SOPS is an editor for encrypted files that supports multiple file formats including YAML, JSON, ENV, INI, and BINARY. The tool provides encryption capabilities using various key management services and encryption methods: - AWS KMS (Key Management Service) - GCP KMS (Google Cloud Platform Key Management Service) - Azure Key Vault - age encryption - PGP (Pretty Good Privacy) SOPS allows users to edit encrypted configuration files directly while maintaining security through encryption at rest. The tool can be used as both a standalone application and as a library through its decrypt package for programmatic integration. Installation options include stable release binaries and packages available through the project's GitHub releases, or development branch installation by cloning the repository. For AWS KMS integration, users need to create and export master keys through the IAM console. The tool is designed to handle sensitive configuration data and secrets management across different cloud platforms and encryption standards.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Steganography brute-force utility with performance issues, deprecated in favor of stegseek.
Steghide is a steganography program that hides data in image and audio files.
A database protection suite that provides field-level encryption, access control, and intrusion detection for distributed applications storing sensitive data.
A tool for securely backing up and versioning production secrets or shared passwords
Red October is a TLS-based encryption server that implements two-man rule authorization, requiring multiple users to collaborate for cryptographic operations.
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
TestDisk checks disk partitions and recovers lost partitions, while PhotoRec specializes in recovering lost pictures from digital camera memory or hard disks.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.