advent-of-cyber-2025

Room Link:
https://tryhackme.com/room/cloudenum-aoc2025-y4u7i0o3p6

▶️ Tech with Jono – Day 23 Video Walkthrough

Official walkthrough for quick onboarding:

🔗 YouTube Link:
https://youtu.be/9ZLS4iUFi00?si=4hxj_umEeklFyRBL

🎄 Advent of Cyber 2025 — Day 23 Write-Up

🧩 AWS Security — S3cret Santa

📘 Review the Theory

Refer to the TryHackMe theory section before starting this.

✅ Challenge Answers

1️⃣ Run aws sts get-caller-identity. What is the value of the Account parameter?

aws sts identity

123456789012

2️⃣ What IAM component is used to describe permissions assigned to a user or group?

policy

iam policy policy details

3️⃣ What is the name of the policy assigned to sir.carrotbane?

policy name

SirCarrotbanePolicy

assume role role permissions

4️⃣ Apart from GetObject and ListBucket, what other action can be performed by assuming the bucketmaster role?

bucketmaster permissions

ListAllMyBuckets

list buckets

5️⃣ What are the contents of the cloud_password.txt file?

cloud password file file contents final flag

THM{more_like_sir_cloudbane}