Infisical is the open-source platform for secrets management, internal PKI, and SSH access.
Protect your secrets using Gitleaks-Action
#安卓#Scan for secrets, endpoints, and other sensitive data after decompiling and deobfuscating Android files. (.apk, .xapk, .dex, .jar, .class, .smali, .zip, .aar, .arsc, .aab, .jadx.kts).
Examples of Custom Secret Scanning Patterns
Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc) using TruffleHog.
GitHub Secret Scanning Auto Remediator (GSSAR)
collectvars collects JavaScript variables, highlights risky ones, and helps you understand code structure, while you casually browse.
All of our GitHub Actions rolled into one. Or as we like to say: One GitHub Action to rule them all!
A community-led project that aims to scan published Repls to find secrets and invalidate them.
#Awesome#A curated list of awesome GitHub Advanced Security secret scanning resources.
(in)secure git workshop 🔓+🔑 = 🔐
Testing Suite for GitHub Secret Scanning Custom Patterns
Microsoft Teams notifier for Secret Scanning alerts from GitHub Advanced Security, using a GitHub App and Azure Function
Secrets that were found by the Replit Token Scanner are dumped here for revocation.
A Python based gitleaks wrapped tool to enable scanning of multiple Gitlab repositories in parallel.
A fast and powerful CLI tool for finding secrets in files, web pages, and other text sources. Supports multi-threading, advanced pattern matching, and intelligent security measures detection.
Slack notifier for Secret Scanning alerts from GitHub Advanced Security, using a GitHub App and Azure Function
A GitHub Action that maps GHAS alerts states between two repos. Useful when migrating repositories.
GHAS for Developers Course
GitHub Action to export GitHub security alerts