-
Notifications
You must be signed in to change notification settings - Fork 220
Issues: DataDog/stratus-red-team
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
Attack technique: Opening an ingress port on an NSG
kind/new-technique
platform/azure
#130
opened Jun 13, 2022 by
christophetd
updated Jun 13, 2022
GCP: Enumeration of IAM policies of storage buckets through gsutil ls -L
kind/new-technique
platform/gcp
#151
opened Jul 28, 2022 by
christophetd
updated Jul 28, 2022
AWS Resource Tagging as an Optional Parameter to Detonate
good first issue
Good for newcomers
kind/enhancement
New feature or request
#194
opened Sep 30, 2022 by
christophetd
updated Sep 30, 2022
K8s provider: support KUBECONFIG environment variable containing multiple paths
good first issue
Good for newcomers
kind/bug
Something isn't working
platform/k8s
status/confirmed
#162
opened Aug 15, 2022 by
raesene
updated Jan 3, 2023
Persistence through OS patch
kind/new-technique
platform/gcp
#314
opened Feb 5, 2023 by
JOSHUAJEBARAJ
updated Apr 26, 2023
Add note to "GCP Service Accounts impersonation " on logging
good first issue
Good for newcomers
kind/documentation
Improvements or additions to documentation
kind/enhancement
New feature or request
platform/gcp
#159
opened Aug 5, 2022 by
christophetd
updated Jun 26, 2023
Backdoor an S3 Bucket via its Bucket Policy - use of an account ID linked to AWS
good first issue
Good for newcomers
kind/enhancement
New feature or request
platform/aws
status/confirmed
#145
opened Jul 18, 2022 by
m4wk
updated Feb 5, 2024
New attack technique: Snapshot existing volume and attach to compromised EC2 instance
kind/new-technique
platform/aws
#485
opened Mar 1, 2024 by
christophetd
updated Mar 1, 2024
New attack technique: VMAccess Extension to add SSH keys to VMs
kind/new-technique
platform/azure
#486
opened Mar 1, 2024 by
christophetd
updated Mar 1, 2024
k8s.persistence.create-token on GKE/EKS: misleading success message
good first issue
Good for newcomers
kind/enhancement
New feature or request
#163
opened Aug 15, 2022 by
raesene
updated Apr 4, 2024
Backdoor AWS account using "guest" role in Cognito Identity Pool
kind/new-technique
platform/aws
#450
opened Dec 12, 2023 by
christophetd
updated Apr 4, 2024
Programmatic usage: allow passing a specific context for detonation
kind/enhancement
New feature or request
#545
opened Jul 30, 2024 by
christophetd
updated Jul 30, 2024
New attack techniques: Kubernetes
kind/new-technique
platform/k8s
#550
opened Aug 8, 2024 by
micahhausler
updated Aug 12, 2024
New attack technique: Modify Startup Scripts in Azure VM Custom Data
kind/new-technique
platform/azure
#532
opened Jul 2, 2024 by
siigil
updated Aug 27, 2024
New attack technique: Login via Azure Serial Console
kind/new-technique
platform/azure
#533
opened Jul 2, 2024 by
siigil
updated Aug 27, 2024
New attack technique: Use GCP OSConfig (VM Manager) to Execute Code
kind/new-technique
platform/gcp
#534
opened Jul 2, 2024 by
siigil
updated Aug 27, 2024
New attack technique: Use GCP OSLogin to Push SSH Keys
kind/new-technique
platform/gcp
#536
opened Jul 2, 2024 by
siigil
updated Aug 27, 2024
New attack technique: Modify Startup Scripts in GCP Compute Metadata
kind/new-technique
platform/gcp
#537
opened Jul 2, 2024 by
siigil
updated Aug 27, 2024
Add JSON output
kind/enhancement
New feature or request
#241
opened Oct 18, 2022 by
christophetd
updated Aug 27, 2024
Document permissions required to detonate each attack technique
kind/enhancement
New feature or request
#555
opened Aug 27, 2024 by
christophetd
updated Aug 27, 2024
New attack technnique: Exfiltrate disk of Azure VM by snapshotting it
kind/new-technique
platform/azure
priority/seen-in-the-wild
#510
opened Apr 10, 2024 by
christophetd
updated Aug 27, 2024
New attack technique: SendSerialConsoleSSHPublicKey
kind/new-technique
platform/aws
priority/seen-in-the-wild
#487
opened Mar 1, 2024 by
christophetd
updated Aug 27, 2024
Azure execution through serial console
kind/new-technique
platform/azure
priority/seen-in-the-wild
#410
opened Sep 15, 2023 by
christophetd
updated Aug 27, 2024
Previous Next
ProTip!
no:milestone will show everything without a milestone.