DotGit

DotGit

An extension to check if .git is exposed in visited websites. Source code: https://github.com/davtur19/DotGit

  • DotGit
  • DotGit
  • DotGit
What is DotGit?
'DotGit' is a security auditing Firefox add-on that checks if .git, .svn, .hg folders, .env files are exposed on the sites you visit. It also checks if the site is open source and whether it has a security.txt file. When an exposed folder is found, the user will be notified. You can view .git/config with one click and download the entire .git folder in zip format. The extension settings allow you to customize colors, notifications and downloads.
Merlin
Stats
By: davtur
Rating: 5.00 (8)
Version: 4.8 (Last updated: 2023-09-18)
Creation date: 2019-09-11
Weekly download count: 82
Firefox on Android: No
Risk impact: High risk impact
Risk likelihood: Moderate risk likelihood
Manifest version: 2
Permissions:
  • *://*/*
  • webRequest
  • storage
  • notifications
  • downloads
Size: 154.82K
URLs: Website
Stats date:

Other platforms

Not available on Chrome
Not available on Edge
Want to check extension ranking and stats more quickly for other Firefox add-ons? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Firefox Browser Add-ons.
Chrome-Stats extension
Merlin
Summary

An extension for checking if .git is exposed in visited websites.

  • Check if a .git/.svn/.hg folder exists for each site you visit
  • Check if a .env file exists for each site you visit
  • Check if the site is open source (github/gitlab)
  • Check if the site has security.txt
  • You will be notified when a folder is found
  • List of exposed sites found
  • Download the entire .git folder in zip format, even if the files are not listed on the site
  • View .git/config with one click
  • Options for: colors, notifications and downloads
Some checks are turned off by default, open the settings to turn them on Source code: https://github.com/davtur19/DotGit
User reviews
by geeknik, 2024-04-10

by geeknik, 2024-04-10

View all user reviews
Safety
Risk impact

DotGit is risky to use as it requires a number of sensitive permissions that can potentially harm your browser and steal your data. Exercise caution when installing this add-on. Review carefully before installing. We recommend that you only install DotGit if you trust the publisher.

Risk likelihood

DotGit is probably trust-worthy. Prefer other publishers if available. Exercise caution when installing this add-on.

Upgrade to see risk analysis details