Secret Detection
Browse 52 secret detection tools
FEATURED
Scans artifacts across SDLC for vulnerabilities, malware, secrets & misconfigs
Full lifecycle software supply chain security platform for code integrity
AI-powered AppSec platform with agentic agents for vulnerability prevention & fix
Secures SDLC with malware detection, vuln scanning, SBOM gen & secret detection
IaC scanning tool for Terraform, CloudFormation, and Kubernetes configurations
Container & source code scanning for vulnerabilities, malware, and secrets
DevSecOps platform for vulnerability detection and developer security training
Agentless API attack surface discovery and vulnerability detection platform
ASPM platform providing visibility, prioritization, and remediation from code to cloud
JavaScript security scanner for detecting vulnerabilities in third-party scripts
A secret scanning tool that examines NPM modules and ZIP files for exposed credentials and sensitive information using nuclei templates.
Pipelineless AppSec platform for dev-native risk detection & remediation
SBOM-powered SCA platform for container & source code security scanning
Code security and quality platform with SAST, SCA, DAST, and AI code protection
An automated reconnaissance tool that crawls domains to discover URLs and scan for exposed secrets, API keys, and sensitive files during security assessments.
A command-line tool that scans textual data and Git history to identify and locate secrets, API keys, passwords, and other sensitive information.
Secret Bridge monitors GitHub repositories to detect and alert on leaked secrets and sensitive data exposure.
A pre-commit security tool that scans source code repositories to detect and prevent secrets like API keys, passwords, and credentials from being committed to version control systems.
Betterscan is an orchestration toolchain that coordinates multiple security tools to scan source code and infrastructure as code for security vulnerabilities, compliance risks, secrets, and misconfigurations.
Dufflebag searches through public AWS EBS snapshots to identify accidentally exposed secrets and sensitive information.
SecretScanner is a standalone tool that scans container images and filesystems to detect approximately 140 types of unprotected secrets and sensitive credentials.
A tool that combines multiple open source Git scanning utilities to detect and list secrets stored in Git repositories for security audits and compliance checks.
Find leaked credentials by scanning repositories for high entropy strings.
