Alternatives and similar repositories for trufflehog3

Users that are interested in trufflehog3 are comparing it to the libraries listed below

• assetnote / ghostbuster
  Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.
  ☆278Updated last year
• avito-tech / deepsecrets
  Secrets scanner that understands code
  ☆192Updated 2 years ago
• WeAreCloudar / s3-account-search
  S3 Account Search
  ☆34Updated 6 months ago
• Santandersecurityresearch / DrHeader
  drHEADer helps with the audit of security headers received in response to a single request or a list of requests.
  ☆112Updated last year
• cr0hn / festin
  FestIn - Open S3 Bucket Scanner
  ☆232Updated 5 years ago
• domain-protect / domain-protect-gcp
  Protect against subdomain takeover
  ☆95Updated 6 months ago
• nccgroup / ccs
  ☆114Updated 2 years ago
• anirudhbiyani / findmytakeover
  find dangling domains in a multi cloud environment
  ☆175Updated last month
• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆262Updated this week
• controlplaneio / truffleproc
  truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)
  ☆122Updated 2 years ago
• DigeeX / raider
  DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider
  ☆139Updated 4 years ago
• N0MoreSecr3ts / wraith
  Uncover forgotten secrets and bring them back to life, haunting security and operations teams.
  ☆210Updated 2 years ago
• DavidDikker / endgame
  An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share th…
  ☆206Updated 4 years ago
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆106Updated last year
• The-Login / DNS-Analysis-Server
  Tools to assess DNS security.
  ☆153Updated last year
• BishopFox / dufflebag
  Search exposed EBS volumes for secrets
  ☆302Updated 2 years ago
• righteousgambit / quiet-riot
  Unauthenticated enumeration of AWS, Azure, and GCP Principals
  ☆280Updated 2 months ago
• domain-protect / domain-protect
  OWASP Domain Protect - prevent subdomain takeover
  ☆397Updated last year
• padok-team / yatas
  A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration
  ☆337Updated last month
• PaperMtn / gitlab-watchman
  Finding exposed secrets and personal data in GitLab
  ☆202Updated last year
• matiassequeira / docker_explorer
  Scan DockerHub images that match a keyword to find secrets.
  ☆61Updated 4 years ago
• boringtools / git-alerts
  Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
  ☆228Updated last week
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆137Updated last week
• dxa4481 / truffleHogRegexes
  These are the regexes that power truffleHog
  ☆225Updated 3 years ago
• BlazingWind / OWASP-ASVS-4.0-testing-guide
  ☆124Updated 2 years ago
• newrelic / rusty-hog
  A suite of secret scanners built in Rust for performance. Based on TruffleHog (https://github.com/dxa4481/truffleHog) which is written in…
  ☆540Updated 7 months ago
• BishopFox / smogcloud
  Find cloud assets that no one wants exposed 🔎 ☁️
  ☆350Updated 5 years ago
• mxm0z / awesome-sec-s3
  A collection of awesome AWS S3 tools that collects and enumerates exposed S3 buckets
  ☆407Updated last month
• appsecco / attacking-cloudgoat2
  A step-by-step walkthrough of CloudGoat 2.0 scenarios.
  ☆134Updated 5 years ago
• salesforce / metabadger
  Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
  ☆143Updated 9 months ago