Bandit Level 6 | Akash Trehan

Bandit Level 6

Bandit OverTheWire Wargames

OverTheWire logo

Level Goal:

The password for the next level is stored somewhere on the server and has all of the following properties: - owned by user bandit7 - owned by group bandit6 - 33 bytes in size

Commands you may need to solve this level

ls, cd, cat, file, du, find, grep

Helpful Reading Material

None

Write-up

This time the file is not in the home directory but “somewhere” on the server.

I went into the root directory with cd / and did a search to meet the given specifications.

bandit6@melinda:/$ find . -size 33c -group bandit6 -user bandit7 | grep bandit7

Among a lot of Permission Denied errors, I saw a highlighted bandit7.

output

That file had the password for Level 7.

bandit6@melinda:/$ cat ./var/lib/dpkg/info/bandit7.password

Edit: Yay! Got a nicer one line method to do this.

cat `find . -size 33c -group bandit6 -user bandit7 2>/dev/null`

So what 2>/dev/null does is, it redirects all standard errors like No such file or directory and Permission denied to /dev/null where null acts as a special device which discards all information written to it. Thus we only get the one required file as output which I sent as input to cat to see its contents.

Level 7 password: HKBPTKQnIay4Fw76bEy8PVxKEDQRKTzs




Follow @CodeMaxx
Bandit Level 5

Related Posts

Akash Trehan

Akash Trehan

Hacker-Developer-Geek

comments powered by Disqus
rss facebook twitter github youtube mail spotify instagram linkedin google pinterest medium