Secrets.md

Jump to bottom

Matías Aereal Aeón edited this page Oct 17, 2024 · 2 revisions

Secrets Scanning Tools

Use these tools to identify and manage sensitive information across codebases and repositories.

2ms

Description: Detects and protects secrets across files, including CMS, chat systems, and Git repositories.
Usage:
```
# Scan a local repo
2ms git .
```
GitHub

gitleaks

Description: Scans Git repositories for secrets like API keys and tokens.
Usage:
```
gitleaks detect --source=<path_to_repo>
```
GitHub

git-secrets

Description: Prevents committing secrets to Git repositories by scanning commits for patterns.
Usage:
```
git secrets --install
```
GitHub

trufflehog

Description: Finds secrets in repositories and cloud storage using entropy and pattern matching.

Usage:

trufflehog --no-update git https://github.com/example/repo

GitHub

Clone this wiki locally