OverTheWire Leviathan Wargame Solution 0

The Leviathan server on OvertheWire is generally recommended after completing the Bandit sever. This server also deals with Linux commands and requires no programming experience. This server is a little harder because there is no explanation of what to do in the levels. While the server is listed as a 1/10 difficulty level, the novice will find it more difficult than bandit. Leviathan is not necessarily based on command usage, it’s more so about thought process. I would bump it to a 2/10 or so.

After we are SSH‘ed into Leviathan0′s shell, we should look around. Upon inspection of our home directory, we see a backup directory named to be hidden. Taking a closer look of what is contained in the backup easily reveals the password to get into level 1 and begin leviathan.

Leviathan 0->1:


leviathan0@melissa:~$ ls -la
total 24
drwxr-xr-x   3 root root       4096 2012-06-28 21:23 .
drwxr-xr-x 150 root root       4096 2013-01-03 16:39 ..
drwxr-x---   2 root leviathan0 4096 2012-06-28 21:23 .backup
-rw-r--r--   1 root root        220 2011-03-31 23:20 .bash_logout
-rw-r--r--   1 root root       3353 2011-03-31 23:20 .bashrc
-rw-r--r--   1 root root        675 2011-03-31 23:20 .profile
leviathan0@melissa:~$ cd .backup
leviathan0@melissa:~/.backup$ ls
bookmarks.html

#Let's look for the word "password" in this file:

leviathan0@melissa:~/.backup$ cat bookmarks.html | grep password

<DT><A HREF="http://leviathan.labs.overthewire.org/passwordus.html | This will be fixed later, the password
for leviathan1 is <strong>rioGegei8m</strong>" ADD_DATE="1155384634"LAST_CHARSET="ISO-8859-1" ID="rdf:#$2wIU71">password to leviathan1

Trying to read the large bookmarks file in our terminal shows way too many bookmarks to make sense of. Selectively search for data you might want. As we can see, the password is hidden within a bookmark description.

About these ads

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s