I’m into double digits now! Anyone who knows me knows that I usually give up on long projects, speaking of which I still have a half completed raspberry pi alarm clock sat and n my bedroom – more on that in another post. It’s time to play with bandit level 10. If you haven’t had a chance to read my OverTheWire Bandit Write Up – Level 9 write up give it a quick read then head back over here. Welcome back and let’s begin.
Having a look at the hints I know that I’m once again looking for a file named
data.txt, and the file contains Base64 encoded content.
Let’s Start Hacking Then
I start once again by loading up a fresh terminal and open a SSH session to the machine and login with the bandit level 10 user.
ssh firstname.lastname@example.org -p 2220
I enter the password when prompted and I am logged in, I can now start, and just like ever post up to date I start with the
ls to see what I’ve got sat in the home directory.
And as to be expected the
data.txt file that I am looking for is indeed sat in the home directory. Firstly I need to check the contents of the file. I `cat` the file into the terminal
From the output I can see that the file contains some data that’s encoded using Base64. The best thing to do now is to check the man page for Base64. From this page I can see that, I can either encrypt or decrypt data. Using the
-d argument I can decrypt the file
base64 -d ./data.txt
…and Wham! Bam! Thank you ma’am! I have the password now for level 11.
Level 10 Complete
I have hidden the password here, if you are playing along don’t peek! Please! It’s more fun getting it yourself.
Level 11 password