Gitleaks Alternatives
Gitleaks is described as 'Audit git repos for secrets. Gitleaks provides a way for you to find unencrypted secrets and other unwanted data types in git source code repositories. As part of it's core functionality, it provides;' and is an app in the development category. There are eight alternatives to Gitleaks for Mac, Windows, Linux, Self-Hosted solutions and SaaS. The best alternative is Yelp's detect-secrets, which is both free and Open Source. Other great apps like Gitleaks are GitGuardian, repo-security-scanner, truffleHog and Gitrob.
detect-secrets is an aptly named module for (surprise, surprise) detecting secrets within a code base.
GitGuardian is a global cybersecurity startup focusing on code security solutions for the DevOps generation. A leader in the market of secrets detection and remediation, its solutions are already used by hundred thousands developers in all industries.
CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys - UKHomeOffice/repo-security-scanner
Searches through git repositories for secrets, digging deep into commit history and branches. This is effective at finding secrets accidentally committed.
Gitrob is a tool to help find potentially sensitive files pushed to public repositories on Github.
rules to identify files containing juicy information like usernames, passwords etc - DiabloHorn/yara4pentesters
It happens sometimes that you can commit secrets or passwords to your repository by accident. The recommended best practice is not commit the secrets, that's obvious. But not always that obvious when you have a big merge waiting to be reviewed.
git-secrets scans commits, commit messages, and --no-ff merges to prevent adding secrets into your git repositories.
No screenshots yet