Nosey Parker is a command-line program designed to identify secrets and sensitive information within textual data and Git history. The tool scans repositories and files to detect various types of confidential data including API keys, passwords, tokens, and other sensitive credentials that may have been inadvertently committed to version control systems. It operates through pattern matching and signature-based detection to locate potentially exposed secrets across different file types and formats. The tool can analyze both current file contents and historical Git commits to identify sensitive data that may have been present in previous versions. Nosey Parker provides functionality for scanning local repositories, remote Git repositories, and individual files or directories. It generates reports detailing the location and type of sensitive information discovered during the scanning process. The tool supports various output formats and can be integrated into continuous integration pipelines to prevent sensitive data from being committed to repositories.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A comprehensive toolkit for web application security testing, offering a range of products and solutions for identifying vulnerabilities and improving security posture.
SearchCode is an extensive code search engine that indexes 75 billion lines of code from millions of projects to help developers find coding examples and libraries.
An open-source tool that automates the detection and analysis of DLL hijacking vulnerabilities in Windows applications, providing detailed reports and remediation guidance.
APKiD is a tool that identifies compilers, packers, obfuscators, and other weird stuff in APK files.
A deliberately vulnerable Java web application designed for educational purposes to teach web application security concepts and common vulnerabilities.
GuardDog is a CLI tool that identifies malicious PyPI and npm packages using heuristics-based analysis of source code and metadata.
Search engine for open-source Git repositories with advanced features like case sensitivity and regular expressions.
QIRA is a competitor to strace and gdb with MIT license, supporting Ubuntu and Docker for wider compatibility.
ThreatLocker is an enterprise cybersecurity platform that provides comprehensive endpoint protection and zero-trust security to prevent ransomware, viruses, and other malicious software from running on endpoints.