secrets

There are 43 repositories under secrets topic.

• vault

  hashicorp / vault

  A tool for secrets management, encryption as a service, and privileged access management

  vaultgosecrets
  Language:Go 29773
• trufflehog

  trufflesecurity / trufflehog

  Find and verify secrets

  secrettrufflehogcredentialssecuritydevsecopsdynamic-analysissecurity-toolssecretsverificationhacktoberfestsecret-managementprecommitscanning
  Language:Go 14009
• infisical

  Infisical / infisical

  ♾ Infisical is the open-source secret management platform: Sync secrets across your team/infrastructure and prevent secret leaks.

  cliend-to-end-encryptionenvironment-variablesgogolangnextjsnodejsopen-sourcepostgresreactsecret-managementsecret-managersecret-scanningsecretssecuritysecurity-toolstypescript
  Language:TypeScript 12468

• stakater / Reloader

  A Kubernetes controller to watch changes in ConfigMap and Secrets and do rolling upgrades on Pods with their associated Deployment, StatefulSet, DaemonSet and DeploymentConfig – [✩Star] if you're using it!

  kubernetesopenshiftconfigmapsecretspodsdeploymentsdaemonsetstatefulsetsk8swatch-changesdeploymentconfigs
  Language:Go 6837
• shhgit

  eth0izzle / shhgit

  Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.

  githubgithub-apisecurityosintgolangcyintsecretssecrets-managementsecret
  Language:JavaScript 3792

• deepfence / SecretScanner

  :unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:

  scanning-toolsecret-keyssecrets-managementinfosectoolsvulnerability-scannersk8scontainerskubernetessecretsdockersecurity-toolssecuritypasswordsecrets-detectiondevsecopshacktoberfest
  Language:Go 2964

• square / keywhiz

  A system for distributing and managing secrets

  keywhizsecret-managementsecret-distributionenterprise-softwaremanage-secretssecretssecrets-managementcrypto
  Language:Java 2612

• tellerops / teller

  Cloud native secrets management for developers - never leave your command line for secrets.

  secretssecret-managementvaulthashicorpawsrustrust-lang
  Language:Rust 2553

• onetimesecret / onetimesecret

  Keep passwords and other sensitive information out of your inboxes and chat logs.

  privacyonetimesecretschatemailmessagingonetimesecret
  Language:Ruby 1975

• thoughtworks / talisman

  Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and private keys.

  gitgit-hookshacktoberfesthuskypotential-secretspre-commitpre-pushscanssecretsecrets
  Language:Go 1840
• SubDomainizer

  nsonaniya2010 / SubDomainizer

  A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

  python3security-toolssecurity-automationsecuritysubdomain-scannersubdomain-enumerations3-bucketfind-subdomainscloud-storage-servicesexternal-javascriptssecretssecretfinderbugbountyfind-secretss3-bucketsbug-bountymadeinindia
  Language:Python 1662
• noseyparker

  praetorian-inc / noseyparker

  Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.

  credentialsdevsecopspenetration-testingrustscannersecuritysecurity-toolssecretssecrets-detection
  Language:Rust 1517

• elasticdog / transcrypt

  transparently encrypt files within a git repository

  encryptiongitgitattributesshellsecrets
  Language:Shell 1415

• jkroepke / helm-secrets

  A helm plugin that help manage secrets with Git workflow and store them anywhere

  helmhelm-pluginhelm-pluginskubernetesk8shelm-chartshelm-chartsopskubernetes-secretskmsencryption-toolencryptiondecryptionsecret-managementsecretssecrets-managementsecrets-storedvaultgpgargocd
  Language:Shell 1330

• gwen001 / github-search

  A collection of tools to perform searches on GitHub.

  bashbugbountycompaniesemployeesgithubkeyspentestingphpprivatepythonsecretssecurity-toolsshell
  Language:Python 1290

• zendesk / helm-secrets

  DEPRECATED A helm plugin that help manage secrets with Git workflow and store them anywhere

  helmhelm-pluginkubernetesk8shelm-chartskubernetes-secretssopspgpkmsencryption-toolencryptiondecryptionsecret-managementsecretssecrets-stored
  Language:Shell 1157

• OWASP / wrongsecrets

  Vulnerable app with examples showing how to not use secrets

  hashicorp-vaultterraform-awsjavakubernetessecretssecrets-managementvaultdevsecopssecurityawsgcpterraform-gcpazureterraform-azurectfvulnerable-web-appdockerkeepassowasp
  Language:Java 1155

• tillson / git-hound

  Reconnaissance tool for GitHub code search. Scans for exposed API keys across all of GitHub, not just known repos and orgs.

  osintsecurity-toolssecuritysecretsbugbountygitgithubgithound
  Language:Go 1116
• dotenv-vault

  dotenv-org / dotenv-vault

  sync .env files—from the creator of `dotenv`.

  dotenvenvsecrets
  Language:TypeScript 1029

• P3GLEG / Whaler

  Program to reverse Docker images into Dockerfiles

  security-toolssecuritydocker-securityreverse-engineeringdocker-imagedockerfilesecretspasswords
  Language:Go 1028

• hashicorp / vault-guides

  Example usage of HashiCorp Vault secrets management

  vaultsecrets
  Language:Shell 1009

• mazen160 / secrets-patterns-db

  Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.

  gitleaksregexregular-expressionregular-expressionssecretssecrets-detectiontrufflehogtrufflehog3
  Language:Python 955

• lmammino / jwt-cracker

  Simple HS256, HS384 & HS512 JWT token brute force cracker.

  jwtjwt-crackersecretsalphabetcrackerbrute-forcebruteforcebrute-force-attacksjavascriptnodejscommand-linecommandsecurity
  Language:JavaScript 950

• emberstack / kubernetes-reflector

  Custom Kubernetes controller that can be used to replicate secrets, configmaps and certificates.

  kubernetescontrollersecretskubernetes-clusterkubernetes-controllerkubectlconfigmapcertificatecert-managerk8s
  Language:C# 905
• gh-action-pypi-publish

  pypa / gh-action-pypi-publish

  The blessed :octocat: GitHub Action, for publishing your :package: distribution files to PyPI: https://github.com/marketplace/actions/pypi-publish

  github-actionpythonworkflowworkflow-automationpypipython-packagingtwinesecretsuploadreleaserelease-automationrelease-helperworkflowsgithub-actionspypa-guidegithub-actions-pythonactionstestpypihacktoberfestoidc
  Language:Python 846

• cyberark / conjur

  CyberArk Conjur automatically secures secrets used by privileged users and machine identities

  secret-managementsecret-distributionmachine-identitysecretsconjurcoredapconjbot-notifyconjur-cloud
  Language:Ruby 727

• auth0 / repo-supervisor

  Scan your code for security misconfiguration, search for passwords and secrets. :mag:

  securitysecret-managementsecretsserverlessblueteamredteamsecrets-detection
  Language:JavaScript 633
• vault-secrets-operator

  ricoberger / vault-secrets-operator

  Create Kubernetes secrets from Vault for a secure GitOps based workflow.

  kubernetesvaultsecretsecretscrdoperator-sdkhelm-chartkubernetes-secretsgitops
  Language:Go 613

• manifoldco / torus-cli

  A secure, shared workspace for secrets

  secretstorus-cligolangdevops-toolslinuxwindowsmacosxdevelopment-toolsconfiguration
  Language:Go 612

• nodevault / node-vault

  Client for HashiCorp's Vault

  vaulthashicorpnodejssecretsclientapi-clientapinodenode-vault
  Language:JavaScript 521

• candiddev / rot

  Secure Secrets Management for the Modern Sysadmin

  cryptosecrets
  Language:Go 492

• adobe / cryptr

  Cryptr: a GUI for Hashicorp's Vault

  vaulthashicorphashicorp-vaultguipassword-managerpasswordssecretssecret-managementsecret-storage
  Language:HTML 489

• algolia / sup3rS3cretMes5age

  Simple to use, simple to deploy, one time self destruct messaging service, with hashicorp vault as a backend

  golangvaultsecuritysecretshashicorp-vault
  Language:Go 480

• Skyscanner / whispers

  Identify hardcoded secrets in static structured text

  secrets-detectionpasswordsleakspipelinedevsecopssecuritysecrets-scansecretslintlinterparserstructured-datastructured-textyaml-parserjson-parserxml-parsersecurity-compliancehardcodedcredentials
  Language:Python 475
• AWS-Guide

  mikeroyal / AWS-Guide

  Amazon Web Services (AWS) Guide. Learn all about Amazon Web Services Tools, Services, and Certifications.

  awsaws-lambdaaws-ec2aws-cliaws-cdkaws-dynamodbaws-apigatewayaws-sdkaws-certificationamazon-web-servicesaws-securityaws-serverlesscredentialssecretscloud-computingaws-s3cloudwatchcloudformationdynamodbawesome-list
  Language:Java 470

• ProcessusT / HEKATOMB

  Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all DPAPI blob of all users from all computers and uses Domain backup keys to decrypt them.

  pythonactivedirectoryblobdpapimasterkeysecretswindows
  Language:Python 446