Pentest Tools
Published on April 5th, 2018 📆 | 3968 Views ⚑
0repo-security-scanner: finds secrets accidentally committed to a git repo, eg passwords, private keys
repo-security-scanner
- CLI tool that finds secrets accidentally committed to a git repo, eg passwords, private keys
- Run it against your entire repo’s history by piping the output from
git log -p
Installation
- Download the latest stable release of the CLI tool for your architecture
- Extract the tar and move the
scanrepo
binary to somewhere in your$PATH
, eg/usr/bin
Usage
[adsense size='1' ]
Check the entire history of the current branch for secrets.
Add false positives to .secignore
Local Testing
Set environment variables needed
Create env
file and update environment variables.
[adsense size='1' ]
Launch containers
Run test offenses
Copyright (c) 2017 chrisns
Source: https://github.com/UKHomeOffice/
Gloss