Information Gatheringgithubosintforensicsrepositoriescontributors

GitXray

Gitxray scans GitHub repositories and contributors to collect data using public GitHub REST APIs. It gathers information that would otherwise be very time-consuming to obtain manually, seeking out data in unconventional places.

Description

Gitxray (short for Git X-Ray) is a multifaceted security tool designed for use on GitHub repositories. It serves purposes including OSINT and Forensics, leveraging public GitHub REST APIs to gather information efficiently.

The tool analyzes repositories, contributors, and organizations, providing insights into GitHub ecosystems. It is particularly useful for security researchers and penetration testers needing to examine public GitHub data comprehensively.

Developed by Kulkan Security, gitxray emphasizes 'Trust no one!' in its approach to repository analysis.

How It Works

Gitxray uses public GitHub REST APIs to collect data on repositories, contributors, and organizations. It processes inputs like single repositories, files of repositories, or entire organizations, applying filters and outputting in formats such as HTML, text, or JSON.

Installation

bash
sudo apt install gitxray

Flags

-h, --helpshow this help message and exit
-r, --repository REPOSITORYThe repository to check (Including https://github.com/ is optional)
-rf, --repositories-file REPOSITORIES_FILEA file containing repositories separated by newlines.
-o, --organization ORGANIZATIONAn organization to check all of their repositories
-c CONTRIBUTORContributor to analyze
-lList contributors
-f FILTERSApply filters to results
--debugEnable debug output
--shushSuppress output
-out OUTFILEOutput file
-outformat {html,text,json}Output format

Examples

Show the help message and usage information
gitxray -h
Scan a single GitHub repository
gitxray -r https://github.com/user/repo
Scan multiple repositories from a newline-separated file
gitxray -rf repos.txt
Check all repositories of a GitHub organization
gitxray -o organization-name
Analyze a specific contributor for a repository
gitxray -r repo -c contributor
List contributors for a repository
gitxray -r repo -l
Apply filters when scanning a repository
gitxray -r repo -f filter
Scan repository and output to HTML file
gitxray -r repo -out output.html -outformat html
Updated 2026-04-16kali.org ↗