Asi Greenholts

Security Researcher at Palo Alto Networks

Tel-Aviv, Tel-Aviv District, Israel
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts
email-iconphone-icongithub-logolinkedin-logotwitter-logostackoverflow-logofacebook-logo
Join Prog.AI to see contacts

Summary

🤩
Rockstar
🎓
Top School
Asi Greenholts is a Security Researcher at Palo Alto Networks specializing in AppSec and CI/CD security, with four years of hands-on experience blending offensive and defensive techniques. He builds practical, developer-focused tooling and learning environments—most notably contributing to the open-source cicd-goat project that simulates vulnerable CI/CD pipelines and added real-world challenges and fixes for GitLab/Jenkins. Asi's background spans enterprise application security and cyber operations, including roles at Cider Security, Bank Hapoalim, and the IDF, which give him a strong operational perspective on threat modeling and incident response. He approaches research like a developer and DevOps engineer, which lets him both craft novel attack methods (e.g., GitHub Actions-based repo attacks) and design actionable mitigations for cloud application security. Based in Tel Aviv, he pairs pragmatic engineering with inventive proof-of-concept work that helps teams harden their pipelines before attackers can exploit them.
code4 years of coding experience
job4 years of employment as a software developer
bookOrt High School
github-logo-circle

Github Skills (10)

jenkins10
gitlab10
jenkins-ci10
docker10
devops10
dockers10
cicd10
security10
bash9
python5

Programming languages (7)

C#DockerfileJavaJavaScriptGoJupyter NotebookPython

Github contributions (5)

github-logo-circle
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
Role in this project:
userDevOps Engineer
Contributions:52 releases, 17 reviews, 37 commits in 9 months
Contributions summary:Asi's contributions primarily focused on improving the CI/CD environment of the `cicd-goat` repository. They addressed various issues related to GitLab and Jenkins startup, including fixing M1-related startup issues. They optimized the CI, added new challenges and updated the CI/CD configuration, including Gitlab and Jenkins setup scripts, reflecting a strong understanding of DevOps practices within the context of a vulnerable CI/CD environment.
jenkinsvulnerabledevopsctfsecurity
Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.
Contributions:1 review, 22 PRs, 24 pushes in 8 months
appsecbugbountycicdcybersecuritydevesecops
Find and Hire Top DevelopersWe’ve analyzed the programming source code of over 60 million software developers on GitHub and scored them by 50,000 skills. Sign-up on Prog,AI to search for software developers.
Request Free Trial
Asi Greenholts - Security Researcher at Palo Alto Networks