americanexpress / earlybirdLinks
EarlyBird is a sensitive data detection tool capable of scanning source code repositories for clear text password violations, PII, outdated cryptography methods, key files and more.
☆744Updated last week
Alternatives and similar repositories for earlybird
Users that are interested in earlybird are comparing it to the libraries listed below
Sorting:
- Private key usage verification☆429Updated 5 months ago
- Fast HTTP enumerator☆487Updated 5 months ago
- all paths lead to clouds☆638Updated last year
- ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.☆714Updated last year
- A suite of secret scanners built in Rust for performance. Based on TruffleHog (https://github.com/dxa4481/truffleHog) which is written in…☆527Updated 2 months ago
- Telling tales on you for leaking secrets!☆234Updated 2 weeks ago
- A container analysis and exploitation tool for pentesters and engineers.☆672Updated 2 years ago
- Slack enumeration and exposed secrets detection tool☆386Updated 2 months ago
- An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…☆758Updated 9 months ago
- Go rules for semgrep and go-ruleguard☆479Updated 10 months ago
- Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pag…☆526Updated 5 months ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆814Updated 5 months ago
- Threat matrix for CI/CD Pipeline☆759Updated last year
- A tool to check for vulnerabilities in your Golang dependencies, powered by Sonatype OSS Index☆594Updated this week
- Yar is a tool for plunderin' organizations, users and/or repositories.☆238Updated 4 years ago
- GitHub App to set and enforce security policies☆1,357Updated last week
- A CLI-based HTTP intercept and replay proxy☆263Updated 3 weeks ago
- Scan your code for security misconfiguration, search for passwords and secrets.☆649Updated 2 years ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆853Updated 2 years ago
- A set of tools to work with the feeds (vulnerabilities, CPE dictionary etc.) distributed by National Vulnerability Database (NVD)☆468Updated last year
- Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.☆1,232Updated last month
- Searches through git repositories for high entropy strings and secrets, digging deep into commit history☆507Updated 3 months ago
- Get (security) info about IP addresses☆236Updated last month
- An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API securit…☆547Updated 11 months ago
- A checklist of practices for organizations dealing with account takeover (ATO)☆273Updated 11 months ago
- Peirates - Kubernetes Penetration Testing tool☆1,359Updated last month
- An automated tool which can simultaneously crawl, fill forms, trigger error/debug pages and "loot" secrets out of the client-facing code …☆402Updated 8 months ago
- A Server Side Request Forgery (SSRF) protection library. Made with 🖤 by Doyensec LLC.☆107Updated 3 months ago
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆576Updated 5 months ago
- Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration☆301Updated 2 weeks ago