ENNAENNA

SecretFinder

GPL-3.0

๐Ÿ•ธ Web Scanning ยท Python

SecretFinder is a Python-based tool designed to uncover sensitive data such as API keys, tokens, and credentials within JavaScript files. By scanning JavaScript code, it identifies potentially exposed secrets that could lead to security breaches. Security testers and developers use SecretFinder to ensure that sensitive information is not inadvertently exposed in client-side scripts.

2.4kstars
430forks
46issues
Updated 1y ago
+I use this
View on GitHub

Tags

secretsapi-keysjavascriptcredentials

Details

Category
๐Ÿ•ธ Web Scanning
Language
Python
License
GPL-3.0
Platforms
๐Ÿงlinux๐ŸŽmacos๐ŸชŸwindows

Links

GitHub Repository

github.com/m4ll0k/SecretFinder

Releases

github.com/m4ll0k/SecretFinder/releases

Issues

github.com/m4ll0k/SecretFinder/issues

Sponsored

Your ad here

Reach security professionals and developers - ads@en-na.com

Community Reviews

More in Web Scanning

httpx

Go

Fast multi-purpose HTTP toolkit. Probes for running HTTP servers with retries and fallbacks.

http-probetech-detectionprojectdiscovery

Nikto

Perl

Classic web server scanner. Tests for dangerous files, outdated server software, and version-specific problems.

web-serverclassiccgi-scan

Gobuster

Go

Directory/file, DNS, and vhost busting tool. Brute-forces URIs, DNS subdomains, virtual host names, and S3 buckets.

directory-brutedns-brutevhost

Feroxbuster

Rust

Fast, recursive content discovery tool written in Rust. Like gobuster on steroids with auto-recursion.

directory-bruterecursiverust

Burp Suite Community

Java

Web vulnerability scanner and proxy. Intercept, modify, and replay HTTP/S traffic for web app testing.

proxyweb-appinterceptor

ffuf

Go

Fast web fuzzer written in Go. Fuzz anything - URLs, headers, POST data - with blazing speed.

fuzzingdirectory-brutefast