SaaSHub helps you find the best software and product alternatives Learn more →
Gato Alternatives
Similar projects and alternatives to gato
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
-
athena
an open-source implementation of sequence-to-sequence based speech processing engine (by athena-team)
gato reviews and mentions
-
We Executed a Critical Supply Chain Attack on PyTorch
Yup! This is what makes this kind of attack scary and very unique to GitHub Actions. The baseline GITHUB_TOKEN just blows the door open on lateral movement via workflow_dispatch and and repository_dispatch events.
In several of our other operations, not just PyTorch, we leveraged workflow_dispatch to steal a PAT from another workflows. Developers tend to over-provision PATs so often. More often than not we'd end up with a PAT that has all scopes checked and org admin permissions. With that one could clean out all of the secrets from an organization in minutes using automated tools such as https://github.com/praetorian-inc/gato.
- gato: GitHub Self-Hosted Runner Enumeration and Attack Tool - an enumeration and attack tool that allows both blue teamers and offensive security practitioners to evaluate the blast radius of a compromised personal access token within a GitHub organization.
- Gato (Github Attack TOolkit), a tool to enumerate, attack, and defend GitHub Actions self-hosted runners
-
A note from our sponsor - SaaSHub
www.saashub.com | 5 May 2024
Stats
praetorian-inc/gato is an open source project licensed under Apache License 2.0 which is an OSI approved license.
The primary programming language of gato is Python.
Popular Comparisons
Sponsored