hacking

OvertheWire – Bandit 24

Recap of Last Lesson: Variable creation, shell scripts and a little on hash functions Bandit Level 24 Objective Find the password to the next level Intel Given

  • A program is running automatically at regular intervals from cron, the time-based job scheduler. Look in /etc/cron.d/ for the configuration and see what command is being executed. NOTE: This level requires you to create your own first shell-script. This is a very big step and you should be proud of yourself when you beat this level! NOTE 2: Keep in mind that your shell script is removed once executed, so you may want to keep a copy around…
(more…)

By hellor00t, ago
hacking

OvertheWire – Bandit 23

Recap of Last LessonLearned about cron and reading scripts Bandit Level 23 Objective Find the password to the next level Intel Given

  • A program is running automatically at regular intervals from cron, the time-based job scheduler. Look in /etc/cron.d/ for the configuration and see what command is being executed.
NOTE:Looking at shell scripts written by other people is a very useful skill. The script for this level is intentionally made easy to read. If you are having problems understanding what it does, try executing it to see the debug information it prints. (more…)

By hellor00t, ago
hacking

OvertheWire – Bandit 21

Recap of Last Lesson: Learned about file permissions and running executables. Bandit Level 21 Objective Find the password to the next level Intel Given

  • There is a setuid binary in the home directory that does the following: it makes a connection to localhost on the port you specify as a command line argument. It then reads a line of text from the connection and compares it to the password in the previous level (bandit20).
  • If the password is correct, it will transmit the password for the next level (bandit21).NOTE: To beat this level, you need to login twice: once to run the setuid command, and once to start a network daemon to which the setuid will connect.
(more…)

By hellor00t, ago