Git Scanner Framework

This tool is designed to scan websites that have open git repositories for the purposes of bug hunting and penetration testing. Additionally, it can extract the content of the .git repositories from web servers identified during the scanning process.

This tool is compatible with either the specified Single target or the Mass Target derived from a list of files.

To install Git Scanner, follow these steps: 1. Clone the repository using the command: ``` git clone https://github.com/HightechSec/git-scanner ``` 2. Navigate to the cloned directory: ``` cd git-scanner ``` 3. To run the script directly, execute: ``` bash gitscanner.sh ``` Alternatively, you can install it on your system by following these steps: 1. Clone the repository: ``` git clone https://github.com/HightechSec/git-scanner ``` 2. Change to the directory: ``` cd git-scanner ``` 3. Copy the script to a location in your PATH and make it executable: ``` sudo cp gitscanner.sh /usr/bin/gitscanner && sudo chmod +x /usr/bin/gitscanner ``` 4. You can then run it by typing: ``` $ gitscanner ``` Usage Menus: - Menu 1 allows you to scan and dump git repositories from a specified file that contains a list of target URLs or from a single target URL. - Menu 2 is designed for scanning only the git repositories from a specified file or from a single target URL. - Menu 3 focuses solely on dumping the git repositories from a specified file that contains a list of target URLs or from a single target URL.

This will be effective for the Maybe Vuln Results, or it may also apply to a repository that has directory listing disabled, or possibly one that returned a 403 Error Response.