> ## Documentation Index
> Fetch the complete documentation index at: https://bloodhound.specterops.io/llms.txt
> Use this file to discover all available pages before exploring further.

# Overview

> Learn about the GitHub OpenGraph extension for BloodHound.

<img noZoom src="https://mintcdn.com/specterops/tTIczgde9H07oLXf/assets/enterprise-AND-community-edition-pill-tag.svg?fit=max&auto=format&n=tTIczgde9H07oLXf&q=85&s=ad49a576589f4d2a8081df77d07fdf56" alt="Applies to BloodHound Enterprise and CE" width="482" height="45" data-path="assets/enterprise-AND-community-edition-pill-tag.svg" />

The GitHub extension is an OpenGraph extension for [GitHub](https://github.com/) that enables BloodHound to model GitHub organizations, identities, repositories, workflows, secrets, roles, and related relationships as graph data.

It adds GitHub-specific [nodes](/opengraph/extensions/github/schema#nodes), [edges](/opengraph/extensions/github/schema#edges), [Cypher queries](/opengraph/extensions/github/queries), and [Privilege Zone rules](/opengraph/extensions/github/privilege-zone-rules) to help security professionals visualize and analyze their GitHub configurations in BloodHound.

## GitHub Attack Paths

GitHub is a highly valuable target for attackers in the modern enterprise. The privileged actions required to administer repositories, manage secrets, and control CI/CD pipelines allow elevated access to source code, cloud environments, and connected infrastructure, and complicate the jobs of defensive teams trying to differentiate benign and malicious actions.

Compromising a GitHub organization can provide attackers with a wide range of access to laterally move across repositories, exfiltrate sensitive code and secrets, tamper with CI/CD pipelines, and pivot to connected cloud environments via OIDC federation.

<Frame>
  <img src="https://mintcdn.com/specterops/vLZ2lUIRm_HibFmq/images/extensions/github/github_bloodhound.png?fit=max&auto=format&n=vLZ2lUIRm_HibFmq&q=85&s=b9d7c91398ff6d184fb6b46f2085d298" alt="Example GitHub graph" width="2922" height="1716" data-path="images/extensions/github/github_bloodhound.png" />
</Frame>

<Note>Our research on GitHub attack paths is still ongoing.</Note>

## Available Collectors

The GitHub extension supports two collector paths:

* [OpenHound GitHub collector](/openhound/collectors/github/overview): The SpecterOps-supported GitHub collector. This is the primary documented path for collecting GitHub data for BloodHound.
* [GitHound collector](https://github.com/SpecterOps/GitHound): An alternative GitHub collector that also targets the GitHub extension schema.

## Community

Please join us in the `#github-og` channel of the [BloodHound Community Slack](https://slack.specterops.io/) workspace if you want to chat about attack paths in GitHub. You are also welcome to open an issue or pull request on [GitHub](https://github.com/SpecterOps/openhound-github).

## Related Pages

* [Getting started](/opengraph/extensions/github/getting-started)
* [Schema reference](/opengraph/extensions/github/schema)
* [Cypher queries](/opengraph/extensions/github/queries)
* [Privilege Zone rules](/opengraph/extensions/github/privilege-zone-rules)
* [OpenHound GitHub collector overview](/openhound/collectors/github/overview)