1
00:00:00,360 --> 00:00:08,940
Hi, we are in the latest level of the over the wire challenge Bendit over here, so we want to solve

2
00:00:08,940 --> 00:00:11,310
this level and this section.

3
00:00:11,790 --> 00:00:15,810
So we have come across in an uppercase show.

4
00:00:16,110 --> 00:00:21,360
So we cannot write anything over here because it doesn't understand what we are writing.

5
00:00:21,360 --> 00:00:23,610
And I believe I lost my connection.

6
00:00:23,760 --> 00:00:30,180
So I'm just going to just run this one more time and get the password over here so that I can show you

7
00:00:30,180 --> 00:00:30,930
what I mean.

8
00:00:31,180 --> 00:00:35,940
I'm just going to copy that one and I'm going to come over here and paste this thing in.

9
00:00:36,060 --> 00:00:36,810
And here you go.

10
00:00:36,820 --> 00:00:38,460
We are in the upper case show.

11
00:00:38,790 --> 00:00:46,350
So if you run even the basic commands over here, like Aline's or PWP or anything you want, it won't

12
00:00:46,350 --> 00:00:47,430
understand it.

13
00:00:47,430 --> 00:00:51,900
OK, so it changes the thing into the uppercase.

14
00:00:52,290 --> 00:00:55,710
So it's how it's configured, right?

15
00:00:56,190 --> 00:00:57,570
We cannot do that.

16
00:00:58,290 --> 00:01:01,380
So we need to find a way to change the show.

17
00:01:01,710 --> 00:01:08,460
Of course, in that case, we can just run change channel like C, H as H, but it doesn't understand

18
00:01:08,460 --> 00:01:09,260
that as well.

19
00:01:09,750 --> 00:01:13,230
So as you can see, we cannot run anything.

20
00:01:13,440 --> 00:01:20,310
And in this point, like we have done before, I had to stop and Google it out to understand how we

21
00:01:20,310 --> 00:01:23,400
can actually get this thing out of here.

22
00:01:23,790 --> 00:01:30,990
So there are a couple of instructions over here that is supplied for us in order to understand this

23
00:01:30,990 --> 00:01:31,890
in a better way.

24
00:01:32,100 --> 00:01:36,270
But there are a lot of instructions over here, as you can see.

25
00:01:36,720 --> 00:01:42,030
And what have I done these to find out more about the essay check.

26
00:01:42,780 --> 00:01:48,690
So apparently in the essay challenge, as you can see, this is an essay Chala rather than show.

27
00:01:49,140 --> 00:01:57,990
So in the as a child, we have some arguments like the first argument or a second argument or even the

28
00:01:58,380 --> 00:02:01,730
first argument, which is the argument zero.

29
00:02:02,430 --> 00:02:08,790
So if we run something like this, like kept password-protected, this is the second argument in this

30
00:02:08,790 --> 00:02:11,220
case, this is the sign one.

31
00:02:11,640 --> 00:02:18,930
And if we had something like it's not the case for Kett, but for maybe for another comment, like two

32
00:02:18,930 --> 00:02:22,890
parameters, this is the dollar one, dollar two.

33
00:02:22,890 --> 00:02:24,330
OK, this is the dollar two.

34
00:02:24,330 --> 00:02:26,040
And the first one is the other one.

35
00:02:26,970 --> 00:02:35,640
So if we want to change the first one, which is DSH, we can go into the dollar zero in order to understand

36
00:02:35,880 --> 00:02:37,910
what we can do with DHL.

37
00:02:38,460 --> 00:02:45,510
So if you run down this one over here, nothing will happen because we haven't supplied anything.

38
00:02:45,660 --> 00:02:53,070
But if we go to dollar zero, it will just get default to the CHL itself.

39
00:02:53,820 --> 00:02:55,010
So far, so good.

40
00:02:55,410 --> 00:03:00,090
Now we just want to change the channel in here again.

41
00:03:00,510 --> 00:03:05,640
Maybe this is not something that you will come across in a real life scenario.

42
00:03:06,000 --> 00:03:10,590
OK, and if you're right, Cheryl, it will just go back to the uppercase shell.

43
00:03:11,850 --> 00:03:17,580
So again, in a real life penetration test, you won't see something like this.

44
00:03:17,970 --> 00:03:22,170
But again, this is the last section like this last lecture of the section.

45
00:03:22,470 --> 00:03:25,590
So we have made it this far.

46
00:03:25,770 --> 00:03:27,870
And I thought, why not?

47
00:03:27,870 --> 00:03:32,700
We saw the last one and I had to Google it out to figure it out.

48
00:03:33,630 --> 00:03:36,810
I had to spend so much time to understand this.

49
00:03:37,140 --> 00:03:44,370
But once we get back into as a child, we can just change the shell with expert shell, OK, to change

50
00:03:44,370 --> 00:03:46,770
the shell variable over here.

51
00:03:46,950 --> 00:03:49,290
And we can just make it equal to being Basche.

52
00:03:50,070 --> 00:03:54,030
And when we run Shell.

53
00:03:54,030 --> 00:03:58,290
Yep, we have to do this in the zero, of course.

54
00:03:58,470 --> 00:04:07,200
So if you run double zero, it will default back to the shell itself and then you can run expert shell.

55
00:04:07,500 --> 00:04:11,520
It's the it's going to be cool to being Basche like this.

56
00:04:11,820 --> 00:04:18,310
And if you run the shell then you will be presented with a shell like that.

57
00:04:18,310 --> 00:04:19,110
So here you go.

58
00:04:19,110 --> 00:04:21,240
We escaped the uppercase shell.

59
00:04:21,990 --> 00:04:31,080
So right now I can cut the ETSI banded pass and banded 33, which is the last password.

60
00:04:31,770 --> 00:04:33,240
So great.

61
00:04:33,240 --> 00:04:40,410
I'm going to copy that one and I'm going to come over here and nanoha into this cat password texte a

62
00:04:40,410 --> 00:04:41,520
password texte.

63
00:04:41,820 --> 00:04:46,650
I'm just going to pass the selection and here we are right now.

64
00:04:46,830 --> 00:04:53,880
We can just save this and get out and we can actually exit out of that one or we can just run the others

65
00:04:53,880 --> 00:04:54,330
to see.

66
00:04:54,330 --> 00:04:54,630
Yep.

67
00:04:54,630 --> 00:04:55,020
Here we go.

68
00:04:55,020 --> 00:04:59,180
We have the upper shell over here and if you go to level thirty.

69
00:04:59,420 --> 00:05:07,690
Three over there, you will see that level 34 doesn't even exist yet, so far, so good.

70
00:05:07,850 --> 00:05:11,600
We managed to complete the over the wire the challenge.

71
00:05:11,780 --> 00:05:17,000
Maybe you have found some of the lectures stupid or some of the challenges stupid.

72
00:05:17,180 --> 00:05:22,640
But even in this case, you have to run this cat at seashells, right.

73
00:05:22,640 --> 00:05:29,930
In order to see what kind of shells you have in your system, in order to maybe just take a look at

74
00:05:29,930 --> 00:05:32,390
it or in order to gather information.

75
00:05:32,570 --> 00:05:38,360
For example, in this case, we can we could have around a fire upper shell and try to understand what

76
00:05:38,360 --> 00:05:39,850
can we do with the upper shell.

77
00:05:40,400 --> 00:05:50,690
So, again, even though maybe you don't find some of them are real life examples, they're all there

78
00:05:50,690 --> 00:05:52,550
in order to teach us something.

79
00:05:52,550 --> 00:05:55,730
And I have learned something from this challenge.

80
00:05:55,960 --> 00:06:05,420
OK, I hope you have learned, at least I think in the section and be sure that we're going to use this

81
00:06:05,420 --> 00:06:08,570
information a lot during this course.

82
00:06:08,750 --> 00:06:15,830
We're going to use many of the comments that we have seen during the CTF solutions, during the previous

83
00:06:15,900 --> 00:06:19,340
escalations and so much more.

84
00:06:19,790 --> 00:06:24,290
We're going to stop here and continue within the next lecture.