Deepfence SecretScanner Find Secrets and Passwords in Container Images and File Systems

Deepfence SecretScanner Find Secrets and Passwords in Container Images and File Systems
Photo by Mikhail Fesenko / Unsplash

Deepfence SecretScanner is an open-source security app that can find unprotected secrets in container images or file systems.

It includes two parts:

  • SecretScanner is a standalone tool that retrieves and searches container and host filesystems, matching the contents against a database of approximately 140 secret types.
  • SecretScanner is also included in ThreatMapper, an open source scanner that identifies vulnerable dependencies and unprotected secrets in cloud native applications, and ranks these vulnerabilities based on their risk-of-exploit (example)

Deepfence SecretScanner helps users scan their container images or local directories on hosts and outputs a JSON file with details of all the secrets found.

License

MIT License

Resources & Downloads

GitHub - deepfence/SecretScanner: :unlock: Find secrets and passwords in container images and file systems :unlock:
:unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock: - GitHub - deepfence/SecretScanner: :unlock: Find secrets and passwords in container images and f…
CNAPP - Trusted Cloud Security Solutions - Deepfence
Secure your most critical cloud workloads and applications with a unified cloud-native application protection (CNAPP) and security observability platform.

Read more