diff --git a/src/pentesting-cloud/gcp-security/gcp-unauthenticated-enum-and-access/gcp-api-keys-unauthenticated-enum.md b/src/pentesting-cloud/gcp-security/gcp-unauthenticated-enum-and-access/gcp-api-keys-unauthenticated-enum.md
index 3e9b4a74e..6081b6120 100644
--- a/src/pentesting-cloud/gcp-security/gcp-unauthenticated-enum-and-access/gcp-api-keys-unauthenticated-enum.md
+++ b/src/pentesting-cloud/gcp-security/gcp-unauthenticated-enum-and-access/gcp-api-keys-unauthenticated-enum.md
@@ -18,9 +18,35 @@ Regex je: **`AIza[0-9A-Za-z_-]{35}`**
 
 Pretražujte ga, na primer, na Github-u sledećim putem: [https://github.com/search?q=%2FAIza%5B0-9A-Za-z\_-%5D%7B35%7D%2F\&type=code\&ref=advsearch](https://github.com/search?q=%2FAIza%5B0-9A-Za-z_-%5D%7B35%7D%2F&type=code&ref=advsearch)
 
-### Proverite poreklo GCP projekta - `apikeys.keys.lookup`
+### Proverite poreklo GCP projekta
 
-Ovo je izuzetno korisno za proveru **kojim GCP projektu pripada API ključ koji ste pronašli**:
+Ovo je izuzetno korisno za proveru **kojim GCP projektu pripada API ključ koji ste pronašli**. Imamo različite opcije:
+
+- Kontaktirajte `https://www.googleapis.com/identitytoolkit/v3/relyingparty/getProjectConfig?key=<api-key`
+
+Zbog sažetosti, izlaz je skraćen, ali u kompletnom izlazu ID projekta se pojavljuje više od 5 puta.
+```bash
+curl -s "https://www.googleapis.com/identitytoolkit/v3/relyingparty/getProjectConfig?key=AIzaSyD[...]uE8Y"
+
+{
+"error": {
+"code": 403,
+"message": "Identity Toolkit API has not been used in project 943955951114 before or it is disabled. Enable it by visiting https://console.developers.google.com/apis/api/identitytoolkit.googleapis.com/overview?project=943955951114 then retry. If you enabled this API recently, wait a few minutes for the action to propagate to our systems and retry.",
+[...]
+```
+- Kontaktirajte `https://www.googleapis.com/identitytoolkit/v3/relyingparty/getProjectConfig?key=<api-key>`
+
+Zbog sažetosti, izlaz je skraćen, ali se u kompletnom izlazu ID projekta pojavljuje više od 5 puta.
+```bash
+curl -s "https://identitytoolkit.googleapis.com/v1/projects?key=AIzaSyD[...]uE8Y"
+
+{
+"error": {
+"code": 403,
+"message": "Identity Toolkit API has not been used in project 943955951114 before or it is disabled. Enable it by visiting https://console.developers.google.com/apis/api/identitytoolkit.googleapis.com/overview?project=943955951114 then retry. If you enabled this API recently, wait a few minutes for the action to propagate to our systems and retry.",
+[...]
+```
+- [Ovo više ne funkcioniše!] `apikeys.keys.lookup`
 ```bash
 # If you have permissions
 gcloud services api-keys lookup AIzaSyD[...]uE8Y
@@ -45,6 +71,6 @@ reason: AUTH_PERMISSION_DENIED
 ```
 ### Brute Force API endspoints
 
-Kao što možda ne znate koje su API-jeve omogućene u projektu, bilo bi zanimljivo pokrenuti alat [https://github.com/ozguralp/gmapsapiscanner](https://github.com/ozguralp/gmapsapiscanner) i proveriti **šta možete da pristupite sa API ključem.**
+Kao što možda ne znate koje API-je su omogućeni u projektu, bilo bi zanimljivo pokrenuti alat [https://github.com/ozguralp/gmapsapiscanner](https://github.com/ozguralp/gmapsapiscanner) i proveriti **šta možete da pristupite sa API ključem.**
 
 {{#include ../../../banners/hacktricks-training.md}}