AWS Lab's git-secrets Alternatives

    AWS Lab's git-secrets is described as 'git-secrets scans commits, commit messages, and --no-ff merges to prevent adding secrets into your git repositories' and is an app in the Development category. There are eight alternatives to AWS Lab's git-secrets for Mac, Windows, Linux, Self-Hosted solutions and SaaS. The best alternative is truffleHog, which is both free and Open Source. Other great apps like AWS Lab's git-secrets are yara4pentesters (Free, Open Source), repo-security-scanner (Free, Open Source), Yelp's detect-secrets (Free, Open Source) and Gitrob (Free, Open Source).

    This page was last updated Aug 20, 2019

      • FreeOpen Source
      • Mac
      • Windows
      • Linux
      Searches through git repositories for secrets, digging deep into commit history and branches. This is effective at finding secrets accidentally committed.
      truffleHog vs AWS Lab's git-secrets opinions
      pros, cons and recent comments
      truffleHog takes into account AWS secret keys as well as alternative high entropy keys such as API keys.
      Positive comment almost 2 years ago

      0
      • FreeOpen Source
      • Mac
      • Windows
      • Linux
      rules to identify files containing juicy information like usernames, passwords etc.


    1. CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys.
    2. detect-secrets is an aptly named module for (surprise, surprise) detecting secrets within a code base.
      • FreeOpen Source
      • Mac
      • Windows
      • Linux
      Gitrob is a tool to help find potentially sensitive files pushed to public repositories on Github.


      • Free PersonalProprietary
      • Self-Hosted
      • Software as a Service (SaaS)
      GitGuardian is a cybersecurity startup solving the issue of secrets sprawling through source code, a widespread problem that leads to some credentials ending up in compromised places or even in the public space.
      • FreeOpen Source
      • Mac
      • Windows
      • Linux
      It happens sometimes that you can commit secrets or passwords to your repository by accident. The recommended best practice is not commit the secrets, that's obvious. But not always that obvious when you have a big merge waiting to be reviewed.
      • FreeOpen Source
      • Mac
      • Windows
      • Linux
      Audit git repos for secrets. Gitleaks provides a way for you to find unencrypted secrets and other unwanted data types in git source code repositories.
    Showing 8 of 8 alternatives