GCP - Secret Manager Persistence

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

Secret Manager

Find more information about Secret Manager in:

Rotation misuse

An attacker could update the secret to:

Stop rotations so the secret won't be modified
Make rotations much less often so the secret won't be modified
Publish the rotation message to a different pub/sub
Modify the rotation code being executed. This happens in a different service, probably in a Cloud Function, so the attacker will need privileged access over the Cloud Function or any other service.

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

PreviousGCP - Non-svc Persistance NextGCP - Storage Persistence

Last updated 8 days ago