Out Of The Bucket

Check out my flag website!

Author: windex
https://storage.googleapis.com/out-of-the-bucket/src/index.html

We’re given a website

Checking out the website reveals two images and seemingly no suspicious files. I tried stegsolve with the images, but found nothing.

Eventually, I tried modifying the URL to see if there were any hidden files. Soon, I found something at https://storage.googleapis.com/out-of-the-bucket.

Here, a document tree was listed for the site in XML. Here it is:

1
This XML file does not appear to have any style information associated with it. The document tree is shown below.
2
<ListBucketResult>
3
<Name>out-of-the-bucket</Name>
4
<Prefix/>
5
<Marker/>
6
<IsTruncated>false</IsTruncated>
7
<Contents>
8
<Key>secret/</Key>
9
<Generation>1703868492595821</Generation>
10
<MetaGeneration>1</MetaGeneration>
11
<LastModified>2023-12-29T16:48:12.634Z</LastModified>
12
<ETag>"d41d8cd98f00b204e9800998ecf8427e"</ETag>
13
<Size>0</Size>
14
</Contents>
15
<Contents>
16
<Key>secret/dont_show</Key>
17
<Generation>1703868647771911</Generation>
18
<MetaGeneration>1</MetaGeneration>
19
<LastModified>2023-12-29T16:50:47.809Z</LastModified>
20
<ETag>"737eb19c7265186a2fab89b5c9757049"</ETag>
21
<Size>29</Size>
22
</Contents>
23
<Contents>
24
<Key>secret/funny.json</Key>
25
<Generation>1705174300570372</Generation>
26
<MetaGeneration>1</MetaGeneration>
27
<LastModified>2024-01-13T19:31:40.607Z</LastModified>
28
<ETag>"d1987ade72e435073728c0b6947a7aee"</ETag>
29
<Size>2369</Size>
30
</Contents>
31
<Contents>
32
<Key>src/</Key>
33
<Generation>1703867253127898</Generation>
34
<MetaGeneration>1</MetaGeneration>
35
<LastModified>2023-12-29T16:27:33.166Z</LastModified>
36
<ETag>"d41d8cd98f00b204e9800998ecf8427e"</ETag>
37
<Size>0</Size>
38
</Contents>
39
<Contents>
40
<Key>src/index.html</Key>
41
<Generation>1703867956175503</Generation>
42
<MetaGeneration>1</MetaGeneration>
43
<LastModified>2023-12-29T16:39:16.214Z</LastModified>
44
<ETag>"dc63d7225477ead6f340f3057263643f"</ETag>
45
<Size>1134</Size>
46
</Contents>
47
<Contents>
48
<Key>src/static/antwerp.jpg</Key>
49
<Generation>1703867372975107</Generation>
50
<MetaGeneration>1</MetaGeneration>
51
<LastModified>2023-12-29T16:29:33.022Z</LastModified>
52
<ETag>"cef4e40eacdf7616f046cc44cc55affc"</ETag>
53
<Size>45443</Size>
54
</Contents>
55
<Contents>
56
<Key>src/static/guam.jpg</Key>
57
<Generation>1703867372954729</Generation>
58
<MetaGeneration>1</MetaGeneration>
59
<LastModified>2023-12-29T16:29:32.993Z</LastModified>
60
<ETag>"f6350c93168c2955ceee030ca01b8edd"</ETag>
61
<Size>48805</Size>
62
</Contents>
63
<Contents>
64
<Key>src/static/style.css</Key>
65
<Generation>1703867372917610</Generation>
66
<MetaGeneration>1</MetaGeneration>
67
<LastModified>2023-12-29T16:29:32.972Z</LastModified>
68
<ETag>"0c12d00cc93c2b64eb4cccb3d36df8fd"</ETag>
69
<Size>76559</Size>
70
</Contents>
71
</ListBucketResult>

There are clearly some suspicious URLs. Visiting secret/dont_show gives us file containing the flag!

1
uoftctf{allUsers_is_not_safe}