AWS Stacked

An unsuspecting cloud intern at MechZone clicks on an AWS phishing link, inadvertently deploying malicious resources into his company's cloud environment. Your task is to investigate the source of the compromise and the malicious resources that were staged within the environment by the attacker.


Lab Instructions

1- Become root: sudo su

2- Navigate into the AWSLogs directory: cd /root/Desktop/ChallengeFile/AWSLogs/670756667180/CloudTrail/us-east-1/2023/06/01

3- Unzip the files: find . -type f -exec gunzip {} \;