Automating Authenticated Vulnerability Scanning of GCP Hosts with Rapid7’s InsightVM

starting.html
login.jsp, scanner is ready
import base64
auth_string = "username:password"
base64.b64encode(auth_string)
# header = {"Authorization”: f“Basic {auth_string}"}
username = "bot"
ssh-pubic-key = "ssh-rsa AAA..." #insert full-key
# when using console to add ssh-key to instance
add_via_console_format = f"{key} {username}"
# when using API to add ssh-key to instance
add_via_API_format = f"{username}:{key} {username}"
See those sweet successful authentications??

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store