synacktiv/gh-hijack-runner external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

synacktiv/gh-hijack-runner

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/synacktiv/gh-hijack-runner)

Close

synacktiv / gh-hijack-runnerView on GitHubMore

• External links
• Readme badge

A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.

☆28Oct 13, 2024Updated last year

Alternatives and similar repositories for gh-hijack-runner

Users that are interested in gh-hijack-runner are comparing it to the libraries listed below

• AdnaneKhan / ActionsTOCTOU

  View on GitHub
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆35Jan 25, 2026Updated last month
• TinderSec / oidc-scanner-aws

  View on GitHub
  ☆49Mar 21, 2023Updated 2 years ago
• a-mess-tech / autoaudit

  View on GitHub
  Welcome to Autoaudit, a log tampering detection tool.
  ☆13Mar 19, 2024Updated last year
• the2dl / SSDT

  View on GitHub
  Stupid Simple Detection Testing
  ☆13Mar 7, 2024Updated last year
• synacktiv / nord-stream

  View on GitHub
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆316Jan 25, 2026Updated last month
• Permiso-io-tools / cloudtail

  View on GitHub
  ☆30Jan 13, 2026Updated last month
• google / ctrdac

  View on GitHub
  ☆13Jan 30, 2025Updated last year
• AdnaneKhan / gato-x

  View on GitHub
  GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.
  ☆482Updated this week
• Acceis / unisec

  View on GitHub
  Unicode Security Toolkit
  ☆40Oct 7, 2024Updated last year
• chainguard-dev / ghscan

  View on GitHub
  Scan GitHub Actions Workflow logs for IOCs
  ☆16Feb 27, 2026Updated last week
• froyo75 / SpREaD

  View on GitHub
  A collection of Terraform projects, Ansible playbooks, and roles designed to build a Red Team infrastructure.
  ☆18Jan 3, 2026Updated 2 months ago
• tenable / hidden-services-revealer

  View on GitHub
  ☆40Aug 2, 2024Updated last year
• synacktiv / DepFuzzer

  View on GitHub
  ☆93Dec 15, 2025Updated 2 months ago
• NetSPI / FuncoPop

  View on GitHub
  Tools for attacking Azure Function Apps
  ☆88Oct 28, 2025Updated 4 months ago
• f-bader / XDRStoryParser

  View on GitHub
  Visualize Microsoft Defender XDR process trees and security events
  ☆33Aug 24, 2025Updated 6 months ago
• nodyhub / zipslipper

  View on GitHub
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆48Sep 20, 2024Updated last year
• dazzyddos / GraphShell

  View on GitHub
  A command line tool to interact with Microsoft Graph API
  ☆22May 27, 2024Updated last year
• trustedsec / VerifyELF

  View on GitHub
  ☆27May 6, 2024Updated last year
• dobin / ace-firefist

  View on GitHub
  Attack chain emulator. Write recipes for initial access easily
  ☆23Feb 26, 2025Updated last year
• I3IT / Detect.Remote.ShadowSnapshot.Dump

  View on GitHub
  Detect Remote Local Credentials Dumping using a Shadow Snapshot
  ☆32Jan 27, 2025Updated last year
• AdnaneKhan / ActionsCacheBlasting

  View on GitHub
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆21Mar 9, 2025Updated 11 months ago
• elementsinteractive / twyn

  View on GitHub
  Security tool against dependency typosquatting attacks
  ☆54Feb 25, 2026Updated last week
• messypoutine / gravy-overflow

  View on GitHub
  A GitHub Actions Supply Chain CTF / Goat
  ☆26Jan 6, 2026Updated 2 months ago
• lutzenfried / Delegate

  View on GitHub
  Tool to perform GCP Domain Wide Delegation abuse and access Gmail and Drive data
  ☆73Oct 22, 2025Updated 4 months ago
• praetorian-inc / gato

  View on GitHub
  GitHub Actions Pipeline Enumeration and Attack Tool
  ☆733Sep 17, 2025Updated 5 months ago
• redr0nin / bloudstrike

  View on GitHub
  Linux CS bypass technique
  ☆32Feb 4, 2025Updated last year
• VIGINUM-FR / DISARM-FR

  View on GitHub
  ☆23Apr 11, 2024Updated last year
• riramar / SmuggleTP

  View on GitHub
  A straightforward tool for exploiting SMTP Smuggling vulnerabilities.
  ☆14Jul 22, 2024Updated last year
• miaouPlop / GWT-3D

  View on GitHub
  ☆24Feb 12, 2016Updated 10 years ago
• boostsecurityio / bagel

  View on GitHub
  boostsecurityio/bagel
  ☆79Feb 12, 2026Updated 3 weeks ago
• deletehead / OctoC2t

  View on GitHub
  Simple C2 using GitHub repository as comms channel.
  ☆32Oct 26, 2024Updated last year
• tdwyer / CVE-2020-8559

  View on GitHub
  This is a PoC exploit for CVE-2020-8559 Kubernetes Vulnerability
  ☆54Jul 23, 2020Updated 5 years ago
• RandoriDev / test-saml-idp

  View on GitHub
  ☆30Jul 29, 2021Updated 4 years ago
• uchi-mata / dostainer

  View on GitHub
  ☆29Jan 31, 2025Updated last year
• Permiso-io-tools / LogLicker

  View on GitHub
  Tool for obfuscating and deobfuscating data.
  ☆76Mar 20, 2024Updated last year
• c3l3si4n / subdomain_data

  View on GitHub
  Results from analyzing data gathered from 1.6 billion subdomains
  ☆32Oct 15, 2024Updated last year
• referefref / aiocrioc

  View on GitHub
  An LLM and OCR based Indicator of Compromise Extraction Tool
  ☆38Dec 4, 2024Updated last year
• boostsecurityio / lotp

  View on GitHub
  boostsecurityio/lotp
  ☆139Updated this week
• TarlogicSecurity / sepriv

  View on GitHub
  Tool to manage user privileges
  ☆31Sep 4, 2019Updated 6 years ago