Gitxray, an open-source OSINT & Forensics tool

A couple of months ago we published in our GitHub repository a new Open-source tool named Gitxray. The idea behind the tool is to consume as many endpoints as possible form GitHub’s official and public REST API, and process that data from the perspective of:

• A potential attacker, looking for PII and personal/company information.

• A forensics auditor, looking for clues on what/when went wrong.

• A sysadmin, concerned about the security of their own or their organization repositories.

• And more!

We’re excited that the all time famous Kali Linux distribution has included among its toolset Gitxray, which has always been available via Pypi, but now also via official Kali packages:

• https://www.kali.org/tools/gitxray/

To install or update Gitxray in any system with pypi just execute:

pip install gitxray --upgrade

And then simply run it against an Organization or repository:

gitxray -o kulkansecurity

gitxray -r kulkansecurity/gitxray

Gitxray is open-source and available in GitHub at:

• https://www.github.com/kulkansecurity/gitxray

A Quiz on WarGames, Sneakers, and more.

Back in Easter this year we published a Trivia that contained a mix of Technical and Movie-related challenges. We’ve repurposed and republished it, this time merely focusing on the Movies part, which received a lot of attention and positive feedback.

The Quiz/Trivia is available online at:

•  https://hackingmovies.kulkan.com/ 

No registration needed; you’ll be going through movies such as Sneakers, WarGames, The Matrix, Hackers and more.

That’s all for now, thank your for your time!

Thinking about hiring our team for an upcoming pentest project? Reach out via email or call and let’s have a chat to further explore what that testing surface looks like.