HackMyVM — Venus mission 10 to 20

Venus — Mission 10 to 20, HOW TO with images

  • cat passy | grep -i "^a9HFX"
  • grep is used to find strings in a text file
  • -i is used to match strings irrespective of the case(lower or upper)
  • ^ used to denote the start of the string
  • cat end | grep -i "0JuAZ$"
  • grep is used to find strings in a text file
  • -i is used to match strings irrespective of the case(lower or upper)
  • $ is used to denote the end of the string
  • cat file.yo | grep "^fu.*ck$"
  • grep is used to find strings in a text file
  • $ is used to denote the end of the string
  • ^ used to denote the start of the string
  • .* denotes an arbitrary string of arbitrary length
  • env

Mission 14

  • it is mostly the /etc/passwd
  • cat /etc/passwd | grep "alice"

Mission 15

  • let’s try sudo -l
  • it lists the allowed commands for that particular user
  • using sudo -u natalia /bin/bash
  • this runs the command as the specified user
  • from the above we know that it has access to the /bin/bash file
  • we get the password for natalia

Mission 16

  • base64 -d base64.txt
  • base64
  • -d to decode the text
  • followed by the file name

Mission 17

  • find / -type f -mtime +18980 2>/dev/null
  • -mtime it is a file property confirming the last time the file was modified
  • (2022-1970) * 365 = 18980
  • the + indicates older than 1970

Mission 18

  • run this on you local machine (about scp)
  • scp -P 5000 clara@venus.hackmyvm.eu:~/protected.zip ~/
  • this is used to securely copy files from the remote location to your local desktop
  • -P mentions the ssh port
  • SYNTAX : scp [OPTION] [user@]SRC_HOST:]file1 [user@]DEST_HOST:]file2
  • zip2john protected.zip > pass
  • we are getting the hashed form of the password
  • john pass --wordlist=/usr/share/wordlists/rockyou.txt
  • after executing this command we get the password for the protected zip file
  • now we have to get the password for frida

Mission 19

  • we can use the commadn uniq
  • uniq -d repeated.txt
  • uniq is used to filter adjacent matching lines
  • -d is used to print only repeated lines

Mission 20

  • I’m not sure why the first one did not work
  • ssh -i .iris_key iris@localhost
  • here localhost denotes computers IP and the port it is using, since we are already logged into venus.hackmyvm.eu I think it works
  • we get the password for iris

Give this a 👏 if you found it useful!

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Hritesh J

Hritesh J is a student pursuing undergraduate studies in CS. Loves cybersecurity and playing ctfs and writing about them. “learning one new thing every day.”