fully autonomous credential intelligence platform that discovers, │ │ extracts, correlates, verifies, and reports exposed secrets across your │ │ target's entire attack surface.
The first secret scanner that fixes what it finds. Free, open source.
SigilGuard provides a high-level Elixir API for the SIGIL Protocol, securing MCP (Model Context Protocol) tool calls and AI agent interactions.
Write protection and credential scanning layer for AI agent deployments. Intercepts filesystem writes, validates scope boundaries, and builds security awareness through adaptive user education. Python 3.10+, no dependencies.
X-Ways Forensics X-Tension wrapping TruffleHog v3 for per-item secret scanning across volume snapshots.
🔐 Scan repos for secrets, API keys & PII before going public. Integrates TruffleHog, Gitleaks & Presidio with auto-remediation.
GitHub Action for secretlint: scan PRs for leaked secrets & credentials in CI — zero config, fail on detection
High-performance secret detection engine with 131 provider rules (Go)
Git secret scanner and protection tool - prevent API keys, passwords, and credentials from being committed (Dual Licensed: GPL v3 / Commercial)
🔒 Real-time secret detection for VS Code - Scan code for AWS, GitHub, Stripe, Slack credentials and 40+ more patterns. Privacy-first, local processing.
Advanced Secrets & API Key Scanner - Protect Your Code, Protect Your Business
MCP server detecting leaked secrets/credentials (32+ provider rules). In the official MCP Registry: io.github.eltociear/secrets-audit-mcp. Pure stdlib, zero deps.
Credfence is a high-performance secret and credential scanning engine built in Rust. It detects exposed API keys, tokens, and secrets in Git repositories and is designed to run as a CLI, in CI pipelines, or as a scalable async worker service.
Multi-layer Git secret scanner using regex + entropy analysis + LLM verification to detect exposed API keys, credentials, and sensitive data in commit history. Built with Python for security auditing and DevSecOps workflows
ML-powered API key and secret detection in code. Fine-tuned CodeBERT with 97% accuracy. Free to train and run.
Add a description, image, and links to the credential-scanning topic page so that developers can more easily learn about it.
To associate your repository with the credential-scanning topic, visit your repo's landing page and select "manage topics."