Quick Start Security for GitHub Free
Thank you!
We got your information.
Coralogix Extension For GitHub Free Includes:
Dashboards - 5
Gain instantaneous visualization of all your GitHub Free data.
Alerts - 9
Stay on top of GitHub Free key performance metrics. Keep everyone in the know with integration with Slack, PagerDuty and more.
Github Free - A repository is publicly available
A repository was created or modified be publicly available. Public repositories expose all there content freely on Github. Impact If the code wasn't meant to be public, it's is considered a data leak and can greatly harm the organization. Mitigation Verify that the repository was meant to be public, if not, configure it to be private. MITRE Tactic: TA0009 MITRE Technique: T1213 MITRE Sub-technique: 003
An admin was removed
A removed admin should be inspected and verified as legitimate. Impact An adversary will want to remove an organization admin to revoke access and disrupt normal operations. Mitigation Verify that the remove operation and the admin performing it were legitimate. MITRE Tactic: TA0040 MITRE Technique: T1531
A member was removed
A removed member should be inspected and verified as legitimate. Impact An adversary will want to remove an organization member to revoke access from a user and disrupt normal operations. Mitigation Verify that the remove operation and the user performing it were legitimate. MITRE Tactic: TA0040 MITRE Technique: T1531
A new billing manager or hiring manager has been invited
A new Billing Manager or Hiring Manager that were invited should be inspected and verified as legitimate. The alert will work only with the Webhook integration. Impact An adversary will want to add himself as an organizational manager to get access to the repositories and code base. Mitigation Verify with the owner that the the invited manager is legitimate and cancel the invitation if not. MITRE Tactic: TA0003 MITRE Technique: T1078
A new billing manager or hiring manager has been added
A new Billing Manager or Hiring Manager that were added should be inspected and verified as legitimate. Impact An adversary will want to add himself as an organizational manager to get access to the repositories and code base. Mitigation Verify with the owner that the the added manager is legitimate and remove him if not. MITRE Tactic: TA0003 MITRE Technique: T1078
A new admin was invited
A new admin that was invited should be inspected and verified as legitimate. The alert will work only with the Webhook integration. Impact An adversary will want to add himself as an organizational admin to get access to the repositories and code base. Mitigation Verify with the owner that the the invited admin is legitimate and cancel the invitation if not. MITRE Tactic: TA0003 MITRE Technique: T1078
A new admin was added
A new admin that was added should be inspected and verified as legitimate. The alert will work only with the Webhook integration. Impact An adversary will want to add himself as an organizational admin to get full access to the repositories and code base. Mitigation Verify with the owner that the the added admin is legitimate and remove him if not. MITRE Tactic: TA0003 MITRE Technique: T1078
A new member was invited
A new member that was invited should be inspected and verified as legitimate. Impact An adversary will want to add himself as an organization member to get access to their repositories and code base. Mitigation Verify with the owner that the the invited user is legitimate and cancel the invitation if not. MITRE Tactic: TA0003 MITRE Technique: T1078
A new member was added
A new member that was added should be inspected and verified as legitimate. Impact An adversary will want to add himself as an organization member to get access to their repositories and code base. Mitigation Verify with the owner that the the added user is legitimate and remove him if not. MITRE Tactic: TA0003 MITRE Technique: T1078
Integration
Learn more about Coralogix's out-of-the-box integration with GitHub Free in our documentation.