americanexpress / earlybirdLinks
EarlyBird is a sensitive data detection tool capable of scanning source code repositories for clear text password violations, PII, outdated cryptography methods, key files and more.
☆737Updated last month
Alternatives and similar repositories for earlybird
Users that are interested in earlybird are comparing it to the libraries listed below
Sorting:
- Private key usage verification☆431Updated 2 months ago
- A set of tools to work with the feeds (vulnerabilities, CPE dictionary etc.) distributed by National Vulnerability Database (NVD)☆463Updated last year
- Scan your code for security misconfiguration, search for passwords and secrets.☆648Updated 2 years ago
- A simple HTTP proxy that fogs over naughty URLs☆1,172Updated this week
- Go rules for semgrep and go-ruleguard☆472Updated 7 months ago
- An open source intelligence tool to crawl the graph of certificate Alternate Names☆353Updated last year
- A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…☆364Updated 6 months ago
- Open Source Package Analysis☆833Updated 2 months ago
- ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.☆690Updated last year
- Fast HTTP enumerator☆484Updated 2 months ago
- Slack enumeration and exposed secrets detection tool☆380Updated last week
- Semgrep queries developed by Trail of Bits.☆415Updated 2 weeks ago
- A suite of secret scanners built in Rust for performance. Based on TruffleHog (https://github.com/dxa4481/truffleHog) which is written in…☆515Updated this week
- A tool to check for vulnerabilities in your Golang dependencies, powered by Sonatype OSS Index☆583Updated last week
- GitHub App to set and enforce security policies☆1,338Updated this week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆571Updated 2 months ago
- Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace☆771Updated 4 months ago
- [mirror] The Go Vulnerability Database☆582Updated last week
- A container analysis and exploitation tool for pentesters and engineers.☆666Updated last year
- Telling tales on you for leaking secrets!☆233Updated 2 weeks ago
- An installable desktop variant of OWASP Threat Dragon☆593Updated 2 weeks ago
- Domain name permutation engine written in Go☆265Updated last year
- FestIn - Open S3 Bucket Scanner☆234Updated 4 years ago
- Agile Threat Modeling Toolkit☆676Updated last week
- We would like to request that all contributors please clone a *fresh copy* of this repository since the September 21st maintenance.☆28Updated 2 weeks ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆846Updated last year
- Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pag…☆522Updated 2 months ago
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆725Updated 10 months ago
- GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.☆374Updated this week
- A CLI-based HTTP intercept and replay proxy☆259Updated 3 weeks ago