Level Goal
To gain access to the next level, you should use the setuid binary in the homedirectory. Execute it without arguments to find out how to use it. The password for this level can be found in the usual place (/etc/bandit_pass), after you have used the setuid binary.
When we first connect to the challenge, we see a file in the main directory.
Without knowing much about this, we can try to run it to see what arguments it takes.
In this case, we can pass a command and it will be run as a different user.
Using the setuid binary, I catted the bandit20 file in /etc/bandit_pass, and was able to retrieve the flag.
Killian Sherer 