reddit hackernews mail facebook facebook linkedin


OSINT tool for finding Github repositories by extracting commit logs in real time.

commit-stream drinks commit logs from the Github event firehose exposing the author details (name and email address) associated with Github repositories in real time.

OSINT / Recon uses for Redteamers / Bug bounty hunters:

Uncover repositories which employees of a target company is commiting code (filter by email domain)
Identify repositories belonging to an individual (filter by author name)
Chain with other tools such as trufflehog to extract secrets in uncovered repositories.
Companies have found the tool useful to discover repositories that their employees are committing intellectual property to