GCP - Serviceusage Privesc

Reading time: 2 minutes

tip

Jifunze na fanya mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na fanya mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE) Jifunze na fanya mazoezi ya Azure Hacking: HackTricks Training Azure Red Team Expert (AzRTE)

Support HackTricks

Angalia mpango wa usajili!
Jiunge na 💬 kikundi cha Discord au kikundi cha telegram au tufuatilie kwenye Twitter 🐦 @hacktricks_live.
Shiriki mbinu za hacking kwa kuwasilisha PRs kwa HackTricks na HackTricks Cloud repos za github.

serviceusage

Ruhusa zifuatazo ni muhimu kuunda na kuiba funguo za API, angalia hii kutoka kwa nyaraka: Funguo za API ni mfuatano rahisi wa siri unao tambua programu bila kiongozi yeyote. Zinatumika kwa kupata data za umma kwa siri, na zinatumika ku unganisha maombi ya API na mradi wako kwa ajili ya quota na malipo.

Hivyo, kwa funguo za API unaweza kufanya kampuni hiyo ilipe kwa matumizi yako ya API, lakini huwezi kuongeza mamlaka.

Ili kujifunza ruhusa nyingine na njia za kuunda funguo za API angalia:

GCP - Apikeys Privesc

`serviceusage.apiKeys.create`

API isiyokuwa na hati iligundulika ambayo inaweza kutumika ku unda funguo za API:

bash

curl -XPOST "https://apikeys.clients6.google.com/v1/projects/<project-uniq-name>/apiKeys?access_token=$(gcloud auth print-access-token)"

`serviceusage.apiKeys.list`

API nyingine isiyoandikwa iligundulika kwa ajili ya kuorodhesha funguo za API ambazo tayari zimeundwa (funguo za API zinaonekana katika jibu):

bash

curl "https://apikeys.clients6.google.com/v1/projects/<project-uniq-name>/apiKeys?access_token=$(gcloud auth print-access-token)"

`serviceusage.services.enable` , `serviceusage.services.use`

Kwa ruhusa hizi, mshambuliaji anaweza kuwezesha na kutumia huduma mpya katika mradi. Hii inaweza kumruhusu mshambuliaji kuwezesha huduma kama admin au cloudidentity kujaribu kufikia taarifa za Workspace, au huduma nyingine kufikia data ya kuvutia.

Marejeo

https://rhinosecuritylabs.com/cloud-security/privilege-escalation-google-cloud-platform-part-2/

Support HackTricks and get benefits!

Je, unafanya kazi katika kampuni ya cybersecurity? Je, unataka kuona kampuni yako ikitangazwa katika HackTricks? au unataka kupata toleo jipya la PEASS au kupakua HackTricks katika PDF? Angalia SUBSCRIPTION PLANS!

Gundua The PEASS Family, mkusanyiko wetu wa kipekee wa NFTs

Pata official PEASS & HackTricks swag

Join the 💬 Discord group or the telegram group or follow me on Twitter 🐦@carlospolopm.

Share your hacking tricks submitting PRs to the hacktricks github repo****

HackTricks Cloud

GCP - Serviceusage Privesc

serviceusage

serviceusage.apiKeys.create

serviceusage.apiKeys.list

serviceusage.services.enable , serviceusage.services.use

Marejeo

`serviceusage.apiKeys.create`

`serviceusage.apiKeys.list`

`serviceusage.services.enable` , `serviceusage.services.use`