americanexpress / earlybirdLinks
EarlyBird is a sensitive data detection tool capable of scanning source code repositories for clear text password violations, PII, outdated cryptography methods, key files and more.
☆745Updated this week
Alternatives and similar repositories for earlybird
Users that are interested in earlybird are comparing it to the libraries listed below
Sorting:
- A suite of secret scanners built in Rust for performance. Based on TruffleHog (https://github.com/dxa4481/truffleHog) which is written in…☆530Updated 3 months ago
- Private key usage verification☆430Updated 6 months ago
- all paths lead to clouds☆638Updated 2 years ago
- Fast HTTP enumerator☆487Updated 6 months ago
- Telling tales on you for leaking secrets!☆233Updated last week
- Slack enumeration and exposed secrets detection tool☆389Updated 3 months ago
- A set of tools to work with the feeds (vulnerabilities, CPE dictionary etc.) distributed by National Vulnerability Database (NVD)☆467Updated last year
- A container analysis and exploitation tool for pentesters and engineers.☆673Updated 2 years ago
- Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pag…☆528Updated 6 months ago
- ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.☆714Updated 2 years ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆815Updated 6 months ago
- Scan your code for security misconfiguration, search for passwords and secrets.☆649Updated 2 years ago
- Go rules for semgrep and go-ruleguard☆480Updated 11 months ago
- A tool to check for vulnerabilities in your Golang dependencies, powered by Sonatype OSS Index☆599Updated last month
- An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…☆763Updated 10 months ago
- GitHub App to set and enforce security policies☆1,362Updated last week
- Uncover forgotten secrets and bring them back to life, haunting security and operations teams.☆209Updated 2 years ago
- A Blazing fast Security Auditing tool for Kubernetes☆1,006Updated last year
- Get (security) info about IP addresses☆238Updated 2 months ago
- Yar is a tool for plunderin' organizations, users and/or repositories.☆238Updated 4 years ago
- A CLI-based HTTP intercept and replay proxy☆263Updated 3 weeks ago
- An automated tool which can simultaneously crawl, fill forms, trigger error/debug pages and "loot" secrets out of the client-facing code …☆403Updated 9 months ago
- An open source intelligence tool to crawl the graph of certificate Alternate Names☆358Updated last month
- teler-waf is a Go HTTP middleware that protects local web services from OWASP Top 10 threats, known vulnerabilities, malicious actors, bo…☆387Updated 7 months ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆978Updated last week
- Searches through git repositories for high entropy strings and secrets, digging deep into commit history☆510Updated 4 months ago
- Domain name permutation engine written in Go☆268Updated 2 years ago
- A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…☆372Updated this week
- A simple HTTP proxy that fogs over naughty URLs☆1,190Updated last week
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆854Updated 2 years ago