scanner-cli icon indicating copy to clipboard operation
scanner-cli copied to clipboard
verified publisher icon hawkeyesec

Evolving file content module

Open nicolastrres opened this issue 8 years ago • 1 comments

Hello, I have noticed that at this moment the file content module only search for passwords and private keys, is there a reason why no more patterns were added?

I was wondering if it makes sense to add more patterns to search for, like tokens, secret keys, database urls (postgres://, mongodb://, redis://, etc).

nicolastrres avatar Nov 10 '17 21:11 nicolastrres

Hi @nicolastrres do you have any good projects for this? The ones I am aware of include:

  • https://github.com/michenriksen/gitrob
  • https://github.com/dxa4481/truffleHog
  • https://github.com/thoughtworks/talisman
  • https://github.com/auth0/repo-supervisor
  • https://github.com/zricethezav/gitleaks

Maybe we can scavenge from those repos :)

felixhammerl avatar Sep 29 '18 17:09 felixhammerl