jan.masarik

@adiffpirate I believe @manasmbellani is right with his signature in subjack. I did a test with following test cases when I enable public dashboard to stats.masarik.sh (takeoverable cases bold): 1....

Happy to help @adiffpirate! I've went ahead and made https://github.com/EdOverflow/can-i-take-over-xyz/pull/178 to address this. :-)

I've also went ahead and added simple dockerfile as I use it with docker. You can check it out pre-build here: https://hub.docker.com/r/s14ve/altdns

I went with https://github.com/hashicorp/vault/blob/master/command/kv_helpers.go#L92 in the end instead of reimplementing the wheel with `/secret/config`.

Hey, I've just ported the code to python. Invoking the cli directly would be quite silly solution. :-) With `config` I had a small issue with permissions, as some tokens...

Hey @gkowalski-google, thanks a lot for super quick ack! All right then, I'll copy-paste it here. :-) I'm currently trying to find out how to write a policy to check...

Hey @gkowalski-google, Pardon my ignorance, but based on what I understood, the `required` mode would not check for _additional_ roles that would be granted to default service accounts, which is...

Hey @gkowalski-google 👋 , I was wondering if my assumptions are correct or not. 😅 As far as I understand, this would require ~560 _files_[1] with Config Validator as you...

Understand, thank you @gkowalski-google! Currently, the best workaround is probably to blacklist roles that we really care about, right? (such as Editor, Owner or Storage Admin)

Apologies, I had a typo there as I'm using my pre-built image `s14ve/gcpbucketbrute` just with `docker run s14ve/gcpbucketbrute ...`. The current problem is also that the Dockerfile isn't in master,...