The password for the next level is stored in the file data.txt and is the only line of text that occurs only once
解密
bandit8@bandit:~$ sort data.txt | uniq -u
UsvVyFSfZZWbi6wgC7dAFyFuR6jQQUhR
知识点
-
sort命令用于排序输入内容; -
uniq -u命令将连续输入内容去重;
Bandit Level 7 → Level 8
The password for the next level is stored in the file data.txt next to the word millionth
解密
bandit7@bandit:~$ cat data.txt | grep 'millionth'
millionth cvX2JJa4CFALtqS87jk27qwqGhBM9plV
知识点
没啥好说的,都是之前用过的命令。
Bandit Level 6 → Level 7
The password for the next level is stored somewhere on the server and has all of the following properties:
owned by user bandit7
owned by group bandit6
33 bytes in size
解密
bandit6@bandit:~$ find / -type f -size 33c -user bandit7 -group bandit6 2>&1 | grep -v denied | grep -v 'No such'
/var/lib/dpkg/info/bandit7.password
bandit6@bandit:~$ cat /var/lib/dpkg/info/bandit7.password
HKBPTKQnIay4Fw76bEy8PVxKEDQRKTzs
知识点
-
find命令-user指定文件所属用户 -
find命令-group指定文件所属用户组 -
2>&1重定向标准错误输出到标准输出 -
grep -v用于去除匹配输出
Bandit Level 5 → Level 6
The password for the next level is stored in a file somewhere under the inhere directory and has all of the following properties:
human-readable
1033 bytes in size
not executable
解密
bandit5@bandit:~/inhere$ find . -type f -size 1033c ! -executable -exec file {} \;
./maybehere07/.file2: ASCII text, with very long lines
bandit5@bandit:~/inhere$ cat ./maybehere07/.file2
DXjZPULLxYr17uwoI01bNLQbtFemEgo7
知识点
-
find命令-size指定文件大小,字节用c后缀表示; -
find命令-executable用于标示可执行文件,前面加否定前缀!;
Bandit Level 4 → Level 5
The password for the next level is stored in the only human-readable file in the inhere directory. Tip: if your terminal is messed up, try the “reset” command.
解密
bandit4@bandit:~/inhere$ find . -type f -exec file {} \;
./-file09: data
./-file06: data
./-file01: data
./-file02: data
./-file05: data
./-file03: data
./-file08: data
./-file07: ASCII text
./-file04: data
./-file00: data
bandit4@bandit:~/inhere$ cat ./-file07
koReBOKuIDDepwhWk7jZC0RTdopnAYKh
知识点
-
使用
find命令,-type获取文件,-exec将输出给到下一个命令,使用{}代表每一个输出,最后需要\;来结束 -
file命令可以帮助你获取文件的基本信息
Bandit Level 3 → Level 4
The password for the next level is stored in a hidden file in the inhere directory.
解密
-
ssh -p 2220 bandit3@bandit.labs.overthewire.org密码UmHadQclWmgdLOKQ3YNgjWxGoRMb5luK -
cd ./inhere/进入题中说的目录 -
ls -a查看当前的隐藏文件,发现.hidden -
cat .hidden得到密码pIwrPrtPN36QITSp3EQaw936yaFoFgAB
知识点
考察了ls命令的-a参数,用户查看包含隐藏文件的所有当前目录内容
Bandit Level 2 → Level 3
The password for the next level is stored in a file called spaces in this filename located in the home directory
解密
-
ssh -p 2220 bandit2@bandit.labs.overthewire.org密码CV1DtqXWVFXTvM2F0k09SHz0YwRINYA9 -
cat spaces\ in\ this\ filename得到UmHadQclWmgdLOKQ3YNgjWxGoRMb5luK
知识点
这里考察了对于不可见字符的转义,如本次的space空格符,使用\来转义
Bandit Level 1 → Level 2
The password for the next level is stored in a file called – located in the home directory
解密
-
ssh -p 2220 bandit1@bandit.labs.overthewire.org输入密码boJ9jbbUNNfktd78OOpsqOltutMc3MY1 -
cat ./-得到CV1DtqXWVFXTvM2F0k09SHz0YwRINYA9
知识点
主要考察了-符号是linux许多命令中代表“从标准输入读取”。
Bandit Level 0 → Level 1
The password for the next level is stored in a file called readme located in the home directory. Use this password to log into bandit1 using SSH. Whenever you find a password for a level, use SSH (on port 2220) to log into that level and continue the game.
解密
-
ssh -p 2220 bandit0@bandit.labs.overthewire.org,密码bandit0,登陆 -
cat ~/readme得到下一关密码boJ9jbbUNNfktd78OOpsqOltutMc3MY1
知识点
主要让我们使用了cat命令,查看文件内容。
Bandit Level 0
The goal of this level is for you to log into the game using SSH. The host to which you need to connect is bandit.labs.overthewire.org, on port 2220. The username is bandit0 and the password is bandit0. Once logged in, go to the Level 1 page to find out how to beat Level 1.
解密
本题主要是告诉我如何使用ssh登陆bandit游戏服务器
ssh -p 2220 bandit0@bandit.labs.overthewire.org
密码:bandit0
知识点
- ssh工具的基本使用
- -p参数使用其他端口