Gitleaks Alternatives
Gitleaks is described as 'Audit git repos for secrets. Gitleaks provides a way for you to find unencrypted secrets and other unwanted data types in git source code repositories. As part of it's core functionality, it provides;' and is an app in the development category. There are more than 10 alternatives to Gitleaks for a variety of platforms, including Mac, Windows, Linux, SaaS and Web-based apps. The best Gitleaks alternative is GitGuardian. It's not free, so if you're looking for a free alternative, you could try AquilaX or Cremit. Other great apps like Gitleaks are Yelp's detect-secrets, repo-security-scanner, truffleHog and Gitrob.
- Free • Open Source
GitGuardian is a global cybersecurity startup focusing on code security solutions for the DevOps generation. A leader in the market of secrets detection and remediation, its solutions are already used by hundred thousands developers in all industries.
License model
- Free Personal • Proprietary
Platforms
- Self-Hosted
- Software as a Service (SaaS)
GitGuardian Features
AquilaX Ultimate is a comprehensive software security scanner, designed to detect a wide range of security vulnerabilities in the source code of any application. Is committed to change how contextual analysis is done to eliminate virtually any false positive.
License model
- Freemium • Proprietary
Application type
Platforms
- Online
- Software as a Service (SaaS)
Cremit is an all-in-one credential security platform designed for developers and security teams. This service integrates with source code version control systems, collaboration tools, and messaging platforms to effectively detect and manage secret information.
License model
- Freemium • Proprietary
Platforms
- Software as a Service (SaaS)
- Online
- 11 Yelp's detect-secrets alternatives
detect-secrets is an aptly named module for (surprise, surprise) detecting secrets within a code base.
License model
- Free • Open Source
Platforms
- Mac
- Windows
- Linux
Yelp's detect-secrets Features
CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys - UKHomeOffice/repo-security-scanner
License model
- Free • Open Source
Platforms
- Mac
- Windows
- Linux
repo-security-scanner Features
Searches through git repositories for secrets, digging deep into commit history and branches. This is effective at finding secrets accidentally committed.
License model
- Free • Open Source
Platforms
- Mac
- Windows
- Linux
truffleHog Features
Gitrob is a tool to help find potentially sensitive files pushed to public repositories on Github. Gitrob will clone repositories belonging to a user or organization down to a configurable depth and iterate through the commit history and flag files that match signatures for...
License model
- Free • Open Source
Platforms
- Mac
- Windows
- Linux
Gitrob Features
rules to identify files containing juicy information like usernames, passwords etc - DiabloHorn/yara4pentesters
License model
- Free • Open Source
Platforms
- Mac
- Windows
- Linux
yara4pentesters Features
It happens sometimes that you can commit secrets or passwords to your repository by accident. The recommended best practice is not commit the secrets, that's obvious. But not always that obvious when you have a big merge waiting to be reviewed.
License model
- Free • Open Source
Platforms
- Mac
- Windows
- Linux
Repo-supervisor Features
git-secrets scans commits, commit messages, and --no-ff merges to prevent adding secrets into your git repositories. If a commit, commit message, or any commit in a --no-ff merge history matches one of your configured prohibited regular expression patterns, then the commit is...
License model
- Free • Open Source
Platforms
- Mac
- Windows
- Linux
AWS Lab's git-secrets Features