An enterprise friendly way of detecting and preventing secrets in code.
☆4,430Mar 13, 2025Updated 11 months ago
Alternatives and similar repositories for detect-secrets
Users that are interested in detect-secrets are comparing it to the libraries listed below
Sorting:
- Find secrets with Gitleaks 🔑☆25,103Feb 21, 2026Updated last week
- Find, verify, and analyze leaked credentials☆24,779Updated this week
- Prevents you from committing secrets and credentials into git repositories☆13,182Sep 17, 2025Updated 5 months ago
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆32,280Updated this week
- Tfsec is now part of Trivy☆6,956Nov 10, 2025Updated 3 months ago
- Vulnerability Static Analysis for Containers☆10,932Updated this week
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆14,285Updated this week
- Bandit is a tool designed to find common security issues in Python code.☆7,809Feb 23, 2026Updated last week
- Multi-Cloud Security Auditing Tool☆7,551Sep 23, 2025Updated 5 months ago
- Hunt for security weaknesses in Kubernetes clusters☆5,004Mar 19, 2024Updated last year
- Prowler is the world’s most widely used open-source cloud security platform that automates security and compliance across any cloud envir…☆13,103Updated this week
- A vulnerability scanner for container images and filesystems☆11,652Updated this week
- A suite of secret scanners built in Rust for performance. Based on TruffleHog (https://github.com/dxa4481/truffleHog) which is written in…☆544Jun 28, 2025Updated 8 months ago
- Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…☆3,737Updated this week
- Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.☆3,945Feb 28, 2025Updated last year
- CloudMapper helps you analyze your Amazon Web Services (AWS) environments.☆6,264Jul 15, 2024Updated last year
- Reconnaissance tool for GitHub organizations☆6,140Sep 20, 2022Updated 3 years ago
- List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.☆9,405Oct 16, 2025Updated 4 months ago
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆5,201Nov 20, 2025Updated 3 months ago
- Simple and flexible tool for managing secrets☆20,987Updated this week
- Scan your code for security misconfiguration, search for passwords and secrets.☆653Jun 23, 2023Updated 2 years ago
- Cloud Native Runtime Security☆8,690Feb 23, 2026Updated last week
- Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resour…☆5,937Updated this week
- Open-Source Unified Vulnerability Management, DevSecOps & ASPM☆4,549Updated this week
- Cloud Security Posture Management (CSPM)☆3,707Feb 23, 2026Updated last week
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆5,073Feb 24, 2026Updated last week
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,574Feb 23, 2026Updated last week
- Fast GitHub recon tool. Scans for leaked secrets across all of GitHub, not just known repos and orgs. Support for GitHub dorks.☆1,405Feb 10, 2026Updated 3 weeks ago
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabl…☆27,194Feb 24, 2026Updated last week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆8,416Feb 24, 2026Updated last week
- Dockerfile linter, validate inline bash, written in Haskell☆11,964Jan 27, 2026Updated last month
- Cloudsplaining is an AWS IAM Security Assessment tool that identifies violations of least privilege and generates a risk-prioritized repo…☆2,185Updated this week
- Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and priva…☆2,069Feb 1, 2026Updated last month
- OpenSSF Scorecard - Security health metrics for Open Source☆5,283Updated this week
- Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark☆7,951Feb 23, 2026Updated last week
- A framework for managing and maintaining multi-language pre-commit hooks.☆15,064Dec 22, 2025Updated 2 months ago
- A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications☆2,204Dec 25, 2020Updated 5 years ago
- In-depth attack surface mapping and asset discovery☆14,193Updated this week
- Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices☆12,049Updated this week