Proof-of-concept code for research into GitHub Actions Cache poisoning.
☆21Mar 9, 2025Updated last year
Alternatives and similar repositories for ActionsCacheBlasting
Users that are interested in ActionsCacheBlasting are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆36Jan 25, 2026Updated last month
- boostsecurityio/lotp☆146Mar 3, 2026Updated 2 weeks ago
- Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations☆85Updated this week
- ☆16Jul 17, 2024Updated last year
- How GitHub Actions workflows can be hacked☆177Aug 23, 2024Updated last year
- The Super Vulnerable Java Application (SVJA), as demonstrated in the Roniel and DaRon Podcast Show, is an Apache Struts application desig…☆13Jan 1, 2026Updated 2 months ago
- Interactsh deployment to AWS EC2 Instance with Terraform☆11Dec 29, 2021Updated 4 years ago
- Discover DYLD_INSERT_LIBRARIES hijacks on macOS☆45Sep 15, 2022Updated 3 years ago
- ⚙ DevSecOps Kubernetes Playground ("A Hacker's Guide to Kubernetes")☆18Sep 29, 2023Updated 2 years ago
- A simple macOS debugger detection trick☆19Apr 7, 2025Updated 11 months ago
- Tricard - Malware Sandbox Fingerprinting☆23Dec 11, 2023Updated 2 years ago
- Assembler tinkering happens here. All your bytes are belong to us.☆13May 6, 2017Updated 8 years ago
- ☆91Dec 15, 2025Updated 3 months ago
- ☆192Apr 16, 2025Updated 11 months ago
- Create tar/zip archives that try to exploit zipslip vulnerability.☆48Sep 20, 2024Updated last year
- ☆12Jun 22, 2022Updated 3 years ago
- ☆27May 6, 2024Updated last year
- OpenHashAPI provides a secure method of communicating hashes and enables lightweight workflows for security practitioners and enthusiasts…☆13Oct 27, 2024Updated last year
- ☆73May 13, 2025Updated 10 months ago
- NASM Linux x86_64 pure (no deps) shared library (.so), POC for Reflective ELF SO injection☆31Aug 11, 2023Updated 2 years ago
- Golang Shlyuz Implant Implementation☆13May 23, 2025Updated 10 months ago
- Python C2 with JScript Implant☆15Nov 15, 2023Updated 2 years ago
- ☆42Nov 13, 2025Updated 4 months ago
- A C and Go /proc/pid/maps cloak of invisibilty for shared object files☆21Nov 19, 2025Updated 4 months ago
- Community curated list of templates for the erebus engine to find security vulnerabilities.☆16Jul 10, 2021Updated 4 years ago
- Finds imports that could be exploited, still requires manual analysis.☆29Nov 9, 2022Updated 3 years ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆113Jan 2, 2025Updated last year
- ☆15Jan 26, 2023Updated 3 years ago
- A BOF.NET program to split a file into smaller chunks and email it via a specified SMTP relay.☆15Jun 24, 2021Updated 4 years ago
- Simple C2 using GitHub repository as comms channel.☆32Oct 26, 2024Updated last year
- Proof-of-Concept to evade auditd by tampering via ptrace☆19Aug 3, 2023Updated 2 years ago
- Electron-Probe leverages the Node variant of the Chrome Debugging Protocol to execute JavaScript payloads inside of target Electron appli…☆31Jan 13, 2026Updated 2 months ago
- A PowerShell script designed to detect misconfigured Azure Storage Accounts that could potentially be exploited for privilege escalation …☆13Apr 25, 2024Updated last year
- A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.☆28Oct 13, 2024Updated last year
- Tool for reconnaissance of AWS cloud environments☆16Oct 9, 2023Updated 2 years ago
- LLM Testing Findings Templates☆75Feb 14, 2024Updated 2 years ago
- Introducing SQLMAP into non-HTTP services.☆13Oct 24, 2019Updated 6 years ago
- Automate the regular transfer of AIS data into a MISP Server☆10Jun 5, 2024Updated last year
- A GitHub Actions Supply Chain CTF / Goat☆26Jan 6, 2026Updated 2 months ago