The Google Maps API is widely used by developers to integrate features such as map embedding, geolocation, routing, and place information into applications.
However, if an API key is leaked or misconfigured without proper restrictions (e.g., domain, IP, or app whitelisting), it may be abused by attackers. Common risks include:
- Unauthorized usage leading to unexpected billing costs
- Data exposure such as sensitive geolocation or place information
- Service disruption for legitimate users due to quota exhaustion
This tool helps assess whether a discovered or leaked Google Maps API key is vulnerable to such unauthorized access.
python3 scanner.py