Tags: DataDog/stratus-red-team
Tags
New technique: GCP Credential Access via Secret Manager via AccessSec… …retVersion (#625) * feat: add gcp secret manager credential access technique * fix: terraform fmt and cleanup * chore: code fixes and hygiene * chore: more code cleanup * Reflect new Go version requirements in the README * Add output to warm-up phase * Use _ as an unused parameter name * User errors.Is to compare error types * Remove unnecessary variable assignment * Enhance and autogenerate docs * staticcheck: Fix usage of deprecated GCP SDK types --------- Co-authored-by: Dakota Riley <[email protected]> Co-authored-by: Christophe Tafani-Dereeper <[email protected]>
New attack technique: Persistence through federation (#604) * add persistence sts federation token technique * add documentation for sts federation token technique * Cosmetic changes + logging improvements * Add delay for eventual consistency * terraform fmt --------- Co-authored-by: Christophe Tafani-Dereeper <[email protected]>
New Technique: Access Virtual Machine using Bastion shareable link (#583 ) * Add Azure Bastion shareable link technique * Add delay note for Bastion technique * Add techniqe documentation * Change category to persistence * Fix tf formatting * Error and string handling + technique rename * Update v2/internal/attacktechniques/azure/persistence/create-bastion-shareable-link/main.go Co-authored-by: Christophe Tafani-Dereeper <[email protected]> * Update v2/internal/attacktechniques/azure/persistence/create-bastion-shareable-link/main.go Co-authored-by: Christophe Tafani-Dereeper <[email protected]> * Cosmetic changes * Add shareable link + credentials to output * Fix error handling * autogen docs --------- Co-authored-by: Christophe Tafani-Dereeper <[email protected]> Co-authored-by: Christophe Tafani-Dereeper <[email protected]>
PreviousNext