Level 0
SSH in! All information is given. If you do not know how to do this start at Bandit.
Using the drop down you can select a level...
SSH in! All information is given. If you do not know how to do this start at Bandit.
For these challenges the data for the levels can be found in the homedirectories for each individual level. After going to leviathan0 there appeared to be nothing in the directory so I used ls -a to reveal anything hidden. This revealed a directory called .backup which contained bookmarks.html. There was a lot of junk in here so I used grep to pick out something interesting. I used cat bookmarks.html | grep "password", which actually revealed the password for leviathan1 in the html code.
Here we are given a binary called check. When the program is ran, a password is needed to get anywhere. If the wrong password is entered the program ends. To solve this challenge you will have to use gef(basically upgraded gdb), which is installed in leviathan, or one of the other debuggers that are installed. The first thing I did was use "info functions" to provide a list of the functions in the program. The only thing of interest here is main so I used "b main" to set a breakpoint at main meaning when I run the program it will stop there to allow me to step through the program. Use r to being running the program in gef. Then use "next" or "n" to begin stepping through the program. Next will step over functions that exit main. When the program asked for the password I input a bunch of A's. I will be looking to see what the program compares the A's to to see if my input is the correct password. After inputing the password I use "s" to step over the program and dive into the function that is comparing my input. When stepping through it looks like the password for check is "sex". When executing check and entering in sex I am given a shell with escalated privleges. Navigating to /etc/leviathan_pass and using cat to display what is in leviathan2 will reveal the password.
Coming Soon!
Coming Soon!
Coming Soon!
Coming Soon!
Coming Soon!