Popular repositories
-
-
nord-stream
nord-stream PublicNord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently supports Azure DevOps, GitHub and GitLab.
Repositories
- php_filter_chains_oracle_exploit Public
A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.
-
- gh-hijack-runner Public
A python script to create a fake GitHub runner and hijack pipeline jobs to leak CI/CD secrets.
- bbs Public
bbs is a router for SOCKS and HTTP proxies. It exposes a SOCKS5 (or HTTP CONNECT) service and forwards incoming requests to proxies or chains of proxies based on the request's target. Routing can be configured with a PAC script (if built with PAC support), or through a JSON file.
-
- Invoke-RunAsWithCert Public
A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.