Anti-Cast: How Hackers Attack CI/CD Pipelines with Phil Miller
June 3 @ 12:00 pm – 1:00 pm EDT
How well do you know your Continuous Integration / Continuous Delivery (CI/CD) pipelines?
CI/CD pipelines often hold the keys to the kingdom. They store credentials, deploy to production, and run code with more privilege than most teams realize.
Attackers know this.
The question is whether your team does, too.
Join Phil Miller for a free one-hour training on using CI/CD across the Software Development Lifecycle (SDLC) to build offensive security tools, then learn how those same pipelines can be attacked.
You’ll build real pipelines in GitHub Actions and GitLab CI/CD, then break them by exfiltrating secrets, injecting scripts through pull request titles, pivoting across runners, and poisoning supply chains.
You’ll learn through live labs, not slides, and leave with both the attacker’s playbook and the defender’s toolkit to secure CI/CD infrastructure.
Join us for PreShow Banter™ at 11:30 AM ET
Chat with your fellow attendees in the BHIS Discord server:
https://discord.gg/bhis
in the #🔴live-chat channel
Stay up to date on our upcoming live Anti-Casts and more at https://poweredbybhis.com
Don’t forget to check out our Course Catalog for our upcoming free and affordable cybersecurity training!