Gavriel Fried is a Senior Cloud Security Researcher at Mitiga, where he investigates potential attacks and abuse techniques targeting cloud services and SaaS platforms. Before joining Mitiga, Gavriel held a variety of research roles spanning UEBA, deception technologies, deep packet inspection, red teaming, digital forensics, and malware analysis — essentially, if it involved breaking or analyzing things, he was probably involved. These days, his work focuses on staying one step ahead of attackers in the cloud… and occasionally reminding people that “shared responsibility” doesn’t mean “shared blame.”
Who Touched My GCP Project? Understanding the Principal Part in Cloud Audit Logs – Part 2
This second part of the blog series continues the path to understanding principals and identities in Google Cloud Platform (GCP) Audit Logs. Part one introduced core concepts around GCP logging, the different identity types, service accounts, authentication methods, and impersonation.