trufflesecurity / trufflehogLinks
Find, verify, and analyze leaked credentials
β23,159Updated this week
Alternatives and similar repositories for trufflehog
Users that are interested in trufflehog are comparing it to the libraries listed below
Sorting:
- Find secrets with Gitleaks πβ23,930Updated last week
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enablβ¦β25,424Updated this week
- Reconnaissance tool for GitHub organizationsβ6,090Updated 3 years ago
- Fast passive subdomain enumeration tool.β12,538Updated this week
- Community curated list of templates for the nuclei engine to find security vulnerabilities.β11,323Updated this week
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and moreβ29,754Updated last week
- An enterprise friendly way of detecting and preventing secrets in code.β4,305Updated 8 months ago
- A next-generation crawling and spidering framework.β14,414Updated last week
- httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.β9,177Updated this week
- A vulnerability scanner for container images and filesystemsβ11,005Updated this week
- In-depth attack surface mapping and asset discoveryβ13,762Updated this week
- Fast web fuzzer written in Goβ15,095Updated 6 months ago
- An HTTP toolkit for security research.β9,001Updated 9 months ago
- SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.β15,869Updated 11 months ago
- Open Source Vulnerability Management Platformβ6,023Updated last month
- Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.β3,926Updated 8 months ago
- Vulnerability scanner written in Go which uses the data provided by https://osv.devβ8,026Updated this week
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attβ¦β5,511Updated last week
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.β4,965Updated last week
- An OOB interaction gathering server and client libraryβ4,023Updated last week
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.β5,511Updated last week
- A Tool for Domain Flyoversβ5,872Updated 3 years ago
- A toolkit for testing, tweaking and cracking JSON Web Tokensβ6,177Updated 6 months ago
- Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.β5,419Updated 7 months ago
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.β13,294Updated last week
- Nikto web server scannerβ9,805Updated this week
- Prowler is the Open Cloud Security for AWS, Azure, GCP, Kubernetes, M365 and more. As agent-less, it helps for continuous monitoring, secβ¦β12,320Updated this week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystemsβ7,952Updated this week
- A fast, simple, recursive content discovery tool written in Rust.β7,173Updated last month
- The recursive internet scanner for hackers. π§‘β9,136Updated this week