Monitoring Gists
We’re expanding our coverage to include GitHub Gists as a valuable source of vulnerability sightings!
Why Gists?
Gists frequently contain sensitive leaked information, such as email address lists, passwords, API keys, SSH private keys, logs, zero-day exploits, or proof-of-concept (PoC) scripts for vulnerabilities.
As part of the Vulnerability-Lookup project, we are now actively monitoring their creation in order to generate sightings related to vulnerabilities in our database.
Browse the Latest Findings
We’ve recently identified from this source various proof-of-concepts:
https://vulnerability.circl.lu/sightings/?query=gist.github
Real-Time Integration
All sightings are automatically reflected on the Vulnerability-Lookup dashboard. In this case, the charts showing exploitations and confirmations over the past week are affected.
More specifically, you can take a look at recent sightings related to CVE-2020-1102.
Observe the correlation of sightings from exploit-db.com, HackerOne, and the indentified Gist:
https://vulnerability.circl.lu/vuln/CVE-2020-11022#sightings
(or see the screenshot)
Enhanced Bluesky Integration
We’re also gathering richer insights from the Bluesky network. With the latest update of BlueSkySight, you can now connect directly to Bluesky’s firehose or via a Jetstream service. Depending on your preference.
You can also use BlueSkySight for your own intelligence work. Check out the documentation for more details:
https://github.com/CIRCL/BlueSkySight
Your contributions
Finally, if you have observations or comments to share, you can create your account: https://vulnerability.circl.lu/user/signup