Bandit CTF
ssh bandit7@bandit.labs.overthewire.org -p 2220
3 - UmHadQclWmgdLOKQ3YNgjWxGoRMb5luK
4 - pIwrPrtPN36QITSp3EQaw936yaFoFgAB
5 - koReBOKuIDDepwhWk7jZC0RTdopnAYKh
6 - DXjZPULLxYr17uwoI01bNLQbtFemEgo7
7 - HKBPTKQnIay4Fw76bEy8PVxKEDQRKTzs /--> find / -size 33c -user bandit7 -group bandit6 2>/dev/null --> cat /var/lib/dpkg/info/bandit7.password
8 - cvX2JJa4CFALtqS87jk27qwqGhBM9plV /--> grep "millionth" data.txt
9 - UsvVyFSfZZWbi6wgC7dAFyFuR6jQQUhR /--> cat data.txt | sort | uniq -c | grep 1 / unique value
10 -truKLdjsbJ5g7yyJ2X2R0o3a5HQJFuLk /--> strings data.txt | grep "==" /search for something with req text
11- IFukwKGsFW8MOq3IRFqrxE1hxTNEbUPR
12- 5Te8Y4drgCRfCx8ugdwuEX8KFC6k2EUu /--> cat data.txt | tr a-zA-Z n-za-mN-ZA-M /find rot13 text
13- 8ZjyCRiBWFYkneahHwxCv3wb2a1ORpYL
14- 4wcYUJFw0k0XLShlDzztnTBHiqxU3b3e / ssh -i sshkey.private bandit14@localhost
15- BfMYroe26WYalil77FoDi9qh59eK5xNr /echo 4wcYUJFw0k0XLShlDzztnTBHiqxU3b3e | nc localhost 30000
16- cluFn7wTiGryunymYOu4RcffSxQluehd /echo BfMYroe26WYalil77FoDi9qh59eK5xNr | openssl s_client -quiet -connect localhost:30001
17- xLYVMN9WE5zQ5vHacb0sZEVqbrp7nBTn /--> cat /etc/bandit_pass/bandit16 | openssl s_client -quiet -connect localhost:31790 -quiet >/tmp/key/key.private
chmod 700 key.private --> ssh -i key.private bandit17@localhost --> cat /etc/bandit_pass/bandit17
18- kfBf3eYk5BPBRzwjqutbbfE887SVc5Yd /--> awk 'NR==FNR{a[$0];next}!($0 in a)' passwords.new passwords.old --> diff b/w 2 lines
diff passwords.new passwords.old
grep -vf passwords.old passwords.new
19- IueksS7Ubh8G3DCwVzrTd8rAVOwq3M5x /--> ssh bandit18@bandit.labs.overthewire.org -p 2220 cat readme
20-GbKksEFF4yrVs6il55v6gwY5aVje5f0j /--> ./bandit20-do cat /etc/bandit_pass/bandit20
ougahZi8Ta
ssh bandit7@bandit.labs.overthewire.org -p 2220
3 - UmHadQclWmgdLOKQ3YNgjWxGoRMb5luK
4 - pIwrPrtPN36QITSp3EQaw936yaFoFgAB
5 - koReBOKuIDDepwhWk7jZC0RTdopnAYKh
6 - DXjZPULLxYr17uwoI01bNLQbtFemEgo7
7 - HKBPTKQnIay4Fw76bEy8PVxKEDQRKTzs /--> find / -size 33c -user bandit7 -group bandit6 2>/dev/null --> cat /var/lib/dpkg/info/bandit7.password
8 - cvX2JJa4CFALtqS87jk27qwqGhBM9plV /--> grep "millionth" data.txt
9 - UsvVyFSfZZWbi6wgC7dAFyFuR6jQQUhR /--> cat data.txt | sort | uniq -c | grep 1 / unique value
10 -truKLdjsbJ5g7yyJ2X2R0o3a5HQJFuLk /--> strings data.txt | grep "==" /search for something with req text
11- IFukwKGsFW8MOq3IRFqrxE1hxTNEbUPR
12- 5Te8Y4drgCRfCx8ugdwuEX8KFC6k2EUu /--> cat data.txt | tr a-zA-Z n-za-mN-ZA-M /find rot13 text
13- 8ZjyCRiBWFYkneahHwxCv3wb2a1ORpYL
14- 4wcYUJFw0k0XLShlDzztnTBHiqxU3b3e / ssh -i sshkey.private bandit14@localhost
15- BfMYroe26WYalil77FoDi9qh59eK5xNr /echo 4wcYUJFw0k0XLShlDzztnTBHiqxU3b3e | nc localhost 30000
16- cluFn7wTiGryunymYOu4RcffSxQluehd /echo BfMYroe26WYalil77FoDi9qh59eK5xNr | openssl s_client -quiet -connect localhost:30001
17- xLYVMN9WE5zQ5vHacb0sZEVqbrp7nBTn /--> cat /etc/bandit_pass/bandit16 | openssl s_client -quiet -connect localhost:31790 -quiet >/tmp/key/key.private
chmod 700 key.private --> ssh -i key.private bandit17@localhost --> cat /etc/bandit_pass/bandit17
18- kfBf3eYk5BPBRzwjqutbbfE887SVc5Yd /--> awk 'NR==FNR{a[$0];next}!($0 in a)' passwords.new passwords.old --> diff b/w 2 lines
diff passwords.new passwords.old
grep -vf passwords.old passwords.new
19- IueksS7Ubh8G3DCwVzrTd8rAVOwq3M5x /--> ssh bandit18@bandit.labs.overthewire.org -p 2220 cat readme
20-GbKksEFF4yrVs6il55v6gwY5aVje5f0j /--> ./bandit20-do cat /etc/bandit_pass/bandit20
ougahZi8Ta
Comments
Post a Comment