DumpsterDiver
DumpsterDiver is a data analysis tool designed to identify hardcoded secrets and sensitive information within large datasets. The tool searches for various types of credentials including AWS Access Keys, Azure Share Keys, SSH keys, and passwords that may be inadvertently embedded in files or code repositories. The tool utilizes Shannon Entropy calculations to detect private keys and implements customizable search rules that allow users to define specific conditions for reporting findings. It can process compressed archives such as zip and tar.gz files, automatically unpacking them for analysis. DumpsterDiver includes functionality to examine git logs for historical secret exposure and supports advanced search capabilities through user-defined rules. The tool can identify patterns such as files containing specific numbers of email addresses or other data types based on configured parameters. The system is designed to be fully customizable, allowing security professionals to adapt search criteria to their specific organizational needs and compliance requirements. It processes various file formats and can handle large volumes of data efficiently during secret detection operations.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A steganographic file system in userspace for plausible deniability of files.
BleachBit is an open-source system cleaning utility that removes temporary files and system artifacts to free disk space and protect user privacy.
A secure file and drive wiping tool that overwrites data with randomized ASCII characters to prevent data recovery.
Steganography brute-force utility with performance issues, deprecated in favor of stegseek.
A tool for creating encrypted volumes with self-destruction capabilities that automatically destroy data when tampering is detected or commands are issued.
Red October is a TLS-based encryption server that implements two-man rule authorization, requiring multiple users to collaborate for cryptographic operations.
A demonstration of a method to delete a locked executable or currently running file from disk.
PINNED
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.