Carefully enumerate the accessible Azure Blob Container to locate a file containing credentials for an App Registration within the tenant. What is the Application/Client ID of the discovered App Registration?
Inside the public blob container, a file named backup-config.json contains service principal credentials. What field contains the App Registration client ID?
Using the privileges of the previously compromised App Registration, explore the Azure environment to identify and access sensitive information. What is the final flag retrieved from the tenant?
You have been given a breached Azure user credential for an authorized lab tenant:
james.ward@cloudcorpsec.onmicrosoft.com
After logging in, identify the Azure Tenant ID and Subscription ID associated with the account.