Material related to my talks at various conferences on using Continuous Integration tools (Jenkins, Teamcity, Go, Hudson, CruisControl) for penetration testing
I did a Week of Continuous Intrusion to highlight security issues in widely used CI Tools:
Day 1 - Jenkins (and Hudson) - http://www.labofapenetrationtester.com/2015/11/week-of-continuous-intrusion-day-1.html
Day 2 - TeamCity - http://www.labofapenetrationtester.com/2015/12/week-of-continuous-intrusion-tools-day-2.html
Day 3 - Go and CruiseControl - http://www.labofapenetrationtester.com/2015/12/week-of-continuous-intrusion-tools-day-3.html
Day 4 - Common Abuse Set, Lateral Movement and Post Exploitation - http://www.labofapenetrationtester.com/2015/12/week-of-continuous-intrusion-tools-day-4.html
Day 5 - Defense and other discussion - http://www.labofapenetrationtester.com/2015/12/week-of-continuous-intrusion-tools-day-5.html