OverTheWire Bandit Write Up – Level 1

If you haven’t had the opportunity to read my write up for the first level you can find it here. OverTheWire Bandit Write up – Level 0. Otherwise this is my write up for the Bandit Level 1. I will also forgive you if you are confused at why the second level is level 1. If you are interested there’s an article why, found on John D. Cooks blog.

Level 1

Level 1 isn’t too dissimilar to level 0, there is a file that contains the password for the next level. This file is once again in the home directory of the user. However, this time I’m not given any details about the file. So here we go.

Let’s Start Hacking Then

Same as before, and we may see a pattern here. I launch a fresh terminal instances and SSH into the server with the following command.

ssh bandit1@bandit.labs.overthewire.org -p 2220

Once it asks for the password, I enter the one I found from the last level, and awesome. We are in! Now I search for the file, I run the ls command and it looks ate first glance that there’s nothing there. I start to think to myself, maybe the file is hidden, so I run the ls -la command. This shows my 1 file named -. This was there when I used ls but I assumed it was nothing. So great I have found the file time to get that sweet, sweet password, I run the following command…

cat -

…and nothing happened. I know there is a file there, I have the right name. What is going on? Then I think to myself ‘Is a - a special character? If I try and use the relevant path for the file, what will that do?’ So I run the following command and… Bingo! There’s my level 2 password.

cat ./-

Level 1 Complete!

I have hidden the password here, if you are playing along don’t peek! Please! It’s more fun getting it yourself.

Leave a Reply