Secrets
git-secrets - Prevents you from committing secrets and credentials into git repositories
gitleaks - Scan git repos (or files) for secrets using regex and entropy
truffleHog - Searches through git repositories for high entropy strings and secrets, digging deep into commit history
gitGraber - gitGraber: monitor GitHub to search and find sensitive data in real time for different online services
talisman - By hooking into the pre-push hook provided by Git, Talisman validates the outgoing changeset for things that look suspicious - such as authorization tokens and private keys.
GitGot - Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.
git-all-secrets - A tool to capture all the git secrets by leveraging multiple open source git searching tools
github-search - Tools to perform basic search on GitHub.
git-vuln-finder - Finding potential software vulnerabilities from git commit messages
commit-stream - #OSINT tool for finding Github repositories by extracting commit logs in real time from the Github event API
gitrob - Reconnaissance tool for GitHub organizations
repo-supervisor - Scan your code for security misconfiguration, search for passwords and secrets.
GitMiner - Tool for advanced mining for content on Github
shhgit - Ah shhgit! Find GitHub secrets in real time
detect-secrets - An enterprise friendly way of detecting and preventing secrets in code.
rusty-hog - A suite of secret scanners built in Rust for performance. Based on TruffleHog
whispers - Identify hardcoded secrets and dangerous behaviours
yar - Yar is a tool for plunderin' organizations, users and/or repositories.
dufflebag - Search exposed EBS volumes for secrets
secret-bridge - Monitors Github for leaked secrets
earlybird - EarlyBird is a sensitive data detection tool capable of scanning source code repositories for clear text password violations, PII, outdated cryptography methods, key files and more.
Trufflehog-Chrome-Extension - Trufflehog-Chrome-Extensio
Last updated