[1] bandit13비밀번호는 data.txt 파일안에 있으며,hexdump ? 램 저장장치에 있는 컴퓨터 데이터를 16진수로 표시한 것으로 주로 디버깅이나 리버스 엔지니어링 할때 사용됨 xxd? 파일 or 표준 입력으로부터 hexdump를 만들거나 복원해주는 명령어로, 바이너리 형식에서 hexdump를 만들어 준다.
[2] Host Name : bandit.lads.overthewire.org Port:2220
[3] bandit12@bandit:~$ ls -la
data.txt
[4] bandit12@bandit:~$ file data.txt
data.txt ASCII text
[5] bandit12@bandit:~$ cd $(mktemp -d) cp /home/bandit12/diata.txt $(pwd)
data.txt 를 /tmp/tmp 복사한다.
[6] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ ls
data.txt
[7] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ cat data.txt
메모리 주소 : 16진수 ASCII값 나타단다.
[8] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ xxd -r data.txt > qqu
xxd 커맨드를 이용해서 덤프파일을 복원한다. ex) -r | -revert
[9] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ ls
[10] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ file qqu
[11] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ gzip -d qqu.gz
No such file or directory 뜬다.
[12] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ gzip -d ./qqu
./ qqu: unknown suffix --ignored
[13] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ mv ggu ggu.gz
[14] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ gzip -d ./qqu.gz
[15] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ file qqu
bzip2 compressed data, block size = 900k
[16] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ bzip2 -d ./qqu
bzip2: Can't quess original name for ./qqu -- using ./qqu.out
[17] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ file qqu.out
[18] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ mv ./qqu.out ./qqu.out.gz
[19] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ gzip -d qqu.out.gz
[20] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ file qqu.out
qqu.out: POSIX tar archive (GNU)
[21] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ tar -xvf ./qqu.out
data5.bin
[22] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ file data5.bin
data5.binPOSIX tar archive (GNU)
[23] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ tar -xvf ./data5.bin
data6.bin
[24] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ file data6.bin
data6.bin : bzip2 compressed data, block size = 900k
[25] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ bzip -d ./data6.bin
bzip2: Can't guess original name for ./data6.bin --using ./data6.bin.out
[26] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ file data6.bin.out
data6.bin : bzip2 compressed data, block size =900k
[27] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ bzip2 -d ./data6.bin
bizp2: Can't quess original name for ./data6.bin -- using ./data6.bin.out
[28] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ file data6.bin.out
data6.bin.out : POSIX tar archive (GNU)
[29] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ tar -xvf ./data6.bin.out
data8.bin
[30] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ cat data8.bin
bandit13 비밀번호가 확인이 안된다.
[31] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ file data8.bin
data8.bin: gzip compression, from Unix,
[31] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ mv ./data8.bin ./data8.bin.gz
[32] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ gzip -d data8.bin.gz
[33] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ file data8.bin
data8.bin: ASCII text
[34] bandit12@bandit:/tmp/tmp.fwLKyUfcHv$ cat data8.bin
bandit13비밀번호가 확인된다.