Gcp Public Buckets
Description
Detects Google Cloud Storage buckets that are configured to allow public access through IAM policies. Public buckets can expose sensitive data to unauthorized users and may violate security best practices that require explicit access controls.
Detection Strategy
• Reports a vulnerability when a Cloud Storage bucket's public access prevention is not set to 'enforced'
• Reports a vulnerability when bucket IAM policies include members 'allUsers' or 'allAuthenticatedUsers'
• Each public access permission found in the bucket's IAM policy will generate a separate vulnerability report
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan.If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.