OSINT Challenge 4 Vulnmachines walkthrough

You found an open hosted service used by the organization, upon further analysis and enumeration you will find some information related to the cloud assets of the organization. Now you need to perform enumeration on the cloud asset of the company.

Solution

Step 1: Login to Vulnmachines.

Step 2: Navigate to “Challenges >> OSINT Labs >> Open Vessel”.

Vulnmachines.com

Step 3: In the open Jenkins instance, we will enumerate the prod maven project’s console output and will find the s3 bucket name in the field of s3 profile:

Step 4: Further we will discover that bucket is publicly readable, and we can now copy the file using AWS CLI and read the flag from it.