talisman
Secret scanner
A tool that scans git changesets to ensure sensitive information does not leave the developer's workstation.
Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and private keys.
2k stars
41 watching
241 forks
Language: Go
last commit: 3 months ago
Linked from 1 awesome list
gitgit-hookshacktoberfesthuskypotential-secretspre-commitpre-pushscanssecretsecrets
vavkamil/awesome-bugbounty-toolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 bishopfox/gitgot | A tool to search public GitHub data for sensitive secrets using feedback-driven semi-automation | 1,466 |
 anshumanbh/git-all-secrets | Tools to discover sensitive information from GitHub repositories and gists | 1,114 |
 jkroepke/helm-secrets | Tools to manage encrypted secrets in Kubernetes Helm charts using Git workflow and cloud native secret managers. | 1,555 |
 hightechsec/git-scanner | Tools for identifying and scanning public Git repositories for security vulnerabilities | 341 |
 praetorian-inc/noseyparker | A tool that scans textual data and Git history to detect sensitive information such as credentials and secrets. | 1,716 |
 papermtn/gitlab-watchman | Detects exposed secrets and personal data in GitLab repositories | 195 |
 gitguardian/apisecuritybestpractices | Resources to help developers keep sensitive information secret and mitigate potential security breaches | 1,923 |
 legit-labs/legitify | Automates vulnerability detection and remediation across GitHub and GitLab assets to strengthen software security posture. | 782 |
 coolhandsquid/tirefire | Automates the scanning and enumeration of machines externally while maintaining control over scans. | 148 |
 mozilla/cipherscan | Tool to test and analyze SSL/TLS ciphersuites on a target system | 1,966 |
 ekultek/pybelt | A collection of tools for hackers and security researchers to explore vulnerabilities and test systems | 511 |
 bearer/bearer | A tool for discovering and prioritizing security risks in software code | 2,112 |
 wallarm/jwt-heartbreaker | A tool to check JWT tokens for potential security issues by verifying token keys against publicly known sources | 126 |
 secretsquirrel/sigthief | A tool that generates invalid signatures to test antivirus software's signature verification and validation capabilities. | 2,137 |
 pessimistic-io/slitherin | Automated code audit tools for Ethereum smart contracts | 356 |