Security News > 2024 > July > Cirrus: Open-source Google Cloud forensic collection
Cirrus is an open-source Python-based tool designed to streamline Google Cloud forensic evidence collection.
It can streamline environment access and evidence collection in investigations involving Google Workspace and GCP. The tool simplifies incident response activities and enhances an organization's security posture.
The Assistant script automates the necessary access prerequisites for a Google Cloud environment, preparing it for evidence collection by the Collector.
Designed for execution in Google Cloud Shell, the Assistant script sets the stage for the Collector, which can run from any terminal.
The Collector script uses a service account key file to authenticate to the Google Cloud environment.
This key file can be generated by the Assistant script or manually.
News URL
Related news
- Google Cloud Expands Confidential Computing Portfolio (source)
- Google Cloud to make MFA mandatory by the end of 2025 (source)
- Google Cloud to Enforce Multi-Factor Authentication by 2025 for All Users (source)
- All Google Cloud users will have to enable MFA by 2025 (source)
- Google Cloud Cybersecurity Forecast 2025: AI, geopolitics, and cybercrime take centre stage (source)
- Google's AI-Powered OSS-Fuzz Tool Finds 26 Vulnerabilities in Open-Source Projects (source)