diff --git a/bandit:cookie b/bandit:cookie new file mode 100644 index 0000000..5e9a8cc --- /dev/null +++ b/bandit:cookie @@ -0,0 +1,141 @@ +cat readme +NH2SXQwcBdpmTEzi3bvBHMM9H66vVXjL - pw lvl 1 + +ls cat <- +rRGizSaX8Mk1RTb1CNQoXTcYZWU6lgzi - pw lvl 2 + +cat "spaces in this filename" +aBZ0W5EmUfAf7kHTQeOwd8bauFJ2lAiG - pw lvl 3 + +ls -a +cd inhere/ +cat .hidden +2EW7BBsr6aMMoJ2HjW067dm8EgX26xNe - pw lvl 4 + +cat <-file07 +lrIWWI6bB37kxfiCQZqUdOIYfr6eEeqR - pw lvl 5 + +find -type f -size 1033c ! -executable +P4L4vucdmLnm8I7Vl7jG1ApGSfjYKqJU - pw lvl 6 + +find / -user bandit7 -group bandit6 -size 33c +z7WtoNQU2XfjmMtWA8u5rN4vzqu4v99S - pw lvl 7 + +cat data.txt | grep millionth +TESKZC0XvTetK0S9xNwm25STk5iWrBvP - pw lvl 8 + +sort data.txt | uniq -u +EN632PlfYiZbn3PhVK3XOGSlNInNE00t - pw lvl 9 + +cat data.txt | strings | grep = +G7w8LIi6J3kTb8A7j9LgrywtEUlyyp6s - pw lvl 10 + +cat data.txt | base64 --decode +6zPeziLdR2RKNdNYFNb6nVCKzphlXHBM - pw lvl 11 + + +JVNBBFSmZwKKOP0XbFXOoW8chDz5yVRv - pw lvl 12 +wbWdlBxEir4CaE8LaPhauuOo6pwRmrDw - pw lvl 13 + + + +-----BEGIN RSA PRIVATE KEY----- +MIIEpAIBAAKCAQEAxkkOE83W2cOT7IWhFc9aPaaQmQDdgzuXCv+ppZHa++buSkN+ +gg0tcr7Fw8NLGa5+Uzec2rEg0WmeevB13AIoYp0MZyETq46t+jk9puNwZwIt9XgB +ZufGtZEwWbFWw/vVLNwOXBe4UWStGRWzgPpEeSv5Tb1VjLZIBdGphTIK22Amz6Zb +ThMsiMnyJafEwJ/T8PQO3myS91vUHEuoOMAzoUID4kN0MEZ3+XahyK0HJVq68KsV +ObefXG1vvA3GAJ29kxJaqvRfgYnqZryWN7w3CHjNU4c/2Jkp+n8L0SnxaNA+WYA7 +jiPyTF0is8uzMlYQ4l1Lzh/8/MpvhCQF8r22dwIDAQABAoIBAQC6dWBjhyEOzjeA +J3j/RWmap9M5zfJ/wb2bfidNpwbB8rsJ4sZIDZQ7XuIh4LfygoAQSS+bBw3RXvzE +pvJt3SmU8hIDuLsCjL1VnBY5pY7Bju8g8aR/3FyjyNAqx/TLfzlLYfOu7i9Jet67 +xAh0tONG/u8FB5I3LAI2Vp6OviwvdWeC4nOxCthldpuPKNLA8rmMMVRTKQ+7T2VS +nXmwYckKUcUgzoVSpiNZaS0zUDypdpy2+tRH3MQa5kqN1YKjvF8RC47woOYCktsD +o3FFpGNFec9Taa3Msy+DfQQhHKZFKIL3bJDONtmrVvtYK40/yeU4aZ/HA2DQzwhe +ol1AfiEhAoGBAOnVjosBkm7sblK+n4IEwPxs8sOmhPnTDUy5WGrpSCrXOmsVIBUf +laL3ZGLx3xCIwtCnEucB9DvN2HZkupc/h6hTKUYLqXuyLD8njTrbRhLgbC9QrKrS +M1F2fSTxVqPtZDlDMwjNR04xHA/fKh8bXXyTMqOHNJTHHNhbh3McdURjAoGBANkU +1hqfnw7+aXncJ9bjysr1ZWbqOE5Nd8AFgfwaKuGTTVX2NsUQnCMWdOp+wFak40JH +PKWkJNdBG+ex0H9JNQsTK3X5PBMAS8AfX0GrKeuwKWA6erytVTqjOfLYcdp5+z9s +8DtVCxDuVsM+i4X8UqIGOlvGbtKEVokHPFXP1q/dAoGAcHg5YX7WEehCgCYTzpO+ +xysX8ScM2qS6xuZ3MqUWAxUWkh7NGZvhe0sGy9iOdANzwKw7mUUFViaCMR/t54W1 +GC83sOs3D7n5Mj8x3NdO8xFit7dT9a245TvaoYQ7KgmqpSg/ScKCw4c3eiLava+J +3btnJeSIU+8ZXq9XjPRpKwUCgYA7z6LiOQKxNeXH3qHXcnHok855maUj5fJNpPbY +iDkyZ8ySF8GlcFsky8Yw6fWCqfG3zDrohJ5l9JmEsBh7SadkwsZhvecQcS9t4vby +9/8X4jS0P8ibfcKS4nBP+dT81kkkg5Z5MohXBORA7VWx+ACohcDEkprsQ+w32xeD +qT1EvQKBgQDKm8ws2ByvSUVs9GjTilCajFqLJ0eVYzRPaY6f++Gv/UVfAPV4c+S0 +kAWpXbv5tbkkzbS0eaLPTKgLzavXtQoTtKwrjpolHKIHUz6Wu+n4abfAIRFubOdN +/+aLoRQ0yBDRbdXMsZN/jvY44eM+xRLdRVyMmdPtP8belRi2E2aEzA== +-----END RSA PRIVATE KEY----- + +: private key for level 14 + + +fGrHPx402xGC7U7rXKDaxiWFTOiF0ENq - password for level 14 + +nc localhost 30000 +jN2kgmIXJ6fShzhT2avhotn4Zcka6tnt - password for level 15 + +openssl s_client -connect localhost:30001 +JQttfApK4SeyHwDlI9SXGR50qclOAil1 - password for level 16 + + nmap -sV localhost -p 31000-32000 + +-----BEGIN RSA PRIVATE KEY----- +MIIEogIBAAKCAQEAvmOkuifmMg6HL2YPIOjon6iWfbp7c3jx34YkYWqUH57SUdyJ +imZzeyGC0gtZPGujUSxiJSWI/oTqexh+cAMTSMlOJf7+BrJObArnxd9Y7YT2bRPQ +Ja6Lzb558YW3FZl87ORiO+rW4LCDCNd2lUvLE/GL2GWyuKN0K5iCd5TbtJzEkQTu +DSt2mcNn4rhAL+JFr56o4T6z8WWAW18BR6yGrMq7Q/kALHYW3OekePQAzL0VUYbW +JGTi65CxbCnzc/w4+mqQyvmzpWtMAzJTzAzQxNbkR2MBGySxDLrjg0LWN6sK7wNX +x0YVztz/zbIkPjfkU1jHS+9EbVNj+D1XFOJuaQIDAQABAoIBABagpxpM1aoLWfvD +KHcj10nqcoBc4oE11aFYQwik7xfW+24pRNuDE6SFthOar69jp5RlLwD1NhPx3iBl +J9nOM8OJ0VToum43UOS8YxF8WwhXriYGnc1sskbwpXOUDc9uX4+UESzH22P29ovd +d8WErY0gPxun8pbJLmxkAtWNhpMvfe0050vk9TL5wqbu9AlbssgTcCXkMQnPw9nC +YNN6DDP2lbcBrvgT9YCNL6C+ZKufD52yOQ9qOkwFTEQpjtF4uNtJom+asvlpmS8A +vLY9r60wYSvmZhNqBUrj7lyCtXMIu1kkd4w7F77k+DjHoAXyxcUp1DGL51sOmama ++TOWWgECgYEA8JtPxP0GRJ+IQkX262jM3dEIkza8ky5moIwUqYdsx0NxHgRRhORT +8c8hAuRBb2G82so8vUHk/fur85OEfc9TncnCY2crpoqsghifKLxrLgtT+qDpfZnx +SatLdt8GfQ85yA7hnWWJ2MxF3NaeSDm75Lsm+tBbAiyc9P2jGRNtMSkCgYEAypHd +HCctNi/FwjulhttFx/rHYKhLidZDFYeiE/v45bN4yFm8x7R/b0iE7KaszX+Exdvt +SghaTdcG0Knyw1bpJVyusavPzpaJMjdJ6tcFhVAbAjm7enCIvGCSx+X3l5SiWg0A +R57hJglezIiVjv3aGwHwvlZvtszK6zV6oXFAu0ECgYAbjo46T4hyP5tJi93V5HDi +Ttiek7xRVxUl+iU7rWkGAXFpMLFteQEsRr7PJ/lemmEY5eTDAFMLy9FL2m9oQWCg +R8VdwSk8r9FGLS+9aKcV5PI/WEKlwgXinB3OhYimtiG2Cg5JCqIZFHxD6MjEGOiu +L8ktHMPvodBwNsSBULpG0QKBgBAplTfC1HOnWiMGOU3KPwYWt0O6CdTkmJOmL8Ni +blh9elyZ9FsGxsgtRBXRsqXuz7wtsQAgLHxbdLq/ZJQ7YfzOKU4ZxEnabvXnvWkU +YOdjHdSOoKvDQNWu6ucyLRAWFuISeXw9a/9p7ftpxm0TSgyvmfLF2MIAEwyzRqaM +77pBAoGAMmjmIJdjp+Ez8duyn3ieo36yrttF5NSsJLAbxFpdlc1gvtGCWW+9Cq0b +dxviW8+TFVEBl1O4f7HVm6EpTscdDxU+bCXWkfjuRb7Dy9GOtt9JPsX8MBTakzh3 +vBgsyi/sN3RqRBcGU40fOoZyfAMT8s1m/uYv52O6IgeuZ/ujbjY= +-----END RSA PRIVATE KEY----- + + +cat > bandit17.key + chmod 600 bandit17.key +./bandit-do ls /etc/bandit_pass +./bandit20-do cat /etc/bandit_pass/bandit20 + VxCazJaVykI6W36BkBU0mJTCM8rR95XT- pw for level 20 + + nc -l -p 1234 +./suconnect 1234 +NvEJF7oVjkddltPSrdKEFOllh9V1IBcq - pw for level 21 + +cat /usr/bin/cronjob_bandit22.sh + cat /tmp/t7O6lds9S0RqQh9aMcz6ShpAoZKF7fgv +WdDozAdTM2z9DiFEQ2mGlwngMfj4EZff - pw for level 22 + +echo I am user bandit23 | md5sum | cut -d ' ' -f 1 +cat /tmp/8ca319486bfbbc3663ea0fbe81326349 +QYw0Y2aiA672PsMmh9puTQuhoz8SyR2G - pw for level 23 + +cat /etc/cron.d/cronjob_bandit24 +cat /usr/bin/cronjob_bandit23.sh +echo I am user bandit24 | md5sum | cut -d ' ' -f 1 +cat /tmp/ee4ee1703b083edac9f8183e4ae70293 +VAfGXJ1PBSsPSnvsjI8p759leLZ9GGar - pw for level 24 + + + + + + +