-
Notifications
You must be signed in to change notification settings - Fork 28
Home
WebbinRoot edited this page May 9, 2026
·
7 revisions
GCPwn is a Google Cloud offensive security assessment framework for workspace-driven credential handling, service enumeration, artifact collection, and graph-based attack-path analysis.
- Getting Started
- Authentication Reference
- Common Use Cases
- Workspace Instructions
- CLI Module Reference
- Downloads to Disk
- Data View/Export
- IAM Enumeration and Analysis Workflow
- OpenGraph Overview and Usage
- OpenGraph - Node/Edge Tables
- OpenGraph - Default Priv Escalation Mode
- OpenGraph - IAM Conditionals
- OpenGraph - Inheritance & Include-All
- OpenGraph - Add Your Own Content
modules run enum_all --iam
modules run enum_policy_bindings --ensure-tree
modules run process_iam_bindings
modules run enum_gcp_cloud_hound_data --expand-inherited --reset --out Bloodhound_Output.jsonExport collected data:
data export csv
data export json
data export excelIf your goal is custom attack-path modeling, go directly to OpenGraph - Add Your Own Content.
- Authentication Reference
- Workspace Instructions
- CLI Module Reference
- Downloads to Disk
- Data View/Export
- IAM Enumeration and Analysis Workflow
- Troubleshooting and FAQ