truffleHog previously functioned by running entropy checks on git diffs. This functionality still exists, but high signal regex checks have been added, and the ability to surpress entropy checking has also been added.
These features help cut down on noise, and makes the tool easier to shove into a devops pipeline.
Looking for other truffleHog-like programs? We've rounded up our favorites truffleHog alternatives. Try any one of these fan favorites to see if they'll support your system and meet your specific needs.
git-secrets scans commits, commit messages, and --no-ff merges to prevent adding secrets into your git repositories. If a commit, commit message, or any commit in a...
A developers-first solution scanning GitHub activity in real-time for API secret tokens, database credentials, certificates... Be alerted in seconds. Integrate in...
Audit git repos for secrets. Gitleaks provides a way for you to find unencrypted secrets and other unwanted data types in git source code repositories. As part of...
Gitrob is a tool to help find potentially sensitive files pushed to public repositories on Github. Gitrob will clone repositories belonging to a user or organization...
CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys.
Serverless tool that detects secrets and passwords in your pull requests - one file at a time.
rules to identify files containing juicy information like usernames, passwords etc.
detect-secrets is an aptly named module for (surprise, surprise) detecting secrets within a code base.
Add your reviews & share your experience when using truffleHog to the world. Your opinion will be useful to others who are looking for the best truffleHog alternatives.
Popular Alternatives
iOS Alternatives
Android Alternatives
Copyright © 2021 TopAlter.com
Sites we Love: AnswerBun, MenuIva, UKBizDB, Sharing RPP