flAWS Level 1
okay so this is a new series .. on cloud pentesting .. here we will be exploiting cloud and looking into some misconfigurations in it which can lead to accessing information that wasnt meant to ..
so this is level 1 ... you can see the homepage ...
also this is cloud pentesting ... so no legacy methods will be applicable here lol ... if you inspect element ..
faaahhh faaahhh moment lol ...
now look carefully at the description ...
This level is *buckets* of fun .
in aws, bucket refers to aws s3 .. which is used to store files .. websites can actually be hosted directly out of these buckets ....
the level description explicitly highlights the word with asterisks ... it's a dead giveaway that the objective is to interact with an s3 bucket configuration ...
after looking into internet i found out that we can append the url with the .s3.amazonaws.com
thats basically bucketname.s3.amazonaws.com ...
so ... by navigating directly to http://flaws.cloud.s3.amazonaws.com/ instead of the standard web presentation layer ...
you are bypassing the default index.html page and asking the s3 api directly .. "what files do you have in here?"
now look at the last html file ... secret-xxxxxx.html ... thats what we want i believe ... so lets navigate there
and yeah we did level one ...
alternatively we can use aws-cli also to solve this .. i might use it in upcoming levels ...!!
