GShark：监控Github中的敏感信息泄露

发表于 2019年07月12日
安全工具

目录表

GShark介绍

GShark是一个用于监控Github敏感信息泄露的项目，可根据关键字自动爬虫进行动态监控，辅助企业进行仓库的安全管控。它基于golang和AdminLTE构建管理系统来管理Github搜索结果。Github API用于根据关键词和一些规则来调整相关结果。

GShark安装使用

安装

要求：go version 1.10+
git clone https://github.com/neal1991/gshark.git

配置

可以根据app-template.ini设置配置，将其重命名为app.ini。

HTTP_HOST = 127.0.0.1
HTTP_PORT = 8000
MAX_INDEXERS = 2
DEBUG_MODE = true
REPO_PATH = repos
MAX_Concurrency_REPOS = 5

[database]
;support sqlite3, mysql, postgres
DB_TYPE = sqlite
HOST = 127.0.0.1
PORT = 3306
NAME = misec
USER = root
PASSWD = 
SSL_MODE = disable
;the path to store the database file of sqlite3
PATH =

HTTP_HOST = 127.0.0.1

HTTP_PORT = 8000

MAX_INDEXERS = 2

DEBUG_MODE = true

REPO_PATH = repos

MAX_Concurrency_REPOS = 5

[database]

;support sqlite3, mysql, postgres

DB_TYPE = sqlite

HOST = 127.0.0.1

PORT = 3306

NAME = misec

USER = root

PASSWD =

SSL_MODE = disable

;the path to store the database file of sqlite3

PATH =

确保以上都完成后

构建文件go build main.go
运行main.go

USAGE:
   main [global options] command [command options] [arguments...]

COMMANDS:
     web      Startup a web Service
     scan     Start to scan github leak info
     help, h  Show a list of commands or help for one command

GLOBAL OPTIONS:
   --debug, -d             Debug Mode
   --host value, -H value  web listen address (default: "0.0.0.0")
   --port value, -p value  web listen port (default: 8000)
   --time value, -t value  scan interval(second) (default: 900)
   --help, -h              show help
   --version, -v           print the version