#Secrets-detection

Showing 23 of 23 repositories tagged #secrets-detection, ranked by stars

edoardottt
edoardottt
cariddi

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

Score
100
โ˜… 3.4k โ‘‚ 294 +1/day
Go
deepfence
deepfence
SecretScanner

:unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:

Score
80
โ˜… 3.4k โ‘‚ 347 โ€”
Go
praetorian-inc
praetorian-inc
noseyparker

Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data and Git history.

Score
0
โ˜… 2.3k โ‘‚ 132 โ€”
Rust
GitGuardian
GitGuardian
ggshield

Detect and validate 500+ types of hardcoded secrets with advanced checks. Use it as a pre-commit hook, GitHub Action, or CLI for proactive secret detection and security.

Score
100
โ˜… 2.0k โ‘‚ 206 +1/day
Python
betterleaks
betterleaks
betterleaks

Scan the world (for secrets)

Score
60
โ˜… 1.4k โ‘‚ 102 +2/day
Go
EwenQuim
EwenQuim
entropy

Entropy is a CLI tool that will scan your codebase for high entropy lines, which are often secrets.

Score
20
โ˜… 729 โ‘‚ 21 โ€”
Go
okta-graveyard
okta-graveyard
repo-supervisor

Scan your code for security misconfiguration, search for passwords and secrets. :mag:

Score
64
โ˜… 654 โ‘‚ 89 โ€”
JavaScript
praetorian-inc
praetorian-inc
titus

High-performance secrets scanner. CLI, Go library, Burp Suite extension, and Chrome extension. 487 detection rules with live credential validation.

Score
40
โ˜… 605 โ‘‚ 68 +3/day
Go
cc1a2b
cc1a2b
JShunter

jshunter is a command-line tool designed for analyzing JavaScript files and extracting endpoints. This tool specializes in identifying sensitive data, such as API endpoints and potential security vulnerabilities, making it an essential resource for and bug bounty hunters and security researchers.

Score
0
โ˜… 528 โ‘‚ 59 +2/day
Go
godaddy
godaddy
tartufo

Searches through git repositories for high entropy strings and secrets, digging deep into commit history

Score
91
โ˜… 514 โ‘‚ 71 โ€”
Python
Skyscanner
Skyscanner
whispers

Identify hardcoded secrets in static structured text

Score
36
โ˜… 504 โ‘‚ 70 โ€”
Python
GitGuardian
GitGuardian
ggshield-action

GitGuardian Shield GitHub Action - Find exposed credentials in your commits

Score
0
โ˜… 347 โ‘‚ 27 โ€”
blackhatethicalhacking
blackhatethicalhacking
SecretOpt1c

SecretOpt1c is a Red Team tool that helps uncover sensitive information in websites using ACTIVE and PASSIVE Techniques for Superior Accuracy!

Score
18
โ˜… 248 โ‘‚ 35 โ€”
Shell
adeptex
adeptex
whispers

Identify hardcoded secrets in static structured text (version 2)

Score
0
โ˜… 100 โ‘‚ 12 โ€”
Python
garagon
garagon
aguara

The open source security engine for AI agent and supply-chain trust.

Score
82
โ˜… 85 โ‘‚ 15 โ€”
Go
oxsecurity
oxsecurity
codetotal

Analyze any snippet, file, or repository to detect possible security flaws such as secret in code, open source vulnerability, code security, vulnerability, insecure infrastructure as code, and potential legal issues with open source licenses.

Score
9
โ˜… 78 โ‘‚ 9 โ€”
TypeScript
spark1security
spark1security
n0s1

Secret Scanner for Slack, Jira, Confluence, Asana, Wrike, Linear, Zendesk, GitHub, and GitLab

Score
73
โ˜… 78 โ‘‚ 19 +1/day
Python
karant-dev
karant-dev
AutoRedact

๐Ÿ›ก๏ธ Client-side, privacy-first image redaction tool. Automatically detects and blurs PII (Emails, IPs, Keys) using local OCR. No server, no data leaks.

Score
55
โ˜… 76 โ‘‚ 2 โ€”
TypeScript
BenjaminIheukumere
BenjaminIheukumere
secrets_find0r

Secrets Find0r is a multithreaded SMB share crawler that hunts for exposed credentials and secrets across Windows networks. It enumerates shares, recursively scans files with regex/keyword rules, highlights matched tokens on screen, and exports clean ASCII tables. Supports DOCX/PDF/legacy Office and depth limits.

Score
45
โ˜… 70 โ‘‚ 13 โ€”
Python
praetorian-inc
praetorian-inc
noseyparker-explorer

Interactive results explorer and annotation tool for Nosey Parker

Score
0
โ˜… 58 โ‘‚ 5 โ€”
Python
ArmorerLabs
ArmorerLabs
Armorer-Guard

Fast local Rust scanner for AI-agent prompt injection, credential leaks, exfiltration, and risky tool calls

Score
27
โ˜… 40 โ‘‚ 10 โ€”
Rust
GitGuardian
GitGuardian
gitguardian-vscode

Stop leaks. Safeguard your secrets with GitGuardian. GitGuardian actively prevents accidental exposure of sensitive information in your code, allowing you to code confidently and maintain the integrity of your data.

Score
0
โ˜… 38 โ‘‚ 4 โ€”
TypeScript
foresturquhart
foresturquhart
grimoire

A lightweight tool that converts directory contents into structured output optimized for LLM interpretation, featuring Git-aware file ordering, secret detection/redaction, token counting, and customizable filtering.

Score
0
โ˜… 20 โ‘‚ 1 +1/day
Go
Related Topics
#security#devsecops#secrets#security-tools#credentials#golang#penetration-testing#go#secrets-management#vulnerability-scanners#git

ยฉ 2026 GitRepoTrend ยท GitHub repositories by topic ยท Updated weekly