https://tryhackme.com/room/cloudenum-aoc2025-y4u7i0o3p6
Created by: tryhackme, munra
Per THM, “Amazon Web Services (AWS) is a comprehensive cloud computing platform offered by Amazon. It provides a wide range of services such as computing power, storage, databases, networking, analytics, and more, delivered over the internet on a pay-as-you-go basis.” This will be fun to get some hands-on with AWS. THM has us do a few things to confirm user information and here we get our first flag. FYI: When performing some of the AWS commands, you will need to Ctrl + C to get out of them.
“RunĀ aws sts get-caller-identity. What is the number shown for the “Account” parameter?”
THM covers various IAM aspects, including users, groups, roles, and policies, in Task 2. These are the fundamentals of not just AWS but any IAM services. “What IAM component is used to describe the permissions to be assigned to a user or a group?”
In task 3, we start getting practical with our task.
“What is the name of the policy assigned to sir.carrotbane?”
“Apart from GetObject and ListBucket, what other action can be taken by assuming the bucketmaster role?”
On to task 5, “Grabbing a file from S3”. In the last task, THM had us configure a role to obtain permissions. Those permissions included list-buckets and list-objects. We will use these permissions to obtain the last flag.
“What are the contents of the cloud_password.txt file?”
