Level Goal

To gain access to the next level, you should use the setuid binary in the homedirectory. Execute it without arguments to find out how to use it. The password for this level can be found in the usual place (/etc/bandit_pass), after you have used the setuid binary.

Solution

Password: IueksS7Ubh8G3DCwVzrTd8rAVOwq3M5x

Let’s take a look at this binary.

Let’s give it a run.

Alright, apparently it lets us run as another user. Let’s confirm this.

Well, we know that we run as bandit20. So we should be able to read their password file.

Groovy.