Translated ['.github/pull_request_template.md', 'src/pentesting-cloud/az

src/pentesting-cloud/workspace-security/README.md

@@ -6,7 +6,7 @@
 
 ### Google Platforms and OAuth Apps Phishing
 
-Check how you could use different Google platforms such as Drive, Chat, Groups... to send the victim a phishing link and how to perform a Google OAuth Phishing in:
+Proverite kako možete koristiti različite Google platforme kao što su Drive, Chat, Groups... da pošaljete žrtvi phishing link i kako da izvršite Google OAuth Phishing u:
 
 {{#ref}}
 gws-google-platforms-phishing/
@@ -14,11 +14,11 @@ gws-google-platforms-phishing/
 
 ### Password Spraying
 
-In order to test passwords with all the emails you found (or you have generated based in a email name pattern you might have discover) you could use a tool like [**https://github.com/ustayready/CredKing**](https://github.com/ustayready/CredKing) (although it looks unmaintained) which will use AWS lambdas to change IP address.
+Da biste testirali lozinke sa svim emailovima koje ste pronašli (ili koje ste generisali na osnovu obrazaca imena emaila koje ste možda otkrili), možete koristiti alat kao što je [**https://github.com/ustayready/CredKing**](https://github.com/ustayready/CredKing) (iako izgleda da nije održavan) koji će koristiti AWS lambde za promenu IP adrese.
 
 ## Post-Exploitation
 
-If you have compromised some credentials or the session of the user you can perform several actions to access potential sensitive information of the user and to try to escala privileges:
+Ako ste kompromitovali neke kredencijale ili sesiju korisnika, možete izvršiti nekoliko akcija da pristupite potencijalno osetljivim informacijama korisnika i pokušate da eskalirate privilegije:
 
 {{#ref}}
 gws-post-exploitation.md
@@ -26,17 +26,17 @@ gws-post-exploitation.md
 
 ### GWS <-->GCP Pivoting
 
-Read more about the different techniques to pivot between GWS and GCP in:
+Pročitajte više o različitim tehnikama za pivotiranje između GWS i GCP u:
 
 {{#ref}}
 ../gcp-security/gcp-to-workspace-pivoting/
 {{#endref}}
 
-## GWS <--> GCPW | GCDS | Directory Sync (AD & EntraID)
+## GWS <--> GCPW | GCDS | Directory Sync (AD & EntraID)
 
-- **GCPW (Google Credential Provider for Windows)**: This is the single sign-on that Google Workspaces provides so users can login in their Windows PCs using **their Workspace credentials**. Moreover, this will **store tokens to access Google Workspace** in some places in the PC.
-- **GCDS (Google CLoud DIrectory Sync)**: This is a tool that can be used to **sync your active directory users and groups to your Workspace**. The tool requires the **credentials of a Workspace superuser and privileged AD user**. So, it might be possible to find it inside a domain server that would be synchronising users from time to time.
-- **Admin Directory Sync**: It allows you to synchronize users from AD and EntraID in a serverless process from [https://admin.google.com/ac/sync/externaldirectories](https://admin.google.com/ac/sync/externaldirectories).
+- **GCPW (Google Credential Provider for Windows)**: Ovo je jedinstveno prijavljivanje koje Google Workspaces pruža tako da korisnici mogu da se prijave na svojim Windows PC-ima koristeći **svoje Workspace kredencijale**. Štaviše, ovo će **čuvati tokene za pristup Google Workspace-u** na nekim mestima na PC-u.
+- **GCDS (Google Cloud Directory Sync)**: Ovo je alat koji se može koristiti za **sinhronizaciju vaših korisnika i grupa iz aktivnog direktorijuma sa vašim Workspace-om**. Alat zahteva **kredencijale superkorisnika Workspace-a i privilegovanog AD korisnika**. Tako da, može biti moguće pronaći ga unutar domen servera koji bi povremeno sinhronizovao korisnike.
+- **Admin Directory Sync**: Omogućava vam da sinhronizujete korisnike iz AD i EntraID u serverless procesu sa [https://admin.google.com/ac/sync/externaldirectories](https://admin.google.com/ac/sync/externaldirectories).
 
 {{#ref}}
 gws-workspace-sync-attacks-gcpw-gcds-gps-directory-sync-with-ad-and-entraid/
@@ -44,7 +44,7 @@ gws-workspace-sync-attacks-gcpw-gcds-gps-directory-sync-with-ad-and-entraid/
 
 ## Persistence
 
-If you have compromised some credentials or the session of the user check these options to maintain persistence over it:
+Ako ste kompromitovali neke kredencijale ili sesiju korisnika, proverite ove opcije za održavanje postojanosti:
 
 {{#ref}}
 gws-persistence.md
@@ -52,26 +52,22 @@ gws-persistence.md
 
 ## Account Compromised Recovery
 
-- Log out of all sessions
-- Change user password
-- Generate new 2FA backup codes
-- Remove App passwords
-- Remove OAuth apps
-- Remove 2FA devices
-- Remove email forwarders
-- Remove emails filters
-- Remove recovery email/phones
-- Removed malicious synced smartphones
-- Remove bad Android Apps
-- Remove bad account delegations
+- Odjavite se iz svih sesija
+- Promenite lozinku korisnika
+- Generišite nove 2FA rezervne kodove
+- Uklonite App lozinke
+- Uklonite OAuth aplikacije
+- Uklonite 2FA uređaje
+- Uklonite email prosledjivače
+- Uklonite email filtre
+- Uklonite email/telefone za oporavak
+- Uklonite zlonamerne sinhronizovane pametne telefone
+- Uklonite loše Android aplikacije
+- Uklonite loše delegacije naloga
 
 ## References
 
 - [https://www.youtube-nocookie.com/embed/6AsVUS79gLw](https://www.youtube-nocookie.com/embed/6AsVUS79gLw) - Matthew Bryant - Hacking G Suite: The Power of Dark Apps Script Magic
-- [https://www.youtube.com/watch?v=KTVHLolz6cE](https://www.youtube.com/watch?v=KTVHLolz6cE) - Mike Felch and Beau Bullock - OK Google, How do I Red Team GSuite?
+- [https://www.youtube.com/watch?v=KTVHLolz6cE](https://www.youtube.com/watch?v=KTVHLolz6cE) - Mike Felch i Beau Bullock - OK Google, Kako da Red Team GSuite?
 
 {{#include ../../banners/hacktricks-training.md}}
-
-
-
-