GCP - Composer Enum

Tip

Jifunze na ufanye mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na ufanye mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)
Jifunze na ufanye mazoezi ya Az Hacking: HackTricks Training Azure Red Team Expert (AzRTE)

Saidia HackTricks

Basic Information

Google Cloud Composer ni huduma ya workflow orchestration inayosimamiwa kikamilifu iliyojengwa juu ya Apache Airflow. Inakuwezesha kuandika, kupanga, na kufuatilia mipango inayovuka mawingu na vituo vya data vya ndani. Pamoja na GCP Composer, unaweza kwa urahisi kuunganisha kazi zako na huduma nyingine za Google Cloud, ikirahisisha kazi za uunganishaji wa data na uchambuzi. Huduma hii imeundwa ili kurahisisha ugumu wa kusimamia kazi za data za msingi wa wingu, na kuifanya kuwa chombo muhimu kwa wahandisi wa data na waendelezaji wanaoshughulikia kazi kubwa za usindikaji wa data.

Enumeration

# Get envs info
gcloud composer environments list --locations <loc>
gcloud composer environments describe --location <loc> <environment>

# Get list of dags
gcloud composer environments storage dags list --environment <environment> --location <loc>
# Download dags code
mkdir /tmp/dags
gcloud composer environments storage dags export --environment <environment> --location <loc> --destination /tmp/dags

# List Data from composer
gcloud composer environments storage data list --environment <environment> --location <loc>
# Download data
mkdir /tmp/data
gcloud composer environments storage data export --environment <environment> --location <loc> --destination /tmp/data

# List Plugins from composer
gcloud composer environments storage plugins list --environment <environment> --location <loc>
# Download plugins
mkdir /tmp/plugins
gcloud composer environments storage data export --environment <environment> --location <loc> --destination /tmp/plugins

Privesc

Katika ukurasa ufuatao unaweza kuangalia jinsi ya kudhulumu ruhusa za composer ili kupandisha mamlaka:

GCP - Composer Privesc

Tip

Jifunze na ufanye mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na ufanye mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)
Jifunze na ufanye mazoezi ya Az Hacking: HackTricks Training Azure Red Team Expert (AzRTE)

Saidia HackTricks