Thunder CTF Walkthrough — Part 1

Image captured by me in last monsoon.

Thunder CTF is a fantastic opportunity to challenge your skills, expand your knowledge, and test your understanding of GCP security. The competition is designed to simulate real-world scenarios, so the challenges you’ll face will be similar to the types of security issues that you might encounter in a real-world environment.

In this blog series, I’ll be covering each of the challenges presented in the Thunder CTF, and providing step-by-step solutions to help you complete each challenge successfully.

In part 1, I’ll be covering first 2 levels:

Level 1 : Find the secret from the file stored in storage bucket

Level 2 : Find the credit card details of the specified user

For set-up related details please have a look at https://thunder-ctf.cloud/

So, let’s get started and dive into the world of GCP security with the Thunder CTF challenges!

Level 1: Find the secret from the file stored in storage bucket

Level 1 involves finding a secret that has been stored in a file in a Google Cloud Storage bucket. In this challenge, we have to access the contents of the storage bucket and locate the secret file within it.