GitHub Actions Attack Diagram
A security research diagram mapping attack paths to exploit GitHub Actions misconfigurations for red team engagements.
What is GitHub Actions Attack Diagram?
GitHub Actions Attack Diagram is a security research project that provides a visual guide to identifying and exploiting vulnerabilities in GitHub Actions workflows. It outlines attack paths from initial access to critical compromises like self-hosted runner takeover and secrets exfiltration, based on real-world red team engagements. The diagram helps security professionals understand and test for misconfigurations in CI/CD pipelines.
Security researchers, red teamers, penetration testers, and DevOps engineers focused on securing GitHub Actions workflows and CI/CD pipelines.
It offers a concise, field-tested map of attack techniques derived from actual exploits, presented at top security conferences, making it a practical resource for offensive security assessments.
Overview
The GitHub Actions Attack Diagram is a security research artifact that provides structured guidance for identifying and exploiting vulnerabilities in GitHub Actions workflows. It maps attack paths from initial access to critical outcomes like self-hosted runner takeover and secrets exfiltration, based on real-world red team engagements and public vulnerability research presented at major security conferences.
Key Features
- Attack Path Mapping — Visual diagram outlining common TTPs (Tactics, Techniques, and Procedures) for exploiting GitHub Actions misconfigurations.
- Real-World Research — Based on vulnerabilities exploited in live environments and presented at Black Hat USA 2024 and DEF CON 32.
- Resource Links — Includes references to detailed slides, blog posts, and conference talks for additional context.
- Community Updates — Encourages contributions via Issues to keep the diagram current as GitHub's configurations evolve.
Philosophy
The diagram focuses on practical, field-tested attack paths rather than being an exhaustive list, emphasizing actionable guidance for security professionals.
Related Projects
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.
