https://github.com/josehelps/git-wild-hunt

A tool to hunt for credentials in github wild AKA git*hunt
https://github.com/josehelps/git-wild-hunt

Last synced: 28 days ago
JSON representation

A tool to hunt for credentials in github wild AKA git*hunt

• Host: GitHub
• URL: https://github.com/josehelps/git-wild-hunt
• Owner: josehelps
• License: apache-2.0
• Created: 2020-05-10T23:20:01.000Z (over 4 years ago)
• Default Branch: master
• Last Pushed: 2022-12-08T09:50:50.000Z (about 2 years ago)
• Last Synced: 2024-05-21T13:58:11.158Z (7 months ago)
• Language: Python
• Size: 54.7 MB
• Stars: 289
• Watchers: 6
• Forks: 45
• Open Issues: 7
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

• DevSecOps - https://github.com/d1vious/git-wild-hunt - wild-hunt](https://img.shields.io/github/stars/d1vious/git-wild-hunt?style=for-the-badge)| (Secrets management)
• awesome-hacking-lists - josehelps/git-wild-hunt - A tool to hunt for credentials in github wild AKA git*hunt (Python)

README

        
# git-wild-hunt

A tool to hunt for credentials in the GitHub wild AKA git*hunt

![](static/wildhunt.jpg)

### Getting started

 

1. [Install](#installation) the tool

2. [Configure](#configuration) your GitHub token

3. [Search](#github-search-examples) for credentials

4. See results `cat results.json | jq`

:tv: **Demo**

![](static/demo.gif)

### Installation 

* requirements:     `virtualenv, python3`

1. `git clone https://github.com/d1vious/git-wild-hunt && cd git-wild-hunt` clone project and cd into the project dir

2. `pip install virtualenv && virtualenv -p python3 venv && source venv/bin/activate && pip install -r requirements.txt` create virtualenv and install requirements

Continue to [configuring](#configuration) a GitHub API key

### Configuration [`git-wild-hunt.conf`](https://github.com/d1vious/git-wild-hunt/blob/master/git-wild-hunt.conf)

Make sure you set a GitHub token if you need to create one for your account follow [these](https://help.github.com/en/github/authenticating-to-github/creating-a-personal-access-token-for-the-command-line) instructions. 

```

[global]

github_token = ''

# GitHub token for searching

output = results.json

# stores matches in JSON here

log_path = git-wild-hunt.log

# Sets the log_path for the logging file

log_level = INFO

# Sets the log level for the logging

# Possible values: INFO, ERROR

regexes = regexes.json

# regexes to check the git wild hunt search against

```

### GitHub search examples

the **-s** flag accepts any GitHub [advance search](https://github.com/search/advanced) query, see some examples below

##### Find GCP JWT token files

`python git-wild-hunt.py -s "extension:json filename:creds language:JSON"`

##### Find AWS API secrets

`python git-wild-hunt.py -s "path:.aws/ filename:credentials"`

##### Find Azure JWT Token

`python git-wild-hunt.py -s "extension:json path:.azure filename:accessTokens language:JSON"`

##### Find GSUtils configs

`python git-wild-hunt.py -s "path:.gsutil filename:credstore2"`

##### Find Kubernetes config files

`python git-wild-hunt.py -s "path:.kube filename:config"`

##### Searching for Jenkins credentials.xml file

`python git-wild-hunt.py -s "extension:xml filename:credentials.xml language:XML"`

##### Find secrets in .circleci

`python git-wild-hunt.py -s "extension:yml path:.circleci filename:config language:YAML"`

##### Generic credentials.yml search 

`python git-wild-hunt.py -s "extension:yml filename:credentials.yml language:YAML"`

### Usage

```

usage: git-wild-hunt.py [-h] -s SEARCH [-c CONFIG] [-v]

optional arguments:

  -h, --help            show this help message and exit

  -s SEARCH, --search SEARCH

                        search to execute

  -c CONFIG, --config CONFIG

                        config file path

  -v, --version         shows current git-wild-hunt version

```

### What checks get run [`regexes.json`](https://github.com/d1vious/git-wild-hunt/blob/master/regexes.json)

This file contains all the regexes that will be used to check against the raw content filed returned for a [search](#github-search-examples). Feel free to add/modify and include any specific ones that match the credential you are trying to find. This was graciously borrowed from [truffleHog](https://github.com/dxa4481/truffleHogRegexes/blob/master/truffleHogRegexes/regexes.json)

Currently verified credentials via regex:

*   AWS API Key

*   Amazon AWS Access Key ID

*   Amazon MWS Auth Token

*   Facebook Access Token

*   Facebook OAuth

*   Generic API Key

*   Generic Secret

*   GitHub

*   Google (GCP) Service-account

*   Google API Key

*   Google Cloud Platform API Key

*   Google Cloud Platform OAuth

*   Google Drive API Key

*   Google Drive OAuth

*   Google Gmail API Key

*   Google Gmail OAuth

*   Google OAuth Access Token

*   Google YouTube API Key

*   Google YouTube OAuth

*   Heroku API Key

*   MailChimp API Key

*   Mailgun API Key

*   PGP private key block

*   Password in URL

*   PayPal Braintree Access Token

*   Picatic API Key

*   RSA private key

*   SSH (DSA) private key

*   SSH (EC) private key

*   Slack Token

*   Slack Webhook

*   Square Access Token

*   Square OAuth Secret

*   Stripe API Key

*   Stripe Restricted API Key

*   Twilio API Key

*   Twitter Access Token

*   Twitter OAuth

### Author

* Jose Hernandez [@_josehelps](https://twitter.com/_josehelps)

### Contributor 

 * Rod Soto [@rodsoto](https://twitter.com/rodsoto)

### Credits & References

Inspiration to write this tool came from the [shhgit](https://github.com/eth0izzle/shhgit/) project

### TO DO

* better error handling