National Cyber Warfare Foundation (NCWF)

GitPhish – OAuth Device Code Phishing for GitHub Repos, Secrets, and CI CD
0 user ratings		2025-06-20 11:52:50
milo
Red Team (CNA)
GitPhish is an automated tool that exploits GitHub's OAuth device code flow to gain unauthorized access to repositories, secrets, and CI/CD systems. Learn how it works, how to use it, and how to mitigate this emerging phishing technique.

Darknet

Source: Darknet
Source Link: https://www.darknet.org.uk/2025/06/gitphish-oauth-device-code-phishing-for-github-repos-secrets-and-ci-cd/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Red Team (CNA)


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.