Don't be stupd on GitHub

THOTCON 0x7

Presented by: metacortex
Date: Thursday May 05, 2016
Time: 15:00 - 15:25
Location: Turbo Room
Track: Track 2

You may be surprised (you probably shouldn't) at all of the sensitive information people put on GitHub. If you look, you can find everything from database passwords, RSA private keys, and even unix shadow files. Not only will I show you how to find all this awesome data but I will show you how to harvest as much of it as possible as well as some password analysis on the passwords that were found.

metacortex

Currently a native of SLC and founder of the 801 Labs hacker space as well as responsible for reviving the local DEF CON group, DC801.


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats