DataDog / stratus-red-team Public

Notifications You must be signed in to change notification settings
Fork 297
Star 2.3k

Code
Issues 42
Pull requests 33
Discussions
Actions
Projects
Security and quality
Insights

Additional navigation options

Code
Issues
Pull requests
Discussions
Actions
Projects
Security and quality
Insights

Pull requests: DataDog/stratus-red-team

Labels 52 Milestones 1

New pull request New

33 Open 628 Closed

Author

Filter by author

Uh oh!

There was an error while loading. Please reload this page.

Label

Filter by label

Uh oh!

There was an error while loading. Please reload this page.

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Uh oh!

There was an error while loading. Please reload this page.

Milestones

Filter by milestone

Uh oh!

There was an error while loading. Please reload this page.

Reviews

Filter by reviews

No reviews Review required Approved review Changes requested

Assignee

Filter by who’s assigned

Assigned to nobody

Uh oh!

There was an error while loading. Please reload this page.

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Pull requests list

Bump golang from 1.25.9-alpine3.22 to 1.26.3-alpine3.22 dependencies

Pull requests that update a dependency file

docker

Pull requests that update Docker code

#874 opened Jun 2, 2026 by dependabot Bot

Loading…

Bump alpine from 3.23.3 to 3.23.4 dependencies

Pull requests that update a dependency file

docker

Pull requests that update Docker code

#873 opened Jun 2, 2026 by dependabot Bot

Loading…

Add map-threat-intel-coverage skill

#872 opened May 21, 2026 by christophetd Contributor

Loading…

Add Azure Storage CPEK and CMK ransomware techniques

#861 opened May 11, 2026 by jbfeldman-dd Contributor

Loading…

Bump docker/login-action from 4.0.0 to 4.1.0 dependencies

Pull requests that update a dependency file

github_actions

Pull requests that update GitHub Actions code

#850 opened May 1, 2026 by dependabot Bot

Loading…

Bump actions/upload-artifact from 7.0.0 to 7.0.1 dependencies

Pull requests that update a dependency file

github_actions

Pull requests that update GitHub Actions code

#849 opened May 1, 2026 by dependabot Bot

Loading…

Bump github/codeql-action from 4.35.1 to 4.35.2 dependencies

Pull requests that update a dependency file

github_actions

Pull requests that update GitHub Actions code

#848 opened May 1, 2026 by dependabot Bot

Loading…

Bump docker/build-push-action from 7.0.0 to 7.1.0 dependencies

Pull requests that update a dependency file

github_actions

Pull requests that update GitHub Actions code

#847 opened May 1, 2026 by dependabot Bot

Loading…

Bump DataDog/dd-octo-sts-action from 1.0.3 to 1.0.4 dependencies

Pull requests that update a dependency file

github_actions

Pull requests that update GitHub Actions code

#846 opened May 1, 2026 by dependabot Bot

Loading…

core(config), cli(all) - Expose S3 remote state in CLI via flags, env vars, and config file

#835 opened Apr 8, 2026 by Minosity-VR Collaborator

Loading…

New attack technique: Overwrite a Cloud Function with Malicious Code (gcp.persistence.overwrite-cloud-function)

#809 opened Mar 26, 2026 by Minosity-VR Collaborator

Loading…

5 tasks done

New attack technique: Create Workload Identity Federation Pool and Provider (gcp.persistence.create-workload-identity-federation)

#808 opened Mar 26, 2026 by Minosity-VR Collaborator

Loading…

5 tasks done

New attack technique: Backdoor a Cloud Function (gcp.persistence.backdoor-cloud-function)

#807 opened Mar 26, 2026 by Minosity-VR Collaborator

Loading…

5 tasks done

New attack technique: Delete GCS Objects Individually (gcp.impact.ransomware-gcs-individual-deletion)

#806 opened Mar 26, 2026 by Minosity-VR Collaborator

Loading…

4 of 5 tasks

New attack technique: Encrypt GCS Objects Client-Side (gcp.impact.ransomware-gcs-client-side-encryption)

#805 opened Mar 26, 2026 by Minosity-VR Collaborator

Loading…

4 of 5 tasks

New attack technique: Delete All GCS Objects in Batch (gcp.impact.ransomware-gcs-batch-deletion)

#804 opened Mar 26, 2026 by Minosity-VR Collaborator

Loading…

4 of 5 tasks

New attack technique: Invoke Vertex AI Model (gcp.impact.invoke-vertex-ai-model)

#803 opened Mar 26, 2026 by Minosity-VR Collaborator

Loading…

4 of 5 tasks

New attack technique: Open Ingress Port 22 on a Firewall Rule (gcp.exfiltration.open-port-22-ingress)

#801 opened Mar 26, 2026 by Minosity-VR Collaborator

Loading…

5 tasks done

New attack technique: Backdoor a GCS Bucket via Overly Permissive IAM Policy (gcp.exfiltration.backdoor-gcs-bucket)

#800 opened Mar 26, 2026 by Minosity-VR Collaborator

Loading…

5 tasks done

New attack technique: Execute Commands on GCE Instances via OS Config Agent (gcp.execution.os-config-run-command)

#799 opened Mar 26, 2026 by Minosity-VR Collaborator

Loading…

4 of 5 tasks

New attack technique: Modify a GCE Instance Startup Script (gcp.execution.modify-gce-startup-script)

#797 opened Mar 26, 2026 by Minosity-VR Collaborator

Loading…

5 tasks done

New attack technique: Grant IAP Tunnel Access to an External Identity (gcp.execution.iap-tunnel-session)

#796 opened Mar 26, 2026 by Minosity-VR Collaborator

Loading…

5 tasks done

New technique: Exfiltrating S3 via Amazon Bedrock

#705 opened Oct 26, 2025 by myugan

Loading…

3 tasks done

feat(secretsmanager-batch-retrieve-secrets): enable negative filtering through environment variable

#704 opened Oct 10, 2025 by 0x-JP

Loading…

New technique: invoke bedrock model in multiple regions

#689 opened Jun 4, 2025 by udgover

Loading…

3 tasks done

Previous 1 2 Next

Previous Next

ProTip! Type g i on any issue or pull request to go back to the issue listing page.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!