Exploit Exercises Nebula 5: Level 08 Write Up

Exploit Exercises Nebula 5: Level 08 Write Up

Level: https://exploit-exercises.com/nebula/level08/

World readable files strike again. Check what that user was up to, and use it to log into flag08 account.

To do this level, log in as the level08 account with the password level08. Files for this level can be found in /home/flag08.

ls -la /home/flag08

What’s that capture.pcap? Lets load that in Wireshark.

Lets open our Kali VM.

scp level08@ ~/Downloads/
wireshark ~/Downloads/capture.pcap

Open capture.pcap in Wireshark.
Right click on the first entry, mouse over Follow and click on TCP Stream.


This shows us some useful information.


It looks like an authentication prompt. If we select HexDump and look closer we can see those dots are actually the \x7D ASCII charature called DEL for Delete.

The password then should be:

Lets try login to flag08 with the password of backd00Rmate and run getflag

You have successfully executed getflag on a target account.

Leave a Reply

Your email address will not be published. Required fields are marked *