Shulou(Shulou.com)05/31 Report--

How to use GitHub to search for sensitive information, many novices are not very clear about this, in order to help you solve this problem, the following editor will explain for you in detail, people with this need can come to learn, I hope you can gain something.

Background:

Recently, we can always hear colleagues say that some sensitive information is found on GitHub, and then use this information to successfully detect and find a loophole, and finally submit it to the corresponding SRC (Security Emergency response Center) for money. I suddenly envied me, and then I said that I should also learn to use the treasure of GitHub.

Start:

As we all know, as a security personnel, learning to use google hack is one of the most basic skills. So what is google hack? Google hack is actually a series of command syntax that can be used to quickly search for sensitive websites, keywords and other information. For example, use: inurl:XXXX;intext:XXXX; and so on. Looking at this, it is estimated that many people will think, does GitHub have related syntax commands? In fact, before learning, I do not know whether it exists, but after the research, I found that GitHub also has its own command syntax that can be used to quickly and easily search sensitive information. Next, let's take you to learn the relevant command syntax.

1.q+ keyword

We usually search on GitHub in this form, such as typing hundsun at the search site, and we can successfully search for some project information. If you take a look, you can see that the url here looks like this:

Https://github.com/search?utf8=%E2%9C%93&q=aliyuncs&type= Q corresponds to the keyword to search for. Type specifies the type of search results displayed, divided into Repositories,Code,Commits,Issues,Marketplace,Topics,Wikis,Users. The default search results are displayed in the form of the project name, as you can see in figure 1. If you need other modes, you can choose your own.

2.in:file,path

The above is the most common search method, but sometimes we want to search for keyword information in the file name and path, so how do we search? At this point, you can use the following url link:

Https://github.com/search?o=desc&p=1&q=aliyuncs+in:file,path&ref=searchresults&s=indexed&type=Code&utf8=%E2%9C%93 .

3.repo: project name

Sometimes you may encounter a situation where you need to search for files that contain sensitive information in a specified project, so how do you search at this time? At this point, you can use the following url:

4.-repo: project name

The corresponding links can be used to search for files containing sensitive information other than the specified project:

Https://github.com/search?o=desc&p=1&q=hundsun in:file,path-repo:XXXXX & ref=searchresult s & s=indexed&type=Code&utf8=%E2%9C%93. There are too many Q parameters-repo:xxxxx. This is used to specify which items are excluded.

5. Search for interest recommendation items

Github also provides a way to make recommendations based on users' search interests, using the following url: https://github.com/explore

6.stars: condition

In some cases, we need to filter the search results, using star search is a better way to search. Using this syntax, the program displays items with more stars than required. The advantage of this is that good projects can be found quickly. The conditions can be simple > or... 1. 10 means that the number of stars for the search item is between 1 and 10.

7. Advanced search

Advanced search can specify multiple search options, such as project name, project creator, creation time, number of stars, and so on. The link is as follows: https://github.com/search/advanced

Seeing that many people may not realize the use here, in fact, it plays a great role. Because you can develop some unique search scripts according to your personal needs. For example, develop a python program that searches database information. For example: under normal circumstances, enter keywords: jdbc 3306 can quickly search out a lot of information including the database, using the previous knowledge, you can add the search results to filter to extract the available database information of the extranet.

Finally, to talk about search skills, Github is a big treasure house, and you need to know how to search if you know the search syntax. Especially how to search for keywords. You can search according to the characteristics, for example: for oracle, you can search jdbc 1502, because the default port of mysql is 1502. For others, you can search for ports such as 1433jue 3389. As shown in the figure. In addition, you can search for keywords like username passwd, ftp, and so on.

Here is a highlight of GitPrey, which is a scripting tool developed using python to collect sensitive information about an enterprise. After I downloaded it, I tried to enter a command containing various keywords to run, but the results returned were empty. Later, after looking at the code, it was found that there was a regular matching place when the information was extracted, and there was something wrong with the matching tag. So if you want to use this, you need to make a simple modification, and other tools can be used.

Is it helpful for you to read the above content? If you want to know more about the relevant knowledge or read more related articles, please follow the industry information channel, thank you for your support.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.