Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / 5GSEC/nimbus issues and pull requests

#171 - Container Administration Command: PreventPrivilegeExecution (M1026)

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#170 - PreventRawUnixSockets (M1035)

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#169 - Network Sniffing: ZeroTrustPolicy (M1048, FGM5033)

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#168 - Supply Chain Compromise: SBOMVerification

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#167 - Supply Chain Compromise: PreventVulnerableImageDeployment (M1016)

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#166 - Weaken Integrity: MonitorIntegrityProtection (M1047)

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#165 - AuditFileAccesses (DS0022)

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#164 - Rootkit: PreventRemoteCommandInjection (DS0008)

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#163 - AuditNetworkSessions (DS0029)

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#161 - Escape to Host: CheckSuspiciousAccessAttempts (DS0034)

Issue - State: open - Opened by nandhued 9 months ago
Labels: adapter, Intent

#160 - Escape to Host: AllowVerifiedImageRegistryOriginsOnly (DS0032)

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#159 - Escape to Host: ZeroTrustPolicy (M1048)

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#158 - Escape to Host: PreventPrivilegeExecution (M1026, M1038)

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#157 - Pre-OS Boot: HostProcessWhitelisting

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#156 - AuditProcessExecutions

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#155 - Pre-OS Boot: CheckSecureBoot

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#154 - AllowVerifiedImageRegistryOriginsOnly

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#153 - gNodeB Component Manipulation: EnsureReadOnlyVolumeMounts

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#152 - Software Deployment Tools: ProtectSystemCertBundle

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#151 - DetectInteractiveShellAccess

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#150 - NetworkMicrosegmentation

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#149 - ProcessWhitelisting

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#148 - Registration of malicious network functions: CheckUnusedAccess

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#147 - Registration of malicious network functions: APISegmentation

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent

#146 - CheckSuspiciousAccessAttempts

Issue - State: open - Opened by nandhued 9 months ago
Labels: adapter, Intent, tactic: initialAccess

#145 - Valid Accounts: IdentifyUnusedAccounts

Issue - State: open - Opened by nandhued 9 months ago
Labels: adapter, Intent, tactic: initialAccess

#144 - LimitUseOfPrivilegedAccess

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent, tactic: initialAccess

#143 - Valid Accounts: PreventCredsInManifests

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent, tactic: initialAccess

#142 - ImageSignatureVerification

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent, tactic: initialAccess

#140 - LimitSoftwareDeployment

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent, tactic: initialAccess

#138 - EnsureTLS Intent

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent, tactic: initialAccess

#136 - WAFExploitDetection Intent

Issue - State: open - Opened by nandhued 9 months ago
Labels: Intent, tactic: initialAccess

#135 - Intent to spawn Confidential Containers

Issue - State: open - Opened by nandhued 9 months ago - 1 comment

#134 - fix(CI): Fix image tag

Pull Request - State: closed - Opened by anurag-rajawat 9 months ago

#133 - chore(deps): Bump k8s.io/client-go from 0.29.1 to 0.30.1

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 1 comment
Labels: dependencies, go

#132 - feat(adapter): Add nimbus-coco adapter

Pull Request - State: closed - Opened by b0m313 9 months ago

#131 - feat(adapter): Add k8tls adapter

Pull Request - State: closed - Opened by anurag-rajawat 9 months ago

#130 - chore(deps): Bump github/codeql-action from 2 to 3

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 1 comment
Labels: dependencies, github_actions

#129 - chore(deps): Bump actions/setup-go from 4 to 5

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago
Labels: dependencies, github_actions

#128 - chore(deps): Bump apache/skywalking-eyes from a790ab8dd23a7f861c18bd6aaa9b012e3a234bce to 3ea9df11bb3a5a85665377d1fd10c02edecf2c40

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 4 comments
Labels: dependencies, github_actions

#127 - chore(deps): Bump azure/setup-helm from 3 to 4

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 2 comments
Labels: dependencies, github_actions

#126 - chore(deps): Bump github.com/google/cel-go from 0.18.2 to 0.20.1

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 6 comments
Labels: dependencies, go

#125 - chore(deps): Bump golangci/golangci-lint-action from 3 to 6

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 4 comments
Labels: dependencies, github_actions

#124 - chore(deps): Bump k8s.io/api from 0.29.1 to 0.30.1

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 2 comments
Labels: dependencies, go

#123 - chore(deps): Bump sigs.k8s.io/controller-runtime from 0.17.0 to 0.18.3

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 2 comments
Labels: dependencies, go

#122 - chore(deps): Bump k8s.io/apimachinery from 0.29.1 to 0.30.1

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 2 comments
Labels: dependencies, go

#121 - chore(deps): Bump github.com/go-logr/logr from 1.4.1 to 1.4.2

Pull Request - State: closed - Opened by dependabot[bot] 9 months ago - 2 comments
Labels: dependencies, go

#120 - [feat]: added exploit pfa intent

Pull Request - State: closed - Opened by VedRatan 9 months ago

#119 - fix(CI): Optimized workflows to build images based on file changes

Pull Request - State: closed - Opened by anurag-rajawat 9 months ago - 3 comments

#118 - updated the caldera dir

Pull Request - State: closed - Opened by VedRatan 9 months ago

#117 - [docs]: added caldera docs

Pull Request - State: closed - Opened by VedRatan 9 months ago
Labels: documentation

#116 - Suspicious IP Detection

Issue - State: open - Opened by shivaccuknox 9 months ago
Labels: adapter, Intent, tactic: initialAccess

#115 - DNS Logging: DNS Manipulation Intent

Issue - State: open - Opened by shivaccuknox 9 months ago
Labels: Intent, tactic: initialAccess

#114 - File Integrity Monitoring

Issue - State: open - Opened by shivaccuknox 9 months ago
Labels: Intent

#112 - API Logging

Issue - State: open - Opened by shivaccuknox 9 months ago
Labels: adapter, Intent, tactic: initialAccess

#111 - Least Permissive Access to Secrets

Issue - State: open - Opened by shivaccuknox 9 months ago
Labels: Intent, tactic: initialAccess

#110 - k8tls Adapter

Issue - State: closed - Opened by shivaccuknox 9 months ago - 3 comments
Labels: adapter, Intent, tactic: initialAccess

#109 - Vulnerability Scanning

Issue - State: open - Opened by shivaccuknox 9 months ago
Labels: Intent, tactic: initialAccess

#107 - added examples for params in the context of escape-to-host

Pull Request - State: closed - Opened by VedRatan 9 months ago

#103 - Add examples for container escape to host in the documentation

Issue - State: closed - Opened by shivaccuknox 10 months ago - 1 comment

#101 - ServiceMesh Adapter

Issue - State: open - Opened by shivaccuknox 10 months ago

#100 - Virtual Patch: Exploit Public Facing Applications

Issue - State: closed - Opened by shivaccuknox 10 months ago - 10 comments
Labels: adapter, Intent, tactic: initialAccess

#98 - Kyverno Adapter: Occurs Index Out of Range

Issue - State: closed - Opened by b0m313 10 months ago - 2 comments
Labels: bug

#97 - (feat): added profile params support and labels support

Pull Request - State: closed - Opened by VedRatan 10 months ago - 2 comments

#96 - (feat): added e2e tests

Pull Request - State: closed - Opened by VedRatan 11 months ago - 1 comment

#95 - E2E Testing

Issue - State: closed - Opened by VedRatan 11 months ago

#94 - Update the security intents in the context of container escape to host

Issue - State: closed - Opened by nandhued 11 months ago - 1 comment

#93 - add chainsaw tests for nimbus-kyverno adapter

Issue - State: closed - Opened by nandhued 11 months ago
Labels: test

#92 - (enhancement): added helm chart

Pull Request - State: closed - Opened by VedRatan 11 months ago

#91 - Add helm chart for nimbus-kyverno adapter

Issue - State: closed - Opened by VedRatan 11 months ago

#90 - (feat): Added exclusion logic for escape to host

Pull Request - State: closed - Opened by VedRatan 11 months ago

#89 - Add params based pss profile feature in Kyverno Adapter.

Issue - State: closed - Opened by VedRatan 11 months ago

#87 - (enhancement): Added relative dependencies for Netpol-Adapter

Pull Request - State: closed - Opened by VedRatan 11 months ago - 3 comments

#86 - Distribution of SecurityIntents.

Issue - State: open - Opened by nandhued 11 months ago

#85 - Network Segmentation: Addresses Multiple intents

Issue - State: open - Opened by nandhued 11 months ago - 4 comments
Labels: engine, Intent, tactic: initialAccess

#83 - Network Policy: DNS Manipulation Intent

Issue - State: open - Opened by nandhued 11 months ago - 2 comments

#82 - Cilium Network Policy Adapter: DNS Manipulation Intent

Issue - State: open - Opened by nandhued 11 months ago
Labels: adapter, Intent, tactic: initialAccess

#80 - Prevent Execution from tmp / log folders : Exploit Public facing applications

Issue - State: closed - Opened by nandhued 11 months ago - 1 comment
Labels: Intent

#79 - (feat): Added escape_to_host

Pull Request - State: closed - Opened by VedRatan 11 months ago - 2 comments

#78 - feat: Add various CEL to label conversions

Pull Request - State: closed - Opened by seungsoo-lee 11 months ago - 3 comments

#77 - (feat):Kyverno Adapter

Pull Request - State: closed - Opened by VedRatan 11 months ago - 5 comments

#76 - Admission Controller Adapter: Escape to Host

Issue - State: closed - Opened by nandhued 11 months ago

#74 - KubeArmor Adapter: Escape to Host

Issue - State: closed - Opened by nandhued 12 months ago

#73 - fix(core): Handle SecurityIntent update and deletion

Pull Request - State: closed - Opened by anurag-rajawat 12 months ago

#72 - Fix #59: Fix CEL bug

Pull Request - State: closed - Opened by seungsoo-lee 12 months ago

#71 - fix(core): Prevent Nimbus crash on CEL

Pull Request - State: closed - Opened by b0m313 12 months ago

#70 - Fixes #59

Pull Request - State: closed - Opened by seungsoo-lee 12 months ago - 2 comments

#69 - [Core]: Handle Kind mentioned in bindings selector

Issue - State: closed - Opened by nandhued 12 months ago - 1 comment

#68 - [Core]: Handle SecurityIntent update and deletion

Issue - State: closed - Opened by nandhued 12 months ago - 2 comments

#67 - fix(adapters): Update SwDeploymentTools KSP to include apk pkg manager

Pull Request - State: closed - Opened by anurag-rajawat 12 months ago
Labels: bug

#66 - added integration tests

Pull Request - State: closed - Opened by VedRatan 12 months ago - 2 comments
Labels: test