Guia de Trabajo

13/7/23, 0:22 Extreme Hacking Week
Extreme Hacking Week

holi u_u
https://overthewire.org/wargames/bandit/
https://www.kali.org/get-kali/#kali-platforms
nivel 0-1
root@osboxes:~# ssh -l bandit0 bandit.labs.overthewire.org -p 2220

bandit0@bandit:~$ pwd /home/bandit0 bandit0@bandit:~$ ls readme
bandit0@bandit:~$ cat readme NH2SXQwcBdpmTEzi3bvBHMM9H66vVXjL
nivel 1-2
bandit1@bandit:~$ ls - bandit1@bandit:~$ ls -la total 24 -rw-r----- 1

bandit2 bandit1 33 Apr 23 18:04 - drwxr-xr-x 2 root root 4096 Apr 23
18:04 . drwxr-xr-x 70 root root 4096 Apr 23 18:05 .. -rw-r--r-- 1 root
root 220 Jan 6 2022 .bash_logout -rw-r--r-- 1 root root 3771 Jan 6 2022
.bashrc -rw-r--r-- 1 root root 807 Jan 6 2022 .profile bandit1@bandit:~$
cat - ^C bandit1@bandit:~$ cat "-" ^C bandit1@bandit:~$ cat ./ -
.bash_logout .bashrc .profile bandit1@bandit:~$ cat ./-
rRGizSaX8Mk1RTb1CNQoXTcYZWU6lgzi bandit1@bandit:~$ pwd /home/bandit1
bandit1@bandit:~$ cat /home/bandit1/- rRGizSaX8Mk1RTb1CNQoXTcYZWU6lgzi
nivel 2-3
https://determined-mailbox-210.notion.site/Extreme-Hacking-Week-3ec0f5300c934103b267ad47ed5e05df 1/7
bandit2@bandit:~$ ls -la total 24 drwxr-xr-x 2 root root 4096 Apr 23

.bashrc -rw-r--r-- 1 root root 807 Jan 6 2022 .profile -rw-r----- 1
bandit3 bandit2 33 Apr 23 18:04 spaces in this filename bandit2@bandit:~$
cat spaces in this filename cat: spaces: No such file or directory cat:
in: No such file or directory cat: this: No such file or directory cat:
filename: No such file or directory bandit2@bandit:~$ cat "spaces in this
filename" aBZ0W5EmUfAf7kHTQeOwd8bauFJ2lAiG
nivel 3-4

.bashrc drwxr-xr-x 2 root root 4096 Apr 23 18:04 inhere -rw-r--r-- 1 root
root 807 Jan 6 2022 .profile bandit3@bandit:~$ cd inhere/
bandit3@bandit:~/inhere$ ls bandit3@bandit:~/inhere$ ls
bandit3@bandit:~/inhere$ ls -la total 12 drwxr-xr-x 2 root root 4096 Apr
23 18:04 . drwxr-xr-x 3 root root 4096 Apr 23 18:04 .. -rw-r----- 1
bandit4 bandit3 33 Apr 23 18:04 .hidden bandit3@bandit:~/inhere$ cat
hidden cat: hidden: No such file or directory bandit3@bandit:~/inhere$
cat .hidden 2EW7BBsr6aMMoJ2HjW067dm8EgX26xNe bandit3@bandit:~/inhere$
exit
nivel 4-5
bandit4@bandit:~$ ls inhere bandit4@bandit:~$ bandit4@bandit:~$ ls inhere

bandit4@bandit:~$ cd inhere/ bandit4@bandit:~/inhere$ ls -file00 -file01
-file02 -file03 -file04 -file05 -file06 -file07 -file08 -file09
bandit4@bandit:~/inhere$ ls -la total 48 drwxr-xr-x 2 root root 4096 Apr
23 18:04 . drwxr-xr-x 3 root root 4096 Apr 23 18:04 .. -rw-r----- 1
bandit5 bandit4 33 Apr 23 18:04 -file00 -rw-r----- 1 bandit5 bandit4 33
Apr 23 18:04 -file01 -rw-r----- 1 bandit5 bandit4 33 Apr 23 18:04 -file02
-rw-r----- 1 bandit5 bandit4 33 Apr 23 18:04 -file03 -rw-r----- 1 bandit5
bandit4 33 Apr 23 18:04 -file04 -rw-r----- 1 bandit5 bandit4 33 Apr 23
18:04 -file05 -rw-r----- 1 bandit5 bandit4 33 Apr 23 18:04 -file06 -rw-r-
---- 1 bandit5 bandit4 33 Apr 23 18:04 -file07 -rw-r----- 1 bandit5
bandit4 33 Apr 23 18:04 -file08 -rw-r----- 1 bandit5 bandit4 33 Apr 23
18:04 -file09 bandit4@bandit:~/inhere$ find . -type f ./-file03 ./-file06
./-file08 ./-file07 ./-file04 ./-file00 ./-file01 ./-file02 ./-file09 ./-
file05 bandit4@bandit:~/inhere$ file -file00 file: Cannot open `ile00'
(No such file or directory) bandit4@bandit:~/inhere$ file ./-file00 ./-
file00: data bandit4@bandit:~/inhere$ file ./-file03 ./-file03: data
bandit4@bandit:~/inhere$ cat ./-file00
�Ű��Bη��b<Q�Ƞ�+V�iO�1�[5{�bandit4@bandit:~/inhere$ find . -type
f | xargs file ./-file03: data ./-file06: data ./-file08: data ./-file07:
ASCII text ./-file04: data ./-file00: data ./-file01: data ./-file02:
data ./-file09: Non-ISO extended-ASCII text, with no line terminators ./-
file05: data bandit4@bandit:~/inhere$ cat ./-file07
lrIWWI6bB37kxfiCQZqUdOIYfr6eEeqR
xargs —> se lee “X args” significa lo que salió o lo que te doy de información,
metele el comando que siga a este comando
nivel 5-6
bandit5@bandit:~$ ls inhere bandit5@bandit:~$ pwd /home/bandit5

.bashrc drwxr-x--- 22 root bandit5 4096 Apr 23 18:04 inhere -rw-r--r-- 1
root root 807 Jan 6 2022 .profile bandit5@bandit:~$ cd inhere/
bandit5@bandit:~/inhere$ ls maybehere00 maybehere03 maybehere06
maybehere09 maybehere12 maybehere15 maybehere18 maybehere01 maybehere04
maybehere07 maybehere10 maybehere13 maybehere16 maybehere19 maybehere02
maybehere05 maybehere08 maybehere11 maybehere14 maybehere17
bandit5@bandit:~/inhere$ find . -type -f -size 1033c !-executable -bash:
!-executable: event not found bandit5@bandit:~/inhere$ find . -type -f -
size 1033c ! -executable find: Unknown argument to -type: -
bandit5@bandit:~/inhere$ find . -type f -size 1033c ! -executable
./maybehere07/.file2 bandit5@bandit:~/inhere$ cat ./maybehere07/.file2
P4L4vucdmLnm8I7Vl7jG1ApGSfjYKqJU
Los espero mañana Martes en la 2da clase de Extreme Hacking Week!!

H4ppY H4ck1n6!!!
nivel 6-7
bandit6@bandit:/home$ find / -type f -user bandit7 -group bandit6 -size

33c find: ‘/var/log’: Permission denied find: ‘/var/crash’: Permission
denied find: ‘/var/spool/rsyslog’: Permission denied find:
‘/var/spool/bandit24’: Permission denied find:
‘/var/spool/cron/crontabs’: Permission denied find: ‘/var/tmp’:
Permission denied find: ‘/var/lib/polkit-1’: Permission denied
/var/lib/dpkg/info/bandit7.password find: ‘/var/lib/chrony’: Permission
denied find: ‘/var/lib/apt/lists/partial’: Permission denied find:
‘/var/lib/amazon’: Permission denied find: ‘/var/lib/update-
notifier/package-data-downloads/partial’: Permission denied find:
‘/var/lib/snapd/void’: Permission denied find: ‘/var/lib/snapd/cookie’:
Permission denied find: ‘/var/lib/ubuntu-advantage/apt-
esm/var/lib/apt/lists/partial’: Permission denied find:
‘/var/lib/private’: Permission denied find: ‘/var/snap/lxd/common/lxd’:
Permission denied find: ‘/var/cache/ldconfig’: Permission denied find:
‘/var/cache/apt/archives/partial’: Permission denied find:
‘/var/cache/pollinate’: Permission denied find: ‘/var/cache/private’:
Permission denied find: ‘/var/cache/apparmor/a4dd844e.0’: Permission
denied find: ‘/var/cache/apparmor/8eeb6286.0’: Permission denied find:
‘/drifter/drifter14_src/axTLS’: Permission denied find: ‘/home/bandit29-
git’: Permission denied find: ‘/home/drifter6/data’: Permission denied
find: ‘/home/bandit28-git’: Permission denied find:
‘/home/drifter8/chroot’: Permission denied find: ‘/home/ubuntu’:
Permission denied find: ‘/home/bandit5/inhere’: Permission denied find:
‘/home/bandit27-git’: Permission denied find: ‘/home/bandit30-git’:
Permission denied find: ‘/home/bandit31-git’: Permission denied find:
‘/boot/efi’: Permission denied find: ‘/proc/tty/driver’: Permission
denied find: ‘/proc/660885/task/660885/fdinfo/6’: No such file or
directory find: ‘/proc/660885/fdinfo/5’: No such file or directory find:
‘/etc/polkit-1/localauthority’: Permission denied find:
‘/etc/ssl/private’: Permission denied find: ‘/etc/multipath’: Permission
denied find: ‘/etc/sudoers.d’: Permission denied find: ‘/dev/mqueue’:
Permission denied find: ‘/dev/shm’: Permission denied find: ‘/tmp’:
Permission denied find: ‘/snap/core18/2721/etc/ssl/private’: Permission
denied find: ‘/snap/core18/2721/root’: Permission denied find:
‘/snap/core18/2721/var/cache/ldconfig’: Permission denied find:
‘/snap/core18/2721/var/lib/private’: Permission denied find:
‘/snap/core20/1852/etc/ssl/private’: Permission denied find:
‘/snap/core20/1852/root’: Permission denied find:
‘/snap/core20/1852/var/cache/ldconfig’: Permission denied find:
‘/snap/core20/1852/var/cache/private’: Permission denied find:
‘/snap/core20/1852/var/lib/private’: Permission denied find:
‘/snap/core20/1852/var/lib/snapd/void’: Permission denied find:
‘/lost+found’: Permission denied find: ‘/run/chrony’: Permission denied
find: ‘/run/user/11010’: Permission denied find: ‘/run/user/11007’:
Permission denied find: ‘/run/user/11031’: Permission denied find:

‘/run/user/11026’: Permission denied find: ‘/run/user/11017’: Permission
denied find: ‘/run/user/11009’: Permission denied find:
denied find: ‘/run/user/11006/systemd/inaccessible/dir’: Permission
denied find: ‘/run/sudo’: Permission denied find: ‘/run/screen/S-
krypton4’: Permission denied find: ‘/run/screen/S-bandit33’: Permission
denied find: ‘/run/screen/S-bandit5’: Permission denied find:
‘/run/screen/S-bandit28’: Permission denied find: ‘/run/screen/S-
bandit24’: Permission denied find: ‘/run/screen/S-bandit20’: Permission
denied find: ‘/run/screen/S-bandit21’: Permission denied find:
‘/run/multipath’: Permission denied find: ‘/run/cryptsetup’: Permission
denied find: ‘/run/lvm’: Permission denied find:
‘/run/credentials/systemd-sysusers.service’: Permission denied find:
‘/run/systemd/propagate’: Permission denied find: ‘/run/systemd/unit-
root’: Permission denied find: ‘/run/systemd/inaccessible/dir’:
Permission denied find: ‘/run/lock/lvm’: Permission denied find: ‘/root’:
Permission denied find: ‘/sys/kernel/tracing’: Permission denied find:
‘/sys/kernel/debug’: Permission denied find: ‘/sys/fs/pstore’: Permission
denied find: ‘/sys/fs/bpf’: Permission denied bandit6@bandit:/home$
bandit6@bandit:/home$ cat /var/lib/dpkg/info/bandit7.password
z7WtoNQU2XfjmMtWA8u5rN4vzqu4v99S bandit6@bandit:/home$
nivel 7-8
bandit7@bandit:~$ wc -l data.txt 98567 data.txt bandit7@bandit:~$ cat

data.txt | grep millionth millionth TESKZC0XvTetK0S9xNwm25STk5iWrBvP
nivel 8-9
bandit8@bandit:~$ cat data.txt | sort | uniq -c cat para obtener el

contenido del archivo data.txt sort me permite ordenar uniq me imprime
uno de cada lista de repetidos y el -c es para tener un contador de cada
uno de estos obviamente buscare aquel que tiene de contador 1
nivel 9-10
bandit9@bandit:~$ strings data.txt bandit9@bandit:~$ strings data.txt |

grep "=" 4========== the# 5P=GnFE ========== password 'DN9=5 ==========
is $Z=_ =TU% =^,T,? W=y q=W X=K, ==========
G7w8LIi6J3kTb8A7j9LgrywtEUlyyp6s &S=( nd?=
nivel 10-11
bandit10@bandit:~$ ls data.txt bandit10@bandit:~$ cat data.txt

VGhlIHBhc3N3b3JkIGlzIDZ6UGV6aUxkUjJSS05kTllGTmI2blZDS3pwaGxYSEJNCg==
bandit10@bandit:~$ base64 -d data.txt The password is
6zPeziLdR2RKNdNYFNb6nVCKzphlXHBM
Hola…
se que estas ahí…
xD
nos vemos mañana en la clase 3 de EXTREME HACKING WEEK!
https://enhacke.com/extreme-hacking-week-sales

Guia de Trabajo

Uploaded by

Document Information

Original Description:

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Guia de Trabajo

Uploaded by

Copyright:

Available Formats

13/7/23, 0:22 Extreme Hacking Week

Extreme Hacking Week

root@osboxes:~# ssh -l bandit0 bandit.labs.overthewire.org -p 2220

bandit1@bandit:~$ ls - bandit1@bandit:~$ ls -la total 24 -rw-r----- 1

bandit2@bandit:~$ ls -la total 24 drwxr-xr-x 2 root root 4096 Apr 23

bandit3@bandit:~$ ls -la total 24 drwxr-xr-x 3 root root 4096 Apr 23

bandit4@bandit:~$ ls inhere bandit4@bandit:~$ bandit4@bandit:~$ ls inhere

bandit5@bandit:~$ ls inhere bandit5@bandit:~$ pwd /home/bandit5

Los espero mañana Martes en la 2da clase de Extreme Hacking Week!!

bandit6@bandit:/home$ find / -type f -user bandit7 -group bandit6 -size

Permission denied find: ‘/run/user/11031’: Permission denied find:

bandit7@bandit:~$ wc -l data.txt 98567 data.txt bandit7@bandit:~$ cat

bandit8@bandit:~$ cat data.txt | sort | uniq -c cat para obtener el

bandit9@bandit:~$ strings data.txt bandit9@bandit:~$ strings data.txt |

bandit10@bandit:~$ ls data.txt bandit10@bandit:~$ cat data.txt

You might also like