Migrate to using mdbook

2026-01-10 12:13:17 -08:00 · 2024-12-31 17:04:35 +01:00
parent b9a9fed802
commit cd27cf5a2e
1373 changed files with 26143 additions and 34152 deletions
--- a/src/pentesting-cloud/gcp-security/gcp-services/gcp-cloud-shell-enum.md
+++ b/src/pentesting-cloud/gcp-security/gcp-services/gcp-cloud-shell-enum.md
@@ -0,0 +1,28 @@
+# GCP - Cloud Shell Enum
+
+{{#include ../../../banners/hacktricks-training.md}}
+
+## Basic Information
+
+Google Cloud Shell is an interactive shell environment for Google Cloud Platform (GCP) that provides you with **command-line access to your GCP resources directly from your browser or shell**. It's a managed service provided by Google, and it comes with a **pre-installed set of tools**, making it easier to manage your GCP resources without having to install and configure these tools on your local machine.\
+Moreover, its offered at **no additional cost.**
+
+**Any user of the organization** (Workspace) is able to execute **`gcloud cloud-shell ssh`** and get access to his **cloudshell** environment. However, **Service Accounts can't**, even if they are owner of the organization.
+
+There **aren't** **permissions** assigned to this service, therefore the **aren't privilege escalation techniques**. Also there **isn't any kind of enumeration**.
+
+Note that Cloud Shell can be **easily disabled** for the organization.
+
+### Post Exploitation
+
+{{#ref}}
+../gcp-post-exploitation/gcp-cloud-shell-post-exploitation.md
+{{#endref}}
+
+### Persistence
+
+{{#ref}}
+../gcp-persistence/gcp-cloud-shell-persistence.md
+{{#endref}}
+
+{{#include ../../../banners/hacktricks-training.md}}