gitmon/README.md

# GitMon
Monitor GitHub events and clone repositories to search for secrets, and more.

![Console output](.img/console-output.png)

## Overview
GitMon allows an operator to continually monitor the [GitHub Events API](https://docs.github.com/en/rest/activity/events)
to collect metadata and look for secret leakage.

When certain events such as _CreateEvent_ or _DeleteEvent_ are observed, GitMon
will send the repository URL to a worker that will clone the repository and
search for API keys, passwords, endpoints, and more.

GitMon will also build a table that maps commit email addresses to GitHub usernames.

## Features
- Monitor for _CreateEvent_ and _DeleteEvent_
- ~~Commit metadata scraping~~ (_Not implemented yet_)
- ~~Automatic secret scraping~~ (_Not implemented yet_)
- ~~IRC/Webhook notifications~~ (_Not implemented yet_)

## Installation
```shell
git clone https://git.juggalol.com/agatha/gitmon
cd gitmon
pip install -r requirements.txt
```

## Configuration
GitMon works best with a token. Without a token you are limited to 60 API calls per hour.
Creating and using a Personal Access Token will raise that limit to 60,000 API calls per hour.

To use a Personal Access Token, create a `config.py` file:
```
token = 'ghp_YOUR_TOKEN_HERE'
```

## Caught Slippin'
![Deleted GitHub token](.img/slippin-ght.png)

![Cloud creds](.img/slippin-db.png)

## Contributors
- agathanonymous
Initial commit 2023-11-11 00:25:45 +00:00			`# GitMon`
			`Monitor GitHub events and clone repositories to search for secrets, and more.`

Include console output image 2023-11-11 16:21:56 +00:00			`![Console output](.img/console-output.png)`

Initial commit 2023-11-11 00:25:45 +00:00			`## Overview`
Update README.md 2023-11-11 00:41:20 +00:00			`GitMon allows an operator to continually monitor the [GitHub Events API](https://docs.github.com/en/rest/activity/events)`
			`to collect metadata and look for secret leakage.`
Initial commit 2023-11-11 00:25:45 +00:00
			`When certain events such as _CreateEvent_ or _DeleteEvent_ are observed, GitMon`
			`will send the repository URL to a worker that will clone the repository and`
			`search for API keys, passwords, endpoints, and more.`

			`GitMon will also build a table that maps commit email addresses to GitHub usernames.`

Update README.md 2023-11-11 16:46:13 +00:00			`## Features`
			`- Monitor for _CreateEvent_ and _DeleteEvent_`
			`- ~~Commit metadata scraping~~ (_Not implemented yet_)`
			`- ~~Automatic secret scraping~~ (_Not implemented yet_)`
			`- ~~IRC/Webhook notifications~~ (_Not implemented yet_)`

Add installation and configuration to README.md 2023-11-11 16:27:05 +00:00			`## Installation`
			```shell
			`git clone https://git.juggalol.com/agatha/gitmon`
			`cd gitmon`
			`pip install -r requirements.txt`
			```

			`## Configuration`
			`GitMon works best with a token. Without a token you are limited to 60 API calls per hour.`
			`Creating and using a Personal Access Token will raise that limit to 60,000 API calls per hour.`

			To use a Personal Access Token, create a `config.py` file:
			```
Add installation and configuration to README.md 2023-11-11 16:27:38 +00:00			`token = 'ghp_YOUR_TOKEN_HERE'`
Add installation and configuration to README.md 2023-11-11 16:27:05 +00:00			```

CATCH EM SLIPPIN 2023-11-11 04:20:43 +00:00			`## Caught Slippin'`
			`![Deleted GitHub token](.img/slippin-ght.png)`

			`![Cloud creds](.img/slippin-db.png)`

Initial commit 2023-11-11 00:25:45 +00:00			`## Contributors`
			`- agathanonymous`