Wargames-Bandit-Level20
Level 20
Level Goal
There is a setuid binary in the homedirectory that does the following: it makes a connection to localhost on the port you specify as a commandline argument. It then reads a line of text from the connection and compares it to the password in the previous level (bandit20). If the password is correct, it will transmit the password for the next level (bandit21).
NOTE: Try connecting to your own network daemon to see if it works as you think
Solution
提示是执行给定的程序,如果收到当前的password就可以给出下一关的password,那么直接nc开一个server监听,然后再起个shell用程序连接即可:
bandit20@bandit:~$ nc -lp 6666
VxCazJaVykI6W36BkBU0mJTCM8rR95XT
NvEJF7oVjkddltPSrdKEFOllh9V1IBcq
bandit20@bandit:~$ ./suconnect 6666
Read: VxCazJaVykI6W36BkBU0mJTCM8rR95XT
Password matches, sending next password
