mirror of
https://github.com/HackTricks-wiki/hacktricks-cloud.git
synced 2026-01-12 13:05:19 -08:00
42 lines
1.3 KiB
Markdown
42 lines
1.3 KiB
Markdown
# GCP - Workflows Enum
|
|
|
|
{{#include ../../../banners/hacktricks-training.md}}
|
|
|
|
## Basic Information
|
|
|
|
**Google Cloud Platform (GCP) Workflows** is a service that helps you automate tasks that involve **multiple steps** across Google Cloud services and other web-based services. Think of it as a way to set up a **sequence of actions** that run on their own once triggered. You can design these sequences, called workflows, to do things like process data, handle software deployments, or manage cloud resources without having to manually oversee each step.
|
|
|
|
### Encryption
|
|
|
|
Related to encryption, by default the **Google-managed encryption key is use**d but it's possible to make it use a key of by customers.
|
|
|
|
## Enumeration
|
|
|
|
> [!CAUTION]
|
|
> You can also check the output of previous executions to look for sensitive information
|
|
|
|
```bash
|
|
# List Workflows
|
|
gcloud workflows list
|
|
|
|
# Get info and yaml of an specific workflow
|
|
gcloud workflows describe <workflow-name>
|
|
|
|
# List executions
|
|
gcloud workflows executions list workflow-1
|
|
|
|
# Get execution info and output
|
|
gcloud workflows executions describe projects/<proj-number>/locations/<location>/workflows/<workflow-name>/executions/<execution-id>
|
|
```
|
|
|
|
### Privesc and Post Exploitation
|
|
|
|
{{#ref}}
|
|
../gcp-privilege-escalation/gcp-workflows-privesc.md
|
|
{{#endref}}
|
|
|
|
{{#include ../../../banners/hacktricks-training.md}}
|
|
|
|
|
|
|