Github Search is a quite powerful and useful feature that can be used to search for sensitive data on repositories. Collection of Github dorks can reveal sensitive personal and/or organizational information such as private keys, credentials, authentication tokens, etc.This list is supposed to be useful performing pen-testing of systems.
The github-recon tool use most of word, extinsions and file names using GitHub dorks and to speed up the initial reconnaissance of the target organization. Reconnaissance is the most important step in any penetration testing or bug hunting process and search on secret data . It provides the attacker with some knowledge about the target organization. This tool can be used in addition to your regular bug hunting approach. The idea is to quickly check and gather information about the target organization without investing time . Additionally, it can help you determine an approach towards finding some quick wins on the target.
Step1: Download the file from Release section: Download Tool and Explanation video
- write the domain .
- Click on any word in any list .
- Now you will go to github .
