Getting the initial foothold in organization’s google cloud environment:
Exploiting Web App
- Compute Engine
- Cloud Function
- App Engine
- Kubernetes
Valid Credential
- Password Spray
gsprayer:
gSuite_Spray.py:
- , AiTM, Illicit Consent Grant Attack, …
Leaked Credential
- (SVN, Dark Web, etc.)
Compromise User System
- Gcloud credential
- Application Default Credential