Scan Github popular tools for hacking

Information gathering is a long process in pentesting. There are various tools which gather information from various social media platforms and many other web platforms. But sometimes it is required to gather information from GITHUB, explain ethical hacking professionals. Github as you know a platform for developers where they upload their tools and codes.

According to ethical hacking researcher of International Institute of Cyber Security, stardox can be used to find the detailed information of any github tool used in initial phase of pentesting. As it shows information of any github user.

Today we will show you tool called STARDOX. Stardox is an information gathering tool for stargazers. Stardox scraps github for information of stargazers details. Stardox creates a tree view of stargazers details. For showing you we have tested this tool on Kali Linux 2018.4

  • For cloning type git clone https://github.com/0xPrateek/Stardox.git
  • Then type cd Stardox
  • Type python3 ./setup.py
  • Type python3 stardox.py
root@kali:/home/iicybersecurity/Downloads/Stardox/src# python3 stardox.py

ssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssss
sssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssssss
sssssss ssssssssss ss ss sss ss sss ss ss ss sss sss
sssssss ssss sss sss sss ss sss ss ss ss ss ss
ssssssssssssss ssss sss sss sss ss sss ss ss ss ss ss
ssssssssssssss ssss sssssssssss sssssssssss sss ss ss ss ssss
ssss ssss sssssssssss sssssss sss ss ss ss ssss
ssss ssss sss sss sss sss sss ss ss ss ss ss
ssssssssssssss ssss sss sss sss sss sss ss ssssssssss ss ss


sssssssssssssss ssss sss sss sss sss sssssssss ssssssssss sss sss Made By : Pr0t0n


Enter the repository address ::
  • The above query is used to start stardox tool. After starting tool enter the repository address.
  • You can enter any repository address. Enter repository address.
  • Type https://github.com/0xPrateek/Stardox
Enter the repository address :: https://github.com/0xPrateek/Stardox


[+] Got the repository data
[+] Repository Title : Stardox
[+] Total watchers : 1
[+] Total stargazers : 10
[+] Total Forks : 1
[~] Doxing started …

Stardox
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
|
|-----ZankoyDll1999 (@ZankoyDll1999)
| |
| |--Total Repsitories :: 3
| |--Total Stars :: 15
| |--Total Followers :: 12
| |--Total Following :: 0
|
|
|-----Byungho (@tais9)
| |
| |--Total Repsitories :: 0
| |--Total Stars :: 26
| |--Total Followers :: 28
| |--Total Following :: 1
|
|
|-----IraqNoPhobia (@IraqNoPhobia)
| |
| |--Total Repsitories :: 146
| |--Total Stars :: 120
| |--Total Followers :: 6
| |--Total Following :: 11
|
|
|-----Anurag Batra (@DevelopedByAnurag)
| |
| |--Total Repsitories :: 7
| |--Total Stars :: 1
| |--Total Followers :: 8
| |--Total Following :: 2
|
|
|-----an0nhax0r (@an0nhax0r)
| |
| |--Total Repsitories :: 3
| |--Total Stars :: 6
| |--Total Followers :: 0
| |--Total Following :: 1
|
|
|-----c0d3r001 (@c0d3r001)
| |
| |--Total Repsitories :: 0
| |--Total Stars :: 2
| |--Total Followers :: 0
| |--Total Following :: 0
|
|
|-----jackhacker191 (@jackhacker191)
| |
| |--Total Repsitories :: 1
| |--Total Stars :: 3
| |--Total Followers :: 0
| |--Total Following :: 0
|
|
|-----alex0019 (@alex0019)
| |
| |--Total Repsitories :: 2
| |--Total Stars :: 3
| |--Total Followers :: 0
| |--Total Following :: 0
|
|
|-----Prateek Mishra (@0xPrateek)
| |
| |--Total Repsitories :: 4
| |--Total Stars :: 7
| |--Total Followers :: 5
| |--Total Following :: 0
  • The above query shows the stargazers, watchers and forks of the github repository.
  • In github, user can watch releases of the projects in a repository without being notified of every single change. Watchers watches the github repository for changing in watcher list.
  • In github, any user can star other user’s repositories in there own repository that user is known as stargazers.
  • In github, stars are used to save or bookmark other user’s project so they can keep track on.
  • In github, fork can copy project and can freely experiment on copied project without harming the original project in github.
  • In github, when you follow people. You can see their activity view in your news feed, you are knows to be as follower.
  • The above query shows the many information of any github user which can be used in initial phase of penetration testing.

Trying To Search For Popular Projects :-

  • For searching popular projects, you can search on the internet by typing top github projects, or popular github projects. Take any one the repository for further analysis.
  • Type https://github.com/karanahmedse/developer-roadmap
Enter the repository address :: https://github.com/kamranahmedse/developer-roadmap


[+] Got the repository data
[+] Repository Title : developer-roadmap
[+] Total watchers : 4593
[+] Total stargazers : 68246
[+] Total Forks : 10657
[~] Doxing started …

developer-roadmap

¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
|
|-----Anthony (@xero88)
| |
| |--Total Repsitories :: 26
| |--Total Stars :: 69
| |--Total Followers :: 3
| |--Total Following :: 1
|
|
|-----Rickon (@gs666)
| |
| |--Total Repsitories :: 25
| |--Total Stars :: 61
| |--Total Followers :: 9
| |--Total Following :: 21
|
|
|-----Jia (@jia2)
| |
| |--Total Repsitories :: 10
| |--Total Stars :: 88
| |--Total Followers :: 4
| |--Total Following :: 3
|
|
|-----Reyton (@Rey70N)
| |
| |--Total Repsitories :: 5
| |--Total Stars :: 5
| |--Total Followers :: 0
| |--Total Following :: 0
|
|
|-----Vinny Wang (@ipaste)
| |
| |--Total Repsitories :: 866
| |--Total Stars :: 192
| |--Total Followers :: 5
| |--Total Following :: 30
|
|
|-----Shun Nishitsuji (@Asuforce)
| |
| |--Total Repsitories :: 62
| |--Total Stars :: 51
| |--Total Followers :: 18
| |--Total Following :: 23
|
|
|-----XiMiMax (@duyangs)
| |
| |--Total Repsitories :: 18
| |--Total Stars :: 176
| |--Total Followers :: 3
| |--Total Following :: 3
|
|
|-----wangtiant (@wangtiant)
| |
| |--Total Repsitories :: 0
| |--Total Stars :: 17
| |--Total Followers :: 0
| |--Total Following :: 0
|
|
|-----Əlişiram (@eelishiram)
| |
| |--Total Repsitories :: 6
| |--Total Stars :: 13
| |--Total Followers :: 5
| |--Total Following :: 4
|
|
|-----xinple (@xinple)
| |
| |--Total Repsitories :: 0
| |--Total Stars :: 2
| |--Total Followers :: 0
| |--Total Following :: 0
|
|
|-----Samuel Aniefiok (@Cool-sami12)
| |
| |--Total Repsitories :: 26
| |--Total Stars :: 2
| |--Total Followers :: 6
| |--Total Following :: 23
|
|
|-----xixi (@yiuyiu)
| |
| |--Total Repsitories :: 30
| |--Total Stars :: 213
| |--Total Followers :: 1
| |--Total Following :: 16
|
|
|-----Barry Lu (@barrylu1999)
| |
| |--Total Repsitories :: 7
| |--Total Stars :: 14
| |--Total Followers :: 1
| |--Total Following :: 10
|
|
|-----Michael_M (@ManspergerMichael)
| |
| |--Total Repsitories :: 36
| |--Total Stars :: 3
| |--Total Followers :: 6
| |--Total Following :: 4
|
|
|-----Harun Raşit Pekacar (@0hr)
| |
| |--Total Repsitories :: 1
| |--Total Stars :: 291
| |--Total Followers :: 10
| |--Total Following :: 11
|
|
|-----ansiz (@ansiz)
| |
| |--Total Repsitories :: 45
| |--Total Stars :: 590
| |--Total Followers :: 17
| |--Total Following :: 23
|
|
|-----Kilian (@KilianTarb)
| |
| |--Total Repsitories :: 20
| |--Total Stars :: 4
| |--Total Followers :: 1
| |--Total Following :: 1
|
|
|-----dyadyul (@dyadyul)
| |
| |--Total Repsitories :: 0
| |--Total Stars :: 501
| |--Total Followers :: 7
| |--Total Following :: 3
|
|
|-----Irfan (@irfan-dahir)
| |
| |--Total Repsitories :: 11
| |--Total Stars :: 217
| |--Total Followers :: 10
| |--Total Following :: 12
|
|
|-----Dharmik (@dharmikbhandari)
| |
| |--Total Repsitories :: 3
| |--Total Stars :: 1
| |--Total Followers :: 0
| |--Total Following :: 1
|
|
|-----Warren (@TheYon)
| |
| |--Total Repsitories :: 4
| |--Total Stars :: 25
| |--Total Followers :: 0
| |--Total Following :: 0
|
|
|-----edwinxx (@edwinxx)
| |
| |--Total Repsitories :: 0
| |--Total Stars :: 3
| |--Total Followers :: 0
| |--Total Following :: 2
|
|
|-----vstammeg (@vstammeg)
| |
| |--Total Repsitories :: 6
| |--Total Stars :: 6
| |--Total Followers :: 0
| |--Total Following :: 0
|
|
|-----Omid Golzarian (@onooma)
| |
| |--Total Repsitories :: 4
| |--Total Stars :: 149
| |--Total Followers :: 10
| |--Total Following :: 7
|
|
|-----廖泽恩 (@liaozeen)
| |
| |--Total Repsitories :: 14
| |--Total Stars :: 142
| |--Total Followers :: 3
| |--Total Following :: 75
|
|
|-----ZoomZhao (@ZoomZhao)
| |
| |--Total Repsitories :: 20
| |--Total Stars :: 341
| |--Total Followers :: 47
| |--Total Following :: 18
|
|
|-----David Cifuentes (@dcifuen)
| |
| |--Total Repsitories :: 12
| |--Total Stars :: 226
| |--Total Followers :: 23
| |--Total Following :: 29
|
|
|-----Budi Salah (@BudiSalah)
| |
| |--Total Repsitories :: 8
| |--Total Stars :: 10
| |--Total Followers :: 0
| |--Total Following :: 3
|
|
|-----mike (@mike-sino)
| |
| |--Total Repsitories :: 6
| |--Total Stars :: 282
| |--Total Followers :: 6
| |--Total Following :: 8
|
|
|-----zhang xin (@Alex-Daocaoren)
| |
| |--Total Repsitories :: 13
| |--Total Stars :: 252
| |--Total Followers :: 2
| |--Total Following :: 35
|
|
|-----Bronco (@bronco)
| |
| |--Total Repsitories :: 3
| |--Total Stars :: 14
| |--Total Followers :: 0
| |--Total Following :: 0
|
|
|-----Pokemon1025 (@Pokemon1025)
| |
| |--Total Repsitories :: 3
| |--Total Stars :: 13
| |--Total Followers :: 0
| |--Total Following :: 3
|
|
|-----dinglei (@dadingSaid)
| |
| |--Total Repsitories :: 57
| |--Total Stars :: 252
| |--Total Followers :: 10
| |--Total Following :: 25
|
|
|-----fwt (@137942170)
| |
| |--Total Repsitories :: 9
| |--Total Stars :: 28
| |--Total Followers :: 4
| |--Total Following :: 23
|
|
|-----拾肉觅 (@ShiRouMi)
| |
| |--Total Repsitories :: 10
| |--Total Stars :: 300
| |--Total Followers :: 11
| |--Total Following :: 59
|
|
|-----brandy (@xiaoqing-yuanfang)
| |
| |--Total Repsitories :: 30
| |--Total Stars :: 424
| |--Total Followers :: 6
| |--Total Following :: 172
|
|
|-----afewnotes (@afewnotes)
| |
| |--Total Repsitories :: 23
| |--Total Stars :: 22
| |--Total Followers :: 25
| |--Total Following :: 80
|
|
|-----HISUN (@hisuny)
| |
| |--Total Repsitories :: 10
| |--Total Stars :: 38
| |--Total Followers :: 0
| |--Total Following :: 0
|
|
|-----Syafie Mustafa (@SyafieMustafa)
| |
| |--Total Repsitories :: 0
| |--Total Stars :: 5
| |--Total Followers :: 0
| |--Total Following :: 1
|
|
|-----RanjitMane7 (@RanjitMane7)
| |
| |--Total Repsitories :: 3
| |--Total Stars :: 1
| |--Total Followers :: 0
| |--Total Following :: 0
|
|
|-----Allen (@viciwang)
| |
| |--Total Repsitories :: 22
| |--Total Stars :: 147
| |--Total Followers :: 7
| |--Total Following :: 14
|
|
|-----convee (@convee)
| |
| |--Total Repsitories :: 14
| |--Total Stars :: 355
| |--Total Followers :: 2
| |--Total Following :: 8
|
|
|-----Shaun Thomas (@shaunthomas999)
| |
| |--Total Repsitories :: 24
| |--Total Stars :: 42
| |--Total Followers :: 4
| |--Total Following :: 28
|
|
|-----mew_151 (@y0sh-S)
| |
| |--Total Repsitories :: 4
| |--Total Stars :: 5
| |--Total Followers :: 0
| |--Total Following :: 1
|
|
|-----Javmain (@javmain)
| |
| |--Total Repsitories :: 50
| |--Total Stars :: 556
| |--Total Followers :: 13
| |--Total Following :: 55
|
|
|-----Eric Zhang (@my101du)
| |
| |--Total Repsitories :: 17
| |--Total Stars :: 12
| |--Total Followers :: 20
| |--Total Following :: 17
|
|
|-----NEIL (@Army-U)
| |
| |--Total Repsitories :: 17
| |--Total Stars :: 533
| |--Total Followers :: 10
| |--Total Following :: 127
|
|
|-----wilx (@wil-x)
| |
| |--Total Repsitories :: 1
| |--Total Stars :: 20
| |--Total Followers :: 0
| |--Total Following :: 1
|
|
|-----MahoneWei (@MahoneWei)
| |
| |--Total Repsitories :: 1
| |--Total Stars :: 1
| |--Total Followers :: 0
| |--Total Following :: 0
|
|
|-----未枝 (@soyaine)
| |
| |--Total Repsitories :: 25
| |--Total Stars :: 208
| |--Total Followers :: 155
| |--Total Following :: 102
  • The above query shows the large no. of list of followers, stars, repositories.
  • The above information can be used to find tools on github for your hacking activities, according to ethical hacking teachers. Various developers, security researchers and users who uses github. They can be easily watch as what activity they are doing.