Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/gwen001/github-regexp

Basically a regexp over a GitHub search.
https://github.com/gwen001/github-regexp

bugbounty github go golang pentesting private regexp secrets security-tools

Last synced: about 2 months ago
JSON representation

Basically a regexp over a GitHub search.

Host: GitHub
URL: https://github.com/gwen001/github-regexp
Owner: gwen001
License: mit
Created: 2020-08-05T14:47:48.000Z (about 4 years ago)
Default Branch: master
Last Pushed: 2023-03-28T15:47:13.000Z (over 1 year ago)
Last Synced: 2024-06-26T00:36:57.205Z (3 months ago)
Topics: bugbounty, github, go, golang, pentesting, private, regexp, secrets, security-tools
Language: Go
Homepage:
Size: 28.9 MB
Stars: 62
Watchers: 7
Forks: 18
Open Issues: 0
Metadata Files:
- Readme: README.md
- Funding: .github/FUNDING.yml
- License: LICENSE.md

Awesome Lists containing this project

WebHackersWeapons - github-regexp - regexp?label=%20)||![linux](/images/linux.png)![macos](/images/apple.png)![windows](/images/windows.png)[![Go](/images/go.png)](/categorize/langs/Go.md)| (Weapons / Tools)

README

github-regexp

Basically a regexp over a GitHub search.

---

## Description

This Go tool performs the search supplied by the user on GitHub and apply the regexp also supplied by the user on all results.
This can be use to find subdomains, endpoints, passwords, api keys...

## Install

```
go install github.com/gwen001/github-regexp@latest
```

```
git clone https://github.com/gwen001/github-regexp
cd github-regexp
go install
```

## Usage

```
$ github-regexp -h

Usage of github-regexp:
-i force the regexp to be case insensitive
-k exit the program when all tokens have been disabled
-r string
regexp to search, default is SecLists secret-keywords list
-s string
search term you are looking for (required)
-t string
github token (required), can be:
• a single token
• a list of tokens separated by comma
• a file (.tokens) containing 1 token per line
if the options is not provided, the environment variable GITHUB_TOKEN is readed, it can be:
• a single token
• a list of tokens separated by comma
```

If you want to use multiple tokens, you better create a `.tokens` file in the executable directory with 1 token per line
```
token1
token2
...
```
or use an environment variable with tokens separated by comma:
```
export GITHUB_TOKEN=token1,token2...
```

Tokens are disabled when GitHub raises a rate limit alert, however they are re-enable 1mn later.
You can disable that feature by using the option `-k`.

## Todo

- fix the output bug when the file is only 1 line (strpos)
- change the order of the extra searches ?
- ?

## Changelog

**25/09/2020**
- quick mode added
- tokens can be read from any file

**23/09/2020**
- fixed an issue in the api call (params name)
- added binary

**13/08/2020**
- fixed some types & output bugs

**06/08/2020**
- disabled languages and noise searches
- added an option to display urls only
- added an option to display only the matched parts
- added an option to force the regexp to be case insensitive
- creation

---

Feel free to [open an issue](/../../issues/) if you have any problem with the script.