GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → ovotech → gitoops

ovotech / gitoops

Licence: MIT License
all paths lead to clouds

Programming Languages

go
31211 projects - #10 most used programming language
HCL
1544 projects
python
139335 projects - #7 most used programming language

Labels

securitybloodhoundcicdredteamhacktheplanet

Projects that are alternatives of or similar to gitoops

365-Stealer
365-Stealer is a phishing simualtion tool written in python3. It can be used to execute Illicit Consent Grant Attack.
Stars: ✭ 200 (-65.46%)
Mutual labels:  redteam
terraform-provider-spinnaker
Terraform Provider to manage spinnaker pipelines
Stars: ✭ 36 (-93.78%)
Mutual labels:  cicd
DscWorkshop
Blueprint for a full featured DSC project for Push / Pull with or without CI/CD
Stars: ✭ 151 (-73.92%)
Mutual labels:  cicd
multi-semantic-release
Proof of concept that wraps semantic-release to work with monorepos.
Stars: ✭ 57 (-90.16%)
Mutual labels:  cicd
certexfil
Exfiltration based on custom X509 certificates
Stars: ✭ 18 (-96.89%)
Mutual labels:  redteam
Behold3r
👻Behold3r -- 收集指定网站的子域名,并可监控指定网站的子域名更新情况,发送变更报告至指定邮箱
Stars: ✭ 29 (-94.99%)
Mutual labels:  redteam
github-env-vars-action
🚀 GitHub Action for Environment Variables
Stars: ✭ 129 (-77.72%)
Mutual labels:  cicd
linkedinscraper
LinkedinScraper is an another information gathering tool written in python. You can scrape employees of companies on Linkedin.com and then create these employee names, titles and emails.
Stars: ✭ 22 (-96.2%)
Mutual labels:  redteam
open-c3
CICD系统/发布系统/作业平台/监控系统/故障自愈/K8S集群管理
Stars: ✭ 142 (-75.47%)
Mutual labels:  cicd
redpill
Assist reverse tcp shells in post-exploration tasks
Stars: ✭ 142 (-75.47%)
Mutual labels:  redteam
pentesting-dockerfiles
Pentesting/Bugbounty Dockerfiles.
Stars: ✭ 148 (-74.44%)
Mutual labels:  redteam
rurality
开源运维平台设计及开发样例、CMS、RBAC、python开发教程、管理系统设计及开发样例、jenkinsfile(pipeline)/ansible使用教程,一切想到的,想不到的,应有尽有
Stars: ✭ 51 (-91.19%)
Mutual labels:  cicd
Offensive-Reverse-Shell-Cheat-Sheet
Offensive Reverse Shell (Cheat Sheet)
Stars: ✭ 138 (-76.17%)
Mutual labels:  redteam
ansible-github actions runner
Ansible Role to deploy GitHub Actions self-hosted runner
Stars: ✭ 76 (-86.87%)
Mutual labels:  cicd
azure-policy-as-code
Bicep and Terraform code examples for policy-as-code workflows. Azure governance guardrails and automation - by @jesseloudon
Stars: ✭ 101 (-82.56%)
Mutual labels:  cicd
fileless-elf-exec
Execute ELF files without dropping them on disk
Stars: ✭ 237 (-59.07%)
Mutual labels:  redteam
zabbix-review-export-import
Clone of zabbix-review-export with added import object(s) feature
Stars: ✭ 36 (-93.78%)
Mutual labels:  cicd
terraform-github-repository-webhooks
Terraform module to provision webhooks on a set of GitHub repositories
Stars: ✭ 20 (-96.55%)
Mutual labels:  cicd
DiscordGo
Discord C2 for Redteam....Need a better name
Stars: ✭ 55 (-90.5%)
Mutual labels:  redteam
anti-honeypot
一款可以检测WEB蜜罐并阻断请求的Chrome插件,能够识别并阻断长亭D-sensor、墨安幻阵的部分溯源api
Stars: ✭ 38 (-93.44%)
Mutual labels:  redteam
View All Similar Projects ➔

GitOops!
😱

all paths lead to clouds


GitOops is a tool to help attackers and defenders identify lateral movement and privilege escalation paths in GitHub organizations by abusing CI/CD pipelines and GitHub access controls.

It works by mapping relationships between a GitHub organization and its CI/CD jobs and environment variables. It'll use any Bolt-compatible graph database as backend, so you can query your attack paths with openCypher:

MATCH p=(:User{login:"alice"})-[*..5]->(v:EnvironmentVariable)
WHERE v.name =~ ".*SECRET.*"
RETURN p

GitOops takes inspiration from tools like Bloodhound and Cartography.

Check out the docs, some more example queries and our BSides London talk.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].