User Login

login.sh

 #!/bin/bash
clear
echo "Created By : FreeDroid"
echo "=========================================";
 
data=( `ps aux | grep -i dropbear | awk '{print $2}'`);
echo "Memeriksa User Dropbear Yang Login";
echo "(ID - Username - IP)";
echo "-----------------------------------------";
 
for PID in "${data[@]}"
do
#echo "check $PID";
NUM=`cat /var/log/auth.log | grep -i dropbear | grep -i "Password auth succeeded" | grep "dropbear\[$PID\]" | wc -l`;
USER=`cat /var/log/auth.log | grep -i dropbear | grep -i "Password auth succeeded" | grep "dropbear\[$PID\]" | awk '{print $10}'`;
IP=`cat /var/log/auth.log | grep -i dropbear | grep -i "Password auth succeeded" | grep "dropbear\[$PID\]" | awk '{print $12}'`;
if [ $NUM -eq 1 ]; then
echo "$PID - $USER - $IP";
fi
done
 
data=( `ps aux | grep "\[priv\]" | sort -k 72 | awk '{print $2}'`);
echo "";
echo "Memeriksa User OpenSSH Yang Login";
echo "(ID - Username - IP)";
echo "-----------------------------------------";
for PID in "${data[@]}"
do
#echo "check $PID";
NUM=`cat /var/log/auth.log | grep -i sshd | grep -i "Accepted password for" | grep "sshd\[$PID\]" | wc -l`;
USER=`cat /var/log/auth.log | grep -i sshd | grep -i "Accepted password for" | grep "sshd\[$PID\]" | awk '{print $9}'`;
IP=`cat /var/log/auth.log | grep -i sshd | grep -i "Accepted password for" | grep "sshd\[$PID\]" | awk '{print $11}'`;
if [ $NUM -eq 1 ]; then
echo "$PID - $USER - $IP";
fi
done
echo "=========================================";