Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Know Your Organization : Mapping Entities in Google Workspace

CyberWarFare Labs
September 25, 2022
Education
0
130

Know Your Organization : Mapping Entities in Google Workspace

c0c0n 2022 PPT

CyberWarFare Labs

September 25, 2022
Tweet

More Decks by CyberWarFare Labs

See All by CyberWarFare Labs
Introduction to Red Teaming in Hybrid Multi-Cloud Environment
cyberwarfarelabs
0
2.5k

Other Decks in Education

See All in Education
2024年度春学期 統計学 講義の進め方と成績評価について (2024. 4. 11)
akiraasano
PRO
0
100
LinkedIn
matleenalaakso
0
930
第33回 JAWS-UG札幌 クラウド女子会コラボ 勉強会
nagisa53
2
350
高可用性システム構築 - Oracle Data Guard基本編
oracle4engineer
PRO
2
1k
LTをすべき100の理由
eltociear
1
270
合理的配慮を知るワークショップ/Understanding Reasonable Accommodations (Workshop)
freee
1
1.4k
【滋賀大学データサイエンス学部】PropTech(不動産テック)における AI・データサイエンス活用
takehikohashimoto
0
4.1k
H5P-työkalut
matleenalaakso
3
32k
Copilotとして理解する生成AI利用の基本
gmoriki
0
130
Gesture-based Interaction - Lecture 8 - Next Generation User Interfaces (4018166FNR)
signer
PRO
0
1.2k
Поступление в ТОГУ 2024
pnuslide
0
37k
HyRead2324
cbtlibrary
0
120

Featured

See All Featured
RailsConf & Balkan Ruby 2019: The Past, Present, and Future of Rails at GitHub
eileencodes
125
32k
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
322
20k
A designer walks into a library…
pauljervisheath
200
23k
Visualization
eitanlees
136
14k
Imperfection Machines: The Place of Print at Facebook
scottboms
260
12k
Web Components: a chance to create the future
zenorocha
305
41k
Raft: Consensus for Rubyists
vanstee
132
6.3k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
155
14k
KATA
mclloyd
15
12k
No one is an island. Learnings from fostering a developers community.
thoeni
16
2.1k
Documentation Writing (for coders)
carmenintech
60
3.9k
How to name files
jennybc
65
93k

Transcript

  1. Know your Organization? Mapping Entities in Google WorkSpace By Manish

    Gupta & Yash Bharadwaj Copyright CyberWarFare R&D Pvt. Ltd.

  2. About us Manish Gupta • Co-Founder & CEO @CyberWarFare Labs

    • Interested in On-Prem & Cloud Offensive Information Security • Presented Research / Training at various International Conferences / Govt. Agencies Yash Bharadwaj • Co-Founder & CTO @CyberWarFare Labs • R&D in On-Prem & Enterprise Security Evasion • Presented Cyber Security Research / Training at various National / International Conferences • Twitter : @flopyash

  3. AGENDA 1. Uber Hack 2. About Google WorkSpace 3. Challenges

    4. Ideas to overcome challenges 5. Working methodology to map entities 6. Integrating with Attack Vectors 7. Extending to GUI support

  4. Uber Hack Case Study

  5. None

  6. Google WorkSpace [Previously G-Suite] • Collection of cloud computing, productivity

    & collaboration products • Large Customer Base of more than 6 Million Users • Used by Fortune 500, MNCs for day to day operations

  7. Challenges Discovery Restricted Mapping Entities Thousands of Entities (Users, Groups)

    in a single workspace account ONLY Accessible to Organization Administrators Tedious tasks to map the User / Group entities for Possible Attack Paths

  8. Ideas to Overcome Challenges Step 3 Lure the target to

    “Allow” the asked permissions with organization email Step 1 Create Application with OAuth Credential Step 2 Define the Scope to “Directory.ReadOnly” & “cloud-identity.groups.ReadOnly” Getting into Organization Google Workspace

  9. Implementation

  10. Generate OAuth Creds Obtain OAuth Creds so attacker app can

    request user’s data App follow OAuth Flow Generated OAuth Creds can be used to obtain “Client Authorization code” Directory Read Permissions Once Authorization Code is obtained, Read from the org directory Profit Use the information for identifying possible attack vectors 11.01.XX

  11. Weaponizing with Illicit Consent Grant Attack

  12. Tool Demonstration Link : https://vimeo.com/751984378

  13. None

  14. ANY QUESTIONS! [email protected] https://github.com/RedTeamOperations/GoogleWorkspaceDirectoryDump • Twitter : @cyberwarfarelab • LinkedIn

    : https://www.linkedin.com/company/cyberwarfare