OverTheWire - Bandit - Level 16

Level Goal

The password for the next level can be retrieved by submitting the password of the current level to port 30001 on localhost using SSL encryption.

Helpful note; Getting "HEARTBEATING" and "Read R BLOCK"? Use -quiet and read the "CONNECTED COMMANDS" section in the manpage. Next to 'R' and 'Q', the 'B' command also works in this version of that command...

Commands you may need to solve this level

• ssh
• telnet
• nc
• openssl
• s_client
• nmap

Helpful Reading Material

• Secure Socket Layer/Transport Layer Security on Wikipiedia
• Testing SSL with commandline tools

---

For this level we'll use openssl and s_client. Let's construct the command like this:

openssl s_client -connect localhost:30001 -quiet

We can then provide the password used to log in to this level. Doing so will return the password used to log in to bandit16.

We can have all of this done on a single line by using the following command sequence:

echo password | openssl s_client -connect localhost:30001 -quiet

I've tried using similar scenarios on the previous two levels to attempt to get them to be single line solutions as well to no avail.