TruffleHog Credential Leak Scanner
Find, verify, and analyze leaked credentials across Git repositories, Slack, Jira, Docker images, and more using TruffleHog. Classifies 800+ secret types and validates whether discovered credentials are live.
What it does
TruffleHog Credential Leak Scanner
Find, verify, and analyze leaked credentials across Git repositories, Slack, Jira, Docker images, and more using TruffleHog. Classifies 800+ secret types and validates whether discovered credentials are live.
Installation
Use the upstream install or setup path that matches your environment:
- docker run --rm -it -v "$PWD:/pwd" trufflesecurity/trufflehog:latest github --org=trufflesecurity
- brew install trufflehog
- docker run --rm -it -v "$PWD:/pwd" trufflesecurity/trufflehog:latest github --repo https://github.com/trufflesecurity/test_keys
- docker run --rm -it -v "%cd:/=%:/pwd" trufflesecurity/trufflehog:latest github --repo https://github.com/trufflesecurity/test_keys
Requirements and caveats from upstream:
-
Docker:
- <sub><i>Ensure Docker engine is running before executing the following commands:</i></sub>
-
Using installation script, verify checksum signature (requires cosign to be installed)
Basic usage or getting-started notes:
-
:rocket: Quick Start
-
Clone the git repo. For example test keys repo.
-
Extracted from upstream docs: https://raw.githubusercontent.com/trufflesecurity/trufflehog/HEAD/README.md
Source
Capabilities
Install
Quality
deterministic score 0.45 from registry signals: · indexed on github topic:agent-skills · 8 github stars · SKILL.md body (1,406 chars)