CI/CD Pipeline Poisoning Kit
$249.99
CI/CD Pipeline Poisoning Kit
nTechniques of attack against pipelines of integration continua:
n- n
- GitHub Actions — Injection via pull_request_target, workflow_run abuse, GITHUB_TOKEN scope escalation, artifact poisoning. n
- GitLab CI — Variable extraction, shared runner abuse, include directive injection, cache poisoning. n
- Jenkins — Groovy script console abuse, credential extraction via pipeline, shared library injection. n
- General — Dependency confusion attacks, build artifact tampering, secret extraction from build logs. n
- Detection — Scripts for detect if a pipeline es vulnerable a each technique antes of exploit. n
Related Tools
Cloud & Infrastructure
AWS IAM Privilege Escalation Scanner
Cloud & Infrastructure
Kubernetes RBAC Auditor
Cloud & Infrastructure
Azure AD Password Sprayer
Cloud & Infrastructure