Cookie Consent by Free Privacy Policy Generator ๐Ÿ“Œ Gitrecon - OSINT Tool To Get Information From A Github Profile And Find GitHub User'S Email Addresses Leaked On Commits

๐Ÿ  Team IT Security News

TSecurity.de ist eine Online-Plattform, die sich auf die Bereitstellung von Informationen,alle 15 Minuten neuste Nachrichten, Bildungsressourcen und Dienstleistungen rund um das Thema IT-Sicherheit spezialisiert hat.
Ob es sich um aktuelle Nachrichten, Fachartikel, Blogbeitrรคge, Webinare, Tutorials, oder Tipps & Tricks handelt, TSecurity.de bietet seinen Nutzern einen umfassenden รœberblick รผber die wichtigsten Aspekte der IT-Sicherheit in einer sich stรคndig verรคndernden digitalen Welt.

16.12.2023 - TIP: Wer den Cookie Consent Banner akzeptiert, kann z.B. von Englisch nach Deutsch รผbersetzen, erst Englisch auswรคhlen dann wieder Deutsch!

Google Android Playstore Download Button fรผr Team IT Security



๐Ÿ“š Gitrecon - OSINT Tool To Get Information From A Github Profile And Find GitHub User'S Email Addresses Leaked On Commits


๐Ÿ’ก Newskategorie: IT Security Nachrichten
๐Ÿ”— Quelle: feedproxy.google.com


OSINT tool to get information from a github profile and find GitHub user's email addresses leaked on commits.


How does this work?

GitHub uses the email address associated with a GitHub account to link commits and other activity to a GitHub profile. When a user makes commits to public repos their email address is usually published in the commit and becomes publicly accessible, if you know where to look.

GitHub provide some instructions on how to prevent this from happening, but it seems that most GitHub users either don't know or don't care that their email address may be exposed.

Finding a GitHub user's email address is often as simple as looking at their recent events via the GitHub API.

Idea and text from Nick Drewe.

Source: https://thedatapack.com/tools/find-github-user-email/


Prerequisites

Installation
git clone https://github.com/GONZOsint/gitrecon.git
cd gitrecon/
python3 -m pip install -r requirements.txt

It is possible to use a Github access token by editing line 23 of the gitrecon.py file

token = '<Access token here>'

Usage
usage: gitrecon.py [-h] [-a] [-o] username

positional arguments:
username

optional arguments:
-h, --help show this help message and exit
-a, --avatar download avatar pic
-o, --output save output as json



Features

  • Profile info
    • Username
    • Name
    • User ID
    • Avatar url
    • Email
    • Location
    • Bio
    • Company
    • Blog
    • Gravatar ID
    • Twitter username
    • Followers
    • Following
    • Created at
    • Updated at

  • Extract Orgs

  • Search for leaked emails on commits

Prevention

To avoid this type of leaks, certain configurations can be made on Github:

Settings url: https://github.com/settings/emails

  • โœ”๏ธ
    Keep my email addresses private
  • โœ”๏ธ
    Block command line pushes that expose my email


...



๐Ÿ“Œ [OC]Linux kernel commits as of 5.7-rc1 by author's email domain name,for domains with >= 5000 commits.


๐Ÿ“ˆ 40.21 Punkte

๐Ÿ“Œ [OC]Linux kernel commits as of 5.7-rc1 by author's email domain name,for domains with &gt;= 5000 commits.


๐Ÿ“ˆ 40.21 Punkte

๐Ÿ“Œ How to Create a GitHub Profile Readme with GitHub Actions, Profile Trophy, and Custom Icons Badges


๐Ÿ“ˆ 33.62 Punkte

๐Ÿ“Œ Git Squash Commits โ€“ Squashing the Last N Commits into One Commit


๐Ÿ“ˆ 33.57 Punkte

๐Ÿ“Œ 43 Million Email Addresses Leaked By Email Spamming Service


๐Ÿ“ˆ 33.24 Punkte

๐Ÿ“Œ Names, addresses, phone numbers, email addresses and Social Security numbers for 1000's were impacted in ComplyRight breach.


๐Ÿ“ˆ 31.19 Punkte

๐Ÿ“Œ The data-management firmโ€™s customer database held names, email addresses, some ip addresses and more: a wealth of ammo for phishers.


๐Ÿ“ˆ 31.19 Punkte

๐Ÿ“Œ Using GitHub API to fetch and display a GitHub user profile


๐Ÿ“ˆ 29.45 Punkte

๐Ÿ“Œ Facebook Secret Tool to Remove Userโ€™s Phone Numbers & Email Addresses


๐Ÿ“ˆ 29.19 Punkte

๐Ÿ“Œ Quibi, Wish, JetBlue and others leaked users' email addresses, researcher finds


๐Ÿ“ˆ 28.39 Punkte

๐Ÿ“Œ Diplomats are supposed to be subtle and clever. Australiaโ€™s just leaked 1,000 citizensโ€™ email addresses


๐Ÿ“ˆ 28.39 Punkte

๐Ÿ“Œ Email Addresses and Passwords Leaked For 113,000 Users Of Account Hijacking Forum


๐Ÿ“ˆ 28.39 Punkte

๐Ÿ“Œ How To Find linkedin profile, Create, Share & Change Custom LinkedIn Profile URL


๐Ÿ“ˆ 27.6 Punkte

๐Ÿ“Œ Reddit: Able to bypass email verification and change email to any other user email


๐Ÿ“ˆ 27.53 Punkte

๐Ÿ“Œ Profile Builder and Profile Builder Pro < 3.1.1 - User Registration With Administrator Role


๐Ÿ“ˆ 27.52 Punkte

๐Ÿ“Œ Uber Portal Leaked Names, Phone Numbers, Email Addresses, Unique Identifiers


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ Uber Portal Leaked Names, Phone Numbers, Email Addresses, Unique Identifiers


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ More than 700 million email addresses leaked in huge data breach


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ Verifications.io Leaked Billion Email Addresses


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ Digital Ocean dumps Mailchimp after attack leaked customer email addresses


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ Digital Ocean dumps Mailchimp after attack leaked customer email addresses


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ 200 million Twitter usersโ€™ email addresses allegedly leaked online


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ SwiftKey Bug Leaked Email Addresses, Phone Numbers To Strangers


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ SwiftKey Bug Leaked Email Addresses, Phone Numbers To Strangers


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ Money Lover for Android & iOS leaked email addresses, transactions


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ MailChimp Fixes Privacy Issue that Leaked Respondentsโ€™ Email Addresses


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ Researcher found 43 Million email addresses leaked by the Trik spam botnet


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ Amazon Customer Email Addresses Leaked Because of 'Technical Error'


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ Political History: How A Democratic Organization Leaked Six Million Email Addresses


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ Nearly 25,000 WHO Email Addresses Potentially Leaked By Conspiracy Theorist โ€“ Expert Reaction


๐Ÿ“ˆ 26.6 Punkte

๐Ÿ“Œ CVE-2023-1909 | PHPGurukul BP Monitoring Management System 1.0 User Profile Update profile.php name/mobno sql injection


๐Ÿ“ˆ 25.72 Punkte

๐Ÿ“Œ China claims it cracked Apple's AirDrop to find numbers, email addresses


๐Ÿ“ˆ 25.69 Punkte











matomo