cred_scanner is a command line tool designed to identify AWS credentials within files across local directories and subdirectories. The tool performs recursive scanning to detect potential access keys and generates reports on files that cannot be scanned due to format limitations. Built specifically for integration with CI/CD systems like Jenkins, the scanner can automatically fail builds when potential credentials are discovered. This functionality helps prevent accidental exposure of sensitive AWS access keys in source code repositories and build artifacts. The tool operates by examining file contents for patterns that match AWS credential formats, providing a security checkpoint in development workflows. It outputs a list of files containing potential credentials and identifies files that could not be processed during the scan. Written in Python 3.6, the scanner is designed for simplicity and effectiveness in automated security testing environments. The tool focuses on AWS-specific credential detection rather than general secret scanning.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
TerraGoat is a deliberately vulnerable Terraform repository that demonstrates common cloud infrastructure misconfigurations for training and testing security tools.
A deprecated Kubernetes workload policy enforcement tool that helped secure multi-tenant clusters through various security policies and configurations.
A command-line security auditing tool that performs Lynis-based security assessments across AWS, GCP, Azure, and DigitalOcean cloud platforms.
A setuid implementation of user namespaces that enables running unprivileged containers without root privileges as a secure alternative to traditional container runtimes.
A search engine for open Amazon S3 buckets and their contents, allowing users to search for files using keywords, filename extensions, and full path.
A framework for analyzing container images, running scripts inside containers, and gathering information for static analysis and policy enforcement.
Collection of Kubernetes manifests creating pods with elevated privileges for security testing.
LambdaGuard is an AWS Lambda auditing tool that provides security configuration checks, statistical analysis, and service dependency mapping for serverless functions.
KICS is an open-source Infrastructure as Code security scanner that detects vulnerabilities and misconfigurations through customizable queries and integrates with CI/CD pipelines.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.