Baptiste Fontaine bfontaine

GitHub for Bug Bounty Hunters

GitHub repositories can disclose all sorts of potentially valuable information for bug bounty hunters. The targets do not always have to be open source for there to be issues. Organization members and their open source projects can sometimes accidentally expose information that could be used against the target company. in this article I will give you a brief overview that should help you get started targeting GitHub repositories for vulnerabilities and for general recon.

Mass Cloning

You can just do your research on github.com, but I would suggest cloning all the target's repositories so that you can run your tests locally. I would highly recommend @mazen160's GitHubCloner. Just run the script and you should be good to go.

$ python githubcloner.py --org organization -o /tmp/output

Problème d'ouvertue de port non désirée sur une configuration IPTABLES

Un problème de contournement des règles iptables fixées par utilisateur peut survenir avec l’utilisation de règles iptables RELATED,ESTABLISH trop générique et le chargement de helper de service non présent ou non utilisé sur la machine (exemple FTP actif, SIP, IRC …).

True fact: Mon server MariaDB s'est fait attaqué comme ça alors que le port dans l'iptable n'était pas ouvert.

	#include <time.h> // Robert Nystrom
	#include <stdio.h> // @munificentbob
	#include <stdlib.h> // for Ginny
	#define r return // 2008-2019
	#define l(a, b, c, d) for (i y=a;y\
	<b; y++) for (int x = c; x < d; x++)
	typedef int i;const i H=40;const i W
	=80;i m[40][80];i g(i x){r rand()%x;
	}void cave(i s){i w=g(10)+5;i h=g(6)
	+3;i t=g(W-w-2)+1;i u=g(H-h-2)+1;l(u

	import os
	import logging

	LOGLEVEL = os.environ.get('LOGLEVEL', 'INFO').upper()
	logging.basicConfig(level=LOGLEVEL, format="%(asctime)s %(message)s")

	// A proxy for sending/receiving SMS via IRC
	//
	// This code is part of our family IRC server whose code is available at
	// https://gist.github.com/mndrix/7947009178e4a18c247b4bd25821661f
	//
	// This file won't compile by itself because it's only one file from
	// my larger family server (movie hosting, Asterisk dialplan, Git
	// hosting, personal assistant, etc).
	//
	// Copyright 2018 Michael Hendricks

	import com.sun.net.httpserver.Filter;
	import com.sun.net.httpserver.HttpExchange;
	import com.sun.net.httpserver.HttpHandler;
	import com.sun.net.httpserver.HttpServer;

	import java.io.IOException;
	import java.net.HttpURLConnection;
	import java.net.InetSocketAddress;
	import java.util.Arrays;
	import java.util.List;

	package main

	import (
	"context"
	"flag"
	"fmt"
	"log"
	"net/http"
	"os"
	"os/signal"

	import hashlib as hasher
	import datetime as date

	# Define what a Snakecoin block is
	class Block:
	def __init__(self, index, timestamp, data, previous_hash):
	self.index = index
	self.timestamp = timestamp
	self.data = data
	self.previous_hash = previous_hash

	# The initial version
	if [ ! -f .env ]
	then
	export $(cat .env \| xargs)
	fi

	# My favorite from the comments. Thanks @richarddewit & others!
	set -a && source .env && set +a

	"""How to gzip a string.

	This works for Python 3.2. For 3.1-, look at the original gist (under "Revisions")
	"""
	import gzip

	def gzip_str(string_: str) -> bytes:
	return gzip.compress(string_.encode())

Baptiste Fontaine bfontaine

GitHub for Bug Bounty Hunters

Mass Cloning

Problème d'ouvertue de port non désirée sur une configuration IPTABLES

Un problème de contournement des règles iptables fixées par utilisateur peut survenir avec l’utilisation de règles iptables RELATED,ESTABLISH trop générique et le chargement de helper de service non présent ou non utilisé sur la machine (exemple FTP actif, SIP, IRC …).

Menu