Skip to content

Latest commit

 

History

History
38 lines (29 loc) · 1.02 KB

README.md

File metadata and controls

38 lines (29 loc) · 1.02 KB

Reposcanner

Reposcanner is a python script to search through the commit history of Git repositories looking for interesting strings such as API keys, inspired by truffleHog.

Installation

The python Git module is required (python3-git on Debian).

Docker

docker build -t reposcanner .
docker run -it --rm reposcanner -h
docker run -it --rm reposcanner -r <repository>

Usage

./reposcanner -r <repository>

Options:

optional arguments:
  -h, --help                     show this help message and exit
  -r REPO, --repo REPO           Repo to scan
  -c COUNT, --count COUNT        Number of commits to scan (default all)
  -e ENTROPY, --entropy ENTROPY  Minimum entropy to report (default 4.3)
  -l LENGTH, --length LENGTH     Maxmimum line length (default 500)
  -b BRANCH, --branch BRANCH     Scan a specific branch
  -v, --verbose                  Verbose output

Example:

./reposcanner.py -r https://github.com/Dionach/reposcanner -v -a -c 30