Level: 0→1
Level: 1→2
Level: 2→3
Level: 3→4
Level: 4→5
Level: 5→6
Level: 6→7
Level: 7→8
Level: 8→9
Level: 9→10
Level: 10→11
Level: 11→12
Level: 12→13
Level: 13→14
Level: 14→15
Level: 15→16
Level: 16→17
Level: 17→18
Level: 18→19
Level: 19→20
Level: 20→21
Level: 21→22
Level: 22→23
Level: 23→24
Level: 24→25
Level: 25→26
Level: 26→27
Level: 27→28
Level: 28→29
Level: 29→30
Level: 30→31
Level: 31→32
Level: 32→33
Level: 33→34

~ LEVEL 0→1 ~

Level Description

The password for the next level is stored in a file called readme located in the home directory. Use this password to log into bandit1 using SSH. Whenever you find a password for a level, use SSH (on port 2220) to log into that level and continue the game.

We are advised the following commands may be required in order to solve this level: ls, cd, cat, file, du, and find.

Research Before Solving

The commands we are provided can be researched one of two ways. The first is to use the SSH client's built in documentation. This is done by typing command --help where command should be replaced with the command you would like to learn about. In the example depicted below, I have chosen ls as the command to be substituted.

The first line of the output shows a user the syntax needed to submit a command successfully. We then see the commands purpose: List information about the FILEs. Past this line we are provided with a list of options, known as switches, to be used alongside the command. These items allow for improved functionality of the command. For example, when using ls -a or ls --all, all files starting with a period will be shown.

The second option when researching these commands is to simply use your preferred search engine. There are a plethora of options available online which convey the same information. Sometimes using a search engine will provide even more insight than the documentation will.

Take some time to try both of these yourself! These tactics will be your best friend while playing the Bandit Wargame.

Solution Walkthrough

This level will continue where the previous left off. If you haven't already, use the SSH command to remote back into bandit0. As a reminder, the password required is bandit0. We are told the password for the next level is located in the home directory in a file named readme. Let's use the ls command immediately and see what happens.

readme file shown after using ls command

Well, well, well! What do we have here! What appears to be a file by the name readme is displayed as output. Next we must find a way to open the file and read its contents. Iterating through the list of recommended commands provided, it's found that we may use the cat command. This command will print the contents of the file to the screen as standard output.

The output of this command shows us the password to the next level: boJ9jbbUNNfktd78OOpsqOltutMc3MY1

I would recommend copying and pasting this and all future passwords somewhere for easy access. I personally use Sticky Notes to do so, making sure to label each password with the level number for accessibility. Doing so will allow you to continue where you left off when you inevitably decide to take a break.

Example of recording passwords in Sticky Notes

In preparation for the next level, make sure to type exit into the command prompt to leave the current SSH session as bandit0. When you are ready, proceed to the next level!

Previous Level

Next Level