Supply-chain attack attribution tactics - Track commit timestamps, contributor accounts, and IPs.
Routes are not cryptographically verified, allowing attackers to claim ownership of IP ranges they don't own. hacktricks 179 best
Shoulder surfing and credential capture techniques Malicious package in CI (npm, pip) - Scan
| # | Trick | Tool / Command | |---|-------|----------------| | 161 | Subdomain enumeration | assetfinder target.com | | 162 | Cloud bucket finder | cloud_enum -k target.com | | 163 | Waybackurls | echo target.com | waybackurls > urls.txt | | 164 | GitHub dorks | extension:pem "BEGIN RSA PRIVATE KEY" | | 165 | Shodan CLI | shodan search "apache" | | ... | ... | ... | | 179 | Passive DNS recon | dnslytics or securitytrails API | Malicious package in CI (npm
Traffic meant for a specific destination is rerouted to the attacker's network.
Malicious package in CI (npm, pip) - Scan dependency trees and lockfiles for unexpected packages.