SecretScanner Logo

SecretScanner

0
Free
Visit Website

SecretScanner is a standalone tool that retrieves and searches container and host filesystems, matching the contents against a database of approximately 140 secret types. It can find unprotected secrets in container images or file systems. Secrets are any kind of sensitive or private data which gives authorized users permission to access critical IT infrastructure (such as accounts, devices, network, cloud based services), applications, storage, databases and other kinds of critical data for an organization. For example, passwords, AWS access IDs, AWS secret access keys, Google OAuth Key etc. are secrets. Secrets should be strictly kept private. However, sometimes attackers can easily access secrets due to flawed security policies or inadvertent mistakes by developers.

FEATURES

ALTERNATIVES

A tool for static analysis of known vulnerabilities, trojans, viruses, malware & other malicious threats in docker images/containers

OpenVAS is an open-source vulnerability scanner that provides extensive testing capabilities for identifying security weaknesses in networks and systems.

A guide to brute forcing DVWA on the high security level with anti-CSRF tokens

A runtime threat management and attack path enumeration tool for cloud-native environments

A vulnerable web site for testing Sentinel features

Audits JavaScript projects for known vulnerabilities and outdated package versions using OSS Index v3 REST API.

Nmap is an essential network scanning tool used for network security auditing and status monitoring.

Advanced email reconnaissance tool leveraging public data.

PINNED