audit-org-keys

command module

v1.4.0 Latest Latest Go to latest Published: Oct 19, 2022 License: MIT Imports: 11 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/jef/audit-org-keys

Links

Open Source Insights

README ¶

gh-audit-org-keys

The point of this project is to help demonstrate that users of GitHub could potentially fall victim to getting their private SSH key cracked. This based on the size and complexity of the key the user generates.

Programs like ssh2john from John the Ripper can best demonstrate how fast an SSH private key can be solved from a not so complex algorithm with low key lengths (think RSA < 1024 bits).

Installation

Install the gh cli - see the installation

Installation requires a minimum version (2.0.0) of the GitHub CLI that supports extensions.

Install this extension:

gh extension install jef/gh-audit-org-keys

Manual Installation

Requirements: cli/cli and go.

Clone the repository

# git
git clone git@github.com:jef/gh-audit-org-keys.git

# GitHub CLI
gh repo clone jef/gh-audit-org-keys

cd into it
```
cd gh-audit-org-keys
```
Build it
```
make build
```
Install it locally
```
gh extension install .
```

Usage

To run:

gh audit-org-keys

To upgrade:

gh extension upgrade audit-org-keys

Examples

gh audit-org-keys --organization="actions"
gh audit-org-keys --organization="actions" --show-users="all"

Acknowledgments

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL