SecretScanner Logo

SecretScanner

0
Free
Visit Website

SecretScanner is a standalone tool that retrieves and searches container and host filesystems, matching the contents against a database of approximately 140 secret types. It can find unprotected secrets in container images or file systems. Secrets are any kind of sensitive or private data which gives authorized users permission to access critical IT infrastructure (such as accounts, devices, network, cloud based services), applications, storage, databases and other kinds of critical data for an organization. For example, passwords, AWS access IDs, AWS secret access keys, Google OAuth Key etc. are secrets. Secrets should be strictly kept private. However, sometimes attackers can easily access secrets due to flawed security policies or inadvertent mistakes by developers.

FEATURES

ALTERNATIVES

A tool for scanning and identifying potential security risks in GitHub organizations, users, and repositories.

A centralized vulnerability lifecycle management platform that tracks security issues from discovery to closure with real-time status updates.

A comprehensive guide to Android Security

Advanced vulnerability assessment tool for gaining visibility and preventing cyber attacks.

A virtual host scanner with the ability to detect catch-all scenarios, aliases, and dynamic default pages, presented at SecTalks BNE in September 2017.

A Powershell script for assessing the security configurations of Siemens - SIMATIC PCS 7 OS client, OS Server or Engineering station.

Deliberately vulnerable web application for security professionals to practice attack techniques.

A list of vulnerable applications for testing and learning