All paths lead to clouds
GitOops is a tool to help attackers and defenders identify lateral movement and privilege escalation paths in GitHub organizations by abusing CI/CD pipelines and GitHub access controls.
It works by mapping relationships between a GitHub organization and environment variables in its CI/CD systems. It’ll use any Bolt-compatible graph database as backend, so you can query your attack paths with openCypher:
MATCH p=(:User{login:"alice"})-[*..5]->(v:EnvironmentVariable)
WHERE v.name =~ ".*SECRET.*"
RETURN p
![gitoops](https://cdn-0.reconshell.com/wp-content/uploads/2021/09/gitoops-1024x663.png)
GitOops takes inspiration from tools like Bloodhound and Cartography.
Check out the docs and more example queries.
Leave a Reply