GCP - App Engine Unauthenticated Enum

Tip

Jifunze na ufanye mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na ufanye mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)
Jifunze na ufanye mazoezi ya Az Hacking: HackTricks Training Azure Red Team Expert (AzRTE)

Saidia HackTricks

Angalia the subscription plans!

Jiunge na 💬 Discord group au the telegram group au utufuate kwenye Twitter 🐦 @hacktricks_live.

Shiriki hacking tricks kwa kutuma PRs kwa HackTricks and HackTricks Cloud github repos.

App Engine

Kwa maelezo zaidi kuhusu App Engine angalia:

GCP - App Engine Enum

Kama ilivyotajwa, URL iliyotolewa kwa kurasa za wavuti za App Engine ni <project-uniq-name>.appspot.com na ikiwa jina la huduma linatumika itakuwa: <servicename>-dot-<project-uniq-name>.appspot.com.

Kwa kuwa project-uniq-name inaweza kuwekwa na mtu anayezalisha mradi, huenda isiwe ya bahati nasibu na kujaribu kwa nguvu kunaweza kupata programu za wavuti za App Engine zilizofichuliwa na kampuni.

Unaweza kutumia zana kama zile zilizoonyeshwa katika:

GCP - Unauthenticated Enum & Access

Tip

Jifunze na ufanye mazoezi ya AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Jifunze na ufanye mazoezi ya GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)
Jifunze na ufanye mazoezi ya Az Hacking: HackTricks Training Azure Red Team Expert (AzRTE)

Saidia HackTricks

Angalia the subscription plans!

Jiunge na 💬 Discord group au the telegram group au utufuate kwenye Twitter 🐦 @hacktricks_live.

Shiriki hacking tricks kwa kutuma PRs kwa HackTricks and HackTricks Cloud github repos.

HackTricks Cloud

GCP - App Engine Unauthenticated Enum

App Engine

Brute Force Subdomains