secrets

There are 42 repositories under secrets topic.

• vault

  hashicorp / vault

  A tool for secrets management, encryption as a service, and privileged access management

  gosecretsvault
  Language:Go 29746
• trufflehog

  trufflesecurity / trufflehog

  Find and verify secrets

  credentialsdevsecopsdynamic-analysishacktoberfestprecommitscanningsecretsecret-managementsecretssecuritysecurity-toolstrufflehogverification
  Language:Go 13990
• infisical

  Infisical / infisical

  ♾ Infisical is the open-source secret management platform: Sync secrets across your team/infrastructure and prevent secret leaks.

  cliend-to-end-encryptionenvironment-variablesgogolangnextjsnodejsopen-sourcepostgresreactsecret-managementsecret-managersecret-scanningsecretssecuritysecurity-toolstypescript
  Language:TypeScript 12413

• stakater / Reloader

  A Kubernetes controller to watch changes in ConfigMap and Secrets and do rolling upgrades on Pods with their associated Deployment, StatefulSet, DaemonSet and DeploymentConfig – [✩Star] if you're using it!

  configmapdaemonsetdeploymentconfigsdeploymentsk8skubernetesopenshiftpodssecretsstatefulsetswatch-changes
  Language:Go 6812
• shhgit

  eth0izzle / shhgit

  Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.

  cyintgithubgithub-apigolangosintsecretsecretssecrets-managementsecurity
  Language:JavaScript 3790

• deepfence / SecretScanner

  :unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:

  scanning-toolsecret-keyssecrets-managementinfosectoolsvulnerability-scannersk8scontainerskubernetessecretsdockersecurity-toolssecuritypasswordsecrets-detectiondevsecopshacktoberfest
  Language:Go 2963

• square / keywhiz

  A system for distributing and managing secrets

  cryptoenterprise-softwarekeywhizmanage-secretssecret-distributionsecret-managementsecretssecrets-management
  Language:Java 2612

• tellerops / teller

  Cloud native secrets management for developers - never leave your command line for secrets.

  secretssecret-managementvaultgolanggohashicorpawsgceherokucyberarkconjur
  Language:Go 2550

• onetimesecret / onetimesecret

  Keep passwords and other sensitive information out of your inboxes and chat logs.

  chatemailmessagingonetimeonetimesecretprivacysecrets
  Language:Ruby 1975

• thoughtworks / talisman

  Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and private keys.

  gitgit-hookshacktoberfesthuskypotential-secretspre-commitpre-pushscanssecretsecrets
  Language:Go 1839
• SubDomainizer

  nsonaniya2010 / SubDomainizer

  A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

  python3security-toolssecurity-automationsecuritysubdomain-scannersubdomain-enumerations3-bucketfind-subdomainscloud-storage-servicesexternal-javascriptssecretssecretfinderbugbountyfind-secretss3-bucketsbug-bountymadeinindia
  Language:Python 1659
• noseyparker

  praetorian-inc / noseyparker

  Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.

  credentialsdevsecopspenetration-testingrustscannersecuritysecurity-toolssecretssecrets-detection
  Language:Rust 1515

• elasticdog / transcrypt

  transparently encrypt files within a git repository

  encryptiongitgitattributesshellsecrets
  Language:Shell 1413

• jkroepke / helm-secrets

  A helm plugin that help manage secrets with Git workflow and store them anywhere

  argocddecryptionencryptionencryption-toolgpghelmhelm-charthelm-chartshelm-pluginhelm-pluginsk8skmskuberneteskubernetes-secretssecret-managementsecretssecrets-managementsecrets-storedsopsvault
  Language:Shell 1326

• gwen001 / github-search

  A collection of tools to perform searches on GitHub.

  bashbugbountycompaniesemployeesgithubkeyspentestingphpprivatepythonsecretssecurity-toolsshell
  Language:Python 1289

• zendesk / helm-secrets

  DEPRECATED A helm plugin that help manage secrets with Git workflow and store them anywhere

  helmhelm-pluginkubernetesk8shelm-chartskubernetes-secretssopspgpkmsencryption-toolencryptiondecryptionsecret-managementsecretssecrets-stored
  Language:Shell 1158

• OWASP / wrongsecrets

  Vulnerable app with examples showing how to not use secrets

  awsazurectfdevsecopsdockergcphashicorp-vaultjavakeepasskubernetesowaspsecretssecrets-managementsecurityterraform-awsterraform-azureterraform-gcpvaultvulnerable-web-app
  Language:Java 1150

• tillson / git-hound

  Reconnaissance tool for GitHub code search. Scans for exposed API keys across all of GitHub, not just known repos and orgs.

  bugbountygitgithoundgithubosintsecretssecuritysecurity-tools
  Language:Go 1115

• P3GLEG / Whaler

  Program to reverse Docker images into Dockerfiles

  security-toolssecuritydocker-securityreverse-engineeringdocker-imagedockerfilesecretspasswords
  Language:Go 1027
• dotenv-vault

  dotenv-org / dotenv-vault

  sync .env files—from the creator of `dotenv`.

  dotenvenvsecrets
  Language:TypeScript 1024

• hashicorp / vault-guides

  Example usage of HashiCorp Vault secrets management

  secretsvault
  Language:Shell 1009

• mazen160 / secrets-patterns-db

  Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.

  gitleaksregexregular-expressionregular-expressionssecretssecrets-detectiontrufflehogtrufflehog3
  Language:Python 953

• lmammino / jwt-cracker

  Simple HS256, HS384 & HS512 JWT token brute force cracker.

  jwtjwt-crackersecretsalphabetcrackerbrute-forcebruteforcebrute-force-attacksjavascriptnodejscommand-linecommandsecurity
  Language:JavaScript 947

• emberstack / kubernetes-reflector

  Custom Kubernetes controller that can be used to replicate secrets, configmaps and certificates.

  kubernetescontrollersecretskubernetes-clusterkubernetes-controllerkubectlconfigmapcertificatecert-managerk8s
  Language:C# 902
• gh-action-pypi-publish

  pypa / gh-action-pypi-publish

  The blessed :octocat: GitHub Action, for publishing your :package: distribution files to PyPI: https://github.com/marketplace/actions/pypi-publish

  actionsgithub-actiongithub-actionsgithub-actions-pythonhacktoberfestoidcpypa-guidepypipythonpython-packagingreleaserelease-automationrelease-helpersecretstestpypitwineuploadworkflowworkflow-automationworkflows
  Language:Python 844

• cyberark / conjur

  CyberArk Conjur automatically secures secrets used by privileged users and machine identities

  conjbot-notifyconjurconjur-cloudcoredapmachine-identitysecret-distributionsecret-managementsecrets
  Language:Ruby 727

• auth0 / repo-supervisor

  Scan your code for security misconfiguration, search for passwords and secrets. :mag:

  securitysecret-managementsecretsserverlessblueteamredteamsecrets-detection
  Language:JavaScript 633
• vault-secrets-operator

  ricoberger / vault-secrets-operator

  Create Kubernetes secrets from Vault for a secure GitOps based workflow.

  crdgitopshelm-chartkuberneteskubernetes-secretsoperator-sdksecretsecretsvault
  Language:Go 614

• manifoldco / torus-cli

  A secure, shared workspace for secrets

  secretstorus-cligolangdevops-toolslinuxwindowsmacosxdevelopment-toolsconfiguration
  Language:Go 612

• nodevault / node-vault

  Client for HashiCorp's Vault

  vaulthashicorpnodejssecretsclientapi-clientapinodenode-vault
  Language:JavaScript 520

• candiddev / rot

  Secure Secrets Management for the Modern Sysadmin

  cryptosecrets
  Language:Go 491

• adobe / cryptr

  Cryptr: a GUI for Hashicorp's Vault

  guihashicorphashicorp-vaultpassword-managerpasswordssecret-managementsecret-storagesecretsvault
  Language:HTML 489

• Skyscanner / whispers

  Identify hardcoded secrets in static structured text

  secrets-detectionpasswordsleakspipelinedevsecopssecuritysecrets-scansecretslintlinterparserstructured-datastructured-textyaml-parserjson-parserxml-parsersecurity-compliancehardcodedcredentials
  Language:Python 475
• AWS-Guide

  mikeroyal / AWS-Guide

  Amazon Web Services (AWS) Guide. Learn all about Amazon Web Services Tools, Services, and Certifications.

  awsaws-lambdaaws-ec2aws-cliaws-cdkaws-dynamodbaws-apigatewayaws-sdkaws-certificationamazon-web-servicesaws-securityaws-serverlesscredentialssecretscloud-computingaws-s3cloudwatchcloudformationdynamodbawesome-list
  Language:Java 471

• algolia / sup3rS3cretMes5age

  Simple to use, simple to deploy, one time self destruct messaging service, with hashicorp vault as a backend

  golanghashicorp-vaultsecretssecurityvault
  Language:Go 449

• ProcessusT / HEKATOMB

  Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all DPAPI blob of all users from all computers and uses Domain backup keys to decrypt them.

  pythonactivedirectoryblobdpapimasterkeysecretswindows
  Language:Python 445