HackTricks Training
GCP Red Team Expert

HACKTRICKS GRTE

GCP RED TEAM EXPERT

Progress from foundational GCP security principles to advanced, real-world attack and defense techniques. This certification provides in-depth coverage of Google Cloud identity and access management, encryption strategies, and advanced networking defenses. You will learn how to identify, exploit, and chain misconfigurations across dozens of commonly used GCP services. The course also covers specialized Red Team and Whitebox methodologies designed for GCP environments, including red teaming within Google Workspace and effective pivoting between GCP and Google Workspace. Designed as a complete journey from beginner to expert, this certification does not require prior completion of the GCP Red Team Apprentice course.

Includes 60 days of lab access (extendable)
20+
HOURS OF VIDEO LESSONS
70+
ESTIMATED HOURS COMPLETION TIME
50+
HANDS-ON LABS TO TRAIN
1
EXAM TO PROVE YOUR KNOWLEDGE
1,099

Add lab extensions during purchase

Save up to 45%

Get Hacktricks GRTE certified

Energize your cloud security career by obtaining the prestigious HackTricks GRTE(GCP Red Team Expert) certification. This highly sought-after credential validates your expertise in cloud security and red teaming, standing out in the field and opening up new career opportunities.

Certification preview

In-depth GCP security training

Progress from foundational GCP security principles to advanced, real-world attack and defense techniques. This certification provides in-depth coverage of Google Cloud identity and access management, encryption strategies, and advanced networking defenses. You will learn how to identify, exploit, and chain misconfigurations across dozens of commonly used GCP services. The course also covers specialized Red Team and Whitebox methodologies designed for GCP environments, including red teaming within Google Workspace and effective pivoting between GCP and Google Workspace. Designed as a complete journey from beginner to expert, this certification does not require prior completion of the GCP Red Team Apprentice course.

Explore the path

PREVIEW GRTE LESSON

For you to get a feel of what this course is like we have made part of our Red Team Methodology lesson publicly available.

What our learners say

Discover how security professionals around the world are levelling up their careers with Hacktricks Training.

Víctor H. García (GRTE)

Offensive Security engineer

Halborn

Excellent certification — highly recommended. The hands-on labs are extensive and practical, pushing you to become truly comfortable navigating and exploiting GCP organizations while also equipping you with the knowledge to stay current with techniques and underlying concepts. This is one of the rare certifications where you can be confident that anyone who holds it is fully competent in the field.

Tamir Yehuda (GRTE)

Cloud Security Researcher

Varonis

This course is exceptionally well-structured. Even with prior Red Team and GCP research experience, I found the hands-on labs perfect for mastering specific GCP subjects, and the black box scenarios were a major highlight. It is an ideal starting point for beginners, but also highly valuable for pros pivoting to GCP from other clouds. It strikes a great balance between guided learning and hands-on challenge. Recommended for anyone building a solid GCP security foundation.

Javier Ferrero (GRTE)

Specialist Leader – Red Team

KPMG

What I enjoyed the most, and didn't expect to find in a certification like this, is that it's not all about attacks. Covering the configuration of services from a GCP administrator's perspective adds a lot of context. At the end of the day, to attack something properly, you first need to understand how it's built. The lab was the part I enjoyed the most. Almost 70 flags that walk you through exploiting and understanding the main Google Cloud services one by one. I think it's well structured, and if you take notes on each exercise, you can end up with a solid reference guide for escalations, persistence techniques, and post-exploitation. I also appreciated that the methodology section includes one specifically for white-box assessments, along with advice on how to gather the requirements needed to carry out this type of engagement. Overall, a certification I genuinely enjoyed and that gave me a bit more depth on GCP 😉

Vlad Petrushin (GRTE)

AI Security, Penetration Tester, Red Teamer

I can confidently say it's one of the most practical and realistic cloud security trainings out there. The course features 50+ real-life attack scenarios, covering privilege escalation, persistence, IAM abuse, lateral movement, GCS/GCF exploitation, metadata attacks, and many non-obvious GCP-specific techniques that go far beyond theory. Whether you're into offensive security, redteaming, or cloudpentesting, this course will sharpen your GCP exploitation skills and give you a serious edge in real-world engagements. If you're serious about cloud red teaming, #GRTE is a must.

Anonymous (GRTE)

I enjoyed the content in the course. I appreciate that there is videos, demos, and the content on HackTricks. It is such a helpful resource. The content is really good and the labs are challenging but fair.

Anonymous (GRTE)

Pentester

I mainly took the course because I had almost no hands-on experience with GCP and wanted something more practical than reading documentation. The labs were challenging enough to make me think, but not frustrating. What I found most valuable was seeing how different services can be abused in real scenarios and understanding the reasoning behind each attack path. I ended up taking a lot of notes that I'll probably use during future engagements. Overall, it's the type of training I wish I had when I first started looking into cloud security.

Hector Ruiz Ruiz (GRTE)

Offensive Security Engineer

After completing the GRTE, I felt it was one of the most comprehensive certifications available for offensive security in GCP. What stood out most to me was the extensive hands-on content, with a large number of labs focused on realistic attack scenarios rather than CTF-style challenges. Beyond exploitation techniques, it provides a strong Red Team methodology and covers pivoting between Google Cloud and Google Workspace, which is rarely addressed in other trainings. If you're looking to specialize in offensive operations within GCP, I consider it an excellent choice. It allowed me to go from zero to hero in GCP, a cloud provider I previously knew little about and have since come to love.

Joan Martínez / Magichk (GRTE)

Head of Cybersecurity

GRTE is one of the most complete GCP security trainings I have taken. The hands-on labs make it especially valuable, pushing you to reason through realistic cloud scenarios, understand GCP services in depth, and approach attack paths as you would in real assessments.

Jorge Belmonte (GRTE)

Head of Cybersecurity Operations

Openbank

GRTE is a very practical certification for understanding GCP security from an offensive perspective. What I found most valuable is that it helps you connect the dots between IAM, service misconfigurations, Google Workspace, and real attack paths instead of just learning isolated techniques. The labs are demanding and force you to think, enumerate, pivot, and abuse permissions in a way that feels close to real cloud assessments. I would definitely recommend it to anyone who wants to build solid hands-on confidence in GCP red teaming.