Possibly Related Threads…

Pajeeter · 01-26-2025, 10:20 PM

1. use tools like nmap to scan for open ports on the gitLab instance look for port 80/443 for web 22 for SSH.

2. find a vulnerability maybe it's an outdated gitLab version with known cves or a weak admin password.

3. once you're in look for the CI/CD configuration files. They're usually in .gitlab-ci.yml in project repos.

4. modify the YAML files add commands to the build process maybe a backdoor or some data exfiltration.

5. force a new build to run your injected code.

6. delete the logs bro for the sake of your mother.

udy4t · 02-13-2025, 04:06 PM

How successful is this method? I kind of feel like it would very easy to detect by the developer pretty quick

This forum account is currently banned. Ban Length: (Permanent)
Ban Reason: Spamming | http://breached26tezcofqla4adzyn22notfqw...an-Appeals if you feel this is incorrect.

dvx · 04-11-2025, 08:04 PM

Thanks for this elite guide. Will now target NASA by using these HTML injection methods.

Pajeeter · 04-12-2025, 08:57 PM

(04-11-2025, 08:04 PM)dvx Wrote: Thanks for this elite guide. Will now target NASA by using these HTML injection methods.

saar it doesnt work like dis saar

Possibly Related Threads…
Thread		Author	Replies	Views	Last Post
	How To Raid/Nuke A Discord Server	jojobizzareadventure	12	513	04-12-2025, 04:57 AM Last Post: zasnityour
	Scrap Any FiveM Server	511	6	405	03-19-2025, 10:45 PM Last Post: Xanthos
	How to automatically bump a Discord server every 2 hours	nova20000	0	175	02-22-2025, 05:21 PM Last Post: nova20000
	[Tutorial] How to investigate a DDoS attack on a web server	Lumela	2	332	02-10-2025, 05:11 PM Last Post: Fsociety_Team
	EC Council CEH v12 web server and web app hacking category video file modules	M4nasCieL	9	579	01-01-2025, 05:00 AM Last Post: termit