RITSEC CTF 2019 Writeups-Buckets of fun 100 points

 

Challenge: Buckets of fun - web 

Scope: http://bucketsoffun-ctf.s3-website-us-east-1.amazonaws.com

Solution:

1. I went to the link given http://bucketsoffun-ctf.s3-website-us-east-1.amazonaws.com and viewed the page source and got the hint:

<div>Javascript is required to use this site. Yours seems to be disabled.</div>

2. This particular hint leads me to believe that the author of this website must have some sort of configuration slip-up.

3. The URL of the website is http://bucketsoffun-ctf.s3-website-us-east-1.amazonaws.com, which means that the name of the website is bucketsoffun-ctf. We can view the files of the website (google bucket CTF) by accessing the site's S3 AmazonAWS Bucket directly, assuming that it is misconfigured and allows public access(AWS bucket misconfigured access). To do this, we simply just go to the URL: http://bucketsoffun-ctf.s3.amazonaws.com. we get XML file  as follows:

4. While going through the XML file I found  a hint a tag which says: <Key>youfoundme-asd897kjm.txt</Key>

5. So, I just attaching the element in the url as follows:

http://bucketsoffun-ctf.s3-website-us-east-1.amazonaws.com/youfoundme-asd897kjm.txt

and got the flag as follows:

flag: RITSEC{LIST_HIDDEN_FILES}

Your comments are much appreciated. I am a newbie in this field please do correct me or help me learn to do it in a better way.