/linpeas.sh
@ -53,5 +42,20 @@ jobs:
- name: pull-request
uses: repo-sync/pull-request@v2
with:
destination_branch: "linpeas_prod"
destination_branch: "master"
github_token: ${{ secrets.PULL_REQUEST_TOKEN }}
Build_and_test_macpeas_dev:
runs-on: macos-latest
steps:
- uses: actions/checkout@v2
- name: Build macpeas
run: |
python3 -m pip install PyYAML
cd linPEAS
python3 -m builder.linpeas_builder
- name: Run macpeas
run: linPEAS/linpeas.sh -o SysI,Container,Devs,AvaSof,ProCronSrvcsTmrsSocks,Net,UsrI,SofI

20
.github/workflows/CI-linpeas_master.yml vendored
View File

@ -1,20 +0,0 @@
name: CI-linpeas_master
on:
push:
branches:
- linpeas_prod
jobs:
build:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- uses: actions/checkout@v2
- name: pull-request
uses: repo-sync/pull-request@v2
with:
destination_branch: "master"
github_token: ${{ secrets.GITHUB_TOKEN }}

37
.github/workflows/CI-linpeas_prod_rebuild.yml → .github/workflows/CI-linpeas_master_test.yml vendored
View File

@ -1,29 +1,20 @@
# This is a basic workflow to help you get started with Actions
name: CI-linpeas_master_test
name: CI-linpeas_prod_rebuild
# Controls when the action will run.
on:
# Triggers the workflow on push or pull request events but only for the master branch
pull_request:
branches:
branches:
- master
paths:
- 'build_lists/sensitive_files.yaml'
- 'build_lists\sensitive_files.yaml'
- 'linPEAS\**'
# Allows you to run this workflow manually from the Actions tab
workflow_dispatch:
# A workflow run is made up of one or more jobs that can run sequentially or in parallel
jobs:
# This workflow contains a single job called "build"
build:
# The type of runner that the job will run on
Build_and_test_linpeas_master:
runs-on: ubuntu-latest
# Steps represent a sequence of tasks that will be executed as part of the job
steps:
# Checks-out your repository under $GITHUB_WORKSPACE, so your job can access it
- uses: actions/checkout@v2
- name: Build linpeas
@ -32,9 +23,8 @@ jobs:
cd linPEAS
python3 -m builder.linpeas_builder
# Runs a single command using the runners shell
- name: Run linpeas
run: linPEAS/linpeas.sh -h
run: linPEAS/linpeas.sh
- name: Create local changes
run: git add linPEAS/linpeas.sh
@ -50,3 +40,18 @@ jobs:
with:
github_token: ${{ secrets.GITHUB_TOKEN }}
branch: ${{ github.ref }}
Build_and_test_macpeas_master:
runs-on: macos-latest
steps:
- uses: actions/checkout@v2
- name: Build macpeas
run: |
python3 -m pip install PyYAML
cd linPEAS
python3 -m builder.linpeas_builder
- name: Run macpeas
run: linPEAS/linpeas.sh -o SysI,Container,Devs,AvaSof,ProCronSrvcsTmrsSocks,Net,UsrI,SofI

27
.github/workflows/CI-linpeas_prod.yml vendored
View File

@ -1,27 +0,0 @@
name: CI-linpeas_prod
on:
pull_request:
branches:
- linpeas_prod
workflow_dispatch:
jobs:
Test_linpeas_macos:
runs-on: macos-latest
steps:
- uses: actions/checkout@v2
- name: Run linpeas
run: linPEAS/linpeas.sh -o SysI,Container,Devs,AvaSof,ProCronSrvcsTmrsSocks,Net,UsrI,SofI
Test_linpeas_ubuntu:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v2
- name: Run linpeas
run: linPEAS/linpeas.sh -a

2
.github/workflows/CI-winpeas_PR.yml vendored
View File

@ -4,6 +4,8 @@ on:
push:
branches:
- winpeas_dev
- linpeas_dev
- master
paths:
- 'build_lists\sensitive_files.yaml'
- 'winPEAS\winPEASexe\**'

113
.github/workflows/CI-winpeas_build_test.yml vendored Normal file
View File

@ -0,0 +1,113 @@
name: CI-winpeas_test
on:
push:
branches:
- winpeas_dev
workflow_dispatch:
jobs:
Build_and_test_winpeas:
runs-on: windows-latest
# environment variables
env:
Solution_Path: 'winPEAS\winPEASexe\winPEAS.sln'
Configuration: 'Release'
DotFuscatorGeneratedPath: 'winPEAS\winPEASexe\binaries\Obfuscated Releases\Dotfuscated'
steps:
# checkout
- name: Checkout
uses: actions/checkout@v2
# Add MSBuild to the PATH: https://github.com/microsoft/setup-msbuild
- name: Setup MSBuild.exe
uses: microsoft/setup-msbuild@v1.0.2
# Setup NuGet
- name: Setup NuGet.exe
uses: nuget/setup-nuget@v1
# Restore the packages for testing
- name: Restore the application
run: nuget restore $env:Solution_Path
# build
- name: run MSBuild
run: msbuild $env:Solution_Path
# Execute all unit tests in the solution
- name: Execute unit tests
run: dotnet test $env:Solution_Path
# Build & update all versions
- name: Build all versions
run: |
echo "build x64"
msbuild -m $env:Solution_Path /t:Rebuild /p:Configuration=$env:Configuration /p:Platform="x64"
echo "build x86"
msbuild -m $env:Solution_Path /t:Rebuild /p:Configuration=$env:Configuration /p:Platform="x86"
echo "build Any CPU"
msbuild -m $env:Solution_Path /t:Rebuild /p:Configuration=$env:Configuration /p:Platform="Any CPU"
# Copy the built versions
- name: Copy all versions
run: |
echo "copy x64"
cp winPEAS\winPEASexe\winPEAS\bin\x64\$env:Configuration\winPEAS.exe winPEAS\winPEASexe\binaries\x64\$env:Configuration\winPEASx64.exe
echo "copy x86"
cp winPEAS\winPEASexe\winPEAS\bin\x86\$env:Configuration\winPEAS.exe winPEAS\winPEASexe\binaries\x86\$env:Configuration\winPEASx86.exe
echo "copy Any"
cp winPEAS\winPEASexe\winPEAS\bin\$env:Configuration\winPEAS.exe winPEAS\winPEASexe\binaries\$env:Configuration\winPEASany.exe
# build obfuscated versions
- name: Setup DotFuscator
run: |
7z x winPEAS\winPEASexe\Dotfuscator\DotfuscatorCE.zip
whoami
mkdir -p $env:USERPROFILE\AppData\Local\"PreEmptive Solutions"\"Dotfuscator Community Edition"\6.0 -erroraction 'silentlycontinue'
cp DotfuscatorCE\license\* $env:USERPROFILE\AppData\Local\"PreEmptive Solutions"\"Dotfuscator Community Edition"\6.0\
# build obfuscated versions
- name: Build obfuscated versions
run: |
DotfuscatorCE\dotfuscator.exe "winPEAS\winPEASexe\binaries\Obfuscated Releases\x64.xml"
DotfuscatorCE\dotfuscator.exe "winPEAS\winPEASexe\binaries\Obfuscated Releases\x86.xml"
DotfuscatorCE\dotfuscator.exe "winPEAS\winPEASexe\binaries\Obfuscated Releases\any.xml"
# copy the files
- name: Copy Dotfuscator generated files
run: |
cp $env:DotFuscatorGeneratedPath\x64\winPEASx64.exe "winPEAS\winPEASexe\binaries\Obfuscated Releases\winPEASx64.exe"
cp $env:DotFuscatorGeneratedPath\x86\winPEASx86.exe "winPEAS\winPEASexe\binaries\Obfuscated Releases\winPEASx86.exe"
cp $env:DotFuscatorGeneratedPath\any\winPEASany.exe "winPEAS\winPEASexe\binaries\Obfuscated Releases\winPEASany.exe"
# Git add
- name: Create local changes
run: |
git add winPEAS\winPEASexe\binaries\Release\*
git add winPEAS\winPEASexe\binaries\x64\*
git add winPEAS\winPEASexe\binaries\x86\*
git add "winPEAS\winPEASexe\binaries\Obfuscated Releases\*.exe"
# Git commit
- name: Commit results to Github
run: |
git config --local user.email "ci@winpeas.com"
git config --global user.name "CI-winpeas"
git commit -m "winpeas binaries auto update" -a --allow-empty
# Git push
- name: Push changes
uses: ad-m/github-push-action@master
with:
github_token: ${{ secrets.GITHUB_TOKEN }}
branch: master

48
.github/workflows/CI-winpeas_test.yml vendored
View File

@ -1,48 +0,0 @@
name: CI-winpeas_test
on:
pull_request:
branches:
- winpeas_dev
paths:
- 'build_lists\sensitive_files.yaml'
- 'winPEAS\winPEASexe\**'
workflow_dispatch:
jobs:
Build_and_test_winpeas:
runs-on: windows-latest
# environment variables
env:
Solution_Path: 'winPEAS\winPEASexe\winPEAS.sln'
Configuration: 'Release'
steps:
# checkout
- name: Checkout
uses: actions/checkout@v2
# Install the .NET Core workload
- name: Install .NET 4.x.x
uses: actions/setup-dotnet@v1
with:
dotnet-version: 4.5.2
# Add MSBuild to the PATH: https://github.com/microsoft/setup-msbuild
- name: Setup MSBuild.exe
uses: microsoft/setup-msbuild@v1.0.2
# Restore the packages for testing
- name: Restore the application
run: msbuild -m $env:Solution_Path /t:Restore /p:Configuration=$env:Configuration
# build
- name: run MSBuild
run: msbuild $env:Solution_Path
# Execute all unit tests in the solution
- name: Execute unit tests
run: dotnet test $env:Solution_Path

18
CONTRIBUTING.md Normal file
View File

@ -0,0 +1,18 @@
# Contributing to this repository
## Making Suggestions
If you wan tto make a suggestion for linpeas or winpeas please use **[github issues](https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite/issues)**
## Searching for files with sensitive information
From the PEASS-ng release **winpeas and linpeas are auto-built** and will search for files containing sensitive information specified in the **[sesitive_files.yaml](https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite/blob/master/build_lists/sensitive_files.yaml)** file.
If you want to **contribute adding the search of new files that can contain sensitive information**, please, just update **[sesitive_files.yaml](https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite/blob/master/build_lists/sensitive_files.yaml)** and create a **PR to master** (*linpeas and winpeas will be auto-built in this PR*).
Also, in the comments of this PR, put links to pages where and example of the file containing sensitive information can be foud.
## Specific LinPEAS additions
From the PEASS-ng release **linpeas is auto-build from [linpeas_base.sh](https://github.com/carlospolop/privilege-escalation-awesome-scripts-suite/blob/master/linPEAS/builder/linpeas_base.sh)**. Therefore, if you want to contribute adding any new check for linpeas/macpeas, please **add it in this file and create a PR to master**.
The new linpeas.sh script will be auto-generated in the PR.
## Specific WinPEAS additions
Just modify winpeas and create a PR to master.
The new winpeas binaries will be auto-generated in the PR.

91
build_lists/sensitive_files.yaml
View File

@ -93,6 +93,8 @@ defaults:
exec: []
variables_markup: "peass{VARIABLES}"
variables:
- name: pwd_inside_history
value: "7z|unzip|useradd|linenum|linpeas|mkpasswd|htpasswd|openssl|PASSW|passw|shadow|root|sudo|^su|pkexec|^ftp|mongo|psql|mysql|rdesktop|xfreerdp|^ssh|steghide|@"
@ -173,6 +175,16 @@ search:
remove_path: "mysql/mysql"
search_in:
- common
- name: "debian.cnf"
value:
bad_regex: "user.*|password.*"
type: f
only_bad_lines: True
search_in:
- common
- name: PostgreSQL
value:
@ -239,7 +251,7 @@ search:
search_in:
- common
- name: "000-default"
- name: "000-default.conf"
value:
bad_regex: "AuthType|AuthName|AuthUserFile|ServerName|ServerAlias"
type: f
@ -438,7 +450,7 @@ search:
search_in:
- common
- name: Anaconda ks
- name: Anaconda ks
value:
config:
auto_check: True
@ -516,7 +528,7 @@ search:
search_in:
- common
- name: Open VPN
- name: OpenVPN
value:
config:
auto_check: True
@ -942,7 +954,7 @@ search:
search_in:
- common
- name: GMV_Auth
- name: GMV Auth
value:
config:
auto_check: True
@ -1708,6 +1720,41 @@ search:
search_in:
- common
- name: Cacti
value:
config:
auto_check: True
files:
- name: "cacti"
value:
files:
- name: "config.php"
value:
bad_regex: "database_pw.*|database_user.*|database_pass.*"
line_grep: '"database_pw|database_user|database_pass|database_type|database_default|detabase_hostname|database_port|database_ssl"'
- name: "config.php.dist"
value:
bad_regex: "database_pw.*|database_user.*|database_pass.*"
line_grep: '"database_pw|database_user|database_pass|database_type|database_default|detabase_hostname|database_port|database_ssl"'
- name: "installer.php"
value:
bad_regex: "database_pw.*|database_user.*|database_pass.*"
line_grep: '"database_pw|database_user|database_pass|database_type|database_default|detabase_hostname|database_port|database_ssl"'
- name: "check_all_pages"
value:
bad_regex: "database_pw.*|database_user.*|database_pass.*"
line_grep: '"database_pw|database_user|database_pass|database_type|database_default|detabase_hostname|database_port|database_ssl"'
type: d
search_in:
- common
- name: Interesting logs
value:
config:
@ -2020,13 +2067,6 @@ search:
search_in:
- common
- name: "security"
value:
just_list_file: True
type: f
search_in:
- common
- name: "security.sav"
value:
just_list_file: True
@ -2041,13 +2081,6 @@ search:
search_in:
- common
- name: "services.xml"
value:
just_list_file: True
type: f
search_in:
- common
- name: "setupinfo"
value:
just_list_file: True
@ -2174,6 +2207,28 @@ search:
search_in:
- common
- name: Other Windows Files
value:
config:
auto_check: True
disable:
- linpeas
files:
- name: "security"
value:
just_list_file: True
type: f
search_in:
- common
- name: "services.xml"
value:
just_list_file: True
type: f
search_in:
- common
# Final section
- name: Database
value:

36
linPEAS/builder/linpeas_base.sh
View File

@ -1,6 +1,6 @@
#!/bin/sh
VERSION="v3.2.6"
VERSION="ng"
ADVISORY="This script should be used for authorized penetration testing and/or educational purposes only. Any misuse of this software will not be the responsibility of the author or of any other collaborator. Use it at your own networks and/or with the network owner's permission."
###########################################
@ -59,7 +59,7 @@ NOCOLOR=""
VERBOSE=""
THREADS="`((grep -c processor /proc/cpuinfo 2>/dev/null) || ((command -v lscpu >/dev/null 2>&1) && (lscpu | grep '^CPU(s):' | awk '{print $2}')) || echo -n 2) | tr -d "\n"`"
[ -z "$THREADS" ] && THREADS="2" #If THREADS is empty, put number 2
[ -n "$THREADS" ] && eTHREADS="2" #If THREADS is null, put number 2
[ -n "$THREADS" ] && THREADS="2" #If THREADS is null, put number 2
[ "$THREADS" -eq "$THREADS" ] 2>/dev/null && : || THREADS="2" #It THREADS is not a number, put number 2
HELP=$GREEN"Enumerate and search Privilege Escalation vectors.
${NC}This tool enum and search possible misconfigurations$DG (known vulns, user, processes and file permissions, special file permissions, readable/writable files, bruteforce other users(top1000pwds), passwords...)$NC inside the host and highlight possible misconfigurations with colors.
@ -211,7 +211,7 @@ print_banner(){
echo ""
if [ !"$QUIET" ]; then print_banner; fi
printf ${BLUE}" $SCRIPTNAME $VERSION ${YELLOW}by carlospolop\n"$NC;
printf ${BLUE}" $SCRIPTNAME-$VERSION ${YELLOW}by carlospolop\n"$NC;
echo ""
printf ${YELLOW}"ADVISORY: "${BLUE}"$ADVISORY\n"$NC
echo ""
@ -400,7 +400,7 @@ fi
Groups="ImPoSSssSiBlEee"`groups "$USER" 2>/dev/null | cut -d ":" -f 2 | tr ' ' '|'`
#This variables are dived in several different ones because NetBSD required it
pwd_inside_history="7z|unzip|useradd|linenum|linpeas|mkpasswd|htpasswd|openssl|PASSW|passw|shadow|root|sudo|^su|pkexec|^ftp|mongo|psql|mysql|rdesktop|xfreerdp|^ssh|steghide|@"
peass{VARIABLES}
pwd_in_variables1="Dgpg.passphrase|Dsonar.login|Dsonar.projectKey|GITHUB_TOKEN|HB_CODESIGN_GPG_PASS|HB_CODESIGN_KEY_PASS|PUSHOVER_TOKEN|PUSHOVER_USER|VIRUSTOTAL_APIKEY|ACCESSKEY|ACCESSKEYID|ACCESS_KEY|ACCESS_KEY_ID|ACCESS_KEY_SECRET|ACCESS_SECRET|ACCESS_TOKEN|ACCOUNT_SID|ADMIN_EMAIL|ADZERK_API_KEY|ALGOLIA_ADMIN_KEY_1|ALGOLIA_ADMIN_KEY_2|ALGOLIA_ADMIN_KEY_MCM|ALGOLIA_API_KEY|ALGOLIA_API_KEY_MCM|ALGOLIA_API_KEY_SEARCH|ALGOLIA_APPLICATION_ID|ALGOLIA_APPLICATION_ID_1|ALGOLIA_APPLICATION_ID_2|ALGOLIA_APPLICATION_ID_MCM|ALGOLIA_APP_ID|ALGOLIA_APP_ID_MCM|ALGOLIA_SEARCH_API_KEY|ALGOLIA_SEARCH_KEY|ALGOLIA_SEARCH_KEY_1|ALIAS_NAME|ALIAS_PASS|ALICLOUD_ACCESS_KEY|ALICLOUD_SECRET_KEY|amazon_bucket_name|AMAZON_SECRET_ACCESS_KEY|ANDROID_DOCS_DEPLOY_TOKEN|android_sdk_license|android_sdk_preview_license|aos_key|aos_sec|APIARY_API_KEY|APIGW_ACCESS_TOKEN|API_KEY|API_KEY_MCM|API_KEY_SECRET|API_KEY_SID|API_SECRET|appClientSecret|APP_BUCKET_PERM|APP_NAME|APP_REPORT_TOKEN_KEY|APP_TOKEN|ARGOS_TOKEN|ARTIFACTORY_KEY|ARTIFACTS_AWS_ACCESS_KEY_ID|ARTIFACTS_AWS_SECRET_ACCESS_KEY|ARTIFACTS_BUCKET|ARTIFACTS_KEY|ARTIFACTS_SECRET|ASSISTANT_IAM_APIKEY|AURORA_STRING_URL|AUTH0_API_CLIENTID|AUTH0_API_CLIENTSECRET|AUTH0_AUDIENCE|AUTH0_CALLBACK_URL|AUTH0_CLIENT_ID"
pwd_in_variables2="AUTH0_CLIENT_SECRET|AUTH0_CONNECTION|AUTH0_DOMAIN|AUTHOR_EMAIL_ADDR|AUTHOR_NPM_API_KEY|AUTH_TOKEN|AWS-ACCT-ID|AWS-KEY|AWS-SECRETS|AWS.config.accessKeyId|AWS.config.secretAccessKey|AWSACCESSKEYID|AWSCN_ACCESS_KEY_ID|AWSCN_SECRET_ACCESS_KEY|AWSSECRETKEY|AWS_ACCESS|AWS_ACCESS_KEY|AWS_ACCESS_KEY_ID|AWS_CF_DIST_ID|AWS_DEFAULT|AWS_DEFAULT_REGION|AWS_S3_BUCKET|AWS_SECRET|AWS_SECRET_ACCESS_KEY|AWS_SECRET_KEY|AWS_SES_ACCESS_KEY_ID|AWS_SES_SECRET_ACCESS_KEY|B2_ACCT_ID|B2_APP_KEY|B2_BUCKET|baseUrlTravis|bintrayKey|bintrayUser|BINTRAY_APIKEY|BINTRAY_API_KEY|BINTRAY_KEY|BINTRAY_TOKEN|BINTRAY_USER|BLUEMIX_ACCOUNT|BLUEMIX_API_KEY|BLUEMIX_AUTH|BLUEMIX_NAMESPACE|BLUEMIX_ORG|BLUEMIX_ORGANIZATION|BLUEMIX_PASS|BLUEMIX_PASS_PROD|BLUEMIX_SPACE|BLUEMIX_USER|BRACKETS_REPO_OAUTH_TOKEN|BROWSERSTACK_ACCESS_KEY|BROWSERSTACK_PROJECT_NAME|BROWSER_STACK_ACCESS_KEY|BUCKETEER_AWS_ACCESS_KEY_ID|BUCKETEER_AWS_SECRET_ACCESS_KEY|BUCKETEER_BUCKET_NAME|BUILT_BRANCH_DEPLOY_KEY|BUNDLESIZE_GITHUB_TOKEN|CACHE_S3_SECRET_KEY|CACHE_URL|CARGO_TOKEN|CATTLE_ACCESS_KEY|CATTLE_AGENT_INSTANCE_AUTH|CATTLE_SECRET_KEY|CC_TEST_REPORTER_ID|CC_TEST_REPOTER_ID|CENSYS_SECRET|CENSYS_UID|CERTIFICATE_OSX_P12|CF_ORGANIZATION|CF_PROXY_HOST|channelId|CHEVERNY_TOKEN|CHROME_CLIENT_ID"
pwd_in_variables3="CHROME_CLIENT_SECRET|CHROME_EXTENSION_ID|CHROME_REFRESH_TOKEN|CI_DEPLOY_USER|CI_NAME|CI_PROJECT_NAMESPACE|CI_PROJECT_URL|CI_REGISTRY_USER|CI_SERVER_NAME|CI_USER_TOKEN|CLAIMR_DATABASE|CLAIMR_DB|CLAIMR_SUPERUSER|CLAIMR_TOKEN|CLIENT_ID|CLIENT_SECRET|CLI_E2E_CMA_TOKEN|CLI_E2E_ORG_ID|CLOUDAMQP_URL|CLOUDANT_APPLIANCE_DATABASE|CLOUDANT_ARCHIVED_DATABASE|CLOUDANT_AUDITED_DATABASE|CLOUDANT_DATABASE|CLOUDANT_ORDER_DATABASE|CLOUDANT_PARSED_DATABASE|CLOUDANT_PROCESSED_DATABASE|CLOUDANT_SERVICE_DATABASE|CLOUDFLARE_API_KEY|CLOUDFLARE_AUTH_EMAIL|CLOUDFLARE_AUTH_KEY|CLOUDFLARE_EMAIL|CLOUDFLARE_ZONE_ID|CLOUDINARY_URL|CLOUDINARY_URL_EU|CLOUDINARY_URL_STAGING|CLOUD_API_KEY|CLUSTER_NAME|CLU_REPO_URL|CLU_SSH_PRIVATE_KEY_BASE64|CN_ACCESS_KEY_ID|CN_SECRET_ACCESS_KEY|COCOAPODS_TRUNK_EMAIL|COCOAPODS_TRUNK_TOKEN|CODACY_PROJECT_TOKEN|CODECLIMATE_REPO_TOKEN|CODECOV_TOKEN|coding_token|CONEKTA_APIKEY|CONFIGURATION_PROFILE_SID|CONFIGURATION_PROFILE_SID_P2P|CONFIGURATION_PROFILE_SID_SFU|CONSUMERKEY|CONSUMER_KEY|CONTENTFUL_ACCESS_TOKEN|CONTENTFUL_CMA_TEST_TOKEN|CONTENTFUL_INTEGRATION_MANAGEMENT_TOKEN|CONTENTFUL_INTEGRATION_SOURCE_SPACE|CONTENTFUL_MANAGEMENT_API_ACCESS_TOKEN|CONTENTFUL_MANAGEMENT_API_ACCESS_TOKEN_NEW|CONTENTFUL_ORGANIZATION"
@ -535,9 +535,7 @@ fi
###########################################
echo_not_found (){
if [ "$VERBOSE" ]; then
printf $DG"$1 Not Found\n"$NC
fi
printf $DG"$1 Not Found\n"$NC
}
warn_exec(){
@ -1942,7 +1940,7 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
peass{Htpasswd}
peass{PHPCookies}
peass{PHP Sessions}
peass{Wordpress}
@ -1967,13 +1965,13 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
fi
echo ""
peass{Anaconda-ks}
peass{Anaconda ks}
peass{VNC}
peass{Ldap}
peass{Open_VPN}
peass{OpenVPN}
#-- SI) ssh files
print_2title "Searching ssl/ssh files"
@ -1982,7 +1980,7 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
hostsdenied="`ls /etc/hosts.denied 2>/dev/null`"
hostsallow="`ls /etc/hosts.allow 2>/dev/null`"
peass{SSH_FILES}
peass{SSH}
grep "PermitRootLogin \|ChallengeResponseAuthentication \|PasswordAuthentication \|UsePAM \|Port\|PermitEmptyPasswords\|PubkeyAuthentication\|ListenAddress\|ForwardAgent\|AllowAgentForwarding\|AuthorizedKeysFiles" /etc/ssh/sshd_config 2>/dev/null | grep -v "#" | sed -${E} "s,PermitRootLogin.*es|PermitEmptyPasswords.*es|ChallengeResponseAuthentication.*es|FordwardAgent.*es,${SED_RED},"
@ -2192,9 +2190,9 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
peass{Neo4j}
peass{Cloud_credentials}
peass{Cloud Credentials}
peass{Cloud-Init}
peass{Cloud Init}
peass{CloudFlare}
@ -2210,7 +2208,7 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
peass{Filezilla}
peass{Backup_Manager}
peass{Backup Manager}
##-- SI) passwd files (splunk)
print_2title "Searching uncommon passwd files (splunk)"
@ -2348,11 +2346,11 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
peass{EXTRA_SECTIONS}
peass{Interesting_logs}
peass{Interesting logs}
peass{Windows_Files}
peass{Windows Files}
peass{Other_Interesting_Files}
peass{Other Interesting Files}
echo ""
@ -2445,7 +2443,7 @@ if [ "`echo $CHECKS | grep IntFiles`" ]; then
true #Don't do nothing
elif ! [ "$IAMROOT" ] && [ -O "$sname" ]; then
echo "You own the SGID file: $sname" | sed -${E} "s,.*,${SED_RED},"
elif ! [ "$IAMROOT" ] &6 [ -w "$sname" ]; then #If write permision, win found (no check exploits)
elif ! [ "$IAMROOT" ] && [ -w "$sname" ]; then #If write permision, win found (no check exploits)
echo "You can write SGID file: $sname" | sed -${E} "s,.*,${SED_RED_YELLOW},"
else
c="a"
@ -2677,7 +2675,7 @@ if [ "`echo $CHECKS | grep IntFiles`" ]; then
lastWlogFolder="ImPOsSiBleeElastWlogFolder"
logfind=`find / -type f -name "*.log" -o -name "*.log.*" 2>/dev/null | awk -F/ '{line_init=$0; if (!cont){ cont=0 }; $NF=""; act=$0; if (act == pre){(cont += 1)} else {cont=0}; if (cont < 3){ print line_init; }; if (cont == "3"){print "#)You_can_write_more_log_files_inside_last_directory"}; pre=act}' | head -n 100`
printf "%s\n" "$logfind" | while read log; do
if ! [ "$IAMROOT" ] && [ -w "$log" ] || ! [ "$IAMROOT" ] && [ `echo "$log" | grep -E "$Wfolders"` ]; then #Only print info if something interesting found
if ! [ "$IAMROOT" ] && [ "$log" ] && [ -w "$log" ] || ! [ "$IAMROOT" ] && [ "`echo \"$log\" | grep -E \"$Wfolders\"`" ]; then #Only print info if something interesting found
if [ "`echo \"$log\" | grep \"You_can_write_more_log_files_inside_last_directory\"`" ]; then printf $ITALIC"$log\n"$NC;
elif ! [ "$IAMROOT" ] && [ -w "$log" ] && [ "`command -v logrotate 2>/dev/null`" ] && [ "`logrotate --version 2>&1 | grep -E ' 1| 2| 3.1'`" ]; then printf "Writable:$RED $log\n"$NC; #Check vuln version of logrotate is used and print red in that case
elif ! [ "$IAMROOT" ] && [ -w "$log" ]; then echo "Writable: $log";

2
linPEAS/builder/src/fileRecord.py
View File

@ -20,7 +20,7 @@ class FileRecord:
self.regex = regex
self.bad_regex = bad_regex
self.check_extra_path = check_extra_path
self.files = [FileRecord(regex=regex,**fr) for regex,fr in files.items()]
self.files = [FileRecord(regex=fr["name"],**fr["value"]) for fr in files]
self.good_regex = good_regex
self.just_list_file = just_list_file
self.line_grep = line_grep

18
linPEAS/builder/src/linpeasBuilder.py
View File

@ -15,7 +15,9 @@ from .yamlGlobals import (
FIND_LINE_MARKUP,
STORAGE_LINE_MARKUP,
STORAGE_LINE_EXTRA_MARKUP,
EXTRASECTIONS_MARKUP
EXTRASECTIONS_MARKUP,
PEAS_VARIABLES_MARKUP,
YAML_VARIABLES
)
@ -30,6 +32,9 @@ class LinpeasBuilder:
self.linpeas_sh = file.read()
def build(self):
variables = self.__generate_variables()
self.__replace_mark(PEAS_VARIABLES_MARKUP, variables, "")
find_calls = self.__generate_finds()
self.__replace_mark(PEAS_FINDS_MARKUP, find_calls, " ")
@ -68,6 +73,15 @@ class LinpeasBuilder:
def __get_peass_marks(self):
return re.findall(r'peass\{[\w\-\._ ]*\}', self.linpeas_sh)
def __generate_variables(self):
"""Generate the variables from the yaml to set into linpeas bash script"""
variables_bash = ""
for var in YAML_VARIABLES:
variables_bash += f"{var['name']}=\"{var['value']}\"\n"
return variables_bash
def __get_files_to_search(self):
"""Given a PEASLoaded and find the files that need to be searched on each root folder"""
@ -158,7 +172,7 @@ class LinpeasBuilder:
for precord in self.ploaded.peasrecords:
if precord.auto_check:
section = f' print_2title "Analizing {precord.name.replace("_"," ")} Files (limit 70)"\n'
section = f' print_2title "Analyzing {precord.name.replace("_"," ")} Files (limit 70)"\n'
for exec_line in precord.exec:
if exec_line:

19
linPEAS/builder/src/peasLoaded.py
View File

@ -6,21 +6,26 @@ class PEASLoaded:
def __init__(self):
to_search = YAML_LOADED["search"]
self.peasrecords = []
for name,peasrecord_json in to_search.items():
for record in to_search:
record_value = record["value"]
if "linpeas" in str(record_value["config"].get("disable","")).lower():
continue
filerecords = []
for regex,fr in peasrecord_json["files"].items():
for filerecord in record_value["files"]:
filerecords.append(
FileRecord(
regex=regex,
**fr
regex=filerecord["name"],
**filerecord["value"]
)
)
name = record["name"]
self.peasrecords.append(
PEASRecord(
name=name,
auto_check=peasrecord_json["config"]["auto_check"],
exec=peasrecord_json["config"].get("exec", DEFAULTS["exec"]),
auto_check=record_value["config"]["auto_check"],
exec=record_value["config"].get("exec", DEFAULTS["exec"]),
filerecords=filerecords
)
)

3
linPEAS/builder/src/yamlGlobals.py
View File

@ -27,6 +27,9 @@ STORAGE_LINE_MARKUP = YAML_LOADED["storage_line_markup"]
STORAGE_LINE_EXTRA_MARKUP = YAML_LOADED["storage_line_extra_markup"]
STORAGE_TEMPLATE = YAML_LOADED["storage_template"]
PEAS_VARIABLES_MARKUP = YAML_LOADED["variables_markup"]
YAML_VARIABLES = YAML_LOADED["variables"]
INT_HIDDEN_FILES_MARKUP = YAML_LOADED["int_hidden_files_markup"]
EXTRASECTIONS_MARKUP = YAML_LOADED["peas_extrasections_markup"]

403
linPEAS/linpeas.sh
View File

@ -1,6 +1,6 @@
#!/bin/sh
VERSION="v3.2.6"
VERSION="ng"
ADVISORY="This script should be used for authorized penetration testing and/or educational purposes only. Any misuse of this software will not be the responsibility of the author or of any other collaborator. Use it at your own networks and/or with the network owner's permission."
###########################################
@ -59,7 +59,7 @@ NOCOLOR=""
VERBOSE=""
THREADS="`((grep -c processor /proc/cpuinfo 2>/dev/null) || ((command -v lscpu >/dev/null 2>&1) && (lscpu | grep '^CPU(s):' | awk '{print $2}')) || echo -n 2) | tr -d "\n"`"
[ -z "$THREADS" ] && THREADS="2" #If THREADS is empty, put number 2
[ -n "$THREADS" ] && eTHREADS="2" #If THREADS is null, put number 2
[ -n "$THREADS" ] && THREADS="2" #If THREADS is null, put number 2
[ "$THREADS" -eq "$THREADS" ] 2>/dev/null && : || THREADS="2" #It THREADS is not a number, put number 2
HELP=$GREEN"Enumerate and search Privilege Escalation vectors.
${NC}This tool enum and search possible misconfigurations$DG (known vulns, user, processes and file permissions, special file permissions, readable/writable files, bruteforce other users(top1000pwds), passwords...)$NC inside the host and highlight possible misconfigurations with colors.
@ -211,7 +211,7 @@ print_banner(){
echo ""
if [ !"$QUIET" ]; then print_banner; fi
printf ${BLUE}" $SCRIPTNAME $VERSION ${YELLOW}by carlospolop\n"$NC;
printf ${BLUE}" $SCRIPTNAME-$VERSION ${YELLOW}by carlospolop\n"$NC;
echo ""
printf ${YELLOW}"ADVISORY: "${BLUE}"$ADVISORY\n"$NC
echo ""
@ -401,6 +401,7 @@ Groups="ImPoSSssSiBlEee"`groups "$USER" 2>/dev/null | cut -d ":" -f 2 | tr ' ' '
#This variables are dived in several different ones because NetBSD required it
pwd_inside_history="7z|unzip|useradd|linenum|linpeas|mkpasswd|htpasswd|openssl|PASSW|passw|shadow|root|sudo|^su|pkexec|^ftp|mongo|psql|mysql|rdesktop|xfreerdp|^ssh|steghide|@"
pwd_in_variables1="Dgpg.passphrase|Dsonar.login|Dsonar.projectKey|GITHUB_TOKEN|HB_CODESIGN_GPG_PASS|HB_CODESIGN_KEY_PASS|PUSHOVER_TOKEN|PUSHOVER_USER|VIRUSTOTAL_APIKEY|ACCESSKEY|ACCESSKEYID|ACCESS_KEY|ACCESS_KEY_ID|ACCESS_KEY_SECRET|ACCESS_SECRET|ACCESS_TOKEN|ACCOUNT_SID|ADMIN_EMAIL|ADZERK_API_KEY|ALGOLIA_ADMIN_KEY_1|ALGOLIA_ADMIN_KEY_2|ALGOLIA_ADMIN_KEY_MCM|ALGOLIA_API_KEY|ALGOLIA_API_KEY_MCM|ALGOLIA_API_KEY_SEARCH|ALGOLIA_APPLICATION_ID|ALGOLIA_APPLICATION_ID_1|ALGOLIA_APPLICATION_ID_2|ALGOLIA_APPLICATION_ID_MCM|ALGOLIA_APP_ID|ALGOLIA_APP_ID_MCM|ALGOLIA_SEARCH_API_KEY|ALGOLIA_SEARCH_KEY|ALGOLIA_SEARCH_KEY_1|ALIAS_NAME|ALIAS_PASS|ALICLOUD_ACCESS_KEY|ALICLOUD_SECRET_KEY|amazon_bucket_name|AMAZON_SECRET_ACCESS_KEY|ANDROID_DOCS_DEPLOY_TOKEN|android_sdk_license|android_sdk_preview_license|aos_key|aos_sec|APIARY_API_KEY|APIGW_ACCESS_TOKEN|API_KEY|API_KEY_MCM|API_KEY_SECRET|API_KEY_SID|API_SECRET|appClientSecret|APP_BUCKET_PERM|APP_NAME|APP_REPORT_TOKEN_KEY|APP_TOKEN|ARGOS_TOKEN|ARTIFACTORY_KEY|ARTIFACTS_AWS_ACCESS_KEY_ID|ARTIFACTS_AWS_SECRET_ACCESS_KEY|ARTIFACTS_BUCKET|ARTIFACTS_KEY|ARTIFACTS_SECRET|ASSISTANT_IAM_APIKEY|AURORA_STRING_URL|AUTH0_API_CLIENTID|AUTH0_API_CLIENTSECRET|AUTH0_AUDIENCE|AUTH0_CALLBACK_URL|AUTH0_CLIENT_ID"
pwd_in_variables2="AUTH0_CLIENT_SECRET|AUTH0_CONNECTION|AUTH0_DOMAIN|AUTHOR_EMAIL_ADDR|AUTHOR_NPM_API_KEY|AUTH_TOKEN|AWS-ACCT-ID|AWS-KEY|AWS-SECRETS|AWS.config.accessKeyId|AWS.config.secretAccessKey|AWSACCESSKEYID|AWSCN_ACCESS_KEY_ID|AWSCN_SECRET_ACCESS_KEY|AWSSECRETKEY|AWS_ACCESS|AWS_ACCESS_KEY|AWS_ACCESS_KEY_ID|AWS_CF_DIST_ID|AWS_DEFAULT|AWS_DEFAULT_REGION|AWS_S3_BUCKET|AWS_SECRET|AWS_SECRET_ACCESS_KEY|AWS_SECRET_KEY|AWS_SES_ACCESS_KEY_ID|AWS_SES_SECRET_ACCESS_KEY|B2_ACCT_ID|B2_APP_KEY|B2_BUCKET|baseUrlTravis|bintrayKey|bintrayUser|BINTRAY_APIKEY|BINTRAY_API_KEY|BINTRAY_KEY|BINTRAY_TOKEN|BINTRAY_USER|BLUEMIX_ACCOUNT|BLUEMIX_API_KEY|BLUEMIX_AUTH|BLUEMIX_NAMESPACE|BLUEMIX_ORG|BLUEMIX_ORGANIZATION|BLUEMIX_PASS|BLUEMIX_PASS_PROD|BLUEMIX_SPACE|BLUEMIX_USER|BRACKETS_REPO_OAUTH_TOKEN|BROWSERSTACK_ACCESS_KEY|BROWSERSTACK_PROJECT_NAME|BROWSER_STACK_ACCESS_KEY|BUCKETEER_AWS_ACCESS_KEY_ID|BUCKETEER_AWS_SECRET_ACCESS_KEY|BUCKETEER_BUCKET_NAME|BUILT_BRANCH_DEPLOY_KEY|BUNDLESIZE_GITHUB_TOKEN|CACHE_S3_SECRET_KEY|CACHE_URL|CARGO_TOKEN|CATTLE_ACCESS_KEY|CATTLE_AGENT_INSTANCE_AUTH|CATTLE_SECRET_KEY|CC_TEST_REPORTER_ID|CC_TEST_REPOTER_ID|CENSYS_SECRET|CENSYS_UID|CERTIFICATE_OSX_P12|CF_ORGANIZATION|CF_PROXY_HOST|channelId|CHEVERNY_TOKEN|CHROME_CLIENT_ID"
pwd_in_variables3="CHROME_CLIENT_SECRET|CHROME_EXTENSION_ID|CHROME_REFRESH_TOKEN|CI_DEPLOY_USER|CI_NAME|CI_PROJECT_NAMESPACE|CI_PROJECT_URL|CI_REGISTRY_USER|CI_SERVER_NAME|CI_USER_TOKEN|CLAIMR_DATABASE|CLAIMR_DB|CLAIMR_SUPERUSER|CLAIMR_TOKEN|CLIENT_ID|CLIENT_SECRET|CLI_E2E_CMA_TOKEN|CLI_E2E_ORG_ID|CLOUDAMQP_URL|CLOUDANT_APPLIANCE_DATABASE|CLOUDANT_ARCHIVED_DATABASE|CLOUDANT_AUDITED_DATABASE|CLOUDANT_DATABASE|CLOUDANT_ORDER_DATABASE|CLOUDANT_PARSED_DATABASE|CLOUDANT_PROCESSED_DATABASE|CLOUDANT_SERVICE_DATABASE|CLOUDFLARE_API_KEY|CLOUDFLARE_AUTH_EMAIL|CLOUDFLARE_AUTH_KEY|CLOUDFLARE_EMAIL|CLOUDFLARE_ZONE_ID|CLOUDINARY_URL|CLOUDINARY_URL_EU|CLOUDINARY_URL_STAGING|CLOUD_API_KEY|CLUSTER_NAME|CLU_REPO_URL|CLU_SSH_PRIVATE_KEY_BASE64|CN_ACCESS_KEY_ID|CN_SECRET_ACCESS_KEY|COCOAPODS_TRUNK_EMAIL|COCOAPODS_TRUNK_TOKEN|CODACY_PROJECT_TOKEN|CODECLIMATE_REPO_TOKEN|CODECOV_TOKEN|coding_token|CONEKTA_APIKEY|CONFIGURATION_PROFILE_SID|CONFIGURATION_PROFILE_SID_P2P|CONFIGURATION_PROFILE_SID_SFU|CONSUMERKEY|CONSUMER_KEY|CONTENTFUL_ACCESS_TOKEN|CONTENTFUL_CMA_TEST_TOKEN|CONTENTFUL_INTEGRATION_MANAGEMENT_TOKEN|CONTENTFUL_INTEGRATION_SOURCE_SPACE|CONTENTFUL_MANAGEMENT_API_ACCESS_TOKEN|CONTENTFUL_MANAGEMENT_API_ACCESS_TOKEN_NEW|CONTENTFUL_ORGANIZATION"
@ -488,7 +489,7 @@ GREP_DOCKER_SOCK_INFOS="Architecture|OSType|Name|DockerRootDir|NCPU|OperatingSys
GREP_DOCKER_SOCK_INFOS_IGNORE="IndexConfig"
GREP_IGNORE_MOUNTS="/ /|/cgroup|/var/lib/docker/|/null | proc proc |/dev/console|docker.sock"
INT_HIDDEN_FILES=".rhosts|.irssi|.keyring|.cer|.jks|.service|.vnc|.p12|.ftpconfig|.crt|.lesshst|.git-credentials|._history|.sudo_as_admin_successful|.timer|.gnupg|.gpg|.sqlite3|.recently-used.xbel|.erlang.cookie|.socket|.pem|.cloudflared|.bashrc|.git|.pypirc|.csr|.plan|.rdg|.ovpn|.pfx|.gitconfig|.svn|.der|.sqlite|.google_authenticator|.viminfo|.bluemix|.htpasswd|.kdbx|.mozilla|.env|.vault-token|.ldaprc|.swp|.msmtprc|.profile|.github|.pgp|.keystore|.db|.k5login|.key"
INT_HIDDEN_FILES=".rhosts|._history.|.crt|.csr|.gpg|.viminfo|.github|.sqlite3|.k5login|.kdbx|.sqlite|.keystore|.keyring|.env|.gnupg|.ldaprc|.gitconfig|.bashrc|.pfx|.bluemix|.cloudflared|.plan|.recently-used.xbel|.timer|.ovpn|.db|.msmtprc|.swp|.p12|.socket|.irssi|.vnc|.htpasswd|.pgp|.der|.pem|.jks|.svn|.lesshst|.key|.ftpconfig|.git|.service|.profile|.cer|.vault-token|.erlang.cookie|.pypirc|.sudo_as_admin_successful|.git-credentials|.rdg|.google_authenticator|.mozilla"
###########################################
#---------) Checks before start (---------#
@ -535,9 +536,7 @@ fi
###########################################
echo_not_found (){
if [ "$VERBOSE" ]; then
printf $DG"$1 Not Found\n"$NC
fi
printf $DG"$1 Not Found\n"$NC
}
warn_exec(){
@ -1044,130 +1043,131 @@ if [ "`echo $CHECKS | grep ProCronSrvcsTmrsSocks`" ] || [ "`echo $CHECKS | grep
CONT_THREADS=0
# FIND ALL KNOWN INTERESTING SOFTWARE FILES
FIND_DIR_APPLICATIONS=`eval_bckgrd "find /applications -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_BIN=`eval_bckgrd "find /bin -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_CACHE=`eval_bckgrd "find /.cache -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_CDROM=`eval_bckgrd "find /cdrom -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_ETC=`eval_bckgrd "find /etc -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \"system.d\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_HOMESEARCH=`eval_bckgrd "find $HOMESEARCH -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" -o -name \".mozilla\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_MEDIA=`eval_bckgrd "find /media -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_MNT=`eval_bckgrd "find /mnt -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_OPT=`eval_bckgrd "find /opt -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_PRIVATE=`eval_bckgrd "find /private -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_SBIN=`eval_bckgrd "find /sbin -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_SNAP=`eval_bckgrd "find /snap -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_SRV=`eval_bckgrd "find /srv -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_TMP=`eval_bckgrd "find /tmp -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_USR=`eval_bckgrd "find /usr -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_VAR=`eval_bckgrd "find /var -type d -name \"seeddms*\" -o -name \".irssi\" -o -name \"logstash\" -o -name \"filelliza\" -o -name \".svn\" -o -name \"bind\" -o -name \".cloudflared\" -o -name \"couchdb\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"neo4j\" -o -name \"ldap\" -o -name \"keyrings\" -o -name \"mysql\" -o -name \".bluemix\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_APPLICATIONS=`eval_bckgrd "find /applications -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"*.kdbx\" -o -name \"config.php\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_BIN=`eval_bckgrd "find /bin -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"*.kdbx\" -o -name \"config.php\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_CACHE=`eval_bckgrd "find /.cache -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"*.kdbx\" -o -name \"config.php\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_CDROM=`eval_bckgrd "find /cdrom -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"*.kdbx\" -o -name \"config.php\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_ETC=`eval_bckgrd "find /etc -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"*.kdbx\" -o -name \"config.php\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"*knockd*\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_HOMESEARCH=`eval_bckgrd "find $HOMESEARCH -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"ssh*config\" -o -name \"config.php\" -o -name \"*.kdbx\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"google-chrome\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_LIB=`eval_bckgrd "find /lib -name \"*.service\" -o -name \"*.socket\" -o -name \"*.timer\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_LIB32=`eval_bckgrd "find /lib32 -name \"*.service\" -o -name \"*.socket\" -o -name \"*.timer\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_LIB64=`eval_bckgrd "find /lib64 -name \"*.service\" -o -name \"*.socket\" -o -name \"*.timer\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_MEDIA=`eval_bckgrd "find /media -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"*.kdbx\" -o -name \"config.php\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_MNT=`eval_bckgrd "find /mnt -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"*.kdbx\" -o -name \"config.php\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"sess_*\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_OPT=`eval_bckgrd "find /opt -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"*.kdbx\" -o -name \"config.php\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_PRIVATE=`eval_bckgrd "find /private -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"*.kdbx\" -o -name \"config.php\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_RUN=`eval_bckgrd "find /run -name \"*.service\" -o -name \"*.socket\" -o -name \"*.timer\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_SBIN=`eval_bckgrd "find /sbin -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"*.kdbx\" -o -name \"config.php\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_SNAP=`eval_bckgrd "find /snap -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"*.kdbx\" -o -name \"config.php\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_SRV=`eval_bckgrd "find /srv -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"*.kdbx\" -o -name \"config.php\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_SYS=`eval_bckgrd "find /sys -name \"*.service\" -o -name \"*.socket\" -o -name \"*.timer\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_SYSTEM=`eval_bckgrd "find /system -name \"*.service\" -o -name \"*.socket\" -o -name \"*.timer\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_SYSTEMD=`eval_bckgrd "find /systemd -name \"*.service\" -o -name \"*.socket\" -o -name \"*.timer\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_TMP=`eval_bckgrd "find /tmp -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"*.kdbx\" -o -name \"config.php\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"agent*\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"sess_*\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_USR=`eval_bckgrd "find /usr -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"ssh*config\" -o -name \"config.php\" -o -name \"*.kdbx\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_VAR=`eval_bckgrd "find /var -name \"unattended.xml\" -o -name \"ipsec.secrets\" -o -name \"gitlab.rm\" -o -name \"SAM\" -o -name \"passwd\" -o -name \"docker.sock\" -o -name \"security\" -o -name \"*.sqlite\" -o -name \"gvm-tools.conf\" -o -name \"*vnc*.txt\" -o -name \"unattend.inf\" -o -name \"security.sav\" -o -name \"*.kdbx\" -o -name \"config.php\" -o -name \"KeePass.config*\" -o -name \"SYSTEM\" -o -name \"*.cer\" -o -name \".git\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"*.gpg\" -o -name \"access_tokens.json\" -o -name \"*.db\" -o -name \"id_rsa*\" -o -name \"*.keystore\" -o -name \"postgresql.conf\" -o -name \"id_dsa*\" -o -name \"*.gnupg\" -o -name \"db.php\" -o -name \"tomcat-users.xml\" -o -name \"*.pgp\" -o -name \"access_tokens.db\" -o -name \"pagefile.sys\" -o -name \"credentials.db\" -o -name \"rsyncd.conf\" -o -name \"fastcgi_params\" -o -name \"https.conf\" -o -name \"*.sqlite3\" -o -name \"wp-config.php\" -o -name \"default.sav\" -o -name \"*.jks\" -o -name \".rhosts\" -o -name \"*vnc*.c*nf*\" -o -name \"*.rdg\" -o -name \"datasources.xml\" -o -name \"backups\" -o -name \"Dockerfile\" -o -name \"krb5.conf\" -o -name \"000-default\" -o -name \"filezilla.xml\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"web*.config\" -o -name \".lesshst\" -o -name \".sudo_as_admin_successful\" -o -name \"Ntds.dit\" -o -name \"mongod*.conf\" -o -name \"*.timer\" -o -name \"vault-ssh-helper.hcl\" -o -name \"*vnc*.xml\" -o -name \".*_history\" -o -name \".pypirc\" -o -name \"my.cnf\" -o -name \"*.swp\" -o -name \"unattend.txt\" -o -name \"php.ini\" -o -name \".gitconfig\" -o -name \"autologin\" -o -name \"ws_ftp.ini\" -o -name \"recentservers.xml\" -o -name \"*.socket\" -o -name \"scclient.exe\" -o -name \"TokenCache.dat\" -o -name \"storage.php\" -o -name \"*credential*\" -o -name \"AppEvent.Evt\" -o -name \".msmtprc\" -o -name \"iis6.log\" -o -name \"secrets.yml\" -o -name \"system.sav\" -o -name \"software\" -o -name \"unattend.xml\" -o -name \"FreeSSHDservice.ini\" -o -name \"rsyncd.secrets\" -o -name \"RDCMan.settings\" -o -name \"sess_*\" -o -name \"software.sav\" -o -name \"kadm5.acl\" -o -name \"credentials\" -o -name \"wcx_ftp.ini\" -o -name \"ConsoleHost_history.txt\" -o -name \"*.pem\" -o -name \"sysprep.xml\" -o -name \".bashrc\" -o -name \"*.key\" -o -name \"*.ovpn\" -o -name \"authorized_keys\" -o -name \"sites.ini\" -o -name \"docker.socket\" -o -name \"bash.exe\" -o -name \"NetSetup.log\" -o -name \"cloud.cfg\" -o -name \"mosquitto.conf\" -o -name \"KeePass.ini\" -o -name \"ftp.ini\" -o -name \".plan\" -o -name \"wsl.exe\" -o -name \"accessTokens.json\" -o -name \"appcmd.exe\" -o -name \"ftp.config\" -o -name \"printers.xml\" -o -name \"pgsql.conf\" -o -name \"autologin.conf\" -o -name \".htpasswd\" -o -name \"*.viminfo\" -o -name \"settings.php\" -o -name \"database.php\" -o -name \"my.ini\" -o -name \"SecEvent.Evt\" -o -name \"sysprep.inf\" -o -name \".k5login\" -o -name \"*.ftpconfig\" -o -name \"pg_hba.conf\" -o -name \"krb5.keytab\" -o -name \"AzureRMContext.json\" -o -name \"https-xampp.conf\" -o -name \"hosts.equiv\" -o -name \"server.xml\" -o -name \"elasticsearch.y*ml\" -o -name \"services.xml\" -o -name \"*.service\" -o -name \"azureProfile.json\" -o -name \".git-credentials\" -o -name \"*config*.php\" -o -name \"*.p12\" -o -name \".recently-used.xbel\" -o -name \".erlang.cookie\" -o -name \"authorized_hosts\" -o -name \"pgadmin*.db\" -o -name \"error.log\" -o -name \"ntuser.dat\" -o -name \"cesi.conf\" -o -name \"gitlab.yml\" -o -name \"supervisord.conf\" -o -name \"*.der\" -o -name \"redis.conf\" -o -name \"access.log\" -o -name \"snmpd.conf\" -o -name \"backup\" -o -name \"ddclient.conf\" -o -name \"docker-compose.yml\" -o -name \"scheduledtasks.xml\" -o -name \"winscp.ini\" -o -name \"*.pfx\" -o -name \"kibana.y*ml\" -o -name \"hostapd.conf\" -o -name \".google_authenticator\" -o -name \"index.dat\" -o -name \"creds*\" -o -name \"*password*\" -o -name \".env\" -o -name \".profile\" -o -name \".vault-token\" -o -name \".ldaprc\" -o -name \"groups.xml\" -o -name \"legacy_credentials.db\" -o -name \"*.crt\" -o -name \"drives.xml\" -o -name \"httpd.conf\" -o -name \".github\" -o -name \"KeePass.enforced*\" -o -name \"*.csr\" -o -name \"known_hosts\" -o -name \"setupinfo.bak\" -o -name \"*.keyring\" -o -name \"ipsec.conf\" -o -name \"ffftp.ini\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_APPLICATIONS=`eval_bckgrd "find /applications -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_BIN=`eval_bckgrd "find /bin -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_CACHE=`eval_bckgrd "find /.cache -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_CDROM=`eval_bckgrd "find /cdrom -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_ETC=`eval_bckgrd "find /etc -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \"system.d\" -o -name \".vnc\" -o -name \"sites-enabled\" -o -name \"cacti\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_HOMESEARCH=`eval_bckgrd "find $HOMESEARCH -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_MEDIA=`eval_bckgrd "find /media -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_MNT=`eval_bckgrd "find /mnt -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_OPT=`eval_bckgrd "find /opt -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_PRIVATE=`eval_bckgrd "find /private -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_SBIN=`eval_bckgrd "find /sbin -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_SNAP=`eval_bckgrd "find /snap -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_SRV=`eval_bckgrd "find /srv -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_TMP=`eval_bckgrd "find /tmp -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_USR=`eval_bckgrd "find /usr -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_DIR_VAR=`eval_bckgrd "find /var -type d -name \"mysql\" -o -name \".bluemix\" -o -name \".cloudflared\" -o -name \"neo4j\" -o -name \"filezilla\" -o -name \"bind\" -o -name \"seeddms*\" -o -name \"logstash\" -o -name \".irssi\" -o -name \".svn\" -o -name \".vnc\" -o -name \"cacti\" -o -name \"sites-enabled\" -o -name \"ldap\" -o -name \"couchdb\" -o -name \"keyrings\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_APPLICATIONS=`eval_bckgrd "find /applications -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_BIN=`eval_bckgrd "find /bin -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_CACHE=`eval_bckgrd "find /.cache -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_CDROM=`eval_bckgrd "find /cdrom -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_ETC=`eval_bckgrd "find /etc -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"*knockd*\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_HOMESEARCH=`eval_bckgrd "find $HOMESEARCH -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"ssh*config\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_LIB=`eval_bckgrd "find /lib -name \"*.timer\" -o -name \"*.socket\" -o -name \"*.service\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_LIB32=`eval_bckgrd "find /lib32 -name \"*.timer\" -o -name \"*.socket\" -o -name \"*.service\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_LIB64=`eval_bckgrd "find /lib64 -name \"*.timer\" -o -name \"*.socket\" -o -name \"*.service\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_MEDIA=`eval_bckgrd "find /media -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_MNT=`eval_bckgrd "find /mnt -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"sess_*\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_OPT=`eval_bckgrd "find /opt -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_PRIVATE=`eval_bckgrd "find /private -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_RUN=`eval_bckgrd "find /run -name \"*.timer\" -o -name \"*.socket\" -o -name \"*.service\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_SBIN=`eval_bckgrd "find /sbin -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_SNAP=`eval_bckgrd "find /snap -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_SRV=`eval_bckgrd "find /srv -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_SYS=`eval_bckgrd "find /sys -name \"*.timer\" -o -name \"*.socket\" -o -name \"*.service\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_SYSTEM=`eval_bckgrd "find /system -name \"*.timer\" -o -name \"*.socket\" -o -name \"*.service\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_SYSTEMD=`eval_bckgrd "find /systemd -name \"*.timer\" -o -name \"*.socket\" -o -name \"*.service\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_TMP=`eval_bckgrd "find /tmp -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"sess_*\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"agent*\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_USR=`eval_bckgrd "find /usr -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"ssh*config\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
FIND_VAR=`eval_bckgrd "find /var -name \"supervisord.conf\" -o -name \"*credential*\" -o -name \"pgsql.conf\" -o -name \"RDCMan.settings\" -o -name \"*.crt\" -o -name \"protecteduserkey.bin\" -o -name \"krb5.keytab\" -o -name \"*vnc*.txt\" -o -name \".gitconfig\" -o -name \".bashrc\" -o -name \"*.csr\" -o -name \".recently-used.xbel\" -o -name \"anaconda-ks.cfg\" -o -name \"sitemanager.xml\" -o -name \"ConsoleHost_history.txt\" -o -name \".*_history.*\" -o -name \"pagefile.sys\" -o -name \"debian.cnf\" -o -name \"my.ini\" -o -name \"autologin.conf\" -o -name \"*config*.php\" -o -name \"unattended.xml\" -o -name \"rsyncd.secrets\" -o -name \"*.service\" -o -name \"krb5.conf\" -o -name \"ftp.ini\" -o -name \"vault-ssh-helper.hcl\" -o -name \"tomcat-users.xml\" -o -name \".lesshst\" -o -name \"unattend.txt\" -o -name \"software.sav\" -o -name \"index.dat\" -o -name \"*.gpg\" -o -name \"setupinfo\" -o -name \"*vnc*.ini\" -o -name \"security.sav\" -o -name \".profile\" -o -name \".sudo_as_admin_successful\" -o -name \"access_tokens.json\" -o -name \"printers.xml\" -o -name \".git-credentials\" -o -name \"accessTokens.json\" -o -name \"hostapd.conf\" -o -name \"*password*\" -o -name \"config.php\" -o -name \"legacy_credentials.db\" -o -name \"kadm5.acl\" -o -name \"*.pgp\" -o -name \"id_dsa*\" -o -name \"httpd.conf\" -o -name \"*.pem\" -o -name \"KeePass.config*\" -o -name \"SAM\" -o -name \"https.conf\" -o -name \"my.cnf\" -o -name \"TokenCache.dat\" -o -name \".github\" -o -name \"authorized_hosts\" -o -name \"*.rdg\" -o -name \"settings.php\" -o -name \"000-default.conf\" -o -name \"php.ini\" -o -name \"backups\" -o -name \".htpasswd\" -o -name \"*.ovpn\" -o -name \"sysprep.inf\" -o -name \"sess_*\" -o -name \"groups.xml\" -o -name \"access_tokens.db\" -o -name \"*.jks\" -o -name \"*.socket\" -o -name \".git\" -o -name \"ddclient.conf\" -o -name \"*.keystore\" -o -name \"*vnc*.c*nf*\" -o -name \"winscp.ini\" -o -name \".vault-token\" -o -name \"gvm-tools.conf\" -o -name \"credentials\" -o -name \"gitlab.yml\" -o -name \"secrets.yml\" -o -name \"wp-config.php\" -o -name \"postgresql.conf\" -o -name \"server.xml\" -o -name \"*vnc*.xml\" -o -name \"*.timer\" -o -name \"credentials.db\" -o -name \"*.sqlite\" -o -name \"scheduledtasks.xml\" -o -name \"ffftp.ini\" -o -name \"docker.sock\" -o -name \"error.log\" -o -name \".rhosts\" -o -name \"SYSTEM\" -o -name \"SecEvent.Evt\" -o -name \".k5login\" -o -name \"authorized_keys\" -o -name \"redis.conf\" -o -name \"*.cer\" -o -name \"default.sav\" -o -name \".ldaprc\" -o -name \"software\" -o -name \"fastcgi_params\" -o -name \"ftp.config\" -o -name \"AzureRMContext.json\" -o -name \"system.sav\" -o -name \".plan\" -o -name \"known_hosts\" -o -name \"ws_ftp.ini\" -o -name \"scclient.exe\" -o -name \"filezilla.xml\" -o -name \"db.php\" -o -name \".msmtprc\" -o -name \"access.log\" -o -name \"KeePass.enforced*\" -o -name \"unattend.xml\" -o -name \"docker.socket\" -o -name \"*.key\" -o -name \"kibana.y*ml\" -o -name \"Ntds.dit\" -o -name \"sites.ini\" -o -name \"https-xampp.conf\" -o -name \"KeePass.ini\" -o -name \"ipsec.conf\" -o -name \"storage.php\" -o -name \"Dockerfile\" -o -name \"docker-compose.yml\" -o -name \".erlang.cookie\" -o -name \"mongod*.conf\" -o -name \".pypirc\" -o -name \"creds*\" -o -name \".google_authenticator\" -o -name \"ipsec.secrets\" -o -name \"azureProfile.json\" -o -name \"cloud.cfg\" -o -name \"*.swp\" -o -name \"*.der\" -o -name \"drives.xml\" -o -name \"iis6.log\" -o -name \"NetSetup.log\" -o -name \"*.db\" -o -name \"cesi.conf\" -o -name \".env\" -o -name \"pg_hba.conf\" -o -name \"*.gnupg\" -o -name \"hosts.equiv\" -o -name \"web*.config\" -o -name \"*.pfx\" -o -name \"snmpd.conf\" -o -name \"wcx_ftp.ini\" -o -name \"bash.exe\" -o -name \"sysprep.xml\" -o -name \"passwd\" -o -name \"FreeSSHDservice.ini\" -o -name \"pgadmin*.db\" -o -name \"recentservers.xml\" -o -name \"backup\" -o -name \"*.keyring\" -o -name \"setupinfo.bak\" -o -name \"id_rsa*\" -o -name \"appcmd.exe\" -o -name \"mosquitto.conf\" -o -name \"AppEvent.Evt\" -o -name \"*.kdbx\" -o -name \"gitlab.rm\" -o -name \"wsl.exe\" -o -name \"*.p12\" -o -name \"autologin\" -o -name \"system\" -o -name \"rsyncd.conf\" -o -name \"ntuser.dat\" -o -name \"database.php\" -o -name \"elasticsearch.y*ml\" -o -name \"datasources.xml\" -o -name \"*.sqlite3\" -o -name \"*.ftpconfig\" -o -name \"*.viminfo\" -o -name \"unattend.inf\" 2>/dev/null | sort; printf \\\$YELLOW'. '\\\$NC 1>&2;"`
wait # Always wait at the end
CONT_THREADS=0 #Reset the threads counter
#GENERATE THE STORAGES OF THE FOUND FILES
PSTORAGE_SYSTEMD=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/lib64|^/.cache|^/bin|^/var|^/etc|^/mnt|^/private|^/usr|^/cdrom|^/opt|^/system|^/snap|^/lib32|^/lib|^/srv|^/run|^/applications|^/tmp|^/sys|^/media|^/systemd|^/sbin|^$GREPHOMESEARCH" | grep -E ".*\.service$" | sort | uniq | head -n 70)
PSTORAGE_TIMER=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/lib64|^/.cache|^/bin|^/var|^/etc|^/mnt|^/private|^/usr|^/cdrom|^/opt|^/system|^/snap|^/lib32|^/lib|^/srv|^/run|^/applications|^/tmp|^/sys|^/media|^/systemd|^/sbin|^$GREPHOMESEARCH" | grep -E ".*\.timer$" | sort | uniq | head -n 70)
PSTORAGE_SOCKET=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/lib64|^/.cache|^/bin|^/var|^/etc|^/mnt|^/private|^/usr|^/cdrom|^/opt|^/system|^/snap|^/lib32|^/lib|^/srv|^/run|^/applications|^/tmp|^/sys|^/media|^/systemd|^/sbin|^$GREPHOMESEARCH" | grep -E ".*\.socket$" | sort | uniq | head -n 70)
PSTORAGE_DBUS=$(echo -e "$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/etc" | grep -E "system\.d$" | sort | uniq | head -n 70)
PSTORAGE_MYSQL=$(echo -e "$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -v -E 'mysql/mysql' | grep -E '^/etc/.*mysql|/usr/var/lib/.*mysql|/var/lib/.*mysql' | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "mysql$" | sort | uniq | head -n 70)
PSTORAGE_POSTGRESQL=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "pgadmin.*\.db$|pg_hba\.conf$|postgresql\.conf$|pgsql\.conf$" | sort | uniq | head -n 70)
PSTORAGE_APACHE=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM\n$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "sites-enabled$|000-default$" | sort | uniq | head -n 70)
PSTORAGE_PHPCOOKIES=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E '/tmp/.*sess_.*|/var/tmp/.*sess_.*' | grep -E "^/tmp|^/var|^/mnt" | grep -E "sess_.*$" | sort | uniq | head -n 70)
PSTORAGE_PHP_FILES=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E ".*config.*\.php$|database\.php$|db\.php$|storage\.php$|settings\.php$" | sort | uniq | head -n 70)
PSTORAGE_WORDPRESS=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "wp-config\.php$" | sort | uniq | head -n 70)
PSTORAGE_DRUPAL=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E '/default/settings.php' | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "settings\.php$" | sort | uniq | head -n 70)
PSTORAGE_MOODLE=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E 'moodle/config.php' | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "config\.php$" | sort | uniq | head -n 70)
PSTORAGE_TOMCAT=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "tomcat-users\.xml$" | sort | uniq | head -n 70)
PSTORAGE_MONGO=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "mongod.*\.conf$" | sort | uniq | head -n 70)
PSTORAGE_SUPERVISORD=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "supervisord\.conf$" | sort | uniq | head -n 70)
PSTORAGE_CESI=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "cesi\.conf$" | sort | uniq | head -n 70)
PSTORAGE_RSYNC=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "rsyncd\.conf$|rsyncd\.secrets$" | sort | uniq | head -n 70)
PSTORAGE_HOSTAPD=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "hostapd\.conf$" | sort | uniq | head -n 70)
PSTORAGE_ANACONDA_KS=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "anaconda-ks\.cfg$" | sort | uniq | head -n 70)
PSTORAGE_VNC=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM\n$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "\.vnc$|.*vnc.*\.c.*nf.*$|.*vnc.*\.ini$|.*vnc.*\.txt$|.*vnc.*\.xml$" | sort | uniq | head -n 70)
PSTORAGE_LDAP=$(echo -e "$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "ldap$" | sort | uniq | head -n 70)
PSTORAGE_OPEN_VPN=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E ".*\.ovpn$" | sort | uniq | head -n 70)
PSTORAGE_SSH_FILES=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "id_dsa.*$|id_rsa.*$|known_hosts$|authorized_hosts$|authorized_keys$" | sort | uniq | head -n 70)
PSTORAGE_CERTSB4=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -v -E '^/usr/share/|^/etc/ssl/|^/usr/local/lib/|^/usr/lib.*' | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E ".*\.pem$|.*\.cer$|.*\.crt$" | sort | uniq | head -n 70)
PSTORAGE_CERTSBIN=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -v -E '^/usr/share/|^/etc/ssl/|^/usr/local/lib/|^/usr/lib/.*' | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E ".*\.csr$|.*\.der$" | sort | uniq | head -n 70)
PSTORAGE_CERTSCLIENT=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -v -E '^/usr/share/|^/etc/ssl/|^/usr/local/lib/|^/usr/lib/.*' | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E ".*\.pfx$|.*\.p12$" | sort | uniq | head -n 70)
PSTORAGE_SSH_AGENTS=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/tmp" | grep -E "agent.*$" | sort | uniq | head -n 70)
PSTORAGE_SSH_CONFIG=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^$GREPHOMESEARCH|^/usr" | grep -E "ssh.*config$" | sort | uniq | head -n 70)
PSTORAGE_CLOUD_CREDENTIALS=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM\n$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "credentials$|credentials\.db$|legacy_credentials\.db$|access_tokens\.db$|access_tokens\.json$|accessTokens\.json$|azureProfile\.json$|TokenCache\.dat$|AzureRMContext\.json$|\.bluemix$" | sort | uniq | head -n 70)
PSTORAGE_KERBEROS=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "krb5\.conf$|krb5\.keytab$|\.k5login$|kadm5\.acl$" | sort | uniq | head -n 70)
PSTORAGE_KIBANA=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "kibana\.y.*ml$" | sort | uniq | head -n 70)
PSTORAGE_KNOCKD=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E '/etc/init.d/' | grep -E "^/etc" | grep -E ".*knockd.*$" | sort | uniq | head -n 70)
PSTORAGE_LOGSTASH=$(echo -e "$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "logstash$" | sort | uniq | head -n 70)
PSTORAGE_ELASTICSEARCH=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "elasticsearch\.y.*ml$" | sort | uniq | head -n 70)
PSTORAGE_VAULT_SSH_HELPER=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "vault-ssh-helper\.hcl$" | sort | uniq | head -n 70)
PSTORAGE_VAULT_SSH_TOKEN=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "\.vault-token$" | sort | uniq | head -n 70)
PSTORAGE_COUCHDB=$(echo -e "$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "couchdb$" | sort | uniq | head -n 70)
PSTORAGE_REDIS=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "redis\.conf$" | sort | uniq | head -n 70)
PSTORAGE_MOSQUITTO=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "mosquitto\.conf$" | sort | uniq | head -n 70)
PSTORAGE_NEO4J=$(echo -e "$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "neo4j$" | sort | uniq | head -n 70)
PSTORAGE_CLOUD_INIT=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "cloud\.cfg$" | sort | uniq | head -n 70)
PSTORAGE_ERLANG=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "\.erlang\.cookie$" | sort | uniq | head -n 70)
PSTORAGE_GMV_AUTH=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "gvm-tools\.conf$" | sort | uniq | head -n 70)
PSTORAGE_IPSEC=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "ipsec\.secrets$|ipsec\.conf$" | sort | uniq | head -n 70)
PSTORAGE_IRSSI=$(echo -e "$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "\.irssi$" | sort | uniq | head -n 70)
PSTORAGE_KEYRING=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM\n$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "keyrings$|.*\.keyring$|.*\.keystore$|.*\.jks$" | sort | uniq | head -n 70)
PSTORAGE_FILEZILLA=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM\n$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "filelliza$|filezilla\.xml$" | sort | uniq | head -n 70)
PSTORAGE_BACKUP_MANAGER=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "storage\.php$|database\.php$" | sort | uniq | head -n 70)
PSTORAGE_SPLUNK=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "passwd$" | sort | uniq | head -n 70)
PSTORAGE_GITLAB=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -v -E '/lib' | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "secrets\.yml$|gitlab\.yml$|gitlab\.rm$" | sort | uniq | head -n 70)
PSTORAGE_PGP_GPG=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -v -E 'README.gnupg' | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E ".*\.pgp$|.*\.gpg$|.*\.gnupg$" | sort | uniq | head -n 70)
PSTORAGE_CACHE_VI=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E ".*\.swp$|.*\.viminfo$" | sort | uniq | head -n 70)
PSTORAGE_DOCKER=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "docker\.socket$|docker\.sock$|Dockerfile$|docker-compose\.yml$" | sort | uniq | head -n 70)
PSTORAGE_FIREFOX=$(echo -e "$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^$GREPHOMESEARCH" | grep -E "\.mozilla$" | sort | uniq | head -n 70)
PSTORAGE_CHROME=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^$GREPHOMESEARCH" | grep -E "google-chrome$" | sort | uniq | head -n 70)
PSTORAGE_AUTOLOGIN=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "autologin$|autologin\.conf$" | sort | uniq | head -n 70)
PSTORAGE_FASTCGI=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "fastcgi_params$" | sort | uniq | head -n 70)
PSTORAGE_SNMP=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "snmpd\.conf$" | sort | uniq | head -n 70)
PSTORAGE_PYPIRC=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "\.pypirc$" | sort | uniq | head -n 70)
PSTORAGE_CLOUDFLARE=$(echo -e "$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "\.cloudflared$" | sort | uniq | head -n 70)
PSTORAGE_HISTORY=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "\..*_history$" | sort | uniq | head -n 70)
PSTORAGE_HTTP_CONF=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "httpd\.conf$" | sort | uniq | head -n 70)
PSTORAGE_HTPASSWD=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "\.htpasswd$" | sort | uniq | head -n 70)
PSTORAGE_LDAPRC=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "\.ldaprc$" | sort | uniq | head -n 70)
PSTORAGE_ENV=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "\.env$" | sort | uniq | head -n 70)
PSTORAGE_MSMTPRC=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "\.msmtprc$" | sort | uniq | head -n 70)
PSTORAGE_GITHUB=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "\.github$|\.gitconfig$|\.git-credentials$|\.git$" | sort | uniq | head -n 70)
PSTORAGE_SVN=$(echo -e "$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "\.svn$" | sort | uniq | head -n 70)
PSTORAGE_KEEPASS=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E ".*\.kdbx$|KeePass\.config.*$|KeePass\.ini$|KeePass\.enforced.*$" | sort | uniq | head -n 70)
PSTORAGE_FTP=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E ".*\.ftpconfig$|ffftp\.ini$|ftp\.ini$|ftp\.config$|ws_ftp\.ini$" | sort | uniq | head -n 70)
PSTORAGE_BIND=$(echo -e "$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "bind$" | sort | uniq | head -n 70)
PSTORAGE_SEEDDMS=$(echo -e "$FIND_DIR_BIN\n$FIND_DIR_CACHE\n$FIND_DIR_SRV\n$FIND_DIR_PRIVATE\n$FIND_DIR_MNT\n$FIND_DIR_TMP\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_VAR\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_MEDIA\n$FIND_DIR_ETC\n$FIND_DIR_OPT\n$FIND_DIR_USR\n$FIND_DIR_SBIN\n$FIND_DIR_CDROM\n$FIND_DIR_SNAP" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "seeddms.*$" | sort | uniq | head -n 70)
PSTORAGE_DDCLIENT=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "ddclient\.conf$" | sort | uniq | head -n 70)
PSTORAGE_INTERESTING_LOGS=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "access\.log$|error\.log$" | sort | uniq | head -n 70)
PSTORAGE_OTHER_INTERESTING_FILES=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "\.bashrc$|\.google_authenticator$|hosts\.equiv$|\.lesshst$|\.plan$|\.profile$|\.recently-used\.xbel$|\.rhosts$|\.sudo_as_admin_successful$" | sort | uniq | head -n 70)
PSTORAGE_WINDOWS_FILES=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "unattend\.inf$|.*\.rdg$|AppEvent\.Evt$|ConsoleHost_history\.txt$|FreeSSHDservice\.ini$|NetSetup\.log$|Ntds\.dit$|RDCMan\.settings$|SAM$|SYSTEM$|SecEvent\.Evt$|appcmd\.exe$|bash\.exe$|datasources\.xml$|default\.sav$|drives\.xml$|groups\.xml$|https-xampp\.conf$|https\.conf$|iis6\.log$|index\.dat$|my\.cnf$|my\.ini$|ntuser\.dat$|pagefile\.sys$|php\.ini$|printers\.xml$|recentservers\.xml$|scclient\.exe$|scheduledtasks\.xml$|security$|security\.sav$|server\.xml$|services\.xml$|setupinfo$|setupinfo\.bak$|sitemanager\.xml$|sites\.ini$|software$|software\.sav$|sysprep\.inf$|sysprep\.xml$|system\.sav$|unattend\.txt$|unattend\.xml$|unattended\.xml$|wcx_ftp\.ini$|web.*\.config$|winscp\.ini$|wsl\.exe$" | sort | uniq | head -n 70)
PSTORAGE_DATABASE=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -v -E '/man/|/usr/|/var/cache/' | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E ".*\.db$|.*\.sqlite$|.*\.sqlite3$" | sort | uniq | head -n 70)
PSTORAGE_BACKUPS=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E "backup$|backups$" | sort | uniq | head -n 70)
PSTORAGE_PASSWORD_FILES=$(echo -e "$FIND_SRV\n$FIND_SYSTEM\n$FIND_LIB\n$FIND_SYS\n$FIND_BIN\n$FIND_ETC\n$FIND_RUN\n$FIND_VAR\n$FIND_APPLICATIONS\n$FIND_PRIVATE\n$FIND_LIB32\n$FIND_USR\n$FIND_OPT\n$FIND_MEDIA\n$FIND_LIB64\n$FIND_SNAP\n$FIND_SYSTEMD\n$FIND_SBIN\n$FIND_TMP\n$FIND_CACHE\n$FIND_HOMESEARCH\n$FIND_MNT\n$FIND_CDROM" | grep -E "^/applications|^/.cache|^/private|^/usr|^/tmp|^/bin|^/cdrom|^/var|^/opt|^/media|^/etc|^/sbin|^/srv|^/mnt|^$GREPHOMESEARCH|^/snap" | grep -E ".*password.*$|.*credential.*$|creds.*$|.*\.key$" | sort | uniq | head -n 70)
PSTORAGE_SYSTEMD=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/system|^/usr|^/srv|^/.cache|^/lib|^/private|^/media|^/snap|^$GREPHOMESEARCH|^/lib64|^/cdrom|^/opt|^/run|^/etc|^/tmp|^/var|^/lib32|^/mnt|^/sbin|^/applications|^/sys|^/bin|^/systemd" | grep -E ".*\.service$" | sort | uniq | head -n 70)
PSTORAGE_TIMER=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/system|^/usr|^/srv|^/.cache|^/lib|^/private|^/media|^/snap|^$GREPHOMESEARCH|^/lib64|^/cdrom|^/opt|^/run|^/etc|^/tmp|^/var|^/lib32|^/mnt|^/sbin|^/applications|^/sys|^/bin|^/systemd" | grep -E ".*\.timer$" | sort | uniq | head -n 70)
PSTORAGE_SOCKET=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/system|^/usr|^/srv|^/.cache|^/lib|^/private|^/media|^/snap|^$GREPHOMESEARCH|^/lib64|^/cdrom|^/opt|^/run|^/etc|^/tmp|^/var|^/lib32|^/mnt|^/sbin|^/applications|^/sys|^/bin|^/systemd" | grep -E ".*\.socket$" | sort | uniq | head -n 70)
PSTORAGE_DBUS=$(echo -e "$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/etc" | grep -E "system\.d$" | sort | uniq | head -n 70)
PSTORAGE_MYSQL=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN\n$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -v -E 'mysql/mysql' | grep -E '^/etc/.*mysql|/usr/var/lib/.*mysql|/var/lib/.*mysql' | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "mysql$|debian\.cnf$" | sort | uniq | head -n 70)
PSTORAGE_POSTGRESQL=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "pgadmin.*\.db$|pg_hba\.conf$|postgresql\.conf$|pgsql\.conf$" | sort | uniq | head -n 70)
PSTORAGE_APACHE=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN\n$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "sites-enabled$|000-default\.conf$" | sort | uniq | head -n 70)
PSTORAGE_PHP_SESSIONS=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E '/tmp/.*sess_.*|/var/tmp/.*sess_.*' | grep -E "^/mnt|^/tmp|^/var" | grep -E "sess_.*$" | sort | uniq | head -n 70)
PSTORAGE_PHP_FILES=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E ".*config.*\.php$|database\.php$|db\.php$|storage\.php$|settings\.php$" | sort | uniq | head -n 70)
PSTORAGE_WORDPRESS=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "wp-config\.php$" | sort | uniq | head -n 70)
PSTORAGE_DRUPAL=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E '/default/settings.php' | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "settings\.php$" | sort | uniq | head -n 70)
PSTORAGE_MOODLE=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E 'moodle/config.php' | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "config\.php$" | sort | uniq | head -n 70)
PSTORAGE_TOMCAT=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "tomcat-users\.xml$" | sort | uniq | head -n 70)
PSTORAGE_MONGO=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "mongod.*\.conf$" | sort | uniq | head -n 70)
PSTORAGE_SUPERVISORD=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "supervisord\.conf$" | sort | uniq | head -n 70)
PSTORAGE_CESI=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "cesi\.conf$" | sort | uniq | head -n 70)
PSTORAGE_RSYNC=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "rsyncd\.conf$|rsyncd\.secrets$" | sort | uniq | head -n 70)
PSTORAGE_HOSTAPD=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "hostapd\.conf$" | sort | uniq | head -n 70)
PSTORAGE_ANACONDA_KS=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "anaconda-ks\.cfg$" | sort | uniq | head -n 70)
PSTORAGE_VNC=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN\n$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "\.vnc$|.*vnc.*\.c.*nf.*$|.*vnc.*\.ini$|.*vnc.*\.txt$|.*vnc.*\.xml$" | sort | uniq | head -n 70)
PSTORAGE_LDAP=$(echo -e "$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "ldap$" | sort | uniq | head -n 70)
PSTORAGE_OPENVPN=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E ".*\.ovpn$" | sort | uniq | head -n 70)
PSTORAGE_SSH=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "id_dsa.*$|id_rsa.*$|known_hosts$|authorized_hosts$|authorized_keys$" | sort | uniq | head -n 70)
PSTORAGE_CERTSB4=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -v -E '^/usr/share/|^/etc/ssl/|^/usr/local/lib/|^/usr/lib.*' | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E ".*\.pem$|.*\.cer$|.*\.crt$" | sort | uniq | head -n 70)
PSTORAGE_CERTSBIN=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -v -E '^/usr/share/|^/etc/ssl/|^/usr/local/lib/|^/usr/lib/.*' | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E ".*\.csr$|.*\.der$" | sort | uniq | head -n 70)
PSTORAGE_CERTSCLIENT=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -v -E '^/usr/share/|^/etc/ssl/|^/usr/local/lib/|^/usr/lib/.*' | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E ".*\.pfx$|.*\.p12$" | sort | uniq | head -n 70)
PSTORAGE_SSH_AGENTS=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/tmp" | grep -E "agent.*$" | sort | uniq | head -n 70)
PSTORAGE_SSH_CONFIG=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/usr|^$GREPHOMESEARCH" | grep -E "ssh.*config$" | sort | uniq | head -n 70)
PSTORAGE_CLOUD_CREDENTIALS=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN\n$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "credentials$|credentials\.db$|legacy_credentials\.db$|access_tokens\.db$|access_tokens\.json$|accessTokens\.json$|azureProfile\.json$|TokenCache\.dat$|AzureRMContext\.json$|\.bluemix$" | sort | uniq | head -n 70)
PSTORAGE_KERBEROS=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "krb5\.conf$|krb5\.keytab$|\.k5login$|kadm5\.acl$" | sort | uniq | head -n 70)
PSTORAGE_KIBANA=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "kibana\.y.*ml$" | sort | uniq | head -n 70)
PSTORAGE_KNOCKD=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E '/etc/init.d/' | grep -E "^/etc" | grep -E ".*knockd.*$" | sort | uniq | head -n 70)
PSTORAGE_LOGSTASH=$(echo -e "$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "logstash$" | sort | uniq | head -n 70)
PSTORAGE_ELASTICSEARCH=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "elasticsearch\.y.*ml$" | sort | uniq | head -n 70)
PSTORAGE_VAULT_SSH_HELPER=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "vault-ssh-helper\.hcl$" | sort | uniq | head -n 70)
PSTORAGE_VAULT_SSH_TOKEN=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "\.vault-token$" | sort | uniq | head -n 70)
PSTORAGE_COUCHDB=$(echo -e "$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "couchdb$" | sort | uniq | head -n 70)
PSTORAGE_REDIS=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "redis\.conf$" | sort | uniq | head -n 70)
PSTORAGE_MOSQUITTO=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "mosquitto\.conf$" | sort | uniq | head -n 70)
PSTORAGE_NEO4J=$(echo -e "$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "neo4j$" | sort | uniq | head -n 70)
PSTORAGE_CLOUD_INIT=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "cloud\.cfg$" | sort | uniq | head -n 70)
PSTORAGE_ERLANG=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "\.erlang\.cookie$" | sort | uniq | head -n 70)
PSTORAGE_GMV_AUTH=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "gvm-tools\.conf$" | sort | uniq | head -n 70)
PSTORAGE_IPSEC=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "ipsec\.secrets$|ipsec\.conf$" | sort | uniq | head -n 70)
PSTORAGE_IRSSI=$(echo -e "$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "\.irssi$" | sort | uniq | head -n 70)
PSTORAGE_KEYRING=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN\n$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "keyrings$|.*\.keyring$|.*\.keystore$|.*\.jks$" | sort | uniq | head -n 70)
PSTORAGE_FILEZILLA=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN\n$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "filezilla$|filezilla\.xml$|recentservers\.xml$" | sort | uniq | head -n 70)
PSTORAGE_BACKUP_MANAGER=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "storage\.php$|database\.php$" | sort | uniq | head -n 70)
PSTORAGE_SPLUNK=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "passwd$" | sort | uniq | head -n 70)
PSTORAGE_GITLAB=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -v -E '/lib' | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "secrets\.yml$|gitlab\.yml$|gitlab\.rm$" | sort | uniq | head -n 70)
PSTORAGE_PGP_GPG=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -v -E 'README.gnupg' | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E ".*\.pgp$|.*\.gpg$|.*\.gnupg$" | sort | uniq | head -n 70)
PSTORAGE_CACHE_VI=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E ".*\.swp$|.*\.viminfo$" | sort | uniq | head -n 70)
PSTORAGE_DOCKER=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "docker\.socket$|docker\.sock$|Dockerfile$|docker-compose\.yml$" | sort | uniq | head -n 70)
PSTORAGE_FIREFOX=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^" | grep -E "\.mozilla$" | sort | uniq | head -n 70)
PSTORAGE_CHROME=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^" | grep -E "google-chrome$" | sort | uniq | head -n 70)
PSTORAGE_AUTOLOGIN=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "autologin$|autologin\.conf$" | sort | uniq | head -n 70)
PSTORAGE_FASTCGI=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "fastcgi_params$" | sort | uniq | head -n 70)
PSTORAGE_SNMP=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "snmpd\.conf$" | sort | uniq | head -n 70)
PSTORAGE_PYPIRC=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "\.pypirc$" | sort | uniq | head -n 70)
PSTORAGE_CLOUDFLARE=$(echo -e "$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "\.cloudflared$" | sort | uniq | head -n 70)
PSTORAGE_HISTORY=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "\..*_history\..*$" | sort | uniq | head -n 70)
PSTORAGE_HTTP_CONF=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "httpd\.conf$" | sort | uniq | head -n 70)
PSTORAGE_HTPASSWD=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "\.htpasswd$" | sort | uniq | head -n 70)
PSTORAGE_LDAPRC=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "\.ldaprc$" | sort | uniq | head -n 70)
PSTORAGE_ENV=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "\.env$" | sort | uniq | head -n 70)
PSTORAGE_MSMTPRC=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "\.msmtprc$" | sort | uniq | head -n 70)
PSTORAGE_GITHUB=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "\.github$|\.gitconfig$|\.git-credentials$|\.git$" | sort | uniq | head -n 70)
PSTORAGE_SVN=$(echo -e "$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "\.svn$" | sort | uniq | head -n 70)
PSTORAGE_KEEPASS=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E ".*\.kdbx$|KeePass\.config.*$|KeePass\.ini$|KeePass\.enforced.*$" | sort | uniq | head -n 70)
PSTORAGE_FTP=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E ".*\.ftpconfig$|ffftp\.ini$|ftp\.ini$|ftp\.config$|sites\.ini$|wcx_ftp\.ini$|winscp\.ini$|ws_ftp\.ini$" | sort | uniq | head -n 70)
PSTORAGE_BIND=$(echo -e "$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "bind$" | sort | uniq | head -n 70)
PSTORAGE_SEEDDMS=$(echo -e "$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "seeddms.*$" | sort | uniq | head -n 70)
PSTORAGE_DDCLIENT=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "ddclient\.conf$" | sort | uniq | head -n 70)
PSTORAGE_CACTI=$(echo -e "$FIND_DIR_VAR\n$FIND_DIR_OPT\n$FIND_DIR_SRV\n$FIND_DIR_USR\n$FIND_DIR_HOMESEARCH\n$FIND_DIR_ETC\n$FIND_DIR_MNT\n$FIND_DIR_SBIN\n$FIND_DIR_PRIVATE\n$FIND_DIR_BIN\n$FIND_DIR_APPLICATIONS\n$FIND_DIR_CACHE\n$FIND_DIR_SNAP\n$FIND_DIR_MEDIA\n$FIND_DIR_CDROM\n$FIND_DIR_TMP" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "cacti$" | sort | uniq | head -n 70)
PSTORAGE_INTERESTING_LOGS=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "access\.log$|error\.log$" | sort | uniq | head -n 70)
PSTORAGE_OTHER_INTERESTING_FILES=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "\.bashrc$|\.google_authenticator$|hosts\.equiv$|\.lesshst$|\.plan$|\.profile$|\.recently-used\.xbel$|\.rhosts$|\.sudo_as_admin_successful$" | sort | uniq | head -n 70)
PSTORAGE_WINDOWS_FILES=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "unattend\.inf$|.*\.rdg$|AppEvent\.Evt$|ConsoleHost_history\.txt$|FreeSSHDservice\.ini$|NetSetup\.log$|Ntds\.dit$|protecteduserkey\.bin$|RDCMan\.settings$|SAM$|SYSTEM$|SecEvent\.Evt$|appcmd\.exe$|bash\.exe$|datasources\.xml$|default\.sav$|drives\.xml$|groups\.xml$|https-xampp\.conf$|https\.conf$|iis6\.log$|index\.dat$|my\.cnf$|my\.ini$|ntuser\.dat$|pagefile\.sys$|php\.ini$|printers\.xml$|recentservers\.xml$|scclient\.exe$|scheduledtasks\.xml$|security\.sav$|server\.xml$|setupinfo$|setupinfo\.bak$|sitemanager\.xml$|sites\.ini$|software$|software\.sav$|sysprep\.inf$|sysprep\.xml$|system$|system\.sav$|unattend\.txt$|unattend\.xml$|unattended\.xml$|wcx_ftp\.ini$|ws_ftp\.ini$|web.*\.config$|winscp\.ini$|wsl\.exe$" | sort | uniq | head -n 70)
PSTORAGE_DATABASE=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -v -E '/man/|/usr/|/var/cache/' | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E ".*\.db$|.*\.sqlite$|.*\.sqlite3$" | sort | uniq | head -n 70)
PSTORAGE_BACKUPS=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E "backup$|backups$" | sort | uniq | head -n 70)
PSTORAGE_PASSWORD_FILES=$(echo -e "$FIND_TMP\n$FIND_CACHE\n$FIND_MNT\n$FIND_SRV\n$FIND_HOMESEARCH\n$FIND_LIB32\n$FIND_PRIVATE\n$FIND_VAR\n$FIND_SBIN\n$FIND_SYS\n$FIND_APPLICATIONS\n$FIND_SYSTEMD\n$FIND_LIB\n$FIND_ETC\n$FIND_USR\n$FIND_SYSTEM\n$FIND_LIB64\n$FIND_BIN\n$FIND_SNAP\n$FIND_MEDIA\n$FIND_CDROM\n$FIND_OPT\n$FIND_RUN" | grep -E "^/applications|^/.cache|^/bin|^/cdrom|^/private|^/opt|^/media|^/etc|^$GREPHOMESEARCH|^/snap|^/tmp|^/var|^/mnt|^/sbin|^/usr|^/srv" | grep -E ".*password.*$|.*credential.*$|creds.*$|.*\.key$" | sort | uniq | head -n 70)
##### POST SERACH VARIABLES #####
@ -2021,7 +2021,7 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
fi
echo ""
print_2title "Analizing PostgreSQL Files (limit 70)"
print_2title "Analyzing PostgreSQL Files (limit 70)"
echo "Version: $(warn_exec psql -V 2>/dev/null)"
if ! [ "`echo \"$PSTORAGE_POSTGRESQL\" | grep -E \"pgadmin.*\.db$\"`" ]; then echo_not_found "pgadmin*.db"; fi; printf "%s" "$PSTORAGE_POSTGRESQL" | grep -E "pgadmin.*\.db$" | while read f; do ls -ld "$f" | sed -${E} "s,pgadmin.*\.db$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_POSTGRESQL\" | grep -E \"pg_hba\.conf$\"`" ]; then echo_not_found "pg_hba.conf"; fi; printf "%s" "$PSTORAGE_POSTGRESQL" | grep -E "pg_hba\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,pg_hba\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -Ev "\W+\#|^#" | sed -${E} "s,auth|password|md5|user=|pass=|trust,${SED_RED},g"; done; echo "";
@ -2054,66 +2054,66 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
echo ""
fi
print_2title "Analizing Mongo Files (limit 70)"
print_2title "Analyzing Mongo Files (limit 70)"
echo "Version: $(warn_exec mongo --version 2>/dev/null; warn_exec mongod --version 2>/dev/null)"
if ! [ "`echo \"$PSTORAGE_MONGO\" | grep -E \"mongod.*\.conf$\"`" ]; then echo_not_found "mongod*.conf"; fi; printf "%s" "$PSTORAGE_MONGO" | grep -E "mongod.*\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,mongod.*\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -Ev "\W+\#|^#"; done; echo "";
print_2title "Analizing Apache Files (limit 70)"
print_2title "Analyzing Apache Files (limit 70)"
echo "Version: $(warn_exec apache2 -v 2>/dev/null; warn_exec httpd -v 2>/dev/null)"
print_3title 'PHP exec extensions'
grep -R -B1 "httpd-php" /etc/apache2 2>/dev/null
if ! [ "`echo \"$PSTORAGE_APACHE\" | grep -E \"sites-enabled$\"`" ]; then echo_not_found "sites-enabled"; fi; printf "%s" "$PSTORAGE_APACHE" | grep -E "sites-enabled$" | while read f; do ls -ld "$f" | sed -${E} "s,sites-enabled$,${SED_RED},"; for ff in $(find "$f" -name "*"); do ls -ld "$ff" | sed -${E} "s,,${SED_RED},"; cat "$ff" 2>/dev/null | grep -IEv "^$" | grep -E "AuthType|AuthName|AuthUserFile|ServerName|ServerAlias" | grep -Ev "^#" | sed -${E} "s,AuthType|AuthName|AuthUserFile|ServerName|ServerAlias,${SED_RED},g"; done; echo "";done; echo "";
if ! [ "`echo \"$PSTORAGE_APACHE\" | grep -E \"000-default$\"`" ]; then echo_not_found "000-default"; fi; printf "%s" "$PSTORAGE_APACHE" | grep -E "000-default$" | while read f; do ls -ld "$f" | sed -${E} "s,000-default$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,AuthType|AuthName|AuthUserFile|ServerName|ServerAlias,${SED_RED},g"; done; echo "";
if ! [ "`echo \"$PSTORAGE_APACHE\" | grep -E \"000-default\.conf$\"`" ]; then echo_not_found "000-default.conf"; fi; printf "%s" "$PSTORAGE_APACHE" | grep -E "000-default\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,000-default\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,AuthType|AuthName|AuthUserFile|ServerName|ServerAlias,${SED_RED},g"; done; echo "";
print_2title "Analizing Tomcat Files (limit 70)"
print_2title "Analyzing Tomcat Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_TOMCAT\" | grep -E \"tomcat-users\.xml$\"`" ]; then echo_not_found "tomcat-users.xml"; fi; printf "%s" "$PSTORAGE_TOMCAT" | grep -E "tomcat-users\.xml$" | while read f; do ls -ld "$f" | sed -${E} "s,tomcat-users\.xml$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "username=|password=" | sed -${E} "s,dbtype|dbhost|dbuser|dbhost|dbpass|dbport,${SED_RED},g"; done; echo "";
print_2title "Analizing FastCGI Files (limit 70)"
print_2title "Analyzing FastCGI Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_FASTCGI\" | grep -E \"fastcgi_params$\"`" ]; then echo_not_found "fastcgi_params"; fi; printf "%s" "$PSTORAGE_FASTCGI" | grep -E "fastcgi_params$" | while read f; do ls -ld "$f" | sed -${E} "s,fastcgi_params$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "DB_NAME|DB_USER|DB_PASS" | sed -${E} "s,DB_NAME|DB_USER|DB_PASS,${SED_RED},g"; done; echo "";
print_2title "Analizing Http conf Files (limit 70)"
print_2title "Analyzing Http conf Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_HTTP_CONF\" | grep -E \"httpd\.conf$\"`" ]; then echo_not_found "httpd.conf"; fi; printf "%s" "$PSTORAGE_HTTP_CONF" | grep -E "httpd\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,httpd\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "htaccess.*|htpasswd.*" | grep -Ev "\W+\#|^#" | sed -${E} "s,htaccess.*|htpasswd.*,${SED_RED},g"; done; echo "";
print_2title "Analizing Htpasswd Files (limit 70)"
print_2title "Analyzing Htpasswd Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_HTPASSWD\" | grep -E \"\.htpasswd$\"`" ]; then echo_not_found ".htpasswd"; fi; printf "%s" "$PSTORAGE_HTPASSWD" | grep -E "\.htpasswd$" | while read f; do ls -ld "$f" | sed -${E} "s,\.htpasswd$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -Ev "^#" | sed -${E} "s,.*,${SED_RED},g"; done; echo "";
print_2title "Analizing PHPCookies Files (limit 70)"
print_2title "Analyzing PHP Sessions Files (limit 70)"
ls /var/lib/php/sessions 2>/dev/null || echo_not_found /var/lib/php/sessions
if ! [ "`echo \"$PSTORAGE_PHPCOOKIES\" | grep -E \"sess_.*$\"`" ]; then echo_not_found "sess_*"; fi; printf "%s" "$PSTORAGE_PHPCOOKIES" | grep -E "sess_.*$" | while read f; do ls -ld "$f" | sed -${E} "s,sess_.*$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$"; done; echo "";
if ! [ "`echo \"$PSTORAGE_PHP_SESSIONS\" | grep -E \"sess_.*$\"`" ]; then echo_not_found "sess_*"; fi; printf "%s" "$PSTORAGE_PHP_SESSIONS" | grep -E "sess_.*$" | while read f; do ls -ld "$f" | sed -${E} "s,sess_.*$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$"; done; echo "";
print_2title "Analizing Wordpress Files (limit 70)"
print_2title "Analyzing Wordpress Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_WORDPRESS\" | grep -E \"wp-config\.php$\"`" ]; then echo_not_found "wp-config.php"; fi; printf "%s" "$PSTORAGE_WORDPRESS" | grep -E "wp-config\.php$" | while read f; do ls -ld "$f" | sed -${E} "s,wp-config\.php$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "PASSWORD|USER|NAME|HOST" | sed -${E} "s,PASSWORD|USER|NAME|HOST,${SED_RED},g"; done; echo "";
print_2title "Analizing Drupal Files (limit 70)"
print_2title "Analyzing Drupal Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_DRUPAL\" | grep -E \"settings\.php$\"`" ]; then echo_not_found "settings.php"; fi; printf "%s" "$PSTORAGE_DRUPAL" | grep -E "settings\.php$" | while read f; do ls -ld "$f" | sed -${E} "s,settings\.php$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "drupal_hash_salt|'database'|'username'|'password'|'host'|'port'|'driver'|'prefix'" | sed -${E} "s,drupal_hash_salt|'database'|'username'|'password'|'host'|'port'|'driver'|'prefix',${SED_RED},g"; done; echo "";
print_2title "Analizing Moodle Files (limit 70)"
print_2title "Analyzing Moodle Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_MOODLE\" | grep -E \"config\.php$\"`" ]; then echo_not_found "config.php"; fi; printf "%s" "$PSTORAGE_MOODLE" | grep -E "config\.php$" | while read f; do ls -ld "$f" | sed -${E} "s,config\.php$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "dbtype|dbhost|dbuser|dbhost|dbpass|dbport" | sed -${E} "s,dbtype|dbhost|dbuser|dbhost|dbpass|dbport,${SED_RED},g"; done; echo "";
print_2title "Analizing Supervisord Files (limit 70)"
print_2title "Analyzing Supervisord Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_SUPERVISORD\" | grep -E \"supervisord\.conf$\"`" ]; then echo_not_found "supervisord.conf"; fi; printf "%s" "$PSTORAGE_SUPERVISORD" | grep -E "supervisord\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,supervisord\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "port.*=|username.*=|password.*=" | sed -${E} "s,port.*=|username.*=|password.*=,${SED_RED},g"; done; echo "";
print_2title "Analizing Cesi Files (limit 70)"
print_2title "Analyzing Cesi Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_CESI\" | grep -E \"cesi\.conf$\"`" ]; then echo_not_found "cesi.conf"; fi; printf "%s" "$PSTORAGE_CESI" | grep -E "cesi\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,cesi\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "username.*=|password.*=|host.*=|port.*=|database.*=" | sed -${E} "s,username.*=|password.*=|host.*=|port.*=|database.*=,${SED_RED},g"; done; echo "";
print_2title "Analizing Rsync Files (limit 70)"
print_2title "Analyzing Rsync Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_RSYNC\" | grep -E \"rsyncd\.conf$\"`" ]; then echo_not_found "rsyncd.conf"; fi; printf "%s" "$PSTORAGE_RSYNC" | grep -E "rsyncd\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,rsyncd\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -Ev "\W+\#|^#" | sed -${E} "s,secrets.*|auth.*users.*=,${SED_RED},g"; done; echo "";
if ! [ "`echo \"$PSTORAGE_RSYNC\" | grep -E \"rsyncd\.secrets$\"`" ]; then echo_not_found "rsyncd.secrets"; fi; printf "%s" "$PSTORAGE_RSYNC" | grep -E "rsyncd\.secrets$" | while read f; do ls -ld "$f" | sed -${E} "s,rsyncd\.secrets$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,.*,${SED_RED},g"; done; echo "";
print_2title "Analizing Hostapd Files (limit 70)"
print_2title "Analyzing Hostapd Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_HOSTAPD\" | grep -E \"hostapd\.conf$\"`" ]; then echo_not_found "hostapd.conf"; fi; printf "%s" "$PSTORAGE_HOSTAPD" | grep -E "hostapd\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,hostapd\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,passphrase.*,${SED_RED},g"; done; echo "";
@ -2126,11 +2126,11 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
fi
echo ""
print_2title "Analizing Anaconda-ks Files (limit 70)"
print_2title "Analyzing Anaconda ks Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_ANACONDA_KS\" | grep -E \"anaconda-ks\.cfg$\"`" ]; then echo_not_found "anaconda-ks.cfg"; fi; printf "%s" "$PSTORAGE_ANACONDA_KS" | grep -E "anaconda-ks\.cfg$" | while read f; do ls -ld "$f" | sed -${E} "s,anaconda-ks\.cfg$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "rootpw.*" | sed -${E} "s,rootpw.*,${SED_RED},g"; done; echo "";
print_2title "Analizing VNC Files (limit 70)"
print_2title "Analyzing VNC Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_VNC\" | grep -E \"\.vnc$\"`" ]; then echo_not_found ".vnc"; fi; printf "%s" "$PSTORAGE_VNC" | grep -E "\.vnc$" | while read f; do ls -ld "$f" | sed -${E} "s,\.vnc$,${SED_RED},"; for ff in $(find "$f" -name "passwd"); do ls -ld "$ff" | sed -${E} "s,passwd,${SED_RED},"; done; echo "";done; echo "";
if ! [ "`echo \"$PSTORAGE_VNC\" | grep -E \"vnc.*\.c.*nf.*$\"`" ]; then echo_not_found "*vnc*.c*nf*"; fi; printf "%s" "$PSTORAGE_VNC" | grep -E "vnc.*\.c.*nf.*$" | while read f; do ls -ld "$f" | sed -${E} "s,vnc.*\.c.*nf.*$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,.*,${SED_RED},g"; done; echo "";
if ! [ "`echo \"$PSTORAGE_VNC\" | grep -E \"vnc.*\.ini$\"`" ]; then echo_not_found "*vnc*.ini"; fi; printf "%s" "$PSTORAGE_VNC" | grep -E "vnc.*\.ini$" | while read f; do ls -ld "$f" | sed -${E} "s,vnc.*\.ini$,${SED_RED},"; done; echo "";
@ -2138,13 +2138,13 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
if ! [ "`echo \"$PSTORAGE_VNC\" | grep -E \"vnc.*\.xml$\"`" ]; then echo_not_found "*vnc*.xml"; fi; printf "%s" "$PSTORAGE_VNC" | grep -E "vnc.*\.xml$" | while read f; do ls -ld "$f" | sed -${E} "s,vnc.*\.xml$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,.*,${SED_RED},g"; done; echo "";
print_2title "Analizing Ldap Files (limit 70)"
print_2title "Analyzing Ldap Files (limit 70)"
echo "The password hash is from the {SSHA} to 'structural'"
if ! [ "`echo \"$PSTORAGE_LDAP\" | grep -E \"ldap$\"`" ]; then echo_not_found "ldap"; fi; printf "%s" "$PSTORAGE_LDAP" | grep -E "ldap$" | while read f; do ls -ld "$f" | sed -${E} "s,ldap$,${SED_RED},"; for ff in $(find "$f" -name "*.bdb"); do ls -ld "$ff" | sed -${E} "s,.bdb,${SED_RED},"; cat "$ff" 2>/dev/null | grep -IEv "^$" | grep -E -i -a -o "description.*" | sort | uniq | sed -${E} "s,administrator|password|ADMINISTRATOR|PASSWORD|Password|Administrator,${SED_RED},g"; done; echo "";done; echo "";
print_2title "Analizing Open VPN Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_OPEN_VPN\" | grep -E \"\.ovpn$\"`" ]; then echo_not_found "*.ovpn"; fi; printf "%s" "$PSTORAGE_OPEN_VPN" | grep -E "\.ovpn$" | while read f; do ls -ld "$f" | sed -${E} "s,\.ovpn$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "auth-user-pass.+" | sed -${E} "s,auth-user-pass.+,${SED_RED},g"; done; echo "";
print_2title "Analyzing OpenVPN Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_OPENVPN\" | grep -E \"\.ovpn$\"`" ]; then echo_not_found "*.ovpn"; fi; printf "%s" "$PSTORAGE_OPENVPN" | grep -E "\.ovpn$" | while read f; do ls -ld "$f" | sed -${E} "s,\.ovpn$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "auth-user-pass.+" | sed -${E} "s,auth-user-pass.+,${SED_RED},g"; done; echo "";
#-- SI) ssh files
@ -2154,12 +2154,12 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
hostsdenied="`ls /etc/hosts.denied 2>/dev/null`"
hostsallow="`ls /etc/hosts.allow 2>/dev/null`"
print_2title "Analizing SSH FILES Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_SSH_FILES\" | grep -E \"id_dsa.*$\"`" ]; then echo_not_found "id_dsa*"; fi; printf "%s" "$PSTORAGE_SSH_FILES" | grep -E "id_dsa.*$" | while read f; do ls -ld "$f" | sed -${E} "s,id_dsa.*$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$"; done; echo "";
if ! [ "`echo \"$PSTORAGE_SSH_FILES\" | grep -E \"id_rsa.*$\"`" ]; then echo_not_found "id_rsa*"; fi; printf "%s" "$PSTORAGE_SSH_FILES" | grep -E "id_rsa.*$" | while read f; do ls -ld "$f" | sed -${E} "s,id_rsa.*$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$"; done; echo "";
if ! [ "`echo \"$PSTORAGE_SSH_FILES\" | grep -E \"known_hosts$\"`" ]; then echo_not_found "known_hosts"; fi; printf "%s" "$PSTORAGE_SSH_FILES" | grep -E "known_hosts$" | while read f; do ls -ld "$f" | sed -${E} "s,known_hosts$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$"; done; echo "";
if ! [ "`echo \"$PSTORAGE_SSH_FILES\" | grep -E \"authorized_hosts$\"`" ]; then echo_not_found "authorized_hosts"; fi; printf "%s" "$PSTORAGE_SSH_FILES" | grep -E "authorized_hosts$" | while read f; do ls -ld "$f" | sed -${E} "s,authorized_hosts$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$"; done; echo "";
if ! [ "`echo \"$PSTORAGE_SSH_FILES\" | grep -E \"authorized_keys$\"`" ]; then echo_not_found "authorized_keys"; fi; printf "%s" "$PSTORAGE_SSH_FILES" | grep -E "authorized_keys$" | while read f; do ls -ld "$f" | sed -${E} "s,authorized_keys$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,from=[\w\._\-]+,${SED_GOOD},g"; done; echo "";
print_2title "Analyzing SSH Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_SSH\" | grep -E \"id_dsa.*$\"`" ]; then echo_not_found "id_dsa*"; fi; printf "%s" "$PSTORAGE_SSH" | grep -E "id_dsa.*$" | while read f; do ls -ld "$f" | sed -${E} "s,id_dsa.*$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$"; done; echo "";
if ! [ "`echo \"$PSTORAGE_SSH\" | grep -E \"id_rsa.*$\"`" ]; then echo_not_found "id_rsa*"; fi; printf "%s" "$PSTORAGE_SSH" | grep -E "id_rsa.*$" | while read f; do ls -ld "$f" | sed -${E} "s,id_rsa.*$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$"; done; echo "";
if ! [ "`echo \"$PSTORAGE_SSH\" | grep -E \"known_hosts$\"`" ]; then echo_not_found "known_hosts"; fi; printf "%s" "$PSTORAGE_SSH" | grep -E "known_hosts$" | while read f; do ls -ld "$f" | sed -${E} "s,known_hosts$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$"; done; echo "";
if ! [ "`echo \"$PSTORAGE_SSH\" | grep -E \"authorized_hosts$\"`" ]; then echo_not_found "authorized_hosts"; fi; printf "%s" "$PSTORAGE_SSH" | grep -E "authorized_hosts$" | while read f; do ls -ld "$f" | sed -${E} "s,authorized_hosts$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$"; done; echo "";
if ! [ "`echo \"$PSTORAGE_SSH\" | grep -E \"authorized_keys$\"`" ]; then echo_not_found "authorized_keys"; fi; printf "%s" "$PSTORAGE_SSH" | grep -E "authorized_keys$" | while read f; do ls -ld "$f" | sed -${E} "s,authorized_keys$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,from=[\w\._\-]+,${SED_GOOD},g"; done; echo "";
grep "PermitRootLogin \|ChallengeResponseAuthentication \|PasswordAuthentication \|UsePAM \|Port\|PermitEmptyPasswords\|PubkeyAuthentication\|ListenAddress\|ForwardAgent\|AllowAgentForwarding\|AuthorizedKeysFiles" /etc/ssh/sshd_config 2>/dev/null | grep -v "#" | sed -${E} "s,PermitRootLogin.*es|PermitEmptyPasswords.*es|ChallengeResponseAuthentication.*es|FordwardAgent.*es,${SED_RED},"
@ -2282,15 +2282,15 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
klist 2>/dev/null || echo_not_found "klist"
echo ""
print_2title "Analizing Knockd Files (limit 70)"
print_2title "Analyzing Knockd Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_KNOCKD\" | grep -E \"knockd.*$\"`" ]; then echo_not_found "*knockd*"; fi; printf "%s" "$PSTORAGE_KNOCKD" | grep -E "knockd.*$" | while read f; do ls -ld "$f" | sed -${E} "s,knockd.*$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$"; done; echo "";
print_2title "Analizing Kibana Files (limit 70)"
print_2title "Analyzing Kibana Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_KIBANA\" | grep -E \"kibana\.y.*ml$\"`" ]; then echo_not_found "kibana.y*ml"; fi; printf "%s" "$PSTORAGE_KIBANA" | grep -E "kibana\.y.*ml$" | while read f; do ls -ld "$f" | sed -${E} "s,kibana\.y.*ml$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -Ev "\W+\#|^#|^[[:space:]]*$" | sed -${E} "s,username|password|host|port|elasticsearch|ssl,${SED_RED},g"; done; echo "";
print_2title "Analizing Elasticsearch Files (limit 70)"
print_2title "Analyzing Elasticsearch Files (limit 70)"
echo "The version is $(curl -X GET '127.0.0.1:9200' 2>/dev/null | grep number | cut -d ':' -f 2)"
if ! [ "`echo \"$PSTORAGE_ELASTICSEARCH\" | grep -E \"elasticsearch\.y.*ml$\"`" ]; then echo_not_found "elasticsearch.y*ml"; fi; printf "%s" "$PSTORAGE_ELASTICSEARCH" | grep -E "elasticsearch\.y.*ml$" | while read f; do ls -ld "$f" | sed -${E} "s,elasticsearch\.y.*ml$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "path.data|path.logs|cluster.name|node.name|network.host|discovery.zen.ping.unicast.hosts" | grep -Ev "\W+\#|^#"; done; echo "";
@ -2353,11 +2353,11 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
fi
echo ""
print_2title "Analizing CouchDB Files (limit 70)"
print_2title "Analyzing CouchDB Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_COUCHDB\" | grep -E \"couchdb$\"`" ]; then echo_not_found "couchdb"; fi; printf "%s" "$PSTORAGE_COUCHDB" | grep -E "couchdb$" | while read f; do ls -ld "$f" | sed -${E} "s,couchdb$,${SED_RED},"; for ff in $(find "$f" -name "local.ini"); do ls -ld "$ff" | sed -${E} "s,local.ini,${SED_RED},"; cat "$ff" 2>/dev/null | grep -IEv "^$" | grep -Ev "^;" | sed -${E} "s,admin.*|password.*|cert_file.*|key_file.*|hashed.*|pbkdf2.*,${SED_RED},g"; done; echo "";done; echo "";
print_2title "Analizing Redis Files (limit 70)"
print_2title "Analyzing Redis Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_REDIS\" | grep -E \"redis\.conf$\"`" ]; then echo_not_found "redis.conf"; fi; printf "%s" "$PSTORAGE_REDIS" | grep -E "redis\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,redis\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -Ev "\W+\#|^#" | sed -${E} "s,masterauth.*|requirepass.*,${SED_RED},g"; done; echo "";
@ -2377,15 +2377,15 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
fi
echo ""
print_2title "Analizing Mosquitto Files (limit 70)"
print_2title "Analyzing Mosquitto Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_MOSQUITTO\" | grep -E \"mosquitto\.conf$\"`" ]; then echo_not_found "mosquitto.conf"; fi; printf "%s" "$PSTORAGE_MOSQUITTO" | grep -E "mosquitto\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,mosquitto\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -Ev "\W+\#|^#" | sed -${E} "s,password_file.*|psk_file.*|allow_anonymous.*true|auth,${SED_RED},g"; done; echo "";
print_2title "Analizing Neo4j Files (limit 70)"
print_2title "Analyzing Neo4j Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_NEO4J\" | grep -E \"neo4j$\"`" ]; then echo_not_found "neo4j"; fi; printf "%s" "$PSTORAGE_NEO4J" | grep -E "neo4j$" | while read f; do ls -ld "$f" | sed -${E} "s,neo4j$,${SED_RED},"; for ff in $(find "$f" -name "auth"); do ls -ld "$ff" | sed -${E} "s,auth,${SED_RED},"; cat "$ff" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,.*,${SED_RED},g"; done; echo "";done; echo "";
print_2title "Analizing Cloud credentials Files (limit 70)"
print_2title "Analyzing Cloud Credentials Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_CLOUD_CREDENTIALS\" | grep -E \"credentials$\"`" ]; then echo_not_found "credentials"; fi; printf "%s" "$PSTORAGE_CLOUD_CREDENTIALS" | grep -E "credentials$" | while read f; do ls -ld "$f" | sed -${E} "s,credentials$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,.*,${SED_RED},g"; done; echo "";
if ! [ "`echo \"$PSTORAGE_CLOUD_CREDENTIALS\" | grep -E \"credentials\.db$\"`" ]; then echo_not_found "credentials.db"; fi; printf "%s" "$PSTORAGE_CLOUD_CREDENTIALS" | grep -E "credentials\.db$" | while read f; do ls -ld "$f" | sed -${E} "s,credentials\.db$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,.*,${SED_RED},g"; done; echo "";
if ! [ "`echo \"$PSTORAGE_CLOUD_CREDENTIALS\" | grep -E \"legacy_credentials\.db$\"`" ]; then echo_not_found "legacy_credentials.db"; fi; printf "%s" "$PSTORAGE_CLOUD_CREDENTIALS" | grep -E "legacy_credentials\.db$" | while read f; do ls -ld "$f" | sed -${E} "s,legacy_credentials\.db$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,.*,${SED_RED},g"; done; echo "";
@ -2398,44 +2398,45 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
if ! [ "`echo \"$PSTORAGE_CLOUD_CREDENTIALS\" | grep -E \"\.bluemix$\"`" ]; then echo_not_found ".bluemix"; fi; printf "%s" "$PSTORAGE_CLOUD_CREDENTIALS" | grep -E "\.bluemix$" | while read f; do ls -ld "$f" | sed -${E} "s,\.bluemix$,${SED_RED},"; for ff in $(find "$f" -name "config.json"); do ls -ld "$ff" | sed -${E} "s,config.json,${SED_RED},"; cat "$ff" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,.*,${SED_RED},g"; done; echo "";done; echo "";
print_2title "Analizing Cloud-Init Files (limit 70)"
print_2title "Analyzing Cloud Init Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_CLOUD_INIT\" | grep -E \"cloud\.cfg$\"`" ]; then echo_not_found "cloud.cfg"; fi; printf "%s" "$PSTORAGE_CLOUD_INIT" | grep -E "cloud\.cfg$" | while read f; do ls -ld "$f" | sed -${E} "s,cloud\.cfg$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "consumer_key|token_key|token_secret|metadata_url|password:|passwd:|PRIVATE KEY|PRIVATE KEY|encrypted_data_bag_secret|_proxy" | grep -Ev "\W+\#|^#" | sed -${E} "s,consumer_key|token_key|token_secret|metadata_url|password:|passwd:|PRIVATE KEY|PRIVATE KEY|encrypted_data_bag_secret|_proxy,${SED_RED},g"; done; echo "";
print_2title "Analizing CloudFlare Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_CLOUDFLARE\" | grep -E \"\.cloudflared$\"`" ]; then echo_not_found ".cloudflared"; fi; printf "%s" "$PSTORAGE_CLOUDFLARE" | grep -E "\.cloudflared$" | while read f; do ls -ld "$f" | sed -${E} "s,\.cloudflared$,${SED_RED},"; done; echo "";
print_2title "Analyzing CloudFlare Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_CLOUDFLARE\" | grep -E \"\.cloudflared$\"`" ]; then echo_not_found ".cloudflared"; fi; printf "%s" "$PSTORAGE_CLOUDFLARE" | grep -E "\.cloudflared$" | while read f; do ls -ld "$f" | sed -${E} "s,\.cloudflared$,${SED_RED},"; ls -lRA "$f";done; echo "";
print_2title "Analizing Erlang Files (limit 70)"
print_2title "Analyzing Erlang Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_ERLANG\" | grep -E \"\.erlang\.cookie$\"`" ]; then echo_not_found ".erlang.cookie"; fi; printf "%s" "$PSTORAGE_ERLANG" | grep -E "\.erlang\.cookie$" | while read f; do ls -ld "$f" | sed -${E} "s,\.erlang\.cookie$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,.*,${SED_RED},g"; done; echo "";
print_2title "Analizing GMV Auth Files (limit 70)"
print_2title "Analyzing GMV Auth Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_GMV_AUTH\" | grep -E \"gvm-tools\.conf$\"`" ]; then echo_not_found "gvm-tools.conf"; fi; printf "%s" "$PSTORAGE_GMV_AUTH" | grep -E "gvm-tools\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,gvm-tools\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,username.*|password.*,${SED_RED},g"; done; echo "";
print_2title "Analizing IPSec Files (limit 70)"
print_2title "Analyzing IPSec Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_IPSEC\" | grep -E \"ipsec\.secrets$\"`" ]; then echo_not_found "ipsec.secrets"; fi; printf "%s" "$PSTORAGE_IPSEC" | grep -E "ipsec\.secrets$" | while read f; do ls -ld "$f" | sed -${E} "s,ipsec\.secrets$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,.*PSK.*|.*RSA.*|.*EAP =.*|.*XAUTH.*,${SED_RED},g"; done; echo "";
if ! [ "`echo \"$PSTORAGE_IPSEC\" | grep -E \"ipsec\.conf$\"`" ]; then echo_not_found "ipsec.conf"; fi; printf "%s" "$PSTORAGE_IPSEC" | grep -E "ipsec\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,ipsec\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,.*PSK.*|.*RSA.*|.*EAP =.*|.*XAUTH.*,${SED_RED},g"; done; echo "";
print_2title "Analizing IRSSI Files (limit 70)"
print_2title "Analyzing IRSSI Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_IRSSI\" | grep -E \"\.irssi$\"`" ]; then echo_not_found ".irssi"; fi; printf "%s" "$PSTORAGE_IRSSI" | grep -E "\.irssi$" | while read f; do ls -ld "$f" | sed -${E} "s,\.irssi$,${SED_RED},"; for ff in $(find "$f" -name "config"); do ls -ld "$ff" | sed -${E} "s,config,${SED_RED},"; cat "$ff" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,password.*,${SED_RED},g"; done; echo "";done; echo "";
print_2title "Analizing Keyring Files (limit 70)"
print_2title "Analyzing Keyring Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_KEYRING\" | grep -E \"keyrings$\"`" ]; then echo_not_found "keyrings"; fi; printf "%s" "$PSTORAGE_KEYRING" | grep -E "keyrings$" | while read f; do ls -ld "$f" | sed -${E} "s,keyrings$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_KEYRING\" | grep -E \"\.keyring$\"`" ]; then echo_not_found "*.keyring"; fi; printf "%s" "$PSTORAGE_KEYRING" | grep -E "\.keyring$" | while read f; do ls -ld "$f" | sed -${E} "s,\.keyring$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_KEYRING\" | grep -E \"\.keystore$\"`" ]; then echo_not_found "*.keystore"; fi; printf "%s" "$PSTORAGE_KEYRING" | grep -E "\.keystore$" | while read f; do ls -ld "$f" | sed -${E} "s,\.keystore$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_KEYRING\" | grep -E \"\.jks$\"`" ]; then echo_not_found "*.jks"; fi; printf "%s" "$PSTORAGE_KEYRING" | grep -E "\.jks$" | while read f; do ls -ld "$f" | sed -${E} "s,\.jks$,${SED_RED},"; done; echo "";
print_2title "Analizing Filezilla Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_FILEZILLA\" | grep -E \"filelliza$\"`" ]; then echo_not_found "filelliza"; fi; printf "%s" "$PSTORAGE_FILEZILLA" | grep -E "filelliza$" | while read f; do ls -ld "$f" | sed -${E} "s,filelliza$,${SED_RED},"; for ff in $(find "$f" -name "sitemanager.xml"); do ls -ld "$ff" | sed -${E} "s,sitemanager.xml,${SED_RED},"; cat "$ff" 2>/dev/null | grep -IEv "^$" | grep -Ev "^;" | sed -${E} "s,Host.*|Port.*|Protocol.*|User.*|Pass.*,${SED_RED},g"; done; echo "";done; echo "";
print_2title "Analyzing Filezilla Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_FILEZILLA\" | grep -E \"filezilla$\"`" ]; then echo_not_found "filezilla"; fi; printf "%s" "$PSTORAGE_FILEZILLA" | grep -E "filezilla$" | while read f; do ls -ld "$f" | sed -${E} "s,filezilla$,${SED_RED},"; for ff in $(find "$f" -name "sitemanager.xml"); do ls -ld "$ff" | sed -${E} "s,sitemanager.xml,${SED_RED},"; cat "$ff" 2>/dev/null | grep -IEv "^$" | grep -Ev "^;" | sed -${E} "s,Host.*|Port.*|Protocol.*|User.*|Pass.*,${SED_RED},g"; done; echo "";done; echo "";
if ! [ "`echo \"$PSTORAGE_FILEZILLA\" | grep -E \"filezilla\.xml$\"`" ]; then echo_not_found "filezilla.xml"; fi; printf "%s" "$PSTORAGE_FILEZILLA" | grep -E "filezilla\.xml$" | while read f; do ls -ld "$f" | sed -${E} "s,filezilla\.xml$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_FILEZILLA\" | grep -E \"recentservers\.xml$\"`" ]; then echo_not_found "recentservers.xml"; fi; printf "%s" "$PSTORAGE_FILEZILLA" | grep -E "recentservers\.xml$" | while read f; do ls -ld "$f" | sed -${E} "s,recentservers\.xml$,${SED_RED},"; done; echo "";
print_2title "Analizing Backup Manager Files (limit 70)"
print_2title "Analyzing Backup Manager Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_BACKUP_MANAGER\" | grep -E \"storage\.php$\"`" ]; then echo_not_found "storage.php"; fi; printf "%s" "$PSTORAGE_BACKUP_MANAGER" | grep -E "storage\.php$" | while read f; do ls -ld "$f" | sed -${E} "s,storage\.php$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "'pass'|'password'|'user'|'database'|'host'" | sed -${E} "s,password|pass|user|database|host,${SED_RED},g"; done; echo "";
if ! [ "`echo \"$PSTORAGE_BACKUP_MANAGER\" | grep -E \"database\.php$\"`" ]; then echo_not_found "database.php"; fi; printf "%s" "$PSTORAGE_BACKUP_MANAGER" | grep -E "database\.php$" | while read f; do ls -ld "$f" | sed -${E} "s,database\.php$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "'pass'|'password'|'user'|'database'|'host'" | sed -${E} "s,password|pass|user|database|host,${SED_RED},g"; done; echo "";
@ -2483,18 +2484,18 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
done
echo ""
print_2title "Analizing Github Files (limit 70)"
print_2title "Analyzing Github Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_GITHUB\" | grep -E \"\.github$\"`" ]; then echo_not_found ".github"; fi; printf "%s" "$PSTORAGE_GITHUB" | grep -E "\.github$" | while read f; do ls -ld "$f" | sed -${E} "s,\.github$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_GITHUB\" | grep -E \"\.gitconfig$\"`" ]; then echo_not_found ".gitconfig"; fi; printf "%s" "$PSTORAGE_GITHUB" | grep -E "\.gitconfig$" | while read f; do ls -ld "$f" | sed -${E} "s,\.gitconfig$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_GITHUB\" | grep -E \"\.git-credentials$\"`" ]; then echo_not_found ".git-credentials"; fi; printf "%s" "$PSTORAGE_GITHUB" | grep -E "\.git-credentials$" | while read f; do ls -ld "$f" | sed -${E} "s,\.git-credentials$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_GITHUB\" | grep -E \"\.git$\"`" ]; then echo_not_found ".git"; fi; printf "%s" "$PSTORAGE_GITHUB" | grep -E "\.git$" | while read f; do ls -ld "$f" | sed -${E} "s,\.git$,${SED_RED},"; done; echo "";
print_2title "Analizing Svn Files (limit 70)"
print_2title "Analyzing Svn Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_SVN\" | grep -E \"\.svn$\"`" ]; then echo_not_found ".svn"; fi; printf "%s" "$PSTORAGE_SVN" | grep -E "\.svn$" | while read f; do ls -ld "$f" | sed -${E} "s,\.svn$,${SED_RED},"; ls -lRA "$f";done; echo "";
print_2title "Analizing PGP-GPG Files (limit 70)"
print_2title "Analyzing PGP-GPG Files (limit 70)"
((command -v gpg && gpg --list-keys) || echo_not_found "gpg") 2>/dev/null
((command -v netpgpkeys && netpgpkeys --list-keys) || echo_not_found "netpgpkeys") 2>/dev/null
(command -v netpgp || echo_not_found "netpgp") 2>/dev/null
@ -2503,7 +2504,7 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
if ! [ "`echo \"$PSTORAGE_PGP_GPG\" | grep -E \"\.gnupg$\"`" ]; then echo_not_found "*.gnupg"; fi; printf "%s" "$PSTORAGE_PGP_GPG" | grep -E "\.gnupg$" | while read f; do ls -ld "$f" | sed -${E} "s,\.gnupg$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$"; done; echo "";
print_2title "Analizing Cache Vi Files (limit 70)"
print_2title "Analyzing Cache Vi Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_CACHE_VI\" | grep -E \"\.swp$\"`" ]; then echo_not_found "*.swp"; fi; printf "%s" "$PSTORAGE_CACHE_VI" | grep -E "\.swp$" | while read f; do ls -ld "$f" | sed -${E} "s,\.swp$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_CACHE_VI\" | grep -E \"\.viminfo$\"`" ]; then echo_not_found "*.viminfo"; fi; printf "%s" "$PSTORAGE_CACHE_VI" | grep -E "\.viminfo$" | while read f; do ls -ld "$f" | sed -${E} "s,\.viminfo$,${SED_RED},"; done; echo "";
@ -2538,15 +2539,15 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
done
echo ""
print_2title "Analizing Firefox Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_FIREFOX\" | grep -E \"\.mozilla$\"`" ]; then echo_not_found ".mozilla"; fi; printf "%s" "$PSTORAGE_FIREFOX" | grep -E "\.mozilla$" | while read f; do ls -ld "$f" | sed -${E} "s,\.mozilla$,${SED_RED},"; for ff in $(find "$f" -name "places.sqlite"); do ls -ld "$ff" | sed -${E} "s,places.sqlite,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "bookmarkbackups"); do ls -ld "$ff" | sed -${E} "s,bookmarkbackups,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "formhistory.sqlite"); do ls -ld "$ff" | sed -${E} "s,formhistory.sqlite,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "handlers.json"); do ls -ld "$ff" | sed -${E} "s,handlers.json,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "persdict.dat"); do ls -ld "$ff" | sed -${E} "s,persdict.dat,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "addons.json"); do ls -ld "$ff" | sed -${E} "s,addons.json,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "cookies.sqlite"); do ls -ld "$ff" | sed -${E} "s,cookies.sqlite,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "cache2"); do ls -ld "$ff" | sed -${E} "s,cache2,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "startupCache"); do ls -ld "$ff" | sed -${E} "s,startupCache,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "favicons.sqlite"); do ls -ld "$ff" | sed -${E} "s,favicons.sqlite,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "prefs.js"); do ls -ld "$ff" | sed -${E} "s,prefs.js,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "downloads.sqlite"); do ls -ld "$ff" | sed -${E} "s,downloads.sqlite,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "thumbnails"); do ls -ld "$ff" | sed -${E} "s,thumbnails,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "logins.json"); do ls -ld "$ff" | sed -${E} "s,logins.json,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "key4.db"); do ls -ld "$ff" | sed -${E} "s,key4.db,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "key3.db"); do ls -ld "$ff" | sed -${E} "s,key3.db,${SED_RED},"; done; echo "";done; echo "";
print_2title "Analyzing Firefox Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_FIREFOX\" | grep -E \"\.mozilla$\"`" ]; then echo_not_found ".mozilla"; fi; printf "%s" "$PSTORAGE_FIREFOX" | grep -E "\.mozilla$" | while read f; do ls -ld "$f" | sed -${E} "s,\.mozilla$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$"; done; echo "";
print_2title "Analizing Chrome Files (limit 70)"
print_2title "Analyzing Chrome Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_CHROME\" | grep -E \"google-chrome$\"`" ]; then echo_not_found "google-chrome"; fi; printf "%s" "$PSTORAGE_CHROME" | grep -E "google-chrome$" | while read f; do ls -ld "$f" | sed -${E} "s,google-chrome$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$"; done; echo "";
print_2title "Analizing Autologin Files (limit 70)"
print_2title "Analyzing Autologin Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_AUTOLOGIN\" | grep -E \"autologin$\"`" ]; then echo_not_found "autologin"; fi; printf "%s" "$PSTORAGE_AUTOLOGIN" | grep -E "autologin$" | while read f; do ls -ld "$f" | sed -${E} "s,autologin$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,passwd,${SED_RED},g"; done; echo "";
if ! [ "`echo \"$PSTORAGE_AUTOLOGIN\" | grep -E \"autologin\.conf$\"`" ]; then echo_not_found "autologin.conf"; fi; printf "%s" "$PSTORAGE_AUTOLOGIN" | grep -E "autologin\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,autologin\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,passwd,${SED_RED},g"; done; echo "";
@ -2584,61 +2585,68 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
grep -Ri "passwd" /etc/pam.d/ 2>/dev/null | grep -v ":#" | sed "s,passwd,${SED_RED},"
echo ""
print_2title "Analizing SNMP Files (limit 70)"
print_2title "Analyzing SNMP Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_SNMP\" | grep -E \"snmpd\.conf$\"`" ]; then echo_not_found "snmpd.conf"; fi; printf "%s" "$PSTORAGE_SNMP" | grep -E "snmpd\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,snmpd\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -E "rocommunity|rwcommunity|extend.*" | sed -${E} "s,rocommunity|rwcommunity|extend.*,${SED_RED},g"; done; echo "";
print_2title "Analizing Pypirc Files (limit 70)"
print_2title "Analyzing Pypirc Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_PYPIRC\" | grep -E \"\.pypirc$\"`" ]; then echo_not_found ".pypirc"; fi; printf "%s" "$PSTORAGE_PYPIRC" | grep -E "\.pypirc$" | while read f; do ls -ld "$f" | sed -${E} "s,\.pypirc$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,username|password,${SED_RED},g"; done; echo "";
print_2title "Analizing Ldaprc Files (limit 70)"
print_2title "Analyzing Ldaprc Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_LDAPRC\" | grep -E \"\.ldaprc$\"`" ]; then echo_not_found ".ldaprc"; fi; printf "%s" "$PSTORAGE_LDAPRC" | grep -E "\.ldaprc$" | while read f; do ls -ld "$f" | sed -${E} "s,\.ldaprc$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -Ev "^#" | sed -${E} "s,.*,${SED_RED},g"; done; echo "";
print_2title "Analizing Env Files (limit 70)"
print_2title "Analyzing Env Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_ENV\" | grep -E \"\.env$\"`" ]; then echo_not_found ".env"; fi; printf "%s" "$PSTORAGE_ENV" | grep -E "\.env$" | while read f; do ls -ld "$f" | sed -${E} "s,\.env$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -Ev "^#" | sed -${E} "s,[pP][aA][sS][sS].*,${SED_RED},g"; done; echo "";
print_2title "Analizing Msmtprc Files (limit 70)"
print_2title "Analyzing Msmtprc Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_MSMTPRC\" | grep -E \"\.msmtprc$\"`" ]; then echo_not_found ".msmtprc"; fi; printf "%s" "$PSTORAGE_MSMTPRC" | grep -E "\.msmtprc$" | while read f; do ls -ld "$f" | sed -${E} "s,\.msmtprc$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | grep -Ev "^#" | sed -${E} "s,user.*|password.*,${SED_RED},g"; done; echo "";
print_2title "Analizing Keepass Files (limit 70)"
print_2title "Analyzing Keepass Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_KEEPASS\" | grep -E \"\.kdbx$\"`" ]; then echo_not_found "*.kdbx"; fi; printf "%s" "$PSTORAGE_KEEPASS" | grep -E "\.kdbx$" | while read f; do ls -ld "$f" | sed -${E} "s,\.kdbx$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_KEEPASS\" | grep -E \"KeePass\.config.*$\"`" ]; then echo_not_found "KeePass.config*"; fi; printf "%s" "$PSTORAGE_KEEPASS" | grep -E "KeePass\.config.*$" | while read f; do ls -ld "$f" | sed -${E} "s,KeePass\.config.*$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_KEEPASS\" | grep -E \"KeePass\.ini$\"`" ]; then echo_not_found "KeePass.ini"; fi; printf "%s" "$PSTORAGE_KEEPASS" | grep -E "KeePass\.ini$" | while read f; do ls -ld "$f" | sed -${E} "s,KeePass\.ini$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_KEEPASS\" | grep -E \"KeePass\.enforced.*$\"`" ]; then echo_not_found "KeePass.enforced*"; fi; printf "%s" "$PSTORAGE_KEEPASS" | grep -E "KeePass\.enforced.*$" | while read f; do ls -ld "$f" | sed -${E} "s,KeePass\.enforced.*$,${SED_RED},"; done; echo "";
print_2title "Analizing FTP Files (limit 70)"
print_2title "Analyzing FTP Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_FTP\" | grep -E \"\.ftpconfig$\"`" ]; then echo_not_found "*.ftpconfig"; fi; printf "%s" "$PSTORAGE_FTP" | grep -E "\.ftpconfig$" | while read f; do ls -ld "$f" | sed -${E} "s,\.ftpconfig$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_FTP\" | grep -E \"ffftp\.ini$\"`" ]; then echo_not_found "ffftp.ini"; fi; printf "%s" "$PSTORAGE_FTP" | grep -E "ffftp\.ini$" | while read f; do ls -ld "$f" | sed -${E} "s,ffftp\.ini$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_FTP\" | grep -E \"ftp\.ini$\"`" ]; then echo_not_found "ftp.ini"; fi; printf "%s" "$PSTORAGE_FTP" | grep -E "ftp\.ini$" | while read f; do ls -ld "$f" | sed -${E} "s,ftp\.ini$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_FTP\" | grep -E \"ftp\.config$\"`" ]; then echo_not_found "ftp.config"; fi; printf "%s" "$PSTORAGE_FTP" | grep -E "ftp\.config$" | while read f; do ls -ld "$f" | sed -${E} "s,ftp\.config$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_FTP\" | grep -E \"sites\.ini$\"`" ]; then echo_not_found "sites.ini"; fi; printf "%s" "$PSTORAGE_FTP" | grep -E "sites\.ini$" | while read f; do ls -ld "$f" | sed -${E} "s,sites\.ini$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_FTP\" | grep -E \"wcx_ftp\.ini$\"`" ]; then echo_not_found "wcx_ftp.ini"; fi; printf "%s" "$PSTORAGE_FTP" | grep -E "wcx_ftp\.ini$" | while read f; do ls -ld "$f" | sed -${E} "s,wcx_ftp\.ini$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_FTP\" | grep -E \"winscp\.ini$\"`" ]; then echo_not_found "winscp.ini"; fi; printf "%s" "$PSTORAGE_FTP" | grep -E "winscp\.ini$" | while read f; do ls -ld "$f" | sed -${E} "s,winscp\.ini$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_FTP\" | grep -E \"ws_ftp\.ini$\"`" ]; then echo_not_found "ws_ftp.ini"; fi; printf "%s" "$PSTORAGE_FTP" | grep -E "ws_ftp\.ini$" | while read f; do ls -ld "$f" | sed -${E} "s,ws_ftp\.ini$,${SED_RED},"; done; echo "";
print_2title "Analizing Bind Files (limit 70)"
print_2title "Analyzing Bind Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_BIND\" | grep -E \"bind$\"`" ]; then echo_not_found "bind"; fi; printf "%s" "$PSTORAGE_BIND" | grep -E "bind$" | while read f; do ls -ld "$f" | sed -${E} "s,bind$,${SED_RED},"; for ff in $(find "$f" -name "*"); do ls -ld "$ff" | sed -${E} "s,,${SED_RED},"; done; echo "";for ff in $(find "$f" -name "*.key"); do ls -ld "$ff" | sed -${E} "s,.key,${SED_RED},"; cat "$ff" 2>/dev/null | grep -IEv "^$" | grep -Ev "^#" | sed -${E} "s,.*,${SED_RED},g"; done; echo "";done; echo "";
print_2title "Analizing SeedDMS Files (limit 70)"
print_2title "Analyzing SeedDMS Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_SEEDDMS\" | grep -E \"seeddms.*$\"`" ]; then echo_not_found "seeddms*"; fi; printf "%s" "$PSTORAGE_SEEDDMS" | grep -E "seeddms.*$" | while read f; do ls -ld "$f" | sed -${E} "s,seeddms.*$,${SED_RED},"; for ff in $(find "$f" -name "settings.xml"); do ls -ld "$ff" | sed -${E} "s,settings.xml,${SED_RED},"; cat "$ff" 2>/dev/null | grep -IEv "^$" | grep -E "=" | sed -${E} "s,[pP][aA][sS][sS],${SED_RED},g"; done; echo "";done; echo "";
print_2title "Analizing Ddclient Files (limit 70)"
print_2title "Analyzing Ddclient Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_DDCLIENT\" | grep -E \"ddclient\.conf$\"`" ]; then echo_not_found "ddclient.conf"; fi; printf "%s" "$PSTORAGE_DDCLIENT" | grep -E "ddclient\.conf$" | while read f; do ls -ld "$f" | sed -${E} "s,ddclient\.conf$,${SED_RED},"; cat "$f" 2>/dev/null | grep -IEv "^$" | sed -${E} "s,.*password.*,${SED_RED},g"; done; echo "";
print_2title "Analyzing Cacti Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_CACTI\" | grep -E \"cacti$\"`" ]; then echo_not_found "cacti"; fi; printf "%s" "$PSTORAGE_CACTI" | grep -E "cacti$" | while read f; do ls -ld "$f" | sed -${E} "s,cacti$,${SED_RED},"; for ff in $(find "$f" -name "config.php"); do ls -ld "$ff" | sed -${E} "s,config.php,${SED_RED},"; cat "$ff" 2>/dev/null | grep -IEv "^$" | grep -E "database_pw|database_user|database_pass|database_type|database_default|detabase_hostname|database_port|database_ssl" | sed -${E} "s,database_pw.*|database_user.*|database_pass.*,${SED_RED},g"; done; echo "";for ff in $(find "$f" -name "config.php.dist"); do ls -ld "$ff" | sed -${E} "s,config.php.dist,${SED_RED},"; cat "$ff" 2>/dev/null | grep -IEv "^$" | grep -E "database_pw|database_user|database_pass|database_type|database_default|detabase_hostname|database_port|database_ssl" | sed -${E} "s,database_pw.*|database_user.*|database_pass.*,${SED_RED},g"; done; echo "";for ff in $(find "$f" -name "installer.php"); do ls -ld "$ff" | sed -${E} "s,installer.php,${SED_RED},"; cat "$ff" 2>/dev/null | grep -IEv "^$" | grep -E "database_pw|database_user|database_pass|database_type|database_default|detabase_hostname|database_port|database_ssl" | sed -${E} "s,database_pw.*|database_user.*|database_pass.*,${SED_RED},g"; done; echo "";for ff in $(find "$f" -name "check_all_pages"); do ls -ld "$ff" | sed -${E} "s,check_all_pages,${SED_RED},"; cat "$ff" 2>/dev/null | grep -IEv "^$" | grep -E "database_pw|database_user|database_pass|database_type|database_default|detabase_hostname|database_port|database_ssl" | sed -${E} "s,database_pw.*|database_user.*|database_pass.*,${SED_RED},g"; done; echo "";done; echo "";
print_2title "Analizing Interesting logs Files (limit 70)"
print_2title "Analyzing Interesting logs Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_INTERESTING_LOGS\" | grep -E \"access\.log$\"`" ]; then echo_not_found "access.log"; fi; printf "%s" "$PSTORAGE_INTERESTING_LOGS" | grep -E "access\.log$" | while read f; do ls -ld "$f" | sed -${E} "s,access\.log$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_INTERESTING_LOGS\" | grep -E \"error\.log$\"`" ]; then echo_not_found "error.log"; fi; printf "%s" "$PSTORAGE_INTERESTING_LOGS" | grep -E "error\.log$" | while read f; do ls -ld "$f" | sed -${E} "s,error\.log$,${SED_RED},"; done; echo "";
print_2title "Analizing Windows Files Files (limit 70)"
print_2title "Analyzing Windows Files Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"unattend\.inf$\"`" ]; then echo_not_found "unattend.inf"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "unattend\.inf$" | while read f; do ls -ld "$f" | sed -${E} "s,unattend\.inf$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"\.rdg$\"`" ]; then echo_not_found "*.rdg"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "\.rdg$" | while read f; do ls -ld "$f" | sed -${E} "s,\.rdg$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"AppEvent\.Evt$\"`" ]; then echo_not_found "AppEvent.Evt"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "AppEvent\.Evt$" | while read f; do ls -ld "$f" | sed -${E} "s,AppEvent\.Evt$,${SED_RED},"; done; echo "";
@ -2646,6 +2654,7 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"FreeSSHDservice\.ini$\"`" ]; then echo_not_found "FreeSSHDservice.ini"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "FreeSSHDservice\.ini$" | while read f; do ls -ld "$f" | sed -${E} "s,FreeSSHDservice\.ini$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"NetSetup\.log$\"`" ]; then echo_not_found "NetSetup.log"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "NetSetup\.log$" | while read f; do ls -ld "$f" | sed -${E} "s,NetSetup\.log$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"Ntds\.dit$\"`" ]; then echo_not_found "Ntds.dit"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "Ntds\.dit$" | while read f; do ls -ld "$f" | sed -${E} "s,Ntds\.dit$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"protecteduserkey\.bin$\"`" ]; then echo_not_found "protecteduserkey.bin"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "protecteduserkey\.bin$" | while read f; do ls -ld "$f" | sed -${E} "s,protecteduserkey\.bin$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"RDCMan\.settings$\"`" ]; then echo_not_found "RDCMan.settings"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "RDCMan\.settings$" | while read f; do ls -ld "$f" | sed -${E} "s,RDCMan\.settings$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"SAM$\"`" ]; then echo_not_found "SAM"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "SAM$" | while read f; do ls -ld "$f" | sed -${E} "s,SAM$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"SYSTEM$\"`" ]; then echo_not_found "SYSTEM"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "SYSTEM$" | while read f; do ls -ld "$f" | sed -${E} "s,SYSTEM$,${SED_RED},"; done; echo "";
@ -2669,10 +2678,8 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"recentservers\.xml$\"`" ]; then echo_not_found "recentservers.xml"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "recentservers\.xml$" | while read f; do ls -ld "$f" | sed -${E} "s,recentservers\.xml$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"scclient\.exe$\"`" ]; then echo_not_found "scclient.exe"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "scclient\.exe$" | while read f; do ls -ld "$f" | sed -${E} "s,scclient\.exe$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"scheduledtasks\.xml$\"`" ]; then echo_not_found "scheduledtasks.xml"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "scheduledtasks\.xml$" | while read f; do ls -ld "$f" | sed -${E} "s,scheduledtasks\.xml$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"security$\"`" ]; then echo_not_found "security"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "security$" | while read f; do ls -ld "$f" | sed -${E} "s,security$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"security\.sav$\"`" ]; then echo_not_found "security.sav"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "security\.sav$" | while read f; do ls -ld "$f" | sed -${E} "s,security\.sav$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"server\.xml$\"`" ]; then echo_not_found "server.xml"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "server\.xml$" | while read f; do ls -ld "$f" | sed -${E} "s,server\.xml$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"services\.xml$\"`" ]; then echo_not_found "services.xml"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "services\.xml$" | while read f; do ls -ld "$f" | sed -${E} "s,services\.xml$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"setupinfo$\"`" ]; then echo_not_found "setupinfo"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "setupinfo$" | while read f; do ls -ld "$f" | sed -${E} "s,setupinfo$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"setupinfo\.bak$\"`" ]; then echo_not_found "setupinfo.bak"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "setupinfo\.bak$" | while read f; do ls -ld "$f" | sed -${E} "s,setupinfo\.bak$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"sitemanager\.xml$\"`" ]; then echo_not_found "sitemanager.xml"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "sitemanager\.xml$" | while read f; do ls -ld "$f" | sed -${E} "s,sitemanager\.xml$,${SED_RED},"; done; echo "";
@ -2681,17 +2688,19 @@ if [ "`echo $CHECKS | grep SofI`" ]; then
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"software\.sav$\"`" ]; then echo_not_found "software.sav"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "software\.sav$" | while read f; do ls -ld "$f" | sed -${E} "s,software\.sav$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"sysprep\.inf$\"`" ]; then echo_not_found "sysprep.inf"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "sysprep\.inf$" | while read f; do ls -ld "$f" | sed -${E} "s,sysprep\.inf$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"sysprep\.xml$\"`" ]; then echo_not_found "sysprep.xml"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "sysprep\.xml$" | while read f; do ls -ld "$f" | sed -${E} "s,sysprep\.xml$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"system$\"`" ]; then echo_not_found "system"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "system$" | while read f; do ls -ld "$f" | sed -${E} "s,system$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"system\.sav$\"`" ]; then echo_not_found "system.sav"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "system\.sav$" | while read f; do ls -ld "$f" | sed -${E} "s,system\.sav$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"unattend\.txt$\"`" ]; then echo_not_found "unattend.txt"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "unattend\.txt$" | while read f; do ls -ld "$f" | sed -${E} "s,unattend\.txt$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"unattend\.xml$\"`" ]; then echo_not_found "unattend.xml"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "unattend\.xml$" | while read f; do ls -ld "$f" | sed -${E} "s,unattend\.xml$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"unattended\.xml$\"`" ]; then echo_not_found "unattended.xml"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "unattended\.xml$" | while read f; do ls -ld "$f" | sed -${E} "s,unattended\.xml$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"wcx_ftp\.ini$\"`" ]; then echo_not_found "wcx_ftp.ini"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "wcx_ftp\.ini$" | while read f; do ls -ld "$f" | sed -${E} "s,wcx_ftp\.ini$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"ws_ftp\.ini$\"`" ]; then echo_not_found "ws_ftp.ini"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "ws_ftp\.ini$" | while read f; do ls -ld "$f" | sed -${E} "s,ws_ftp\.ini$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"web.*\.config$\"`" ]; then echo_not_found "web*.config"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "web.*\.config$" | while read f; do ls -ld "$f" | sed -${E} "s,web.*\.config$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"winscp\.ini$\"`" ]; then echo_not_found "winscp.ini"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "winscp\.ini$" | while read f; do ls -ld "$f" | sed -${E} "s,winscp\.ini$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_WINDOWS_FILES\" | grep -E \"wsl\.exe$\"`" ]; then echo_not_found "wsl.exe"; fi; printf "%s" "$PSTORAGE_WINDOWS_FILES" | grep -E "wsl\.exe$" | while read f; do ls -ld "$f" | sed -${E} "s,wsl\.exe$,${SED_RED},"; done; echo "";
print_2title "Analizing Other Interesting Files Files (limit 70)"
print_2title "Analyzing Other Interesting Files Files (limit 70)"
if ! [ "`echo \"$PSTORAGE_OTHER_INTERESTING_FILES\" | grep -E \"\.bashrc$\"`" ]; then echo_not_found ".bashrc"; fi; printf "%s" "$PSTORAGE_OTHER_INTERESTING_FILES" | grep -E "\.bashrc$" | while read f; do ls -ld "$f" | sed -${E} "s,\.bashrc$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_OTHER_INTERESTING_FILES\" | grep -E \"\.google_authenticator$\"`" ]; then echo_not_found ".google_authenticator"; fi; printf "%s" "$PSTORAGE_OTHER_INTERESTING_FILES" | grep -E "\.google_authenticator$" | while read f; do ls -ld "$f" | sed -${E} "s,\.google_authenticator$,${SED_RED},"; done; echo "";
if ! [ "`echo \"$PSTORAGE_OTHER_INTERESTING_FILES\" | grep -E \"hosts\.equiv$\"`" ]; then echo_not_found "hosts.equiv"; fi; printf "%s" "$PSTORAGE_OTHER_INTERESTING_FILES" | grep -E "hosts\.equiv$" | while read f; do ls -ld "$f" | sed -${E} "s,hosts\.equiv$,${SED_RED},"; done; echo "";
@ -2794,7 +2803,7 @@ if [ "`echo $CHECKS | grep IntFiles`" ]; then
true #Don't do nothing
elif ! [ "$IAMROOT" ] && [ -O "$sname" ]; then
echo "You own the SGID file: $sname" | sed -${E} "s,.*,${SED_RED},"
elif ! [ "$IAMROOT" ] &6 [ -w "$sname" ]; then #If write permision, win found (no check exploits)
elif ! [ "$IAMROOT" ] && [ -w "$sname" ]; then #If write permision, win found (no check exploits)
echo "You can write SGID file: $sname" | sed -${E} "s,.*,${SED_RED_YELLOW},"
else
c="a"
@ -3026,7 +3035,7 @@ if [ "`echo $CHECKS | grep IntFiles`" ]; then
lastWlogFolder="ImPOsSiBleeElastWlogFolder"
logfind=`find / -type f -name "*.log" -o -name "*.log.*" 2>/dev/null | awk -F/ '{line_init=$0; if (!cont){ cont=0 }; $NF=""; act=$0; if (act == pre){(cont += 1)} else {cont=0}; if (cont < 3){ print line_init; }; if (cont == "3"){print "#)You_can_write_more_log_files_inside_last_directory"}; pre=act}' | head -n 100`
printf "%s\n" "$logfind" | while read log; do
if ! [ "$IAMROOT" ] && [ -w "$log" ] || ! [ "$IAMROOT" ] && [ `echo "$log" | grep -E "$Wfolders"` ]; then #Only print info if something interesting found
if ! [ "$IAMROOT" ] && [ "$log" ] && [ -w "$log" ] || ! [ "$IAMROOT" ] && [ "`echo \"$log\" | grep -E \"$Wfolders\"`" ]; then #Only print info if something interesting found
if [ "`echo \"$log\" | grep \"You_can_write_more_log_files_inside_last_directory\"`" ]; then printf $ITALIC"$log\n"$NC;
elif ! [ "$IAMROOT" ] && [ -w "$log" ] && [ "`command -v logrotate 2>/dev/null`" ] && [ "`logrotate --version 2>&1 | grep -E ' 1| 2| 3.1'`" ]; then printf "Writable:$RED $log\n"$NC; #Check vuln version of logrotate is used and print red in that case
elif ! [ "$IAMROOT" ] && [ -w "$log" ]; then echo "Writable: $log";

BIN
winPEAS/winPEASexe/Dotfuscator/DotfuscatorCE.zip Normal file
View File

Binary file not shown.

6
winPEAS/winPEASexe/Tests/App.config Normal file
View File

@ -0,0 +1,6 @@
<?xml version="1.0" encoding="utf-8" ?>
<configuration>
<startup>
<supportedRuntime version="v4.0" sku=".NETFramework,Version=v4.5.2" />
</startup>
</configuration>

36
winPEAS/winPEASexe/Tests/Properties/AssemblyInfo.cs Normal file
View File

@ -0,0 +1,36 @@
using System.Reflection;
using System.Runtime.CompilerServices;
using System.Runtime.InteropServices;
// General Information about an assembly is controlled through the following
// set of attributes. Change these attribute values to modify the information
// associated with an assembly.
[assembly: AssemblyTitle("Tests")]
[assembly: AssemblyDescription("")]
[assembly: AssemblyConfiguration("")]
[assembly: AssemblyCompany("")]
[assembly: AssemblyProduct("Tests")]
[assembly: AssemblyCopyright("Copyright © 2021")]
[assembly: AssemblyTrademark("")]
[assembly: AssemblyCulture("")]
// Setting ComVisible to false makes the types in this assembly not visible
// to COM components. If you need to access a type in this assembly from
// COM, set the ComVisible attribute to true on that type.
[assembly: ComVisible(false)]
// The following GUID is for the ID of the typelib if this project is exposed to COM
[assembly: Guid("66aa4619-4d0f-4226-9d96-298870e9bb50")]
// Version information for an assembly consists of the following four values:
//
// Major Version
// Minor Version
// Build Number
// Revision
//
// You can specify all the values or you can default the Build and Revision Numbers
// by using the '*' as shown below:
// [assembly: AssemblyVersion("1.0.*")]
[assembly: AssemblyVersion("1.0.0.0")]
[assembly: AssemblyFileVersion("1.0.0.0")]

42
winPEAS/winPEASexe/Tests/SmokeTests.cs Normal file
View File

@ -0,0 +1,42 @@
using Microsoft.VisualStudio.TestTools.UnitTesting;
using System;
namespace winPEAS.Tests
{
[TestClass]
public class SmokeTests
{
[TestMethod]
public void ShouldRunWinPeass()
{
try
{
string[] args = new string[] {
"systeminfo", "servicesinfo", "processinfo", "applicationsinfo", "browserinfo", "debug"
};
Program.Main(args);
}
catch (Exception e)
{
Assert.Fail($"Exception thrown: {e.Message}");
}
}
[TestMethod]
public void ShouldDisplayHelp()
{
try
{
string[] args = new string[] {
"help",
};
Program.Main(args);
}
catch (Exception e)
{
Assert.Fail($"Exception thrown: {e.Message}");
}
}
}
}

7
winPEAS/winPEASexe/Tests/packages.config Normal file
View File

@ -0,0 +1,7 @@
<?xml version="1.0" encoding="utf-8"?>
<packages>
<package id="Microsoft.CodeCoverage" version="16.10.0" targetFramework="net452" />
<package id="Microsoft.NET.Test.Sdk" version="16.10.0" targetFramework="net452" />
<package id="MSTest.TestAdapter" version="2.2.5" targetFramework="net452" />
<package id="MSTest.TestFramework" version="2.2.5" targetFramework="net452" />
</packages>

45
winPEAS/winPEASexe/winPEAS.Tests/winPEAS.Tests.csproj → winPEAS/winPEASexe/Tests/winPEAS.Tests.csproj
View File

@ -1,30 +1,25 @@
<?xml version="1.0" encoding="utf-8"?>
<Project ToolsVersion="15.0" DefaultTargets="Build" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
<Project ToolsVersion="15.0" xmlns="http://schemas.microsoft.com/developer/msbuild/2003">
<Import Project="..\packages\MSTest.TestAdapter.2.2.5\build\net45\MSTest.TestAdapter.props" Condition="Exists('..\packages\MSTest.TestAdapter.2.2.5\build\net45\MSTest.TestAdapter.props')" />
<Import Project="..\packages\Microsoft.NET.Test.Sdk.16.10.0\build\net45\Microsoft.NET.Test.Sdk.props" Condition="Exists('..\packages\Microsoft.NET.Test.Sdk.16.10.0\build\net45\Microsoft.NET.Test.Sdk.props')" />
<Import Project="..\packages\Microsoft.CodeCoverage.16.10.0\build\netstandard1.0\Microsoft.CodeCoverage.props" Condition="Exists('..\packages\Microsoft.CodeCoverage.16.10.0\build\netstandard1.0\Microsoft.CodeCoverage.props')" />
<Import Project="..\packages\MSTest.TestAdapter.2.1.2\build\net45\MSTest.TestAdapter.props" Condition="Exists('..\packages\MSTest.TestAdapter.2.1.2\build\net45\MSTest.TestAdapter.props')" />
<Import Project="$(MSBuildExtensionsPath)\$(MSBuildToolsVersion)\Microsoft.Common.props" Condition="Exists('$(MSBuildExtensionsPath)\$(MSBuildToolsVersion)\Microsoft.Common.props')" />
<PropertyGroup>
<Configuration Condition=" '$(Configuration)' == '' ">Debug</Configuration>
<Platform Condition=" '$(Platform)' == '' ">AnyCPU</Platform>
<ProjectGuid>{52A3B7FF-A1AD-4B41-AB4C-21C7F95CE42F}</ProjectGuid>
<ProjectGuid>{66AA4619-4D0F-4226-9D96-298870E9BB50}</ProjectGuid>
<OutputType>Library</OutputType>
<AppDesignerFolder>Properties</AppDesignerFolder>
<RootNamespace>winPEAS.Tests</RootNamespace>
<AssemblyName>winPEAS.Tests</AssemblyName>
<RootNamespace>Tests</RootNamespace>
<AssemblyName>Tests</AssemblyName>
<TargetFrameworkVersion>v4.5.2</TargetFrameworkVersion>
<FileAlignment>512</FileAlignment>
<ProjectTypeGuids>{3AC096D0-A1C2-E12C-1390-A8335801FDAB};{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}</ProjectTypeGuids>
<VisualStudioVersion Condition="'$(VisualStudioVersion)' == ''">15.0</VisualStudioVersion>
<VSToolsPath Condition="'$(VSToolsPath)' == ''">$(MSBuildExtensionsPath32)\Microsoft\VisualStudio\v$(VisualStudioVersion)</VSToolsPath>
<ReferencePath>$(ProgramFiles)\Common Files\microsoft shared\VSTT\$(VisualStudioVersion)\UITestExtensionPackages</ReferencePath>
<IsCodedUITest>False</IsCodedUITest>
<TestProjectType>UnitTest</TestProjectType>
<AutoGenerateBindingRedirects>true</AutoGenerateBindingRedirects>
<Deterministic>true</Deterministic>
<NuGetPackageImportStamp>
</NuGetPackageImportStamp>
<TargetFrameworkProfile />
</PropertyGroup>
<PropertyGroup Condition=" '$(Configuration)|$(Platform)' == 'Debug|AnyCPU' ">
<PlatformTarget>AnyCPU</PlatformTarget>
<DebugSymbols>true</DebugSymbols>
<DebugType>full</DebugType>
<Optimize>false</Optimize>
@ -34,6 +29,7 @@
<WarningLevel>4</WarningLevel>
</PropertyGroup>
<PropertyGroup Condition=" '$(Configuration)|$(Platform)' == 'Release|AnyCPU' ">
<PlatformTarget>AnyCPU</PlatformTarget>
<DebugType>pdbonly</DebugType>
<Optimize>true</Optimize>
<OutputPath>bin\Release\</OutputPath>
@ -41,24 +37,34 @@
<ErrorReport>prompt</ErrorReport>
<WarningLevel>4</WarningLevel>
</PropertyGroup>
<PropertyGroup>
<StartupObject />
</PropertyGroup>
<ItemGroup>
<Reference Include="Microsoft.VisualStudio.CodeCoverage.Shim, Version=15.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
<HintPath>..\packages\Microsoft.CodeCoverage.16.10.0\lib\net45\Microsoft.VisualStudio.CodeCoverage.Shim.dll</HintPath>
</Reference>
<Reference Include="Microsoft.VisualStudio.TestPlatform.TestFramework, Version=14.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
<HintPath>..\packages\MSTest.TestFramework.2.1.2\lib\net45\Microsoft.VisualStudio.TestPlatform.TestFramework.dll</HintPath>
<HintPath>..\packages\MSTest.TestFramework.2.2.5\lib\net45\Microsoft.VisualStudio.TestPlatform.TestFramework.dll</HintPath>
</Reference>
<Reference Include="Microsoft.VisualStudio.TestPlatform.TestFramework.Extensions, Version=14.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a, processorArchitecture=MSIL">
<HintPath>..\packages\MSTest.TestFramework.2.1.2\lib\net45\Microsoft.VisualStudio.TestPlatform.TestFramework.Extensions.dll</HintPath>
<HintPath>..\packages\MSTest.TestFramework.2.2.5\lib\net45\Microsoft.VisualStudio.TestPlatform.TestFramework.Extensions.dll</HintPath>
</Reference>
<Reference Include="System" />
<Reference Include="System.Core" />
<Reference Include="System.Xml.Linq" />
<Reference Include="System.Data.DataSetExtensions" />
<Reference Include="Microsoft.CSharp" />
<Reference Include="System.Data" />
<Reference Include="System.Net.Http" />
<Reference Include="System.Xml" />
</ItemGroup>
<ItemGroup>
<Compile Include="SmokeTests.cs" />
<Compile Include="Properties\AssemblyInfo.cs" />
<Compile Include="SmokeTests.cs" />
</ItemGroup>
<ItemGroup>
<None Include="App.config" />
<None Include="packages.config" />
</ItemGroup>
<ItemGroup>
@ -67,20 +73,19 @@
<Name>winPEAS</Name>
</ProjectReference>
</ItemGroup>
<Import Project="$(VSToolsPath)\TeamTest\Microsoft.TestTools.targets" Condition="Exists('$(VSToolsPath)\TeamTest\Microsoft.TestTools.targets')" />
<Import Project="$(MSBuildToolsPath)\Microsoft.CSharp.targets" />
<Target Name="EnsureNuGetPackageBuildImports" BeforeTargets="PrepareForBuild">
<PropertyGroup>
<ErrorText>This project references NuGet package(s) that are missing on this computer. Use NuGet Package Restore to download them. For more information, see http://go.microsoft.com/fwlink/?LinkID=322105. The missing file is {0}.</ErrorText>
</PropertyGroup>
<Error Condition="!Exists('..\packages\MSTest.TestAdapter.2.1.2\build\net45\MSTest.TestAdapter.props')" Text="$([System.String]::Format('$(ErrorText)', '..\packages\MSTest.TestAdapter.2.1.2\build\net45\MSTest.TestAdapter.props'))" />
<Error Condition="!Exists('..\packages\MSTest.TestAdapter.2.1.2\build\net45\MSTest.TestAdapter.targets')" Text="$([System.String]::Format('$(ErrorText)', '..\packages\MSTest.TestAdapter.2.1.2\build\net45\MSTest.TestAdapter.targets'))" />
<Error Condition="!Exists('..\packages\Microsoft.CodeCoverage.16.10.0\build\netstandard1.0\Microsoft.CodeCoverage.props')" Text="$([System.String]::Format('$(ErrorText)', '..\packages\Microsoft.CodeCoverage.16.10.0\build\netstandard1.0\Microsoft.CodeCoverage.props'))" />
<Error Condition="!Exists('..\packages\Microsoft.CodeCoverage.16.10.0\build\netstandard1.0\Microsoft.CodeCoverage.targets')" Text="$([System.String]::Format('$(ErrorText)', '..\packages\Microsoft.CodeCoverage.16.10.0\build\netstandard1.0\Microsoft.CodeCoverage.targets'))" />
<Error Condition="!Exists('..\packages\Microsoft.NET.Test.Sdk.16.10.0\build\net45\Microsoft.NET.Test.Sdk.props')" Text="$([System.String]::Format('$(ErrorText)', '..\packages\Microsoft.NET.Test.Sdk.16.10.0\build\net45\Microsoft.NET.Test.Sdk.props'))" />
<Error Condition="!Exists('..\packages\Microsoft.NET.Test.Sdk.16.10.0\build\net45\Microsoft.NET.Test.Sdk.targets')" Text="$([System.String]::Format('$(ErrorText)', '..\packages\Microsoft.NET.Test.Sdk.16.10.0\build\net45\Microsoft.NET.Test.Sdk.targets'))" />
<Error Condition="!Exists('..\packages\MSTest.TestAdapter.2.2.5\build\net45\MSTest.TestAdapter.props')" Text="$([System.String]::Format('$(ErrorText)', '..\packages\MSTest.TestAdapter.2.2.5\build\net45\MSTest.TestAdapter.props'))" />
<Error Condition="!Exists('..\packages\MSTest.TestAdapter.2.2.5\build\net45\MSTest.TestAdapter.targets')" Text="$([System.String]::Format('$(ErrorText)', '..\packages\MSTest.TestAdapter.2.2.5\build\net45\MSTest.TestAdapter.targets'))" />
</Target>
<Import Project="..\packages\MSTest.TestAdapter.2.1.2\build\net45\MSTest.TestAdapter.targets" Condition="Exists('..\packages\MSTest.TestAdapter.2.1.2\build\net45\MSTest.TestAdapter.targets')" />
<Import Project="..\packages\Microsoft.CodeCoverage.16.10.0\build\netstandard1.0\Microsoft.CodeCoverage.targets" Condition="Exists('..\packages\Microsoft.CodeCoverage.16.10.0\build\netstandard1.0\Microsoft.CodeCoverage.targets')" />
<Import Project="..\packages\Microsoft.NET.Test.Sdk.16.10.0\build\net45\Microsoft.NET.Test.Sdk.targets" Condition="Exists('..\packages\Microsoft.NET.Test.Sdk.16.10.0\build\net45\Microsoft.NET.Test.Sdk.targets')" />
<Import Project="..\packages\MSTest.TestAdapter.2.2.5\build\net45\MSTest.TestAdapter.targets" Condition="Exists('..\packages\MSTest.TestAdapter.2.2.5\build\net45\MSTest.TestAdapter.targets')" />
</Project>

BIN
winPEAS/winPEASexe/binaries/Obfuscated Releases/Dotfuscated/any/winPEASany.exe Normal file
View File

Binary file not shown.

BIN
winPEAS/winPEASexe/binaries/Obfuscated Releases/Dotfuscated/x64/winPEASx64.exe Normal file
View File

Binary file not shown.

BIN
winPEAS/winPEASexe/binaries/Obfuscated Releases/Dotfuscated/x86/winPEASx86.exe Normal file
View File

Binary file not shown.

46
winPEAS/winPEASexe/binaries/Obfuscated Releases/any.xml Normal file
View File

@ -0,0 +1,46 @@
<?xml version="1.0" encoding="utf-8" standalone="no"?>
<!--This config file was generated by Dotfuscator. Please use the Dotfuscator Config Editor to modify.-->
<!DOCTYPE dotfuscator SYSTEM "http://www.preemptive.com/dotfuscator/dtd/dotfuscator_v2.5.dtd">
<dotfuscator version="2.3">
<global>
<option>error</option>
<option>debugauto</option>
</global>
<input>
<loadpaths />
<asmlist>
<inputassembly refid="da9df55d-8b79-4f7b-8cbc-27517a3d15d5">
<option>honoroas</option>
<option>stripoa</option>
<option>library</option>
<option>transformxaml</option>
<file dir="winPEAS\winPEASexe\binaries\Release" name="winPEASany.exe" />
</inputassembly>
</asmlist>
</input>
<output>
<file dir="${configdir}\Dotfuscated\any" />
</output>
<renaming>
<option>xmlserialization</option>
<mapping>
<mapoutput overwrite="false">
<file dir="${configdir}\Dotfuscated\any" name="Map.xml" />
</mapoutput>
</mapping>
<referencerulelist>
<referencerule rulekey="{6655B10A-FD58-462d-8D4F-5B1316DFF0FF}" />
<referencerule rulekey="{7D9C8B02-2383-420f-8740-A9760394C2C1}" />
<referencerule rulekey="{229FD6F8-5BCC-427b-8F72-A7A413ECDF1A}" />
<referencerule rulekey="{2B7E7C8C-A39A-4db8-9DFC-6AFD38509061}" />
<referencerule rulekey="{494EA3BA-B947-44B5-BEE8-A11CC85AAF9B}" />
<referencerule rulekey="{89769974-93E9-4e71-8D92-BE70E855ACFC}" />
<referencerule rulekey="{4D81E604-A545-4631-8B6D-C3735F793F80}" />
<referencerule rulekey="{62bd3899-7d53-4336-8ca2-4e5dbae187d5}" />
</referencerulelist>
</renaming>
<sos />
<smartobfuscation>
<smartobfuscationreport verbosity="all" overwrite="false" />
</smartobfuscation>
</dotfuscator>

BIN
winPEAS/winPEASexe/binaries/Obfuscated Releases/winPEASany.exe
View File

Binary file not shown.

BIN
winPEAS/winPEASexe/binaries/Obfuscated Releases/winPEASx64.exe
View File

Binary file not shown.

BIN
winPEAS/winPEASexe/binaries/Obfuscated Releases/winPEASx86.exe
View File

Binary file not shown.

46
winPEAS/winPEASexe/binaries/Obfuscated Releases/x64.xml Normal file
View File

@ -0,0 +1,46 @@
<?xml version="1.0" encoding="utf-8" standalone="no"?>
<!--This config file was generated by Dotfuscator. Please use the Dotfuscator Config Editor to modify.-->
<!DOCTYPE dotfuscator SYSTEM "http://www.preemptive.com/dotfuscator/dtd/dotfuscator_v2.5.dtd">
<dotfuscator version="2.3">
<global>
<option>error</option>
<option>debugauto</option>
</global>
<input>
<loadpaths />
<asmlist>
<inputassembly refid="da9df55d-8b79-4f7b-8cbc-27517a3d15d5">
<option>honoroas</option>
<option>stripoa</option>
<option>library</option>
<option>transformxaml</option>
<file dir="winPEAS\winPEASexe\binaries\x64\Release" name="winPEASx64.exe" />
</inputassembly>
</asmlist>
</input>
<output>
<file dir="${configdir}\Dotfuscated\x64" />
</output>
<renaming>
<option>xmlserialization</option>
<mapping>
<mapoutput overwrite="false">
<file dir="${configdir}\Dotfuscated\x64" name="Map.xml" />
</mapoutput>
</mapping>
<referencerulelist>
<referencerule rulekey="{6655B10A-FD58-462d-8D4F-5B1316DFF0FF}" />
<referencerule rulekey="{7D9C8B02-2383-420f-8740-A9760394C2C1}" />
<referencerule rulekey="{229FD6F8-5BCC-427b-8F72-A7A413ECDF1A}" />
<referencerule rulekey="{2B7E7C8C-A39A-4db8-9DFC-6AFD38509061}" />
<referencerule rulekey="{494EA3BA-B947-44B5-BEE8-A11CC85AAF9B}" />
<referencerule rulekey="{89769974-93E9-4e71-8D92-BE70E855ACFC}" />
<referencerule rulekey="{4D81E604-A545-4631-8B6D-C3735F793F80}" />
<referencerule rulekey="{62bd3899-7d53-4336-8ca2-4e5dbae187d5}" />
</referencerulelist>
</renaming>
<sos />
<smartobfuscation>
<smartobfuscationreport verbosity="all" overwrite="false" />
</smartobfuscation>
</dotfuscator>

46
winPEAS/winPEASexe/binaries/Obfuscated Releases/x86.xml Normal file
View File

@ -0,0 +1,46 @@
<?xml version="1.0" encoding="utf-8" standalone="no"?>
<!--This config file was generated by Dotfuscator. Please use the Dotfuscator Config Editor to modify.-->
<!DOCTYPE dotfuscator SYSTEM "http://www.preemptive.com/dotfuscator/dtd/dotfuscator_v2.5.dtd">
<dotfuscator version="2.3">
<global>
<option>error</option>
<option>debugauto</option>
</global>
<input>
<loadpaths />
<asmlist>
<inputassembly refid="da9df55d-8b79-4f7b-8cbc-27517a3d15d5">
<option>honoroas</option>
<option>stripoa</option>
<option>library</option>
<option>transformxaml</option>
<file dir="winPEAS\winPEASexe\binaries\x86\Release" name="winPEASx86.exe" />
</inputassembly>
</asmlist>
</input>
<output>
<file dir="${configdir}\Dotfuscated\x86" />
</output>
<renaming>
<option>xmlserialization</option>
<mapping>
<mapoutput overwrite="false">
<file dir="${configdir}\Dotfuscated\x86" name="Map.xml" />
</mapoutput>
</mapping>
<referencerulelist>
<referencerule rulekey="{6655B10A-FD58-462d-8D4F-5B1316DFF0FF}" />
<referencerule rulekey="{7D9C8B02-2383-420f-8740-A9760394C2C1}" />
<referencerule rulekey="{229FD6F8-5BCC-427b-8F72-A7A413ECDF1A}" />
<referencerule rulekey="{2B7E7C8C-A39A-4db8-9DFC-6AFD38509061}" />
<referencerule rulekey="{494EA3BA-B947-44B5-BEE8-A11CC85AAF9B}" />
<referencerule rulekey="{89769974-93E9-4e71-8D92-BE70E855ACFC}" />
<referencerule rulekey="{4D81E604-A545-4631-8B6D-C3735F793F80}" />
<referencerule rulekey="{62bd3899-7d53-4336-8ca2-4e5dbae187d5}" />
</referencerulelist>
</renaming>
<sos />
<smartobfuscation>
<smartobfuscationreport verbosity="all" overwrite="false" />
</smartobfuscation>
</dotfuscator>

BIN
winPEAS/winPEASexe/binaries/Release/winPEASany.exe
View File

Binary file not shown.

BIN
winPEAS/winPEASexe/binaries/x64/Release/winPEASx64.exe
View File

Binary file not shown.

BIN
winPEAS/winPEASexe/binaries/x86/Release/winPEASx86.exe
View File

Binary file not shown.

20
winPEAS/winPEASexe/winPEAS.Tests/Properties/AssemblyInfo.cs
View File

@ -1,20 +0,0 @@
using System.Reflection;
using System.Runtime.CompilerServices;
using System.Runtime.InteropServices;
[assembly: AssemblyTitle("winPEAS.Tests")]
[assembly: AssemblyDescription("")]
[assembly: AssemblyConfiguration("")]
[assembly: AssemblyCompany("")]
[assembly: AssemblyProduct("winPEAS.Tests")]
[assembly: AssemblyCopyright("Copyright © 2021")]
[assembly: AssemblyTrademark("")]
[assembly: AssemblyCulture("")]
[assembly: ComVisible(false)]
[assembly: Guid("52a3b7ff-a1ad-4b41-ab4c-21c7f95ce42f")]
// [assembly: AssemblyVersion("1.0.*")]
[assembly: AssemblyVersion("1.0.0.0")]
[assembly: AssemblyFileVersion("1.0.0.0")]

7
winPEAS/winPEASexe/winPEAS.Tests/packages.config
View File

@ -1,7 +0,0 @@
<?xml version="1.0" encoding="utf-8"?>
<packages>
<package id="Microsoft.CodeCoverage" version="16.10.0" targetFramework="net472" />
<package id="Microsoft.NET.Test.Sdk" version="16.10.0" targetFramework="net472" />
<package id="MSTest.TestAdapter" version="2.1.2" targetFramework="net472" />
<package id="MSTest.TestFramework" version="2.1.2" targetFramework="net472" />
</packages>

26
winPEAS/winPEASexe/winPEAS.sln
View File

@ -5,7 +5,7 @@ VisualStudioVersion = 16.0.29326.143
MinimumVisualStudioVersion = 10.0.40219.1
Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "winPEAS", "winPEAS\winPEAS.csproj", "{D934058E-A7DB-493F-A741-AE8E3DF867F4}"
EndProject
Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "winPEAS.Tests", "winPEAS.Tests\winPEAS.Tests.csproj", "{52A3B7FF-A1AD-4B41-AB4C-21C7F95CE42F}"
Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "winPEAS.Tests", "Tests\winPEAS.Tests.csproj", "{66AA4619-4D0F-4226-9D96-298870E9BB50}"
EndProject
Global
GlobalSection(SolutionConfigurationPlatforms) = preSolution
@ -29,18 +29,18 @@ Global
{D934058E-A7DB-493F-A741-AE8E3DF867F4}.Release|x64.Build.0 = Release|x64
{D934058E-A7DB-493F-A741-AE8E3DF867F4}.Release|x86.ActiveCfg = Release|x86
{D934058E-A7DB-493F-A741-AE8E3DF867F4}.Release|x86.Build.0 = Release|x86
{52A3B7FF-A1AD-4B41-AB4C-21C7F95CE42F}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
{52A3B7FF-A1AD-4B41-AB4C-21C7F95CE42F}.Debug|Any CPU.Build.0 = Debug|Any CPU
{52A3B7FF-A1AD-4B41-AB4C-21C7F95CE42F}.Debug|x64.ActiveCfg = Debug|Any CPU
{52A3B7FF-A1AD-4B41-AB4C-21C7F95CE42F}.Debug|x64.Build.0 = Debug|Any CPU
{52A3B7FF-A1AD-4B41-AB4C-21C7F95CE42F}.Debug|x86.ActiveCfg = Debug|Any CPU
{52A3B7FF-A1AD-4B41-AB4C-21C7F95CE42F}.Debug|x86.Build.0 = Debug|Any CPU
{52A3B7FF-A1AD-4B41-AB4C-21C7F95CE42F}.Release|Any CPU.ActiveCfg = Release|Any CPU
{52A3B7FF-A1AD-4B41-AB4C-21C7F95CE42F}.Release|Any CPU.Build.0 = Release|Any CPU
{52A3B7FF-A1AD-4B41-AB4C-21C7F95CE42F}.Release|x64.ActiveCfg = Release|Any CPU
{52A3B7FF-A1AD-4B41-AB4C-21C7F95CE42F}.Release|x64.Build.0 = Release|Any CPU
{52A3B7FF-A1AD-4B41-AB4C-21C7F95CE42F}.Release|x86.ActiveCfg = Release|Any CPU
{52A3B7FF-A1AD-4B41-AB4C-21C7F95CE42F}.Release|x86.Build.0 = Release|Any CPU
{66AA4619-4D0F-4226-9D96-298870E9BB50}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
{66AA4619-4D0F-4226-9D96-298870E9BB50}.Debug|Any CPU.Build.0 = Debug|Any CPU
{66AA4619-4D0F-4226-9D96-298870E9BB50}.Debug|x64.ActiveCfg = Debug|Any CPU
{66AA4619-4D0F-4226-9D96-298870E9BB50}.Debug|x64.Build.0 = Debug|Any CPU
{66AA4619-4D0F-4226-9D96-298870E9BB50}.Debug|x86.ActiveCfg = Debug|Any CPU
{66AA4619-4D0F-4226-9D96-298870E9BB50}.Debug|x86.Build.0 = Debug|Any CPU
{66AA4619-4D0F-4226-9D96-298870E9BB50}.Release|Any CPU.ActiveCfg = Release|Any CPU
{66AA4619-4D0F-4226-9D96-298870E9BB50}.Release|Any CPU.Build.0 = Release|Any CPU
{66AA4619-4D0F-4226-9D96-298870E9BB50}.Release|x64.ActiveCfg = Release|Any CPU
{66AA4619-4D0F-4226-9D96-298870E9BB50}.Release|x64.Build.0 = Release|Any CPU
{66AA4619-4D0F-4226-9D96-298870E9BB50}.Release|x86.ActiveCfg = Release|Any CPU
{66AA4619-4D0F-4226-9D96-298870E9BB50}.Release|x86.Build.0 = Release|Any CPU
EndGlobalSection
GlobalSection(SolutionProperties) = preSolution
HideSolutionNode = FALSE