
Bandit Level 19
Bandit Level 19 → 20: using a setuid binary to read a file owned by another user

Bandit Level 19 → 20: using a setuid binary to read a file owned by another user

Bandit Level 18 → 19: bypassing .bashrc logout by running a command directly over SSH

Bandit Level 17 → 18: using diff to find the one changed line between two password files

Bandit Level 16 → 17: port scanning with nmap to find the SSL listener and get an SSH key

Bandit Level 15 → 16: submitting a password over SSL using openssl s_client

Bandit Level 9 → 10: using strings to extract human-readable text from a binary file

Bandit Level 8 → 9: finding the only unique line in a file using sort and uniq -u

Bandit Level 7 → 8: extracting a password next to the word 'millionth' with grep

Bandit Level 6 → 7: searching the whole server by owner, group, and size with find

Bandit Level 5 → 6: using find with size and non-executable flags to locate the password