stratus-red-team icon indicating copy to clipboard operation
stratus-red-team copied to clipboard
verified publisher icon DataDog

New attack technique: Use GCP OSConfig (VM Manager) to Execute Code

Open siigil opened this issue 1 year ago • 2 comments

Use VM Manager to Execute Code: GCP https://unit42.paloaltonetworks.com/cloud-virtual-machine-attack-vectors/

Suggested tags: kind/new-technique, platform/gcp

siigil avatar Jul 02 '24 14:07 siigil

@christophetd thoughts on this? Would it be worth modelling it after one of these? https://stratus-red-team.cloud/attack-techniques/AWS/aws.discovery.ec2-enumerate-from-instance/ https://stratus-red-team.cloud/attack-techniques/AWS/aws.execution.ssm-start-session/

rileydakota avatar Mar 27 '25 23:03 rileydakota

Absolutely, I think it makes sense to implement it like aws.execution.ssm-start-session

christophetd avatar Mar 28 '25 13:03 christophetd