OSINT platform for GitHub intelligence. Crawls social graphs, detects leaked secrets, correlates identities, and visualizes everything in a real-time interactive graph. Plateforme OSINT pour le renseignement GitHub. Crawl les graphes sociaux, détecte les secrets leakés, corrèle les identités, et visualise le tout dans un graphe interactif en temps réel.
$ curl -X POST localhost:3000/api/v1/scans/discover \ -H "Authorization: Bearer $TOKEN" \ -d '{"target": "corploc", "type": "user"}' → scan started: scan_7f3a... → streaming events via SSE... → node_discovered: user/hokanosekai → node_discovered: user/glider → node_discovered: repo/gitsint (12 commits) → edge_discovered: hokanosekai → OWNS → gitsint → identity_found: arsene@2600.eu (confidence: 0.95) → leak_found: AWS key in config.yml (severity: high) → scan complete: 3 users, 8 repos, 2 leaks $
docker compose up — spins up the API (Go), workers (Rust), NebulaGraph, Redis, TimescaleDB, and the React frontend.
Enter a GitHub username, org, or repo. Discover crawls the social graph. Analyze deep-scans repos for secrets and identities.
Watch the interactive graph build in real time via SSE. Inspect nodes, trace relationships, validate leaked secrets against live APIs with 45+ WASM modules.
Map contributor networks across GitHub repos to identify shadow IT, leaked credentials, and exposed identities before they're exploited.
Discover forgotten API keys and tokens buried in commit history. Validate them instantly against live APIs with built-in WASM modules.
Correlate git commit identities across repos. Link email addresses, PGP keys, and co-author tags to build a profile from public data.
Gitsint started as a quick Python script to extract emails from git logs. Then we needed to cross-reference identities across repos, so we added a graph database. Then we needed to validate found secrets, so we built WASM modules. Then we needed real-time visualization, so we added SSE streaming and Sigma.js. What was supposed to be a 200-line script is now a multi-service platform — but it still does the same job, just a lot better.
Gitsint a commencé comme un script Python rapide pour extraire des emails des git logs. Puis on a eu besoin de croiser les identités entre les repos, donc on a ajouté une base de données de graphes. Puis on a eu besoin de valider les secrets trouvés, donc on a construit des modules WASM. Puis on a eu besoin de visualisation en temps réel, donc on a ajouté du streaming SSE et Sigma.js. Ce qui devait être un script de 200 lignes est devenu une plateforme multi-services — mais le job reste le même, en beaucoup mieux.
Maltego is broader — email, social media, DNS, infrastructure. Gitsint goes deeper on GitHub specifically: graph visualization, secret validation, identity correlation across commits.
TruffleHog scans for secrets in git repos. Gitsint does that too, but adds the social graph layer — who contributed what, where, and what identities are behind the commits.
GitDorker uses GitHub search dorks. Gitsint clones repos and runs deep analysis — commit-level scanning, not just search results.
All data stays on your infrastructure. No telemetry, no phone-home, no cloud dependency. Toutes les données restent sur ton infra. Pas de télémétrie, pas de phone-home, pas de dépendance cloud.
git log and the GitHub API. No authentication bypass, no scraping beyond API rate limits.