#!/usr/bin/env bash
set -euo pipefail

echo "[+] Hostname / kernel / distro"
hostname || true
uname -a || true
cat /etc/os-release 2>/dev/null || true

echo
echo "[+] Users and groups"
id || true
whoami || true
cat /etc/passwd 2>/dev/null | cut -d: -f1,3,4 | head -n 5 || true
groups 2>/dev/null || true

echo
echo "[+] Sudo (non-interactive)"
sudo -n -l 2>&1 || echo "sudo -n -l failed (needs password?)"

echo
echo "[+] Env / PATH / umask"
printf 'PATH=%s\n' "$PATH"
umask || true
env | sort | head -n 20

echo
echo "[+] Cron jobs"
ls -la /etc/cron* 2>/dev/null || true
crontab -l 2>/dev/null || true

echo
echo "[+] Network"
ip a 2>/dev/null || ifconfig 2>/dev/null || true
ip r 2>/dev/null || route -n 2>/dev/null || true
ss -tunlp 2>/dev/null || netstat -tunlp 2>/dev/null || true

echo
echo "[+] Processes"
ps aux --sort=-%mem | head -n 15

echo
echo "[+] Interesting files (writable / root owned / backups)"
find / -type f -name "*.bak" -o -name "*.old" -o -name "*.orig" 2>/dev/null | head -n 50
find / -writable -type f -maxdepth 3 -not -path "/proc/*" 2>/dev/null | head -n 50

echo
echo "[+] SUID/SGID & Capabilities"
find / -perm -4000 -type f -not -path "/proc/*" -ls 2>/dev/null | head -n 50
command -v getcap >/dev/null && getcap -r / 2>/dev/null | head -n 50 || true