avito-tech / deepsecrets
Secrets scanner that understands code
☆189Updated last year
Alternatives and similar repositories for deepsecrets
Users that are interested in deepsecrets are comparing it to the libraries listed below
Sorting:
- Secrets scanner that understands code☆141Updated 2 months ago
- truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)☆118Updated last year
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆218Updated 3 weeks ago
- ☆110Updated last year
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆104Updated 3 months ago
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interesting…☆47Updated 8 months ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆39Updated 5 months ago
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆226Updated 3 months ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆169Updated 3 months ago
- 🧰 Multi Tool Kubernetes Pentest Image☆230Updated 3 weeks ago
- FastCVE - fast, rich and API-based search for CVE and more (CPE, CWE, CAPEC)☆49Updated 3 weeks ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆133Updated last month
- boostsecurityio/lotp☆124Updated last month
- ☆177Updated 2 weeks ago
- Extensible framework for analyzing publicly available information about vulnerabilities☆113Updated this week
- ☆190Updated 6 months ago
- The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testin…☆205Updated 3 years ago
- Protect against subdomain takeover☆92Updated 11 months ago
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.☆66Updated this week
- Manager of third-party sources of Semgrep rules 🗂☆81Updated 9 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆133Updated last year
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆107Updated 6 months ago
- A small tool to help developers understand a huge set of security requirements from appsec teams☆45Updated 2 years ago
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆278Updated 3 months ago
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…☆122Updated 2 years ago
- ☆71Updated 2 weeks ago
- ☆42Updated last year
- POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF☆58Updated last year
- Find secrets in your codebase☆123Updated 2 months ago
- A research project to add some brrrrrr to Burp☆160Updated 3 months ago