What is it? @.@

Here is the place where I record some tactics about wargame, systems, and other security issues.

2014-01-23

OverTheWire - Bandit - Level 11 to Level 12

Description:

Level Goal
The password for the next level is stored in the file data.txt, where all lowercase (a-z) and uppercase (A-Z) letters have been rotated by 13 positions
Commands you may need to solve this level
grep, sort, uniq, strings, base64, tr, tar, gzip, bzip2, xxd
Helpful Reading Material
Rot13 on Wikipedia
Solution:
  1. [Comment] Using SSH to connect the server
  2. sp@simple-plan:~|=> ssh bandit11@bandit.labs.overthewire.org
    ...
    bandit11@bandit.labs.overthewire.org's password: IFukwKGsFW8MOq3IRFqrxE1hxTNEbUPR
  3. [Comment] Using ls command to list directory contents
  4. bandit11@melinda:~$ ls
    data.txt
  5. [Comment] Using cat command to output file's contents
  6. bandit11@melinda:~$ cat data.txt
    Gur cnffjbeq vf 5Gr8L4qetPEsPk8htqjhRK8XSP6x2RHh
  7. [Comment] Utilizing the tr command to achieve ROT13
  8. [Comment] Using alias to create shortcuts for commands
  9. bandit11@melinda:~$ alias rot13="tr a-zA-Z n-za-mN-ZA-M"
  10. [Comment] Since there are 26 characters in the alphabet being used, ROT13 twice would restore the original text
  11. bandit11@melinda:~$ cat data.txt | rot13
    The password is 5Te8Y4drgCRfCx8ugdwuEX8KFC6k2EUu
  12. [Comment] Using exit command to disconnect connection to server
  13. bandit11@melinda:~$ exit
    logout
    Connection to bandit.labs.overthewire.org closed.
  14. [Comment] It's done! Saving the password for next level.
Reference:
sshhttp://linuxcommand.org/man_pages/ssh1.html
lshttp://linuxcommand.org/man_pages/ls1.html
cathttp://linuxcommand.org/man_pages/cat1.html
exithttp://linuxcommand.org/man_pages/exit1.html
cdhttp://linuxcommand.org/lc3_man_pages/cdh.html
findhttp://linuxcommand.org/man_pages/find1.html
grephttp://linuxcommand.org/lc3_man_pages/grep1.html
sorthttp://linuxcommand.org/lc3_man_pages/sort1.html
uniqhttp://linuxcommand.org/man_pages/uniq1.html
stringshttp://linuxcommand.org/man_pages/strings1.html
base64http://linux.die.net/man/1/base64
trhttp://linuxcommand.org/man_pages/tr1.html
aliashttp://linuxcommand.org/man_pages/alias1.html

1 comment:

  1. http://www.decode.org/?q=Gur+cnffjbeq+vf+5Gr8L4qetPEsPk8htqjhRK8XSP6x2RHh%0D%0A

    ReplyDelete