Olivia
Online
Asi Greenholts
@TupleType
Concentrated AppSec juice • Security Researcher @PaloAltoNtwks
Joined September 2021
75 Following
188 Followers
45 Posts
@david_lisovtsev מה ההערכה שלך לגבי מתי תתחיל ההתקפה?
🚨 We know the real target behind the attack on tj-actions/changed-files!
Coinbase!
The first publicly known exploitation of the technique I presented at DEFCON 31: The GitHub Action Worm.
Read the full story:
https://t.co/IP6gdeoel5
By @omer_gil @yaronavital @_0xffd and I
New research our team released today, showing how we could push code to highly popular open source projects maintained by Google, AWS, Microsoft, & Red Hat, through a race condition in GitHub Actions.
Go hunt critical #bugbounty issues ;)
by @yaronavital
https://t.co/ATvTfexwdv
Two great talks delivered in Vegas this year by our team - again!
In this year’s hacker summer camp in LV, our Research team will stand on the @defcon & @BSidesLV stages again, to share two novel research projects we’ve been working on recently:
#HackerSummerCamp #defcon32
Thank you @HoffmanYaniv for inviting me to discuss about CI/CD security and my "Awesome CI/CD Attacks" project.
We explored challenges, solutions, and key insights in this critical area of cybersecurity.
https://t.co/p3OK2Vs0K0
Right now on stage @TupleType with “The GitHub Actions Worm: Compromising GitHub repositories through the actions dependency tree”!
Join live: https://t.co/Nu9BLR02r6
📚 tl;dr sec 234
🗡️ Awesome CI/CD Attacks @TupleType
🤖 STRIDE GPT
☁️ Non Production AWS Attack Surface @Frichette_n
🛡️ Secure defaults @ramimacisabird
🛠️ WAF bypass tool @infosec_au
💻 Hacking millions of routers @samwcyo
https://t.co/pg2TR8tNLK
I'll be speaking at @BsidesTLV !!!
Join my session about a novel supply chain attack technique abusing @github Actions intended behavior to spread a worm 🪱.
https://t.co/JC9edpaa32
@clintgibler Thank you for sharing!
What do you think is an important routine for a Security Researcher?
I think it is reading Cyber news daily.
Here are the most unique and high quality resources I've found about CI/CD attacks in the past 3 years:
https://t.co/xrE6hN1lBd
Thanks @omer_gil for the review!
Use CVE-2024-27198 to freely access internal TeamCity instances, create admin access tokens, and steal secrets and configurations - even if the server is not exposed to the internet.
How? 🧵
#1/10
Hi @BlackHatEvents - I was shocked to discover that one of your Cyber Security Trainer and Review Board Members is also an antisemitic, a terror supporter who publicly denies Hamas Terror acts. Please remove @Voulnet from his role immediately!
@tell1skivi Thank you!
@defcon just published the talk on YouTube:
https://t.co/CqVkpMwKfm
How a worm 🪱 can be used to compromise @github repositories at scale through the Actions dependency tree🌲?
The blog details a public disclosure out of many reported to #bugbounty programs
This was first reveled at @defcon 31 and @BSidesLV
https://t.co/MKEaetYtSr
The GitHub Actions Worm: Compromising GtHub repositories through the actions dependency tree!
🕜 Sat 1:30 pm PT, Track 3 at @defcon
📺 Watch live here:
https://t.co/fj1Amkf08f
Last Seen Users on Sotwe
Bokep Skandal Terbaru Indo Asia
Seen from Malaysia
แจ๊ะ แจ๊ะ
Seen from Thailand
Văn Linh
Seen from Vietnam
DOGGY STYLE
Seen from Turkey
Aaaaaa
Seen from Indonesia
Tru Kait Adult
Seen from Turkey
Abigaiil Morris 
Seen from Singapore
SANGEEEAN
Seen from Indonesia
Gülcan
Seen from Turkey
Chapinas Xxx
Seen from Guatemala
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers