Level Goal

The password for the next level is stored in /etc/bandit_pass/bandit14 and can only be read by user bandit14. For this level, you don't get the next password, but you get a private SSH key that can be used to log into the next level. Note: localhost is a hostname that refers to the machine you are working on.

Commands you may need to solve this level

ssh
telnet
nc
openssl
s_client
nmap

Helpful Reading Material

SSH/OpenSSH/Keys

Compared to the last one, this is a breeze! We'll be using the ssh command with the -i flag used for specifying the identity we'll be using.

ssh -i sshkey.private bandit14@localhost

Once we get the shell we should be able to access the file fine. So simply cat out the password.

cat /etc/bandit_pass/bandit14

This should provide the password to bandit14.

Again, I'm not sure how to make this display the password in a single go as we have to wait for the bandit14 shell session to start before we execute the cat command. Let me know if you come up with something in the comment section.

{Code::Blue.Development}

Wednesday, July 1, 2015

OverTheWire - Bandit - Level 14

Level Goal

Commands you may need to solve this level

Helpful Reading Material

No comments:

Post a Comment