Shulou(Shulou.com)05/31 Report--

This article mainly introduces what GitHound is a tool, the article introduces in great detail, has a certain reference value, interested friends must read it!

GitHound

GitHound can use pattern matching, submission history building and a unique result scoring system to accurately locate public API keys on GitHub. In essence, GitHound is a sensitive data search tool based on batch crawling, pattern matching and patch attacks.

It is worth mentioning that so far, with the help of GitHound, I have successfully won a vulnerability bonus of more than $7500.

Function introduction

1. GitHub/Gist code search. This feature will allow GitHound to search all code bases uploaded by users in GitHub and pinpoint where sensitive information is located.

2. General APK key detection, which uses pattern matching, context retrieval and Shannon entropy.

3. Submit history search, which can find sensitive information that has not been deleted correctly.

4. The scoring system can return more accurate results, filter common false positives, and optimize the mining results of intensive code base.

5. Base64 detection and decoding.

6. GitHound builds can be integrated into our own workflows.

Tool download

Researchers can use the following commands to clone the GitHound project source code locally:

Git clone https://github.com/tillson/git-hound.git tool installation

Create a. / config.yml or ~ / .githound / config.yml file with our own GitHub username and password. Currently, accounts with two-factor authentication are not supported.

The sample config.example.yml file format is as follows:

# Requiredgithub_username: tillsongithub_password: a8ueifjq4jkasdfoiulk

Then run the following command:

Echo "tillsongalloway.com" | git-hound tool uses echo "tillsongalloway.com" | git-hound or git-hound-- subdomain-file subdomains.txt uses samples to search for public user API keys

By understanding the pattern of API keys for a particular service, we will be able to use GitHound to search for these public user API keys in GitHub. We can then integrate the custom key regular expression into our script and identify the risky account against the target service API key.

Echo "api.halcorp.biz" | githound-dig-many-results-regex-file halcorp-api-regexes.txt-results-only | python halapitester.py vulnerability reward: search for leaked employee API tokens

For me personally, the main use of GitHound is to search for sensitive information against vulnerability incentive programs. For some important goals, we can use-- many-results and-- languages to search for more than 100 pages of results.

Echo "uberinternal.com" | githound-dig-many-results-languages common-languages.txt-threads 100tool options

-- subdomain-file-A file containing a subdomain name

-- dig-files-Clone and search the files in the target code base for results

-- dig-commits-Clone and search the submission history in the target code base to get the results

-- many-results-use results to sort and filter search results for more than 100 pages

-- results-only-only prints the results of regular matches to stdout, which is used to pipe custom regular expression matches into another script

-- no-repos-specifies a code base that does not need to be searched

-- no-gists-specifies the Gist that does not need to be searched

-- threads-specifies the maximum number of threads to be used by the submission miner

-- regex-file-provides a custom regular expression file

-- language-file-provides custom files with the language to search for

-- config-file-Custom configuration file (default is config.yml)

-- pages-maximum number of pages to search (default is 100)

-- no-scoring-- No score is used to filter false positives

-- no-api-keys-does not perform a generic api key search. GitHound uses common API key patterns, context retrieval, and Shannon entropy filters to find potential public API keys

-- no-files-does not mark the file extension of interest

-- only-filtered-search filter queries only (language)

-- debug-print detailed debug messages

The above is all the content of this article "what is GitHound?" Thank you for reading! Hope to share the content to help you, more related knowledge, welcome to follow the industry information channel!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.