Back to directory
WRITEUP #2736

Vulnerable GitHub Actions Workflows Part 2: Actions That Open the Door to CI/CD Pipeline Attacks

Privilege EscalationCI/CD
byNoam Dotan
Program
-
Published
May 2, 2022
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://www.legitsecurity.com/blog/github-actions-that-open-the-door-to-cicd-pipeline-attacks
RELATED WRITEUPS
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection
Escalating From Reader To Contributor In Azure API Management
Privilege Escalation
Microsoft Windows MSI Installer - Repair to SYSTEM - A detailed journey
Privilege EscalationLocal Privilege Escalation
Hijacking SQL Server Credentials using Agent Jobs for Domain Privilege Escalation
Privilege Escalation
Revival Hijack – PyPI hijack technique exploited in the wild, puts 22K packages at risk
AI / LLMCI/CD

Built with ❤️ by Shubham Rawat