Category: Code Assessment
Truffle Hog Searches through git repositories for secrets, digging deep into commit history and branches. This is effective at finding secrets accidentally committed. How it works This module will go through the entire commit...
poutine Created by BoostSecurity.io, poutine is a security scanner that detects misconfigurations and vulnerabilities in the build pipelines of a repository. It supports parsing CI workflows from GitHub Actions and Gitlab CI/CD. When given an...
Surfactant A modular framework to gather file information for SBOM generation and dependency analysis. Surfactant can be used to gather information from a set of files to generate an SBOM, along with manipulating SBOMs...