Leveraging GitHub Actions to rotate IP addresses during password spraying attacks to bypass IP-Based blocking
The Sprayer and Catcher components are currently configured to target the Microsoft login portal and handle the response data. You'll need to modify these components to handle other targets and the response data received. Perhaps this could be made more modular in the future, but at the moments this is just a proof of concept.
GitHub takes abuse and spam of Actions seriously, and they have a dedicated team to track “spammy users.” I am not liable for any account closures due to breaches of their terms and conditions.
https://github.com/dunderhay/git-rotate