latest 15 messages by jabberwock
+
[2017-02-02T14:21:00Z]
jabberwock
Hi. Is there a text_match search in the API that allows me to specify a repository? (As opposed to working backgrounds from the result -> repository -> owner)
+
[2017-01-31T17:13:56Z]
jabberwock
I can give them the URLs to the offending files but it's good to not have faith that they'll see where the clear-text password is
+
[2017-01-31T17:13:04Z]
jabberwock
The API gives a lot. Just wondering if there is a way to glean the URL to the line of code
+
[2017-01-31T17:12:06Z]
jabberwock
(and no idea why the .yml files appear under Java since they all look like RoR projects0
+
[2017-01-31T17:10:33Z]
jabberwock
so I want to automate as much as I can. I have it spitting things out in Markdown and will remove as needed
+
[2017-01-31T17:10:18Z]
jabberwock
Java alone has over 2,500 results for "password:" (mostly YML)
+
[2017-01-31T17:10:04Z]
jabberwock
but this pentest is a first for them so we have like 5 guthub instances
+
[2017-01-31T17:09:50Z]
jabberwock
And I've already written a password scanner in python that I may give the client for their pre-commit hooks
+
[2017-01-31T17:09:28Z]
jabberwock
canton7: The thing is that there are sooo many repos
+
[2017-01-31T16:17:02Z]
jabberwock
This is for a pentest and I got frustrated clicking search results
+
[2017-01-31T16:13:13Z]
jabberwock
Using the text_match Accept header
+
[2017-01-31T16:13:03Z]
jabberwock
just an offset in the code itself
+
[2017-01-31T16:12:52Z]
jabberwock
It gives me an html_url to the file itself but I'm not seeing a link with the line number
+
[2017-01-31T16:12:35Z]
jabberwock
Sorry - using the API
+
[2017-01-31T16:12:21Z]
jabberwock
Hello. I am writing a python script to scrape clear-text passwords from a few githubs. is there a way to get the HTML URL to the line number?