Storage Account 05 - SAS URI

SAS URI

信息

Scenario

Storage accounts can be accessed through various methods, and one option is using the SAS URL. Utilize the provided SAS URL to locate the flag.

Overview

What is SAS URL (Shared Access Signature URL)?

A SAS URL (Shared Access Signature URL) is a URL that contains a shared access signature token. It allows secure access to specific resources within an Azure storage account for a limited period, without requiring the account key. SAS URLs provide us with a way to grant granular access permissions to clients or applications without exposing the storage account keys.

Hint

• Access resources without exposing keys

Impact

• Once a SAS URL is leaked, we lose control over who can access the resource during the validity period of the SAS token. Revoking access is not possible on the leaked URL, which can be distributed or accessed by multiple parties.

Reference

• Storage Blob Docs
• Azure Storage Explorer
• Shared Access Signature

题目给出了 SASToken 信息，连接到 Blob Container

即可获得 flag

Flags

What type of credential did we use to connect to the storage account? (SAS URL or connection string)

SAS URL

What is the flag value?

astfvrdz736aszoiswy736