DevOps: Jenkins Research

We published 5 blog posts regarding our Jenkins DevOps Research:

Main 2 vulnerabilities discovered :
Tripping the Jenkins Main Security Circuit-Breaker: An Inside Look at Two Jenkins Security Vulnerabilities

Jenkins: Configuring and Securing Credentials
Configuring and Securing Credentials in Jenkins

Jenkins Plugins
Jenkins Plugins – Aladdin’s Lamp and the Sultan of Threats

LDAP & AD
Securing Jenkins: Active Directory and LDAP Services in a Jenkins Environment

Jenkins Java Web Start Agents
CyberArk Labs Research: Securing Jenkins Java Web Start Agents

3 Likes