{"id":33062012,"url":"https://github.com/anrbn/GCP-Attack-Defense","last_synced_at":"2025-11-23T18:00:41.156Z","repository":{"id":151054915,"uuid":"609002560","full_name":"anrbn/GCP-Attack-Defense","owner":"anrbn","description":"A Project dedicated to documenting various attack and detection vectors that can be encountered within Google Cloud Platform (GCP).","archived":false,"fork":false,"pushed_at":"2024-04-10T12:35:37.000Z","size":17112,"stargazers_count":57,"open_issues_count":0,"forks_count":3,"subscribers_count":3,"default_branch":"main","last_synced_at":"2024-06-09T12:25:27.001Z","etag":null,"topics":["cloud-security","gcp","gcp-functions","gcp-security","google-cloud-platform","privilege-escalation"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/anrbn.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-03-03T07:00:04.000Z","updated_at":"2024-06-09T12:25:29.291Z","dependencies_parsed_at":"2024-04-10T13:37:46.131Z","dependency_job_id":"c8738927-1f4e-42b8-9284-0dd55bf0c5ed","html_url":"https://github.com/anrbn/GCP-Attack-Defense","commit_stats":null,"previous_names":["anrbn/blog"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/anrbn/GCP-Attack-Defense","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/anrbn%2FGCP-Attack-Defense","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/anrbn%2FGCP-Attack-Defense/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/anrbn%2FGCP-Attack-Defense/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/anrbn%2FGCP-Attack-Defense/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/anrbn","download_url":"https://codeload.github.com/anrbn/GCP-Attack-Defense/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/anrbn%2FGCP-Attack-Defense/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":285995567,"owners_count":27267570,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-11-23T02:00:06.149Z","response_time":135,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["cloud-security","gcp","gcp-functions","gcp-security","google-cloud-platform","privilege-escalation"],"created_at":"2025-11-14T06:00:33.460Z","updated_at":"2025-11-23T18:00:41.141Z","avatar_url":"https://github.com/anrbn.png","language":"Python","funding_links":[],"categories":["Other Lists"],"sub_categories":["📚 Knowledge sites"],"readme":"\u003cdiv style=\"display: inline-flex; align-items: center;\"\u003e\r\n    \u003cimg src=\"https://logos-world.net/wp-content/uploads/2021/02/Google-Cloud-Emblem.png\" alt=\"Google Cloud Platform\" width=\"200\" height=\"auto\"\u003e\r\n    \u003ch1 style=\"margin-left: 10px;\"\u003eGoogle Cloud - Attack \u0026 Defense Research\u003c/h1\u003e\r\n\u003c/div\u003e\r\n\r\nThis project is committed to documenting various attack and detection vectors that may be encountered within the Google Cloud Platform (GCP). By cataloging these potential security threats, the project aims to provide well documented research for users to better understand the attack and defense mechanism in Google Cloud. \r\n\r\nThis project also hopes to aid professionals in further research on both Google Cloud.\r\n\r\n## Tools\r\n- [gLess](https://github.com/anrbn/gLess)\r\n- [GATOR](https://github.com/anrbn/GATOR)\r\n\r\n## Google Cloud (GCP)\r\n- [Cloud Function](https://github.com/anrbn/GCP-Attack-Defense/tree/main/research/Google%20Cloud/Cloud%20Function)\r\n    - [Privilege Escalation via Cloud Functions (ID: TA0004)](https://github.com/anrbn/GCP-Attack-Defense/blob/main/research/Google%20Cloud/Cloud%20Function/PrivEsc-via-CloudFunction.md)\r\n    - [Defense Evasion via Source Code Concealment in Cloud Functions (ID: T1564)](https://github.com/anrbn/GCP-Attack-Defense/blob/main/research/Google%20Cloud/Cloud%20Function/DefEvn-via-Source-Code-Concealment.md)\r\n- [Compute Engine](https://github.com/anrbn/GCP-Attack-Defense/tree/main/research/Google%20Cloud/Compute%20Engine)\r\n    - [Persistance via SSH Key Addition (ID: TA0003)](https://github.com/anrbn/GCP-Attack-Defense/tree/main/research/Google%20Cloud/Compute%20Engine/Persistance-via-SSH-Key-Addition.md)\r\n\r\n## Questions and Issues\r\n\r\nIf you have any questions regarding any materials in this project, please don't hesitate to reach out to me via [Twitter](https://twitter.com/corvuscr0w) or [LinkedIn](https://www.linkedin.com/in/anrbn/). I'm always happy to help and provide support. Additionally, if you come across any issues or mistakes while reading the materials/using the tools, please feel free to submit an issue on the GitHub repository, and I'll work on addressing it as soon as possible. Thank you for your support! :)\r\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fanrbn%2FGCP-Attack-Defense","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fanrbn%2FGCP-Attack-Defense","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fanrbn%2FGCP-Attack-Defense/lists"}