Level Goal Good job getting a shell! Now hurry and grab the password for bandit27!
同上一关卡
把本地shell压缩到6行以下,再进行登录。
登陆后在阻塞的more中按v进入vi编辑页面,再按:进入命令行模式,执行命令set shell=/bin/sh :sh得到shell。
ls发现一个提权程序,利用其执行cat /etc/bandit_pass/bandit27即可得到密码。
Level Goal There is a git repository at ssh://bandit27-git@localhost/home/bandit27-git/repo. The password for the user bandit27-git is the same as for the user bandit27.
git相关。参考:https://www.runoob.com/git/git-clone.html
mkdir /tmp/qwer
git clone ssh://bandit27-git@localhost/home/bandit27-git/repo
Level Goal There is a git repository at ssh://bandit28-git@localhost/home/bandit28-git/repo. The password for the user bandit28-git is the same as for the user bandit28.
Clone the repository and find the password for the next level.
git相关。
git log
git show
Level Goal There is a git repository at ssh://bandit29-git@localhost/home/bandit29-git/repo. The password for the user bandit29-git is the same as for the user bandit29. Clone the repository and find the password for the next level.
git相关
git branch -a
git log
git show
Level Goal There is a git repository at ssh://bandit30-git@localhost/home/bandit30-git/repo. The password for the user bandit30-git is the same as for the user bandit30.
Clone the repository and find the password for the next level.
知识点:
git相关.参考https://cloud.tencent.com/developer/section/1138782
操作:
git show-ref
密码:47e603bb428404d265f59c42920d81e5
Level Goal There is a git repository at ssh://bandit31-git@localhost/home/bandit31-git/repo. The password for the user bandit31-git is the same as for the user bandit31.
Clone the repository and find the password for the next level.
git提交文件,nano编辑器使用
echo 'May I come in?'>key.txt
git add -f key.txt
git commit
git push
After all this git stuff its time for another escape. Good luck!
$0为shell名自身
登陆后发现shell中输入的命令都被大写后执行,这时可以输入$0进入非交互式的dash shell,查看id为bandit33,于是直接查看密码。
At this moment, level 34 does not exist yet.
待续。
