Overview
Explore common GSuite misconfigurations, prevention strategies, and bug hunting techniques in this 58-minute conference talk by Rojan Rijal at LevelUp 0x05. Gain insights into GSuite's functionality, private documents, Google Sites, and potential vulnerabilities like GSuite takeovers. Learn about the Google Bug Token API, VPS, and WFOs. Discover how to leverage Twitter and GitHub for bug bounty hunting in GSuite environments. Perfect for security professionals, bug bounty hunters, and GSuite administrators looking to enhance their understanding of GSuite security.
Syllabus
Intro
What is GSuite
How GSuite works
Private Docks
Google Sites
AG Suite Takeover
Google Bug
Token API
VPS
WFOs
Twitter
Github
Taught by
Bugcrowd