git-dumper vs SecretFinder
GitHub Stats
About git-dumper
git-dumper downloads and reconstructs Git repositories from web servers where the .git directory is accidentally exposed. Many deployments leave .git accessible, exposing full source code, commit history, configuration files, and potentially credentials. git-dumper handles the complex process of downloading individual Git objects, reconstructing the pack files, and rebuilding a complete working repository. It supports recursive object resolution, handles missing objects gracefully, and works through redirects and basic authentication. A critical tool for web application pentesting where source code access dramatically accelerates vulnerability discovery.
About SecretFinder
SecretFinder is a Python-based tool designed to uncover sensitive data such as API keys, tokens, and credentials within JavaScript files. By scanning JavaScript code, it identifies potentially exposed secrets that could lead to security breaches. Security testers and developers use SecretFinder to ensure that sensitive information is not inadvertently exposed in client-side scripts.
Platform Support
Tags
git-dumper only
SecretFinder only