TruffleHog is a tool used to find leaked credentials by scanning repositories for high entropy strings, which are likely to be secrets or passwords. It offers various installation options including Docker, binary releases, and compiling from source.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A tool for privilege escalation within Linux environments by targeting vulnerabilities in SUDO usage.
Tool for visualizing and analyzing control paths in Active Directory to determine access privileges and permissions.
Repository documenting common techniques to bypass AppLocker with verified, unverified, and generic bypasses.
A fully automated AD build script that configures a domain fully with adjustable XML files.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.