# At Your Service

## Introduction

There were once two hard working and fun loving men called Pranav and Bhagavan. As part of their everyday work, they would exchange challenges and artifacts in the cloud with each other using restricted service accounts.

We were able to intercept one of these exchanges but were only able to get hold of the service account json key. We did over hear them talking about a storage bucket called `ctf-bucket-appsecco` which supposedly contains the goodies that they don't want the rest of the world to see.

Can you help us find and read the contents of this bucket, please?

## Starting point

1. Download and use the service account json - <https://storage.googleapis.com/access-nullcon-training/sa-token.json>
2. Find the storage object and the secret file that Pranav and Bhagavan want to hide from us

## Your task

1. Read the contents of the `ctf-bucket-appsecco`


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://0xcriminal.gitbook.io/about-me/cloudsec/challenges/ctf/ctf-1-at-your-service.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.