 What's up guys welcome back in the YouTube video looking at Bandit level 32 from the new challenges of the overwire wargame site So this prompt here is after all this git stuff. It's time for another escape. Good luck So this challenge is not about using git once we are logged in we notice in the home directory There's this file called upper shell. It is a set UID binary So it looks like it's running as Bandit 33 when we go ahead and run this It says welcome to the uppercase shell and it looks like everything that we try and do is Converted to uppercase so we can't particularly run the normal commands that we want to be able to like move forward Okay, that sucks. How do we get around this? Well, I Poked around and I tried to research and I figured they were okay Maybe some interesting bash variables or bash tech sneaks. I could take advantage of like like redirecting standard error or something out to Another file, right? So if I were to try and redirect like regular output to anything I can try that But okay, it looks like I have to be in a directory where I could actually create files, right? So I figured like all right. Let's move to a temporary directory soup slob Soup slob. Ew that one sounds weird So let's get over there and then let's go ahead and run upper shell again Now we can actually try and redirect things like if I wanted to put dollar sign underscore just get a string I Can redirect that to anything Don't know why that's hanging weird Huh, okay. Now. Let's check out what anything particularly has in here Cat uppercase anything looks like it hit all that and it got something output that came with it So interesting things looks like that's the output from the shell that we're getting Those are interesting variables that I could take advantage of if I really wanted to But there was some idea that I've seen from other people that we were discussing this in the discord chat Some people were able to create an uppercase script that would just go ahead and run regular Commands like if I wanted to just invoke bash I Could do it just like that after I mark it executable and then from the uppercase shell We could simply run Whatever temp directory that we're in The script dot sh and then it puts us just in bash and we can run things However, we particularly want to and we are bandit 33 so we could cat out the password just like that bandit pass Bandit 33 that's a good way to go The technique that I actually fell into and found on accident was just testing again more of those strange bash variables Let me do interesting things So while I was in the uppercase shell I actually tried to run dollar sign zero Which would invoke like the first argument or typically itself like the program execution itself And it brought me just a regular shell like I was able to determine that okay I am just now running sh, so I'm still bandit 33 so I could just like that cat the bandit pass and move on That's how I ended up finding it But other people after I discussed the solutions once I had solved it through that dollar sign zero method People had told me they created that uppercase script and both of these are pretty valid solutions I think both of them worked really really well Whatever there's plenty of ways to skin a cat and Linux, you know, and just get the solution you particularly need So bandit 33 is at the moment Not developed yet, but it looked like they've been releasing levels slowly Since yesterday, so that's kind of cool. We were just on the front lines getting these new challenges that like come out And I've been sharing that love in the discord server So if you want to join a small community of other cool hackers CTF players and programmers, this is a cool place to do it I'll I'll include the discord link in the Description so along with that I want to give a shout out to my supporters on patreon all of these individuals are fantastic Thank you so much for everything that you do. I really appreciate what you're willing to provide for this channel It really helps me grow it helps the channel develop and honestly just motivates me and inspires me to keep making cool things So thank you so much one dollar on patreon will give you just this little shout out the end of every video five dollars a month I'm patreon will give you early access to my videos that I normally record in bulk or in mass and YouTube will just gradually release them Hey, if you did like this video, please do press that like button if you want to leave me a comment maybe subscribe and Check me out on patreon discord in my website www.JohnHaman.org see you soon