KDKomal Dhullinp0security.hashnode.dev·Oct 23, 2023 · 6 min readDetect transitive access to sensitive Google Cloud resourcesWhen trying to secure access to a specific sensitive Google Cloud resource, you’re likely familiar with the process of going to the resource’s IAM permissions page in the Cloud Console. This view will show you principals with direct permissions to ac...00
KDKomal Dhullinp0security.hashnode.dev·Oct 11, 2023 · 7 min readInvestigating Service Account Key Origins and Usage with Best PracticesService accounts can pose a security risk for your Google Cloud project if not managed properly. Because they are often highly privileged, anyone who is able to authenticate as a service account can likely take sensitive actions in your environment. ...00
KDKomal Dhullinp0security.hashnode.dev·Aug 1, 2023 · 4 min readGranting Temporary Access in Google CloudDo your cloud environments end up cluttered with excess permissions that are no longer being used? Engineers will often need access to a production cloud environment for brief periods: maybe an hour to debug a production incident or access for a week...00
