GitGot – Semi-automated Sensitive Data Search for GitHub

GitGot is a semi-automated, feedback-driven tool to empower users to rapidly search through troves of public data on GitHub for sensitive secrets.

GitGot - Semi-automated Sensitive Data Search for GitHub
GitGot – Semi-automated Sensitive Data Search for GitHub

During search sessions, users will provide feedback to the tool about search results to ignore, and the tool prunes the set of results. Users can blacklist files by filename, repository name, username, or a fuzzy match of the file contents.

Blacklists generated from previous sessions can be saved and reused against similar queries (e.g., example.com v.s. subdomain.example.com v.s. Example Org). Sessions can also be paused and resumed at any time.

GitHub requires a token for rate-limiting purposes. Create a GitHub API token with no permissions/no scope. This will be equivalent to public GitHub access, but it will allow access to use the GitHub Search API.

After adding the token, you are ready to go:

  • Query for the string “example.com” using the default RegEx list and logfile location (/logs/.log)
  • Query through GitHub
  • Using GitHub advanced search syntax
  • Custom RegEx List and custom log files location
  • Recovery from existing session
  • Using an existing session (w/blacklists) for a new query

You can read more and download this tool over here: https://github.com/BishopFox/GitGot

Share