How .git folder can be exploited to access sensitive data

This is Satya, (Security Researcher/Bug Bounty Hunter). In this writeup, I’m going to show you how I was able to exploit .git to access sensitive data of my target website. So, Let’s get Started…..

What is .git folder??

Git stores the metadata and object database for your project. This is the most important part of Git, and it is what is copied when you clone a repository from another computer. Here “object“ includes “blob”, “tree”, “commit”, and “tag”.

Firstly, You need to download the .git folder using GitTools gitdumper.

Find main/master branch hash code to get tree,commit,blob

You can view the tree,commit,blob by using the main/master branch hash code.

To view the content of these objects like tree,blob,parent etc…, use the command git cat-file to examine the object content.

You can view all the status of the entire local changes. For example if a developer deleted a file named secret.txt and made the commit for the change, you will see the secret.txt file deletion commit with git status command.

The git restore command will discard any local, uncommitted changes in the corresponding files and thereby restore their last committed state.

You will see the restored files in your Target folder

Now, Manually check each files and folders to get any sensitive information disclosure…

I got folder named config, In that folder a file named aws.php contains the AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY.

If you wanna know How to exploit AWS credentials…You can read my previous writeup :

If you like this writeup and want more writeups like this…….Please clap and follow me on

LinkedIn : https://www.linkedin.com/in/satyasai1460

medium : https://medium.com/@satyasai1460

Instagram : https://www.instagram.com/satyasai1460/

Twitter : https://twitter.com/satyasai1460