Infisical is the open-source platform for secrets management, PKI, and SSH access.
Protect your secrets using Gitleaks-Action
#安卓#Scan for secrets, endpoints, and other sensitive data after decompiling and deobfuscating Android files. (.apk, .xapk, .dex, .jar, .class, .smali, .zip, .aar, .arsc, .aab, .jadx.kts).
Examples of Custom Secret Scanning Patterns
Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc) using TruffleHog.
GitHub Secret Scanning Auto Remediator (GSSAR)
collectvars collects JavaScript variables, highlights risky ones, and helps you understand code structure, while you casually browse.
All of our GitHub Actions rolled into one. Or as we like to say: One GitHub Action to rule them all!
A community-led project that aims to scan published Repls to find secrets and invalidate them.
(in)secure git workshop 🔓+🔑 = 🔐
#Awesome#A curated list of awesome GitHub Advanced Security secret scanning resources.
A repo full of secrets. This is designed to test SAST secret scanning tools.
Testing Suite for GitHub Secret Scanning Custom Patterns
Microsoft Teams notifier for Secret Scanning alerts from GitHub Advanced Security, using a GitHub App and Azure Function
Secrets that were found by the Replit Token Scanner are dumped here for revocation.
A Python based gitleaks wrapped tool to enable scanning of multiple Gitlab repositories in parallel.
Multi-cloud xSPM platform to scan, visualize, and remediate security risks across cloud, containers, and Kubernetes environments.
A fast and powerful CLI tool for finding secrets and other data in files, web pages, and other text sources. Supports multi-threading and advanced pattern matching.
Slack notifier for Secret Scanning alerts from GitHub Advanced Security, using a GitHub App and Azure Function
A GitHub Action that maps GHAS alerts states between two repos. Useful when migrating repositories.