Secrets Detection Tools
Tools that find and scan for leaked secrets, credentials, API keys, and tokens hardcoded in source code, repositories, and CI/CD pipelines.
Browse 51 secrets detection tools
FEATURED
USE CASES
A secret scanning tool that examines NPM modules and ZIP files for exposed credentials and sensitive information using nuclei templates.
A pre-commit security tool that scans source code repositories to detect and prevent secrets like API keys, passwords, and credentials from being committed to version control systems.
APKLeaks is a command-line tool that scans Android APK files to identify embedded URIs, endpoints, and secrets for security assessment purposes.
A command-line tool that scans textual data and Git history to identify and locate secrets, API keys, passwords, and other sensitive information.
A Chrome browser extension that uses machine learning to detect and alert users about sensitive data exposure and potential data breaches across web environments.
Secret Bridge monitors GitHub repositories to detect and alert on leaked secrets and sensitive data exposure.
Yar is a reconnaissance tool for scanning organizations, users, and repositories to identify vulnerabilities and security risks during security assessments.
A secrets detection tool that scans GitHub, GitLab, and Bitbucket repositories to identify API keys, access tokens, and other sensitive information in source code.
A tool that combines multiple open source Git scanning utilities to detect and list secrets stored in Git repositories for security audits and compliance checks.
A static code analysis tool for parsing common data formats to detect hardcoded credentials and dangerous functions.
Gitleaks is a SAST tool for detecting and preventing hardcoded secrets in git repos.
Dufflebag searches through public AWS EBS snapshots to identify accidentally exposed secrets and sensitive information.
Find leaked credentials by scanning repositories for high entropy strings.
DumpsterDiver analyzes large datasets to detect hardcoded secrets, keys, and passwords using entropy calculations and customizable search rules.
Prevents you from committing passwords and other sensitive information to a git repository.
A Python command line tool that scans directories for AWS credentials in files, designed for CI/CD integration to prevent credential exposure in builds.
