Kappa
“Great things are not done by impulse, but by a series of small things brought together.”
Host: bandit.labs.overthewire.org
Port: 2220
Level 25
ssh bandit25@bandit.labs.overthewire.org -p 2220
password: p7TaowMYrmu23Ol8hiZh9UvD0O9hpx8d
Objective:
Logging in to bandit26 from bandit25 should be fairly easy…
- The shell for user bandit26 is not /bin/bash, but something else. Find out what it is, how it works and how to break out of it.
CLI:
bandit25@bandit:~$ ls -al bandit26.sshkey
-r-------- 1 bandit25 bandit25 1679 Oct 16 14:00 bandit26.sshkey
bandit25@bandit:~$ cat /etc/passwd | grep bandit26
bandit26:x:11026:11026:bandit level 26:/home/bandit26:/usr/bin/showtextbandit25@bandit:~$ cat /usr/bin/showtext
#!/bin/shexport TERM=linuxmore ~/text.txt
exit 0
shrink terminal and v to use vim editor
$ ssh bandit26@bandit.labs.overthewire.org -p 2220 -i bandit26.sshkey
0
: /etc/bandit_pass/bandit26
c7GvcKlw9mC7aUQaPx7nwFstuAIBw1o1
bandit25@bandit:~$