GitOops - All Paths Lead To Clouds

2021-10-09T20:30:00
ID KITPLOIT:935767582514934867
Type kitploit
Reporter KitPloit
Modified 2021-10-09T20:30:00

Description

GitOops is a tool to help attackers and defenders identify lateral movement and privilege escalation paths in GitHub organizations by abusing CI/CD pipelines and GitHub access controls.

It works by mapping relationships between a GitHub organization and its CI/CD jobs and environment variables. It'll use any Bolt-compatible graph database as backend, so you can query your attack paths with openCypher:

MATCH p=(:User{login:"alice"})-[*..5]->(v:EnvironmentVariable)  
WHERE v.name =~ ".*SECRET.*"  
RETURN p

GitOops takes inspiration from tools like Bloodhound and Cartography .

Check out the docs and more example queries .

Download Gitoops