gh-audit-org-keys

The point of this project is to help demonstrate that users of GitHub could potentially fall victim to getting their private SSH key cracked. This based on the size and complexity of the key the user generates.

Programs like ssh2john from John the Ripper can best demonstrate how fast an SSH private key can be solved from a not so complex algorithm with low key lengths (think RSA < 1024 bits).

Installation

Install the gh cli - see the installation

Installation requires a minimum version (2.0.0) of the GitHub CLI that supports extensions.

Install this extension:

gh extension install jef/gh-audit-org-keys

Manual Installation

Requirements: cli/cli and go.

Clone the repository

# git
git clone [email protected]:jef/gh-audit-org-keys.git

# GitHub CLI
gh repo clone jef/gh-audit-org-keys

cd into it
```
cd gh-audit-org-keys
```
Build it
```
make build
```
Install it locally
```
gh extension install .
```

Usage

To run:

gh audit-org-keys

To upgrade:

gh extension upgrade audit-org-keys

Examples

gh audit-org-keys --organization="actions"
gh audit-org-keys --organization="actions" --show-users="all"

Name		Name	Last commit message	Last commit date
Latest commit History 99 Commits
.github		.github
.gitignore		.gitignore
CHANGELOG.md		CHANGELOG.md
LICENSE.md		LICENSE.md
README.md		README.md
go.mod		go.mod
go.sum		go.sum
main.go		main.go
version.txt		version.txt

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

gh-audit-org-keys

Installation

Usage

Examples

Acknowledgments

About

Releases 4

Sponsor this project

Packages

Contributors 3

Languages

License

jef/gh-audit-org-keys

Folders and files

Latest commit

History

Repository files navigation

gh-audit-org-keys

Installation

Usage

Examples

Acknowledgments

About

Topics

Resources

License

Stars

Watchers

Forks

Releases 4

Sponsor this project

Packages 0

Contributors 3

Languages

Packages