From 95b4577dc558c6a5ef004147933d93dd2959f02d Mon Sep 17 00:00:00 2001 From: Raphael Date: Sun, 17 Mar 2019 15:50:20 +0100 Subject: [PATCH] Documentation --- README.md | 19 ++++++++++++++++++- 1 file changed, 18 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index 6b8deb0..4994899 100644 --- a/README.md +++ b/README.md @@ -1,9 +1,26 @@ # Covermyass ![Build status](https://img.shields.io/travis/sundowndev/covermyass/master.svg?style=flat-square) +![Tag](https://img.shields.io/github/tag/SundownDEV/covermyass.svg?style=flat-square) CLI tool to cover your tracks on UNIX systems. Designed for pen testing "Covering Tracks" phase, before exiting the infected server. Or, even better, permanently disable bash & auth history. +This tool allows you to clear log files such as : + +- `/var/log/messages` : General message and system related stuff +- `/var/log/auth.log` : Authenication logs +- `/var/log/kern.log` : Kernel logs +- `/var/log/cron.log` : Crond logs (cron job) +- `/var/log/maillog` : Mail server logs +- `/var/log/qmail/` : Qmail log directory (more files inside this directory) +- `/var/log/httpd/` : Apache access and error logs directory +- `/var/log/lighttpd/` : Lighttpd access and error logs directory +- `/var/log/boot.log` : System boot log +- `/var/log/mysqld.log` : MySQL database server log file +- `/var/log/secure` or `/var/log/auth.log` : Authentication log +- `/var/log/utmp` or `/var/log/wtmp` : Login records file +- `/var/log/yum.log` : Yum command log file. + **This tool supports zsh & bash shell.** ## Installation @@ -47,7 +64,7 @@ Select an option : > ``` -*NOTE: don't forget to exit the terminal session as the history is cached.* +*NOTE: don't forget to exit the terminal session since the bash history is cached.* Clear auth & history instantly :