Om's Brain

1 Linux wargames

3 min read

🏴 Level 0

- The password for the next level is stored in a file called **readme** located in the home directory. Use this password to log into bandit1 using SSH. Whenever you find a password for a level, use SSH (on port 2220) to log into that level and continue the game.

ssh [email protected] -p 2220
ZjLjTmM6FvvyRnrb2rfNWOZOTa6ip5If

🏴 Level 1

  • The password for the next level is stored in a file called - located in the home directory
bandit1@bandit:~$ cat < -
263JGJPfgU6LtdEvgfWU1XP5yac29mFx
bandit1@bandit:~$ cat ./-
263JGJPfgU6LtdEvgfWU1XP5yac29mFx
bandit1@bandit:~$ more ./-
263JGJPfgU6LtdEvgfWU1XP5yac29mFx
bandit1@bandit:~$ less ./-  
# q to exit from less command

🏴 Level 2

🏴 Level 1

  • The password for the next level is stored in a file called --spaces in this filename-- located in the home directory
bandit2@bandit:~$ cat ./--spaces\ in\ this\ filename--
MNk8KNH3Usiio41PRUEoDFPqfxLPlSmx

🏴 Level 3

  • The password for the next level is stored in a hidden file in the inhere directory.
bandit3@bandit:~$ ls
inhere
bandit3@bandit:~$ cd inhere/
bandit3@bandit:~/inhere$ ls
bandit3@bandit:~/inhere$ ls -a
.  ..  ...Hiding-From-You
bandit3@bandit:~/inhere$ cat ...Hiding-From-You
2WmrDFRmJIq3IPxneAaMGhap0pFhF3NJ

🏴 Level 4

  • The password for the next level is stored in the only human-readable file in the inhere directory. Tip: if your terminal is messed up, try the “reset” command.
bandit4@bandit:~/inhere$ ls -lt
total 40
-rw-r----- 1 bandit5 bandit4 33 Oct 14 09:26 -file09
-rw-r----- 1 bandit5 bandit4 33 Oct 14 09:26 -file08
-rw-r----- 1 bandit5 bandit4 33 Oct 14 09:26 -file07
-rw-r----- 1 bandit5 bandit4 33 Oct 14 09:26 -file06
-rw-r----- 1 bandit5 bandit4 33 Oct 14 09:26 -file05
-rw-r----- 1 bandit5 bandit4 33 Oct 14 09:26 -file04
-rw-r----- 1 bandit5 bandit4 33 Oct 14 09:26 -file03
-rw-r----- 1 bandit5 bandit4 33 Oct 14 09:26 -file02
-rw-r----- 1 bandit5 bandit4 33 Oct 14 09:26 -file01
-rw-r----- 1 bandit5 bandit4 33 Oct 14 09:26 -file00
bandit4@bandit:~/inhere$ cat ./-file00
=
I�� ��V`n�5���ѳ��*�G^7؅cO�bandit4@bandit:~/inhere$
 
 
// Soluation
bandit4@bandit:~/inhere$ file ./*
./-file00: data
./-file01: OpenPGP Public Key
./-file02: OpenPGP Public Key
./-file03: data
./-file04: data
./-file05: data
./-file06: data
./-file07: ASCII text
./-file08: data
./-file09: data
bandit4@bandit:~/inhere$ cat ./-file07
4oQYVPkxZOOEOO5pTW81FB8j8lxXGUQw

🏴 Level 5

  • The password for the next level is stored in a file somewhere under the inhere directory and has all of the following properties:
    • human-readable
    • 1033 bytes in size
    • not executable
find . -type f -size 1033c ! -executable
 
bandit5@bandit:~$ cat ./inhere/maybehere07/.file2
HWasnPhtq9AVKe0dmk45nxy20cvUa6EG

Breakdown of the command:

  • find .: Starts the search in the current directory.
  • -type f: Looks only for files (not directories).
  • -size 1033c: Searches for files with an exact size of 1033 bytes (c stands for bytes).
  • ! -executable: Excludes files that have execute permissions.

🏴 Level 6

  • The password for the next level is stored somewhere on the server and has all of the following properties:
    • owned by user bandit7
    • owned by group bandit6
    • 33 bytes in size

🏴 Level 6

  • The password for the next level is stored somewhere on the server and has all of the following properties:
    • owned by user bandit7
    • owned by group bandit6
    • 33 bytes in size

Mindmap

Graph View