A collection of Bash scripts to enumerate and audit GCP environments during internal security assessments or penetration tests.
- gcp-service-account-mapper.sh — Enumerates service accounts and highlights risky permissions.
- gcp_get_user_roles.sh — Lists IAM roles assigned to a user across projects and organizations.
- buckets_file_ext_counter.sh — Counts and categorizes file extensions within GCS buckets.
- enumerate_instances.sh — Retrieves GCP Compute Engine instance metadata for security review.
- buckets_audit.sh - Enumerate accessible GCS buckets
./gcp-service-account-mapper.sh [-p project_number] [-o output_file] [-h]
./get_user_roles.sh [file_with_projects_or_org_ids] [user_email]
./enumerate_instances.sh
./buckets_audit.sh [p <PROJECT_ID_OR_NUMBER>]