Proof of Concepts for malicious maintainers: How to Tamper with Releases built with GitHub Actions Worfklows, presented at fwd:cloudsec Europe 2025
☆85Sep 16, 2025Updated 8 months ago
Alternatives and similar repositories for release-tampering-pocs
Users that are interested in release-tampering-pocs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Prowler Studio an AI workflow that ensures Claude Code follows Prowler's guardrails to deliver consistent, tested, and PR-ready threat de…☆51May 20, 2026Updated last week
- Living Under the Land on Linux ~ Bsides Belfast/Vienna 2025☆38Nov 22, 2025Updated 6 months ago
- Static analysis for llvm☆20Mar 31, 2015Updated 11 years ago
- Daily C2 threat intelligence feed☆19May 3, 2026Updated 3 weeks ago
- Extracting Clear Text Passwords from mstsc.exe using API Hooking.☆18Nov 17, 2019Updated 6 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- CLI version of NetworkMiner (https://www.netresec.com/?page=NetworkMiner)☆13Dec 1, 2025Updated 5 months ago
- ☆18Oct 28, 2025Updated 7 months ago
- A tool to identify and remediate common misconfigurations in Active Directory Certificate Services☆18Jan 13, 2024Updated 2 years ago
- Inter-procedural analysis framework and dependency/information-flow analysis for LLVM☆19Mar 2, 2013Updated 13 years ago
- Tips, Tricks, and Scripts for Linux Post Exploitation☆37Mar 13, 2023Updated 3 years ago
- python lib for simpleMDM API☆19Jan 10, 2024Updated 2 years ago
- 🔍 SubWatch – Automated Subdomain Monitoring Script☆45Jun 13, 2025Updated 11 months ago
- Google Maps for AWS IAM☆274May 16, 2026Updated 2 weeks ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆84Aug 13, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Set of tools to audit and exploit STUN/TURN servers☆35Dec 12, 2025Updated 5 months ago
- AWS X-Ray for Covert Command & Control☆46Oct 13, 2025Updated 7 months ago
- A curated collection of Living off the Land (LotL) attack demonstrations where trusted binaries go rogue, because if it didn’t launch cal…☆37Jan 7, 2026Updated 4 months ago
- Finders Keypers: AWS KMS Encryption Key Usage and Blast Radius Finder☆48Aug 13, 2025Updated 9 months ago
- A simple pentest container equipped with common python pentest tools.☆43Jan 30, 2026Updated 3 months ago
- Proof-of-concept kernel driver that hijacks the Windows kernel extension table mechanism to preserve process notify callbacks even when a…☆97Jul 7, 2025Updated 10 months ago
- 免杀木马样本☆107Oct 11, 2025Updated 7 months ago
- Haufe Developer Blog☆10Oct 15, 2024Updated last year
- Some of my custom "tools".☆28Feb 21, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A beginner-friendly collection of Rust notes focused on Red Team Tooling • Malware Development • Systems Programming • Rust Fundamentals☆62Nov 24, 2025Updated 6 months ago
- Enable Falco to read audit logs from EKS☆11Dec 13, 2020Updated 5 years ago
- ☆29Mar 2, 2023Updated 3 years ago
- A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow☆19Jun 26, 2025Updated 11 months ago
- AI bash Command - Generate shell command(s) from natural language description using LLM (generative AI) and place on the next shell promp…☆16Apr 13, 2026Updated last month
- A frightfully intelligent algorithmic trading automaton of noble birth. Sir Reginald's prime directive: to acquire undervalued assets pos…☆43Sep 18, 2025Updated 8 months ago
- (MeetC2 a.k.a Meeting C2) - A framework abusing Google Calendar APIs.☆139Apr 6, 2026Updated last month
- Decrypt GlobalProtect configuration and cookie files.☆160Sep 10, 2024Updated last year
- ☆15Jul 20, 2023Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- A tiny CLI to help setting up npm publish workflows.☆21May 18, 2026Updated last week
- ☆121Mar 28, 2025Updated last year
- time-based user enum via Basic Auth in Azure against Autodiscover☆34Oct 3, 2024Updated last year
- ☆16Sep 18, 2023Updated 2 years ago
- Projen managed AppSync Transformer project☆13Feb 27, 2023Updated 3 years ago
- This AWS CDK app helps you migrate the simple Neo4j movies graph database to Amazon Neptune in a hands-free, fully automated way.☆14May 3, 2020Updated 6 years ago
- Windows AppLocker Driver (appid.sys) LPE☆78Jul 29, 2024Updated last year