Outils d'utilisateurs
github_leak
Différences
Cette page vous donne les différences entre la révision choisie et la version actuelle de la page.
|
github_leak [2019/10/25 12:51] M0N5T3R |
github_leak [2020/07/24 08:50] (Version actuelle) M0N5T3R |
||
|---|---|---|---|
| Ligne 1: | Ligne 1: | ||
| - | Check for known vulnerabilities in public GitHub repos, npm packages and Docker images https://snyk.io/test/ | + | FIXME **Le PAD pour proposer une amélioration à cette page :** https://pad.zenk-security.com/p/merci |
| - | A repository with 3 tools for pwn'ing websites with .git repositories available https://github.com/internetwache/GitTools | + | ====== GITHUB LEAK ====== |
| + | 🛠 Github Scraper For Static Code Analysis https://github.com/cwinfosec/github_autopwn | ||
| - | Audit git repos for secrets https://github.com/zricethezav/gitleaks | + | 🛠 Prevents you from committing secrets and credentials into git repositories |
| + | https://github.com/awslabs/git-secrets | ||
| - | Searches through git repositories for high entropy strings and secrets, digging deep into commit history https://github.com/dxa4481/truffleHog | + | 🛠 shhgit - find GitHub secrets in real time. https://github.com/eth0izzle/shhgit/ |
| + | 🛠 Check for known vulnerabilities in public GitHub repos, npm packages and Docker images https://snyk.io/test/ | ||
| - | Python script to scan Git repos for interesting strings https://github.com/Dionach/reposcanner | ||
| - | This tool is for sensitive information searching on Github https://github.com/Hell0W0rld0/Github-Hunter | + | 🛠 A repository with 3 tools for pwn'ing websites with .git repositories available https://github.com/internetwache/GitTools |
| - | Github Hunter rewritten by Golang and add new feature https://github.com/Hell0W0rld0/Github_Hunter_By_Golang | + | 🛠 Audit git repos for secrets https://github.com/zricethezav/gitleaks |
| - | A tool to capture all the git secrets by leveraging multiple open source git searching tools https://github.com/anshumanbh/git-all-secrets | + | 🛠 Searches through git repositories for high entropy strings and secrets, digging deep into commit history https://github.com/dxa4481/truffleHog |
| - | GitHound pinpoints exposed API keys on GitHub using pattern matching, commit history searching, and a unique result scoring system. A batch-catching, pattern-matching, patch-attacking secret snatcher. https://github.com/tillson/git-hound | ||
| - | Gitrob is a tool to help find potentially sensitive files pushed to public repositories on Github. Gitrob will clone repositories belonging to a user or organization down to a configurable depth and iterate through the commit history and flag files that match signatures for potentially sensitive files. The findings will be presented through a web interface for easy browsing and analysis. https://github.com/michenriksen/gitrob | + | 🛠 Python script to scan Git repos for interesting strings https://github.com/Dionach/reposcanner |
| + | |||
| + | 🛠 This tool is for sensitive information searching on Github https://github.com/Hell0W0rld0/Github-Hunter | ||
| + | |||
| + | |||
| + | 🛠 Github Hunter rewritten by Golang and add new feature https://github.com/Hell0W0rld0/Github_Hunter_By_Golang | ||
| + | |||
| + | |||
| + | 🛠 A tool to capture all the git secrets by leveraging multiple open source git searching tools https://github.com/anshumanbh/git-all-secrets | ||
| + | |||
| + | 🛠 GitHound pinpoints exposed API keys on GitHub using pattern matching, commit history searching, and a unique result scoring system. A batch-catching, pattern-matching, patch-attacking secret snatcher. https://github.com/tillson/git-hound | ||
| + | |||
| + | 🛠 Gitrob is a tool to help find potentially sensitive files pushed to public repositories on Github. Gitrob will clone repositories belonging to a user or organization down to a configurable depth and iterate through the commit history and flag files that match signatures for potentially sensitive files. The findings will be presented through a web interface for easy browsing and analysis. https://github.com/michenriksen/gitrob | ||
| + | |||
| + | |||
| + | 🛠 a tools to extract secret/private tokens from continous integration build logs on github.it would be usefull for finding secret/private tokens. https://github.com/abdilahrf/shania | ||
| + | |||
| + | |||
| + | |||
| + | 🛠 A project designed to parse public source code repositories and find various types of vulnerabilities. | ||
| + | https://github.com/IOActive/RepoSsessed | ||
github_leak.1572000666.txt.gz · Dernière modification: 2019/10/25 12:51 par M0N5T3R
Outils de la Page
Sauf mention contraire, le contenu de ce wiki est placé sous la licence suivante : CC Attribution-Share Alike 3.0 Unported
