Completed
Attacker's Dev-Container Config
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Abusing GitHub for Fun and Profit - Actions and Codespaces Security
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Infection Chain of GitHub/Netlify Abuse
- 3 Automate w/ Dev-Containers & GitHub CLI
- 4 Attacker's Dev-Container Config
- 5 Malware Abusing Codespaces
- 6 Actions Overview
- 7 GHA Marketplace
- 8 Abusing Windows Runners pt 2
- 9 List of repos with the SAME code!
- 10 Abusing Linux Runners
- 11 Abusing macOS Runners
- 12 Run nmap inside the Azure network
- 13 Reverse shell from the Runner
- 14 Pivot attacks using Runners
- 15 Malicious GitHub Actions
- 16 GHA Countermeasures
- 17 Codespaces Recommendations