TruffleHog GCP Analyze

TruffleHog GCP Analyze is a tool designed to map Google Cloud Platform service account key permissions and resource access for security incident response and remediation. The tool connects leaked service account key strings to their current accessible resources and effective permissions within GCP environments. The product provides hierarchical access mapping across the GCP resource hierarchy, including organization, folder, and project levels, to reveal complex access patterns and permission inheritance. It includes a dedicated permissions viewer and graph view for visualizing service account access relationships. TruffleHog GCP Analyze enables security teams to prioritize incident response by identifying non-human identities with broad access and damaging permissions. The tool identifies over-privileged roles and provides guidance for implementing least privilege principles by right-sizing credentials. The product includes direct links to the GCP console for immediate key rotation, enabling security teams to contain threats and scope incidents. It focuses on providing contextual information about leaked credentials to accelerate remediation workflows.