DEV Community

Manoj Sadanala
Manoj Sadanala

Posted on • Originally published at dev.to

A Walk-Through Bandit - Over the Wire Till Level 10

I’m a Mac User, so I used terminal for doing the task.
***I know some basic commands of terminal and with help of google I got to know about some new commands which helped me to solve the levels

LEVEL-0
I logged into the game using the ssh with the help of the reading materials mentioned there.

LEVEL-1
I was somewhat familiar with the commands mentioned in the material.
With command-“ls” I had listed all the folders and files in the current directory and found the file-”readme” which contains the password for the next level.
With the command-“cat ” I opened the file-“readme” and found the password for the next level.
The password is- “​​boJ9jbbUNNfktd78OOpsqOltutMc3MY1”
After with command-“exit” I logged out of the ssh

LEVEL-2
Firstly I had logged into the ssh with the username-“bandit1”[as the username-“bandit0” logs into the previous ssh(I found it out after googling it)] with the password I found in the previous level.
As mentioned the password was in a file-“-”. I’ve used the command-“cat -” I can’t find the password. Such with the help of ‘ Google Search for “dashed filename” ’ I’ve found a reddit forum, where I found the solution such that instead of ‘ cat - ’ I’ve used “ cat ./- ” as ‘-’ was a symbol.
And I found the password for the next level.
The password is- “CV1DtqXWVFXTvM2F0k09SHz0YwRINYA9”

LEVEL-3
Same as every level password for the next level is there in the directory, But in this level The password for the next level is stored in a file called spaces in this filename.
With the help of the ‘ Google Search for “spaces in filename” ’ I’ve found a way to open the file.
The password is- “UmHadQclWmgdLOKQ3YNgjWxGoRMb5luK”

LEVEL-4
In this level the password for next level was in a hidden folder in inhere directory. Which isn’t shown when ‘ls’ command is used in inhere directory. But with ‘ls -a’ command all the files in inhere directory will be listed including hidden file which is named as “.hidden”. Which we can open and find the password for the next level.
The password is- “pIwrPrtPN36QITSp3EQaw936yaFoFgAB”

LEVEL-5
In this level the password to next level is one of the files in inhere directory and a hint is given that the password is stored in the only human-readable file. As the name of every file was starting with a ‘-’ I’ve used the command “cat ./” to open the file. In the process of opening all the folders I’ve found password in file named-“-file07”
The password is- “koReBOKuIDDepwhWk7jZC0RTdopnAYKh”

LEVEL-6
In this level there are many directories and in each directory there are many files which makes it not an easy task. So I googled “finding the files by size in ssh” and found an article which helped me a lot with which I found the password to the next level.
The password is- “DXjZPULLxYr17uwoI01bNLQbtFemEgo7”

LEVEL-7
This level was somewhat easy compared to other levels.
Same as previous level we should filter them with given properties which shows denial of permissions for most of the files. In that we can find a file with “bandit7.password” with its location. With which we can open the file and find the password
The password is- “HKBPTKQnIay4Fw76bEy8PVxKEDQRKTzs”

LEVEL-8
When we open the “data.txt” file in the directory we will find more names next to the various passwords. It isn’t a easy task to find the word “millionth”. Here we can use the greg command and find the password next to the word “millionth”.
The password is- “cvX2JJa4CFALtqS87jk27qwqGhBM9plV”

LEVEL-9
When we open the “data.txt” file in the directory we will find various passwords. With “sort data.txt” command we can sort them and with “uniq -c” we can find how many times each line of text from which we can find the one which only occurred only once.
The password is- “UsvVyFSfZZWbi6wgC7dAFyFuR6jQQUhR”

Level-10
When we open the “data.txt” file in the directory we will find various passwords not only with letters but also with some binary characters,symbols etc. We can use the greg function to find the symbol- “=” among those strings.
The password is- “truKLdjsbJ5g7yyJ2X2R0o3a5HQJFuLk”

Discussion (0)