Skill

performing-gcp-penetration-testing-with-gcpbucketbrute

From asi

Performs GCP penetration testing using GCPBucketBrute: enumerates storage buckets, tests permissions, audits IAM for privilege escalation paths, and reviews service accounts. Useful for security assessments.

GCP

Python

security

npx claudepluginhub plurigrid/asi --plugin asi

Tool Access

This skill uses the workspace's default tool permissions.

Preview

This skill covers Google Cloud Platform security testing using GCPBucketBrute for storage bucket enumeration and access permission testing, combined with gcloud CLI IAM enumeration to identify privilege escalation paths. The approach tests for publicly accessible buckets, overly permissive IAM bindings, and service account key exposure.

SKILL.md

Similar Skills

performing-gcp-penetration-testing-with-gcpbucketbrute

5.9k

Performs GCP penetration testing with GCPBucketBrute: enumerates storage buckets, analyzes gcloud IAM privilege escalation paths, audits service account permissions. For security assessments.

3 files

cybersecurity-skills

performing-gcp-penetration-testing-with-gcpbucketbrute

Performs GCP penetration testing with GCPBucketBrute: enumerates storage buckets, analyzes gcloud IAM privilege escalation paths, and audits service account permissions. Useful for cloud security assessments.

3 files

cybersecurity-skills-zh

cloud-penetration-testing

36.4k

Performs authorized penetration tests on Azure, AWS, and GCP infrastructure: reconnaissance, authentication, enumeration, privilege escalation, and reporting.

1 file

antigravity-awesome-skills

Stats

Parent Repo Stars16

Parent Repo Forks5

Last CommitApr 4, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Performing GCP Penetration Testing with GCPBucketBrute

Overview

When to Use

When conducting security assessments that involve performing gcp penetration testing with gcpbucketbrute

When following incident response procedures for related security events

When performing scheduled security testing or auditing activities

When validating security controls through hands-on testing

Prerequisites

Python 3.8+ with google-cloud-storage library

GCPBucketBrute installed from RhinoSecurityLabs GitHub

gcloud CLI authenticated with test credentials

Authorized penetration testing scope for target GCP project

google-api-python-client and google-auth libraries

Steps

Enumerate Storage Buckets — Use GCPBucketBrute with keyword permutations to discover accessible GCP storage buckets

Test Bucket Permissions — Call TestIamPermissions API on each discovered bucket to determine read/write/admin access levels

Audit IAM Bindings — Enumerate project-level IAM policies to identify overly permissive role bindings

Check Service Account Keys — Identify service accounts with user-managed keys and test for privilege escalation via impersonation

Test Privilege Escalation Paths — Check for iam.serviceAccounts.actAs, setIamPolicy, and other privilege escalation vectors

Generate Findings Report — Produce a structured security assessment with risk severity ratings

Expected Output

JSON report of discovered buckets with permission levels

IAM privilege escalation path analysis

Service account security assessment

Risk-scored findings with remediation recommendations