-
Notifications
You must be signed in to change notification settings - Fork 6
/
.gitlab-ci.yml
91 lines (84 loc) · 3.79 KB
/
.gitlab-ci.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
variables:
CI_MULTI_TRIGGER:
value: ""
description: "Specify single tool, multiple tools or suit of tools as the pipeline input. Example: 'Rubeus,powershell'. (Supports Community Tools only)."
REMOTE_FILE_URL:
value: ""
description: "Specify URL for remote payload to download."
REMOTE_FILE_TYPE:
value: ""
description: "Specify the file type that will be downloaded (e.g dotNET / shellcode / PE / PS)."
PWNDROP_CURL_CMD:
value: ""
description: "cURL command for uploading artifacts (click 'Upload via cURL command' and paste here). *Make sure you are using HTTPS."
CI_PREOBFUSCATIONS:
value: "Namings-GUID-PDB,psCommnets,psVariables,psBackticks"
description: "Obfuscation techniques to implement on the source code."
OBFUSCATED_PROJECT_NAME:
value: "WindowsUpdate"
description: "Obfuscated project name for Namings-GUID-PDB technique."
CI_OBFUSCATIONS:
value: "constants,ctrlflow,refproxy,rename,resources,typescramble"
description: "Post compilation obfuscation techniques to use (supports .NET/C# only)."
CI_CONVERTERS:
value: "PEtoSHELLCODE"
description: "File type conversion methods."
SHELLCODE_ARGS:
value: ""
description: "Command line arguments used for shellcode conversion."
CI_ENCRYPTERS:
value: "b64Xor,DInjectorEncrypt,PSEncrypt,CStoPSEncrypt"
description: "Binary encoders / encrypters / packers to use."
CI_EVASIONS:
value: "amsiBypass,psReadline" #"amsiBypass,etwBypass,psLogging,psReadline,codeSign,antiDebug,unhook,rxMemAlloc,unpackDelay"
description: "Apply OS and process evasion techniques on the payload."
CI_LOADERS:
value: "b64XorRefelection,shellcode-dll,amsibypassChunker"
description: "Specify loader techniques to wrap the payload with. Some modules depend on equivalent modules from previous stages."
CI_TESTS:
value: "exe_exec,ps_invoke,defendercheck"
description: "Perform payload loading and execution tests and/or AV analysis Tests."
CI_EXECUTORS:
value: "shellcode-injection,dotNETInvoke"
description: "Generate executor to your task with specific methods."
SHELLCODE_INJECTION_TECHNIQUE:
value: "currentthread"
description: "Injection technique to use with 'shellcode-injection' (Only one choice supported)."
DOTNET_INVOKER_CMD:
value: "-h"
description: "Specify command line arguments for the dotNETInvoke executor."
CI_DEPLOYERS:
value: "Pwndrop"
description: "Specify file servers to deploy the payloads to."
CI_FORCE_REBUILD:
value: ""
description: "Gitlab will automatically download the latest successful build artifacts. If you still required to compile again, enter 'true' value."
# DOCKERFILE_BUILD_LINUX:
# value: ""
# description: "Build and push a dockerfile by specifying it's name prefix. File must be located under dockerfiles/linux."
# HEALTH_CHECK:
# value: ""
# description: "Perform health checks to the framework. OS triggers, Gitlab DNS records from Pods, Variables checks, etc."
# IMPORT_TOOLS:
# value: ""
# description: "Trigger tool import jobs to verify all tools from tools-index.json are imported to the relevant groups."
# DEPLOYMENT_INIT:
# value: ""
# description: "Initialize deployment with containers at GCR and import tools to instance. Enable if this is your first time ruuning this pipeline after Terraform deployment."
include:
#Healthchecks
- '_ci-maintain/os-triggers.yml'
- '_ci-maintain/api-tests.yml'
- '_ci-maintain/private-container-registries.yml'
#Instance and deployment maintain
- '_ci-maintain/ci-container-builders/kaniko-linux.yml'
- '_ci-maintain/tools-import.yml'
# Multi pipeline triggers YAMLs
- 'ci-multi-pipeline/multipipe-pick.yml'
stages:
- healthcheck
- featureCheck
- buildContainers
- toolsImporter
- updateToolsRef
- multiTrigger