GCP - Orgpolicy Privesc
orgpolicy
orgpolicy.policy.set
orgpolicy.policy.set
An attacker leveraging orgpolicy.policy.set can manipulate organizational policies, which will allow him to remove certain restrictions impeding specific operations. For instance, the constraint appengine.disableCodeDownload usually blocks downloading of App Engine source code. However, by using orgpolicy.policy.set, an attacker can deactivate this constraint, thereby gaining access to download the source code, despite it initially being protected.
A python script for this method can be found here.
References
Last updated