gitea-mirror/hacktricks-cloud
1
0
Fork 0
mirror of https://github.com/HackTricks-wiki/hacktricks-cloud.git synced 2026-03-12 21:22:57 -07:00
Code Issues Packages Projects Releases Wiki Activity

Remove countermeasures from GCP privilege escalation doc

Browse Source 
Removed countermeasures section from GCP privilege escalation documentation.
This commit is contained in:
Ben
2026-02-09 16:16:44 -06:00
committed by GitHub
parent 0be98dc154
commit 2bb1292912
1 changed files with 0 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
src/pentesting-cloud/gcp-security/gcp-privilege-escalation/gcp-cloud-workstations-privesc.md
View File

@@ -105,11 +105,5 @@ nmap -sS -p 80,443,22 10.0.0.0/8
</details>
**Countermeasures:**
* Disable "Running as root" in the Workstation Configuration
* Do not mount `/var/run/docker.sock` — use remote builders (e.g., Cloud Build) instead
* Assign a **custom service account** with minimal permissions to workstation configurations (e.g., `roles/source.reader`, `roles/artifactregistry.reader`)
* Place the workstation project inside a **VPC Service Controls** perimeter