Skip to content
/ gitfinder Public

A scanning tool for finding website domains with exposed GIT folder that can be used to obtain full source code of the website.

License

AGPL-3.0 license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

narukoshin/gitfinder

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

26 Commits
.vscode
.vscode
 
 
src
src
 
 
toolchains
toolchains
 
 
.gitignore
.gitignore
 
 
CMakeLists.txt
CMakeLists.txt
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
build.sh
build.sh
 
 
config.sample.yml
config.sample.yml
 
 
readme.md
readme.md
 
 

Repository files navigation

Gitfinder

MIT License C++

Hehe Ayaya

A scanning tool for finding website domains with exposed .git folders that can be used to obtain the full source code of the website.

Features

  • Multi-threaded scanning for efficient performance.
  • Customizable request timeouts and headers.
  • Reads target URLs from a configurable file (e.g., urls.txt).
  • Supports building for Linux and Windows platforms.
  • Lightweight and easy to configure.

Installation

  1. Clone the repository:

    git clone https://github.com/narukoshin/gitfinder.git
cd gitfinder

  2. Ensure you have the required build tools installed:

    • CMake (version 3.10 or higher)
    • Ninja
    • For Windows cross-compilation: MinGW-w64 (optional, if using toolchains)

  3. Build and install (recommended for local use):

    make && sudo make install

    This will build the tool using CMake and Ninja, and install it to /usr/local/bin/gitfinder. You can customize with variables like BUILD_TYPE=Debug, TOOLCHAIN=toolchains/linux-x86_64.cmake, or PREFIX=/custom/path.

    For cross-platform builds and archives, use the build script:

    ./build.sh

    This compiles for Linux (amd64) and Windows (amd64), creating .tar.gz archives in the releases/ directory.

  4. Extract the appropriate archive if using ./build.sh (e.g., gitfinder-1.0.0-linux-amd64.tar.gz) and use the gitfinder binary.

Collecting Domains

The repository includes collector.py, a Python script that crawls Google to collect domain names and generate the urls.txt file used by GitFinder.

Requirements: Python 3.x. Install any necessary libraries (e.g., requests, beautifulsoup4) via pip3 install if not already available.

Usage:

python3 collector.py

Run the script with appropriate options to search Google for domains and output them to urls.txt.

Configuration

  1. Copy the sample configuration file:

    cp config.sample.yml config.yml

  2. Edit config.yml to suit your needs:

    • threads: Number of concurrent threads (e.g., 8).
    • timeout: Request timeout (e.g., 30s).
    • collection_file: Path to the file containing target URLs (one URL per line, e.g., urls.txt).
    • headers: Custom HTTP headers (e.g., User-Agent for spoofing).

    Example config.yml:

    threads: 8
timeout: 30s
collection_file: urls.txt
headers:
  "User-Agent": "Mozilla/5.0 (compatible; GitFinder/1.0)"

  3. Prepare your urls.txt file with a list of target domains (one per line). Use collector.py or generate manually.

Usage

Run the tool with the configured settings:

./gitfinder

The tool will scan the URLs listed in your collection file for exposed .git folders and report findings.

Contributing

Contributions are welcome! Feel free to submit pull requests for improvements, bug fixes, or new features.

License

This project is licensed under the MIT License - see the LICENSE file for details.

ー Project by THE NEET FAMILY ー
We think. We create. We produce.

About

A scanning tool for finding website domains with exposed GIT folder that can be used to obtain full source code of the website.

Topics

crawler cpp hacking-tool gitfinder

Resources

Readme

License

AGPL-3.0 license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases 1

v1.0.0 Latest
Dec 3, 2025

Languages