Alternatives and similar repositories for detect-secrets:

Users that are interested in detect-secrets are comparing it to the libraries listed below

• aquasecurity / tfsec
  Tfsec is now part of Trivy
  ☆6,798Updated last month
• cartography-cncf / cartography
  Cartography is a Python tool that consolidates infrastructure assets and the relationships between them in an intuitive graph view powere…
  ☆3,263Updated this week
• quay / clair
  Vulnerability Static Analysis for Containers
  ☆10,550Updated last week
• gitleaks / gitleaks
  Find secrets with Gitleaks 🔑
  ☆19,337Updated this week
• semgrep / semgrep
  Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
  ☆11,379Updated this week
• aquasecurity / kube-hunter
  Hunt for security weaknesses in Kubernetes clusters
  ☆4,832Updated last year
• sa7mon / S3Scanner
  Scan for misconfigured S3 buckets across S3-compatible APIs!
  ☆2,710Updated last week
• aquasecurity / kube-bench
  Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
  ☆7,311Updated this week
• hadolint / hadolint
  Dockerfile linter, validate inline bash, written in Haskell
  ☆10,785Updated this week
• trufflesecurity / trufflehog
  Find, verify, and analyze leaked credentials
  ☆18,582Updated this week
• anchore / anchore-engine
  A service that analyzes docker images and scans for vulnerabilities
  ☆1,588Updated 2 years ago
• aquasecurity / cloudsploit
  Cloud Security Posture Management (CSPM)
  ☆3,467Updated last week
• eth0izzle / shhgit
  Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.
  ☆3,879Updated last month
• inspec / inspec
  InSpec: Auditing and Testing Framework
  ☆2,894Updated last week
• aquasecurity / trivy
  Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
  ☆25,104Updated this week
• goodwithtech / dockle
  Container Image Linter for Security, Helping build the Best-Practice Docker Image, Easy to start
  ☆2,854Updated 2 months ago
• open-policy-agent / conftest
  Write tests against structured configuration data using the Open Policy Agent Rego query language
  ☆2,937Updated last week
• toniblyx / my-arsenal-of-aws-security-tools
  List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
  ☆9,120Updated 5 months ago
• anchore / syft
  CLI tool and library for generating a Software Bill of Materials from container images and filesystems
  ☆6,744Updated this week
• gruntwork-io / terratest
  Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.
  ☆7,618Updated this week
• tenable / terrascan
  Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.
  ☆4,872Updated 3 months ago
• terraform-linters / tflint
  A Pluggable Terraform Linter
  ☆5,179Updated last week
• RhinoSecurityLabs / pacu
  The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
  ☆4,602Updated last week
• gruntwork-io / terragrunt
  Terragrunt is a flexible orchestration tool that allows Infrastructure as Code written in OpenTofu/Terraform to scale.
  ☆8,506Updated this week
• nccgroup / ScoutSuite
  Multi-Cloud Security Auditing Tool
  ☆7,027Updated 4 months ago
• thoughtworks / talisman
  Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and priva…
  ☆1,973Updated this week
• goss-org / goss
  Quick and Easy server testing/validation
  ☆5,698Updated 3 months ago
• snyk / driftctl
  Detect, track and alert on infrastructure drift
  ☆2,520Updated 2 weeks ago
• adrienverge / yamllint
  A linter for YAML files.
  ☆3,005Updated this week
• segmentio / chamber
  CLI for managing secrets
  ☆2,497Updated 2 weeks ago