Monitor Github sensitive information leaks in near real time and send alert notifications.
Python3(Python2 is not tested)
$ git clone https://github.com/FeeiCN/gsil.git
$ cd gsil/
$ pip install -r requirements.txt[mail]
host : smtp.exmail.qq.com
port : 25
mails : gsil@domain.com
from : GSIL
password : your_password
to : feei@feei.cn
[github]
# Whether the scanned data will be cloned to the local area immediately
clone: false
# Github Token
# https://github.com/settings/tokens
tokens : your_tokenGenerally, The best rule is the characteristic code of the intranet(Example: mogujie's extranet is
mogujie.com, intranet ismogujie.org. At this time,mogujie.orgcan be used as a rule)
There are other similar code head characteristic code, external mailbox characteristic code, and so on
{
# usually using the company name, used as the first parameter to open the scan(Example:`python gsil.py test`)
"test": {
# General use of product name
"mogujie.com": {
# Internal domain name of the company
"\"mogujie.org\"": {},
# Company code's characteristic code
"copyright meili inc": {},
# Internal host domain name
"yewu1.db.mogujie.host": {},
# External mailbox
"mail.mogujie.com": {}
}
}
}
$ python gsil.py test$ crontab -e
# Run every hour
0 * * * * /usr/bin/python /var/app/gsil/gsil.py test > /tmp/gsil
# Send a statistical report at 11 p. m. every night
0 23 * * * /usr/bin/python /var/app/gsil/gsil.py --report