{"id":19341634,"url":"https://github.com/jef/gh-audit-org-keys","last_synced_at":"2026-04-03T10:41:28.621Z","repository":{"id":38238486,"uuid":"275255318","full_name":"jef/gh-audit-org-keys","owner":"jef","description":"🔑 Provides list of public SSH keys of an organization","archived":false,"fork":false,"pushed_at":"2023-04-04T15:56:39.000Z","size":122,"stargazers_count":5,"open_issues_count":5,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-04-02T07:11:26.191Z","etag":null,"topics":["github-api","john-the-ripper","openssl","security","ssh"],"latest_commit_sha":null,"homepage":"https://jef.buzz/audit-org-keys","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jef.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":".github/FUNDING.yml","license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null},"funding":{"github":"jef","custom":["https://www.paypal.me/jxf"]}},"created_at":"2020-06-26T22:00:53.000Z","updated_at":"2024-07-13T21:52:36.000Z","dependencies_parsed_at":"2024-11-10T03:31:58.037Z","dependency_job_id":"36406b8c-efd5-4c57-87a8-c355ed558d8b","html_url":"https://github.com/jef/gh-audit-org-keys","commit_stats":null,"previous_names":["jef/audit-org-keys"],"tags_count":4,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jef%2Fgh-audit-org-keys","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jef%2Fgh-audit-org-keys/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jef%2Fgh-audit-org-keys/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jef%2Fgh-audit-org-keys/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jef","download_url":"https://codeload.github.com/jef/gh-audit-org-keys/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":250365723,"owners_count":21418735,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["github-api","john-the-ripper","openssl","security","ssh"],"created_at":"2024-11-10T03:31:49.627Z","updated_at":"2026-04-03T10:41:28.572Z","avatar_url":"https://github.com/jef.png","language":"Go","funding_links":["https://github.com/sponsors/jef","https://www.paypal.me/jxf"],"categories":[],"sub_categories":[],"readme":"# gh-audit-org-keys [![Release](https://github.com/jef/gh-audit-org-keys/actions/workflows/release.yaml/badge.svg)](https://github.com/jef/gh-vanity/actions/workflows/release.yaml)\n\nThe point of this project is to help demonstrate that users of GitHub could potentially fall victim to getting their private SSH key cracked. This based on the size and complexity of the key the user generates.\n\nPrograms like `ssh2john` from **John the Ripper** can best demonstrate how fast an SSH private key can be solved from a _not so_ complex algorithm with low key lengths (think RSA \u003c 1024 bits).\n\n## Installation\n\n1. Install the `gh` cli - see the [installation](https://github.com/cli/cli#installation)\n\n   _Installation requires a minimum version (2.0.0) of the GitHub CLI that supports extensions._\n\n2. Install this extension:\n\n   ```shell\n   gh extension install jef/gh-audit-org-keys\n   ```\n\n\u003cdetails\u003e\n\u003csummary\u003e\u003cstrong\u003eManual Installation\u003c/strong\u003e\u003c/summary\u003e\n\nRequirements: `cli/cli` and `go`.\n\n1. Clone the repository\n\n   ```shell\n   # git\n   git clone git@github.com:jef/gh-audit-org-keys.git\n\n   # GitHub CLI\n   gh repo clone jef/gh-audit-org-keys\n   ```\n\n2. `cd` into it\n\n   ```shell\n   cd gh-audit-org-keys\n   ```\n\n3. Build it\n\n   ```shell\n   make build\n   ```\n\n4. Install it locally\n\n   ```shell\n   gh extension install .\n   ```\n\u003c/details\u003e\n\n## Usage\n\nTo run:\n\n```shell\ngh audit-org-keys\n```\n\nTo upgrade:\n\n```sh\ngh extension upgrade audit-org-keys\n```\n\n### Examples\n\n- `gh audit-org-keys --organization=\"actions\"`\n- `gh audit-org-keys --organization=\"actions\" --show-users=\"all\"`\n\n### Acknowledgments\n\n- [Auditing GitHub users’ SSH key quality](https://blog.benjojo.co.uk/post/auditing-github-users-keys)\n- [Openwall - John the Ripper](https://www.openwall.com/john/)\n    - [magnumripper/JohnTheRipper](https://github.com/magnumripper/JohnTheRipper)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjef%2Fgh-audit-org-keys","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjef%2Fgh-audit-org-keys","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjef%2Fgh-audit-org-keys/lists"}