Bandit-Level-24-Level-25

A daemon is listening on port 30002 and will give you the password for bandit25 if given the password for bandit24 and a secret numeric 4-digit pin code. There is no way to retrieve the pin code except by going through all the 10000 combinations, called brute-forcing. Here are the details which we have from the previous level: Host: bandit.labs.overthewire.org Port: 2220 Username: bandit24 Password: gb8KRRCsshuZXI0tUuR6ypOFjiZbf3G8 So, The SSH syntax will be: sshpass -p gb8KRRCsshuZXI0tUuR6ypOFjiZbf3G8 ssh [email protected] -p 2220 To solve the challenge, we need to brute-force the password for bandit25 by trying all possible 4-digit PIN codes along with the known password for bandit24 on port 30002. ...