Compromising a vulnerable GCP, INE-Labs GCPGoat walkthrough. Part-2

Hello Everyone, welcome back and if you haven’t checked out previous post have a quick look at here.

Since we have access info to all instances currently operating in the project through developer-vm, we must now determine how to gain access to admin-vm. We should obtain all metadata information for the VMs from the dev VM. Let’s use the command below to view the metadata for both instances.
“gcloud compute instances descript developer-vm”

The reason we were able to …

cloud gcp google cloud platform ine labs security vulnerable