Gitcolombo - Extract And Analyze Contributors Info From Git Repos
OSINT tool to extract info about persons from git repositories: common names, emails, matches between different (as it may seems) accounts.
Using
-
Install git
-
Run:
repos by nickname ./gitcolombo.py --nickname LubyRuffy"># from any git url ./gitcolombo.py -u https://github.com/Kalanchyovskaia16/newlps # from directory, recursively ./gitcolombo.py -d ./newlps -r # from all GitHub personal/org repos by nickname ./gitcolombo.py --nickname LubyRuffy
For batch cloning from Gitlab and Bitbucket group repos you can use ghorg.
Output:
-
verbose persons info
- name
- number of appearences as author/committer
- other persons that person can be
-
emails used for the same name
-
different names for the same person
-
general statistics
Details
[RUS] https://telegra.ph/Gitcolombo---OSINT-v-GitHub-03-02
What's the difference between git author and committer?
TL;DR
- author wrote the code (make the patch)
- commiter commit it to the repo (rewrite history, make pull/merge requests...)
Nice explanation: https://stackoverflow.com/questions/18750808/difference-between-author-and-committer-in-git
Very often developers make inaccurate commits with the one name/email (e.g. work account), then change to the right (e.g. personal account) and make git commit --amend
, but forget to change the author of the commit. This way we can use it for OSINT as match of names/emails from git history.
TODO
- Total statistics for repos in a directory
- Check different names for every email
- GitHub support: clone all repos from account/group
- GitHub support: api pagination
- GitHub support: extract links to accounts from commit info
- Exclude "system" accounts (e.g. [email protected])
- Probabilistic graph links based on same names/emails and Levenshtein distance
- Other popular git platforms: Gitlab, Bitbucket and also
Source: www.kitploit.com