GCP Resources Collected

Secberus will utilize the following GCP API's in order to collect all the data it needs from your GCP project:

API Gateway
Batch
Certificate Manager
Cloud Domains
Cloud DNS
Cloud Functions
Cloud Key Management Service (KMS)
Cloud Resource Manager
Cloud Scheduler
Cloud SQL Admin
Compute Engine
Google Cloud Memorystore for Redis
Identity and Access Management (IAM)
Kubernetes Engine
OS Config
Secret Manager
Serverless VPC Access
Workflows

⚠️
If any of the API's are not enabled in your GCP project, you will see error messages in the Activity Log stating the scan for that particular resource could not be completed.

The following resources are actively monitored in the Secberus platform. If you need coverage for additional resources, please reach out to [email protected].

GCP Resources
AI Platform	Batch Prediction Jobs Custom Jobs Data Labeling Jobs Dataset Locations Datasets Endpoint Locations Endpoints Featurestore Locations Featurestores Hyperparameter Tuning Jobs Index Endpoints Index Locations Indexendpoint Locations Indexes Job Locations Metadata Locations Metadata Stores Model Deployment Monitoring Jobs Model Locations Models Operations Pipeline Jobs Pipeline Locations Specialist Pools Specialist Pool Locations Studies TensorBoard Locations TensorBoards Training Pipelines Vizier Locations
API Gateway	APIs Gateways
API Keys	Keys
App Engine	Apps Authorized Certificates Authorized Domains Domain Mappings Firewall Ingress Rules Instances Services Versions
Artifact Registry	Docker Images Files Locations Packages Repositories Tags Versions
Bare Metal Solution	Instances Networks NFS Shares Volume Luns Volumes
Batch	Jobs Task Groups Tasks
Beyond Corp	App Connections App Connectors App Gateways Client Connector Services Client Gateways
BigQuery	Datasets Tables
Bigtable Admin	App Profiles Backups Clusters Instances Tables
Billing	Billing Accounts Budgets Services
Binary Authorization	Assertors
Certificate Manager	Certificate Issuance Configs Certificate Map Entries Certificate Maps Certificates DNS Authorizations
Cloud Deploy	Delivery Pipelines Job Runs Releases Rollouts Targets
Cloud Error Reporting	Error Events Error Group Stats
Cloud IOT	Device Configs Device Registries Device States Devices
Cloud Resource Manager	Organizations
Cloud Scheduler	Jobs Locations
Cloud Support	Cases
Compute	Addresses Autoscalers Backend Services Disk Types Disks Firewalls Forwarding Rules Images Instance Groups Instances Interconnects Machine Types Networks Osconfig Inventories Projects Router NAT Mapping Infos Routers Routes SSL Certificates SSL Policies Subnetworks Target HTTP Proxies Target SSL Proxies URL Maps VPN Gateways Zones
Container	Clusters
Container Analysis	Occurrences
DNS	Managed Zones Policies Resource Record Sets
Domains	Registrations
Functions	Functions
IAM	Deny Policies Roles Service Account Keys Service Accounts
KMS	Crypto Key Versions Crypto Keys Ekm Connections Import Jobs Key Rings Locations
Live Stream	Channels Inputs
Logging	Metrics Sinks
Monitoring	Alert Policies
Projects
Redis	Instances
Resource Manager	Folders Organization Tag Keys Organization Tag Values Project Policies Project Tag Bindings Project Tag Keys Project Tag Values Projects Subfolders
Run	Locations Services
Secret Manager	Secrets
Security Center	Folder Findings Organization Findings Project Findings
Service Usage	Services
SQL	Instances Users
Storage	Bucket Policies Buckets
Translate	Glossaries
Video Transcoder	Job Templates Jobs
Vision	Product Reference Images Products
VM Migration	Groups Source Datacenter Connectors Source Migrating VM Clone Jobs Source Migrating VM Cutover Jobs Source Migrating VMs Source Utilization Reports Sources Target Projects
VPC Access	Connectors Locations
Web security Scanner	Scan Config Scan Run Crawled Urls Scan Config Scan Run Findings Scan Config Scan Runs Scan Configs
Workflows	Workflows