cloud/enum/gcp-bucket-enum.yaml

id: gcp-bucket-enum

info:
  name: GCP Buckets - Cloud Enumeration
  author: initstring
  severity: info
  description: |
    Searches for open and protected buckets in GCP.
  metadata:
    verified: true
    max-request: 1
  tags: cloud,enum,cloud-enum,gcp

self-contained: true

variables:
  BaseDNS: "storage.googleapis.com"

http:
  - raw:
      - |
        GET http://{{wordlist}}.{{BaseDNS}} HTTP/1.1
        Host: {{wordlist}}.{{BaseDNS}}

    redirects: false

    attack: batteringram
    threads: 10

    matchers:
      - type: status
        name: "Open GCP Bucket"
        status:
          - 200

      - type: status
        name: "Protected GCP Bucket"
        status:
          - 403
# digest: 490a0046304402201c96ae60fa7a4b6502e37d1f0a368a06326c5d1c0621e333e1baa733a42b1a4902207412bf98d7e4aaf9b755810b30bda7827b495eae85a5607855376c0a1e1d8ab1:922c64590222798bb761d5b6d8e72950
fix formatting and verified 2023-12-07 11:42:31 +05:30			`id: gcp-bucket-enum`
adding GCP and AWS bucket enumeration 2023-02-19 13:51:00 +11:00
			`info:`
fix formatting and verified 2023-12-07 11:42:31 +05:30			`name: GCP Buckets - Cloud Enumeration`
adding GCP and AWS bucket enumeration 2023-02-19 13:51:00 +11:00			`author: initstring`
Change severity to info and update to v3 specs 2023-07-26 19:50:43 +10:00			`severity: info`
fix formatting and verified 2023-12-07 11:42:31 +05:30			`description: \|`
			`Searches for open and protected buckets in GCP.`
			`metadata:`
			`verified: true`
TemplateMan Update [Mon Jan 29 11:58:34 UTC 2024] :robot: 2024-01-29 11:58:34 +00:00			`max-request: 1`
auto tagging via templateman 2024-01-14 14:51:50 +05:30			`tags: cloud,enum,cloud-enum,gcp`
adding GCP and AWS bucket enumeration 2023-02-19 13:51:00 +11:00
			`self-contained: true`

			`variables:`
fix formatting and verified 2023-12-07 11:42:31 +05:30			`BaseDNS: "storage.googleapis.com"`
adding GCP and AWS bucket enumeration 2023-02-19 13:51:00 +11:00
Change severity to info and update to v3 specs 2023-07-26 19:50:43 +10:00			`http:`
adding GCP and AWS bucket enumeration 2023-02-19 13:51:00 +11:00			`- raw:`
lint fixes 2023-03-09 20:40:04 +05:30			`- \|`
fix formatting and verified 2023-12-07 11:42:31 +05:30			`GET http://{{wordlist}}.{{BaseDNS}} HTTP/1.1`
			`Host: {{wordlist}}.{{BaseDNS}}`

adding GCP and AWS bucket enumeration 2023-02-19 13:51:00 +11:00			`redirects: false`
fix formatting and verified 2023-12-07 11:42:31 +05:30
adding GCP and AWS bucket enumeration 2023-02-19 13:51:00 +11:00			`attack: batteringram`
			`threads: 10`
fix formatting and verified 2023-12-07 11:42:31 +05:30
adding GCP and AWS bucket enumeration 2023-02-19 13:51:00 +11:00			`matchers:`
			`- type: status`
			`name: "Open GCP Bucket"`
			`status:`
			`- 200`
fix formatting and verified 2023-12-07 11:42:31 +05:30
adding GCP and AWS bucket enumeration 2023-02-19 13:51:00 +11:00			`- type: status`
			`name: "Protected GCP Bucket"`
			`status:`
Auto Template Signing [Fri Dec 29 10:12:48 UTC 2023] :robot: 2023-12-29 10:12:48 +00:00			`- 403`
chore: sign templates 🤖 2024-12-01 13:57:55 +00:00			`# digest: 490a0046304402201c96ae60fa7a4b6502e37d1f0a368a06326c5d1c0621e333e1baa733a42b1a4902207412bf98d7e4aaf9b755810b30bda7827b495eae85a5607855376c0a1e1d8ab1:922c64590222798bb761d5b6d8e72950`