0 Like

Gitleaks

Audit git repos for secrets 🔑

Free Open Source
Mac
Windows
Linux

Audit git repos for secrets. Gitleaks provides a way for you to find unencrypted secrets and other unwanted data types in git source code repositories. As part of it's core functionality, it provides;
Github and Gitlab support including support for bulk organization and repository owner (user) repository scans, as well as pull request scanning for use in common CI workflows.
Support for private repository scans, and repositories that require key based authentication
Output in CSV and JSON formats for consumption in other reporting tools and frameworks
Externalised configuration for environment specific customisation including regex rules
Customizable repository name, file type, commit ID, branch name and regex whitelisting to reduce false positives
High performance through the use of src-d's go-git framework
It has been successfully used in a number of different scenarios, including;... More Info »

Adhoc scans of local and remote repositories by filesystem path or clone URL
Automated scans of github users and organizations (Both public and enterprise platforms)
As part of a CICD workflow to identify secrets before they make it deeper into your codebase
As part of a wider secrets auditing automation capability for git data in large environments.

Links to official Gitleaks sites

Official Website GitHub

Features

No features added Add a feature

Category

Tags

git

Gitleaks was added by fazlerabbi37 in Apr 2019 and the latest update was made in Apr 2019. The list of alternatives was updated Apr 2019. It's possible to update the information on Gitleaks or report it as discontinued, duplicated or spam.

MORE APP INFO Official website

Reviews 0

Alternatives to Gitleaks for all platforms with any license

Repo-supervisor

Serverless tool that detects secrets and passwords in your pull requests - one file at a time.

Free Open Source Mac Windows Linux
No features added Add a feature

0 Like
GitGuardian

A developers-first solution scanning GitHub activity in real-time for API secret tokens, database credentials, certificates... Be alerted in seconds. Integrate in...

Free Personal Software as a Service (SaaS)
GitHub integration Add a feature

0 Like
repo-security-scanner

CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys.

Free Open Source Mac Windows Linux
No features added Add a feature

0 Like
yara4pentesters

rules to identify files containing juicy information like usernames, passwords etc.

Free Open Source Mac Windows Linux
No features added Add a feature

0 Like
Yelp's detect-secrets

detect-secrets is an aptly named module for (surprise, surprise) detecting secrets within a code base.

Free Open Source Mac Windows Linux
No features added Add a feature

0 Like
Gitrob

Gitrob is a tool to help find potentially sensitive files pushed to public repositories on Github. Gitrob will clone repositories belonging to a user or organization...

Free Open Source Mac Windows Linux
GitHub integration Add a feature

0 Like
truffleHog

Searches through git repositories for secrets, digging deep into commit history and branches. This is effective at finding secrets accidentally committed.

Free Open Source Mac Windows Linux
No features added Add a feature

0 Like
AWS Lab's git-secrets

git-secrets scans commits, commit messages, and --no-ff merges to prevent adding secrets into your git repositories. If a commit, commit message, or any commit in a...

Free Open Source Mac Windows Linux
No features added Add a feature

0 Like

Gitleaks Comments

Echo echo ... Feels empty in here

Maybe you want to be the first to submit a comment about Gitleaks? Just click the button up to your right!