Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / DataDog/stratus-red-team issues and pull requests

#314 - Persistence through OS patch

Issue - State: open - Opened by JOSHUAJEBARAJ about 2 years ago
Labels: kind/new-technique, platform/gcp

#313 - Persistence through federation + re-enabling IAM access key

Issue - State: open - Opened by christophetd about 2 years ago
Labels: kind/new-technique, platform/aws, priority/seen-in-the-wild

#312 - Bump golang from 1.19.4-alpine3.16 to 1.19.5-alpine3.16

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, docker

#311 - Bump actions/setup-python from 4.4.0 to 4.5.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions

#310 - Bump step-security/harden-runner from 2.0.0 to 2.1.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions

#309 - Bump github/codeql-action from 2.1.37 to 2.2.1

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions

#308 - Bump ossf/scorecard-action from 2.0.4 to 2.1.2

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions

#307 - Bump docker/build-push-action from 3.2.0 to 4.0.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions

#306 - Bump alpine from 3.17.0 to 3.17.1

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, docker

#305 - Fix broken GCP technique

Pull Request - State: closed - Opened by christophetd about 2 years ago

#303 - Fix GCP attack technique name length (closes #294)

Pull Request - State: closed - Opened by christophetd about 2 years ago

#302 - Fix resource name lengths in Azure attack techniques (closes #301)

Pull Request - State: closed - Opened by christophetd about 2 years ago

#301 - Max length exceeded for some Azure resources

Issue - State: closed - Opened by rcobb-scwx about 2 years ago - 2 comments
Labels: kind/bug, status/confirmed, platform/azure

#300 - Update revert log message in Azure disk exfiltration attack technique

Pull Request - State: closed - Opened by christophetd about 2 years ago

#299 - Investigate failure of gcp.privilege-escalation.impersonate-service-accounts

Issue - State: closed - Opened by christophetd about 2 years ago
Labels: kind/bug, status/triage, platform/gcp

#298 - Cleanup flag should cleanup when the detonation fails

Issue - State: closed - Opened by christophetd about 2 years ago - 4 comments
Labels: kind/enhancement, good first issue

#296 - Broken gcp.privilege-escalation.impersonate-service-accounts

Issue - State: closed - Opened by christophetd about 2 years ago
Labels: kind/bug, status/confirmed, platform/gcp

#295 - Properly encapsulate providers to allow for different detonation UUIDs

Pull Request - State: closed - Opened by christophetd about 2 years ago - 2 comments
Labels: kind/enhancement

#294 - Broken gcp.persistence.create-admin-service-account

Issue - State: closed - Opened by christophetd about 2 years ago - 2 comments
Labels: kind/bug, good first issue, status/confirmed, platform/gcp

#293 - Leftover AWS resources after stratus warmup error

Issue - State: open - Opened by rollwagen about 2 years ago - 1 comment
Labels: status/confirmed

#292 - Dry-run capabilities

Issue - State: closed - Opened by sjhood about 2 years ago - 4 comments
Labels: kind/enhancement, status/evaluating

#291 - SES attack technique

Issue - State: open - Opened by christophetd about 2 years ago
Labels: kind/new-technique, platform/aws

#290 - Bump step-security/harden-runner from 1.5.0 to 2.0.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions

#289 - Bump actions/setup-python from 4.3.0 to 4.4.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions

#288 - Bump actions/checkout from 3.1.0 to 3.2.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions

#287 - Bump actions/setup-go from 3.3.0 to 3.5.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions

#286 - Bump github/codeql-action from 2.1.29 to 2.1.37

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions

#285 - Bump golang from 1.19.3-alpine3.16 to 1.19.4-alpine3.16

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, docker

#283 - Bump hashicorp/setup-terraform from 2.0.2 to 2.0.3

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, github_actions

#282 - Bump golang from 1.19.2-alpine3.16 to 1.19.3-alpine3.16

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, docker

#281 - Bump alpine from 3.16.2 to 3.17.0

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies, docker

#280 - Bump hashicorp/setup-terraform from 2.0.0 to 2.0.2

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago
Labels: dependencies, github_actions

#279 - Add Terraform linting CI check (closes #276)

Pull Request - State: closed - Opened by christophetd over 2 years ago

#277 - Bump golang from 1.19.1-alpine3.16 to 1.19.2-alpine3.16

Pull Request - State: closed - Opened by dependabot[bot] over 2 years ago
Labels: dependencies, docker

#276 - Terraform linting on PRs

Issue - State: closed - Opened by christophetd over 2 years ago
Labels: kind/enhancement, good first issue

#243 - Removed extra double quotes introduced by #224

Pull Request - State: closed - Opened by mario-areias over 2 years ago - 1 comment

#242 - Align Resource Names Created By SRT

Pull Request - State: closed - Opened by sjhood over 2 years ago - 9 comments
Labels: kind/enhancement

#241 - Add JSON output

Issue - State: open - Opened by christophetd over 2 years ago - 1 comment
Labels: kind/enhancement

#229 - Fix FAQ formatting issue

Issue - State: closed - Opened by christophetd over 2 years ago - 1 comment
Labels: kind/documentation, good first issue

#191 - Pin the version of external Terraform modules used

Issue - State: closed - Opened by christophetd over 2 years ago
Labels: kind/enhancement, good first issue

#173 - Error: Failed to query available provider packages

Issue - State: closed - Opened by prsimoes over 2 years ago - 10 comments
Labels: kind/bug, platform/aws, status/confirmed

#170 - Standardize Naming of Instances Created During Warmup Stage

Issue - State: closed - Opened by sjhood over 2 years ago - 3 comments
Labels: kind/enhancement, good first issue

#163 - k8s.persistence.create-token on GKE/EKS: misleading success message

Issue - State: open - Opened by raesene over 2 years ago - 3 comments
Labels: kind/enhancement, good first issue

#163 - k8s.persistence.create-token on GKE/EKS: misleading success message

Issue - State: open - Opened by raesene over 2 years ago - 3 comments
Labels: kind/enhancement, good first issue

#162 - K8s provider: support KUBECONFIG environment variable containing multiple paths

Issue - State: open - Opened by raesene over 2 years ago - 3 comments
Labels: kind/bug, good first issue, platform/k8s, status/confirmed

#153 - GCP: Granting a project role to an external e-mail address

Issue - State: open - Opened by christophetd over 2 years ago - 2 comments
Labels: kind/new-technique, platform/gcp

#152 - GCP: Impersonation of service accounts

Issue - State: closed - Opened by christophetd over 2 years ago - 3 comments
Labels: kind/new-technique, platform/gcp, status/mergeable

#150 - GCP: Retrieval of project/organization IAM policy

Issue - State: closed - Opened by christophetd over 2 years ago - 3 comments
Labels: kind/new-technique, platform/gcp

#149 - GCP: Add SSH key to project metadata

Issue - State: open - Opened by christophetd over 2 years ago - 5 comments
Labels: kind/new-technique, platform/gcp

#148 - GCP: Adding an SSH key to a compute VM

Issue - State: open - Opened by christophetd over 2 years ago - 3 comments
Labels: kind/new-technique, platform/gcp, priority/seen-in-the-wild

#147 - Resources created by Stratus Red Team should have an unique name

Issue - State: closed - Opened by christophetd over 2 years ago - 1 comment
Labels: good first issue, kind/performance, status/confirmed

#145 - Backdoor an S3 Bucket via its Bucket Policy - use of an account ID linked to AWS

Issue - State: open - Opened by m4wk over 2 years ago - 3 comments
Labels: kind/enhancement, good first issue, platform/aws, status/confirmed

#141 - Add warning when detonating a slow attack technique

Issue - State: closed - Opened by christophetd over 2 years ago - 1 comment
Labels: kind/enhancement, good first issue

#140 - Error running aws.exfiltration.rds-share-snapshot

Issue - State: closed - Opened by christophetd over 2 years ago
Labels: kind/bug, platform/aws, status/confirmed

#136 - New attack technique: Backdoor aws-auth ConfigMap

Pull Request - State: closed - Opened by rileydakota over 2 years ago - 5 comments
Labels: kind/new-technique, platform/k8s, platform/eks

#135 - Add stratus show terraform command

Issue - State: closed - Opened by christophetd over 2 years ago
Labels: kind/enhancement

#135 - Add stratus show terraform command

Issue - State: closed - Opened by christophetd over 2 years ago
Labels: kind/enhancement

#115 - Use Stratus in an End to End Scenario

Issue - State: closed - Opened by andrewkrug almost 3 years ago - 4 comments

#95 - Auto-generate ATT&CK coverage matrices

Issue - State: open - Opened by christophetd almost 3 years ago - 8 comments
Labels: kind/documentation, good first issue

#61 - Exfiltration through S3 Bucket replication

Issue - State: closed - Opened by christophetd about 3 years ago - 7 comments
Labels: kind/new-technique, platform/aws

#60 - Usage of ssm:StartSession on multiple instances

Issue - State: closed - Opened by christophetd about 3 years ago - 1 comment
Labels: kind/new-technique, platform/aws

#50 - Create backlog of future attack techniques

Issue - State: closed - Opened by christophetd about 3 years ago - 1 comment