americanexpress / earlybird
EarlyBird is a sensitive data detection tool capable of scanning source code repositories for clear text password violations, PII, outdated cryptography methods, key files and more.
☆703Updated 3 weeks ago
Related projects: ⓘ
- Private key usage verification☆402Updated 8 months ago
- Identify hardcoded secrets in static structured text☆480Updated 11 months ago
- A simple HTTP proxy that fogs over naughty URLs☆1,067Updated this week
- all paths lead to clouds☆635Updated 11 months ago
- Fast HTTP enumerator☆457Updated last month
- ☆888Updated this week
- A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…☆329Updated 6 months ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆790Updated last year
- Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.☆1,010Updated 7 months ago
- ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.☆667Updated 11 months ago
- Open Source Package Analysis☆721Updated last week
- A suite of secret scanners built in Rust for performance. Based on TruffleHog (https://github.com/dxa4481/truffleHog) which is written in…☆445Updated 2 weeks ago
- Slack enumeration and exposed secrets detection tool☆302Updated this week
- Scan your code for security misconfiguration, search for passwords and secrets.☆633Updated last year
- Threat matrix for CI/CD Pipeline☆731Updated 2 months ago
- GitHub App to set and enforce security policies☆1,240Updated this week
- ClusterFuzzLite - Simple continuous fuzzing that runs in CI.☆454Updated 3 months ago
- A container analysis and exploitation tool for pentesters and engineers.☆619Updated 11 months ago
- GuardDog is a CLI tool to Identify malicious PyPI and npm packages☆590Updated this week
- Agile Threat Modeling Toolkit☆594Updated last week
- Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…☆550Updated this week
- Semgrep queries developed by Trail of Bits.☆317Updated last month
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆840Updated this week
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆687Updated last month
- Solitude is a privacy analysis tool that enables anyone to conduct their own privacy investigations. Whether a curious novice or a more a…☆372Updated 3 years ago
- A checklist of practices for organizations dealing with account takeover (ATO)☆261Updated 3 years ago
- Certificate Transparency Log Monitor☆956Updated 2 months ago
- OWASP Domain Protect - prevent subdomain takeover☆392Updated last month
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆494Updated this week
- ☆277Updated this week