GCP - API Keys Unauthenticated Enum

Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE) Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

API Ključevi

Za više informacija o API ključevima pogledajte:

GCP - API Keys Enum

OSINT tehnike

Google API ključevi se široko koriste od strane svih vrsta aplikacija koje koriste sa klijentske strane. Uobičajeno je pronaći ih u izvor kodu veb sajtova ili mrežnim zahtevima, u mobilnim aplikacijama ili jednostavno pretražujući regex-e na platformama poput GitHuba.

Regex je: AIza[0-9A-Za-z_-]{35}

Pretražujte ga, na primer, na GitHub-u sledećim putem: https://github.com/search?q=%2FAIza%5B0-9A-Za-z_-%5D%7B35%7D%2F&type=code&ref=advsearch

Proverite izvorni GCP projekat - `apikeys.keys.lookup`

Ovo je izuzetno korisno za proveru kojim GCP projektu pripada API ključ koji ste pronašli:

# If you have permissions
gcloud services api-keys lookup AIzaSyD[...]uE8Y
name: projects/5[...]6/locations/global/keys/28d[...]e0e
parent: projects/5[...]6/locations/global

# If you don't, you can still see the project ID in the error msg
gcloud services api-keys lookup AIzaSy[...]Qbkd_oYE
ERROR: (gcloud.services.api-keys.lookup) PERMISSION_DENIED: Permission 'apikeys.keys.lookup' denied on resource project.
Help Token: ARD_zUaNgNilGTg9oYUnMhfa3foMvL7qspRpBJ-YZog8RLbTjCTBolt_WjQQ3myTaOqu4VnPc5IbA6JrQN83CkGH6nNLum6wS4j1HF_7HiCUBHVN
- '@type': type.googleapis.com/google.rpc.PreconditionFailure
violations:
- subject: ?error_code=110002&service=cloudresourcemanager.googleapis.com&permission=serviceusage.apiKeys.getProjectForKey&resource=projects/89123452509
type: googleapis.com
- '@type': type.googleapis.com/google.rpc.ErrorInfo
domain: apikeys.googleapis.com
metadata:
permission: serviceusage.apiKeys.getProjectForKey
resource: projects/89123452509
service: cloudresourcemanager.googleapis.com
reason: AUTH_PERMISSION_DENIED

Brute Force API endspoints

Kao što možda ne znate koje API-je su omogućeni u projektu, bilo bi zanimljivo pokrenuti alat https://github.com/ozguralp/gmapsapiscanner i proveriti šta možete da pristupite sa API ključem.

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

PreviousGCP - Unauthenticated Enum & Access NextGCP - App Engine Unauthenticated Enum

Last updated 3 days ago

API Ključevi

Za više informacija o API ključevima pogledajte:

GCP - API Keys Enum

OSINT tehnike

Regex je: AIza[0-9A-Za-z_-]{35}

Proverite izvorni GCP projekat - apikeys.keys.lookup

Ovo je izuzetno korisno za proveru kojim GCP projektu pripada API ključ koji ste pronašli:

# If you have permissions
gcloud services api-keys lookup AIzaSyD[...]uE8Y
name: projects/5[...]6/locations/global/keys/28d[...]e0e
parent: projects/5[...]6/locations/global

# If you don't, you can still see the project ID in the error msg
gcloud services api-keys lookup AIzaSy[...]Qbkd_oYE
ERROR: (gcloud.services.api-keys.lookup) PERMISSION_DENIED: Permission 'apikeys.keys.lookup' denied on resource project.
Help Token: ARD_zUaNgNilGTg9oYUnMhfa3foMvL7qspRpBJ-YZog8RLbTjCTBolt_WjQQ3myTaOqu4VnPc5IbA6JrQN83CkGH6nNLum6wS4j1HF_7HiCUBHVN
- '@type': type.googleapis.com/google.rpc.PreconditionFailure
violations:
- subject: ?error_code=110002&service=cloudresourcemanager.googleapis.com&permission=serviceusage.apiKeys.getProjectForKey&resource=projects/89123452509
type: googleapis.com
- '@type': type.googleapis.com/google.rpc.ErrorInfo
domain: apikeys.googleapis.com
metadata:
permission: serviceusage.apiKeys.getProjectForKey
resource: projects/89123452509
service: cloudresourcemanager.googleapis.com
reason: AUTH_PERMISSION_DENIED

Brute Force API endspoints

API Ključevi

OSINT tehnike

Proverite izvorni GCP projekat - apikeys.keys.lookup

Brute Force API endspoints

API Ključevi

OSINT tehnike

Proverite izvorni GCP projekat - apikeys.keys.lookup

Brute Force API endspoints

Proverite izvorni GCP projekat - `apikeys.keys.lookup`

Proverite izvorni GCP projekat - `apikeys.keys.lookup`