Proof-of-concept code for research into GitHub Actions Cache poisoning.
☆21Mar 9, 2025Updated last year
Alternatives and similar repositories for ActionsCacheBlasting
Users that are interested in ActionsCacheBlasting are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆42Jan 25, 2026Updated 5 months ago
- Supply Chain Security Research - Living Off The Pipeline tools☆156May 7, 2026Updated last month
- Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations☆87Updated this week
- ☆15Jul 17, 2024Updated last year
- How GitHub Actions workflows can be hacked☆185Aug 23, 2024Updated last year
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- The Super Vulnerable Java Application (SVJA), as demonstrated in the Roniel and DaRon Podcast Show, is an Apache Struts application desig…☆13Jan 1, 2026Updated 6 months ago
- Interactsh deployment to AWS EC2 Instance with Terraform☆12Dec 29, 2021Updated 4 years ago
- Discover DYLD_INSERT_LIBRARIES hijacks on macOS☆45Sep 15, 2022Updated 3 years ago
- A simple macOS debugger detection trick☆19Apr 7, 2025Updated last year
- Tricard - Malware Sandbox Fingerprinting☆23Dec 11, 2023Updated 2 years ago
- ☆93Dec 15, 2025Updated 6 months ago
- ☆192Apr 16, 2025Updated last year
- Create tar/zip archives that try to exploit zipslip vulnerability.☆48Sep 20, 2024Updated last year
- ☆12Jun 22, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- OpenHashAPI provides a secure method of communicating hashes and enables lightweight workflows for security practitioners and enthusiasts…☆13Oct 27, 2024Updated last year
- ☆72May 13, 2025Updated last year
- A tool for patching binaries to use specific versions of glibc☆22Jun 16, 2019Updated 7 years ago
- Golang Shlyuz Implant Implementation☆13May 23, 2025Updated last year
- Python C2 with JScript Implant☆15Nov 15, 2023Updated 2 years ago
- ☆42Nov 13, 2025Updated 7 months ago
- A C and Go /proc/pid/maps cloak of invisibilty for shared object files☆23Nov 19, 2025Updated 7 months ago
- Community curated list of templates for the erebus engine to find security vulnerabilities.☆16Jul 10, 2021Updated 4 years ago
- Finds imports that could be exploited, still requires manual analysis.☆29Nov 9, 2022Updated 3 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Planning and roadmap for future Ecosyste.ms development☆22Jun 20, 2024Updated 2 years ago
- Automated (kinda) deployment of MalRDP infrastructure with Terraform & Ansible☆12Sep 15, 2023Updated 2 years ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆114Jan 2, 2025Updated last year
- ☆16Jan 26, 2023Updated 3 years ago
- A BOF.NET program to split a file into smaller chunks and email it via a specified SMTP relay.☆17Jun 24, 2021Updated 5 years ago
- Simple C2 using GitHub repository as comms channel.☆32Oct 26, 2024Updated last year
- Swift code to run a dylib on disk☆16May 9, 2022Updated 4 years ago
- Supply Chain Security Research - Attack Trees☆10Jan 9, 2023Updated 3 years ago
- Electron-Probe leverages the Node variant of the Chrome Debugging Protocol to execute JavaScript payloads inside of target Electron appli…☆29Jan 13, 2026Updated 5 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A PowerShell script designed to detect misconfigured Azure Storage Accounts that could potentially be exploited for privilege escalation …☆13Apr 25, 2024Updated 2 years ago
- A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.☆29Oct 13, 2024Updated last year
- Tool for reconnaissance of AWS cloud environments☆16Oct 9, 2023Updated 2 years ago
- LLM Testing Findings Templates☆75Feb 14, 2024Updated 2 years ago
- Introducing SQLMAP into non-HTTP services.☆13Oct 24, 2019Updated 6 years ago
- A GitHub Actions Supply Chain CTF / Goat☆27Apr 13, 2026Updated 2 months ago
- Loads a program into a memfd and runs it.☆11May 22, 2022Updated 4 years ago