Information Gathering

OSGINT – A Deep Dive Into GitHub User Information Retrieval

In the vast realm of GitHub, the ability to glean information about users can be invaluable for various purposes.

‘OSGINT: A Deep Dive into GitHub User Information Retrieval’ introduces an innovative tool that harnesses the power of open-source intelligence to extract detailed profiles from GitHub usernames and emails.

Join us as we explore the features, requirements, and mechanics of this fascinating utility.

Features

  • Find github username from an email
  • Find email from github username (not working all the time)
  • Find informations about a profile (account creation date, public gists, id, public pgp, public ssh …)

Requirements

pip3 install -r requirements.txt

Usage

$ python3 osgint.py -h                                  

 .d88888b.                    d8b          888    
d88P" "Y88b                   Y8P          888    
888     888                                888    
888     888 .d8888b   .d88b.  888 88888b.  888888 
888     888 88K      d88P"88b 888 888 "88b 888    
888     888 "Y8888b. 888  888 888 888  888 888    
Y88b. .d88P      X88 Y88b 888 888 888  888 Y88b.  
 "Y88888P"   88888P'  "Y88888 888 888  888  "Y888 
                          888  v1.0.0
                     Y8b d88P                     
                      "Y88P"                      
By Hippie | https://twitter.com/hiippiiie

usage: osgint.py [-h] [-u USERNAME] [-e EMAIL] [--json]

options:
  -h, --help            show this help message and exit
  -u USERNAME, --username USERNAME
                        Github username of the account to search for (default: None)
  -e EMAIL, --email EMAIL
                        Email of the account to search for github username (default: None)
  --json                Return a json output (default: False)

Example Output

username

$ ./osgint.py -u hippiiee
[+] login : hippiiee
[+] id : 41185722
[+] avatar_url : https://avatars.githubusercontent.com/u/41185722?v=4
[+] name : Hippie
[+] blog : https://hippie.cat
[+] bio : Hi !
[+] public_repos : 10
[+] public_gists : 0
[+] followers : 8
[+] following : 9
[+] created_at : 2018-07-13T08:28:00Z
[+] updated_at : 2022-08-21T13:11:36Z
[+] public_gists : https://gist.github.com/hippiiee
[+] GPG_keys : https://github.com/hippiiee.gpg
[+] GPG_key_id : 27cbb171ff857c58
[+] email : hquere@e3r4p3.42.fr hippolyte.q@gmail.com
$ ./osgint.py -u hippiiee --json
{
    "GPG_key_id": "27cbb171ff857c58",
    "GPG_keys": "https://github.com/hippiiee.gpg",
    "avatar_url": "https://avatars.githubusercontent.com/u/41185722?v=4",
    "bio": "Hi !",
    "blog": "https://hippie.cat",
    "created_at": "2018-07-13T08:28:00Z",
    "email": [
        "hquere@e3r4p3.42.fr",
        "hippolyte.q@gmail.com"
    ],
    "followers": 8,
    "following": 9,
    "id": 41185722,
    "login": "hippiiee",
    "name": "Hippie",
    "public_gists": "https://gist.github.com/hippiiee",
    "public_repos": 10,
    "updated_at": "2022-08-21T13:11:36Z"
}

Email

$ ./osgint.py -e chrisadr@gentoo.org
[+] username : ChrisADR
$ ./osgint.py -e chrisadr@gentoo.org --json
{
    "username": "ChrisADR"
}

How Does It Works ?

To get a user email, osingt is checking :

  • all the public commits of the user, if the email is not hidden in one of the commit it will be added to the list
  • if the user have a GPG key, if he has one, it’s getting the email from the content of the GPG after a base64 decode
  • github user API

To get a user email, osgint is checking :

  • github user API
  • spoofing a commit with the email, then checking the name in the commit history (working every time) (Work In Progress)
Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Recent Posts

Google Dorking in Cybersecurity: A Complete Guide

Introduction In the vast ocean of the internet, the most powerful tool you already have…

54 minutes ago

Pystinger : Bypass Firewall For Traffic Forwarding Using Webshell

Pystinger is a Python-based tool that enables SOCKS4 proxying and port mapping through webshells. It…

1 week ago

CVE-Search : A Tool To Perform Local Searches For Known Vulnerabilities

Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…

1 week ago

CVE-Search : A Tool To Perform Local Searches For Known Vulnerabilities

Introduction When it comes to cybersecurity, speed and privacy are critical. Public vulnerability databases like…

1 week ago

How to Bash Append to File: A Simple Guide for Beginners

If you are working with Linux or writing bash scripts, one of the most common…

1 week ago

Mastering the Bash Case Statement with Simple Examples

What is a bash case statement? A bash case statement is a way to control…

1 week ago