Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/TheBinitGhimire/GitHub-Recon

GitHub Recon — and what you can achieve with it!
https://github.com/TheBinitGhimire/GitHub-Recon

github github-dorks github-recon github-reconnaissance information-gathering intel-gathering intelligence-gathering recon reconnaissance

Last synced: 22 days ago
JSON representation

GitHub Recon — and what you can achieve with it!

Awesome Lists containing this project

README

        

# GitHub Recon

### GitHub Recon — and what you can achieve with it!

"**GitHub Recon — and what you can achieve with it!**", or simply "**GitHub Recon**", is a topic on which I usually give talks at different events. The contents being presented and demonstrated at each event might be similar, same or updated from the predecessor event/s.

This repository is built to provide the resources focused into my talks on this topic at every event.

***

## Events
*Latest ones at the top!*
* **[null Ahmedabad Meet 18 April 2021 Monthly Meet](https://null.community/events/785-ahmedabad-monthly-meet)** - April 18 2021
* **[Hacktoberfest Online Meetup Chitwan, 2020](https://youtu.be/_TeNVnbk7Xs)** - October 20, 2020

You can find out the resources for each event in their respective directory in this repository.

***

## Presentations

| Event | Presentation | Video | Resources |
|-------|--------------|-------|-----------|
| null Ahmedabad Meet 18 April 2021 Monthly Meet | [View Here!](https://drive.google.com/file/d/1iJt235y1iEhDVvFw7wdjw9XEoVNocaqE/view?usp=sharing) | [Watch Here!](https://youtu.be/1olCbbuVXSY?t=332) | [Find Here!](2.%20null%20Ahmedabad%20Meet%2018%20April%202021%20Monthly%20Meet) |
| Hacktoberfest Online Meetup Chitwan, 2020 | [View Here!](https://drive.google.com/file/d/1EwYmulb-NVAkRAn6-IQx5Hw9oiRTau-t/view?usp=sharing) | [Watch Here!](https://youtu.be/_TeNVnbk7Xs) | [Find Here!](1.%20Hacktoberfest%20Online%20Meetup%20Chitwan%2C%202020) |

***

## Some Important Slides

### GitHub Dorks for Recon
![GitHub Dorks for Recon](assets/GitHub%20Dorks%20for%20Recon.png)

### Sample Keywords to search for
![Sample Keywords to search for](assets/Sample%20Keywords%20to%20search%20for.png)

***

## Resources
- **Some Amazing GitHub Dorks**: https://github.com/techgaun/github-dorks
- **Keywords to search for**: https://github.com/random-robbie/keywords/blob/master/keywords.txt
- **Amazing Guide to go through**: https://securitytrails.com/blog/github-dorks
- **GitHub Secrets Awareness**: https://www.facebook.com/askbuddie/photos/a.342347749650563/742592126292788/
- **Removing sensitive data from a repository**: https://docs.github.com/en/free-pro-team@latest/github/authenticating-to-github/removing-sensitive-data-from-a-repository

***

## Automated GitHub Recon
- **wraith**: https://github.com/N0MoreSecr3ts/wraith
- **GitRob**: https://github.com/michenriksen/gitrob
- **TruffleHog**: https://github.com/dxa4481/truffleHog
- **Git-Secrets**: https://github.com/awslabs/git-secrets

***

## Sample Target
- **HighlySecureOrganization/SuperSecureWebApp**: https://github.com/HighlySecureOrganization/SuperSecureWebApp

Thanks,

**Binit Ghimire**