Menu :

TL;DR

trufflehog

Find and verify credentials in files, Git repositories, S3 buckets, and Docker images. More information: https://github.com/trufflesecurity/trufflehog.

Scan a Git repository for verified secrets:

trufflehog git https://github.com/trufflesecurity/test_keys --only-verified

Scan a GitHub organization for verified secrets:

trufflehog github --org=trufflesecurity --only-verified

Scan a GitHub repository for verified keys and get JSON output:

trufflehog git https://github.com/trufflesecurity/test_keys --only-verified --json

Scan a GitHub repository along with its Issues and Pull Requests:

trufflehog github --repo=https://github.com/trufflesecurity/test_keys --issue-comments --pr-comments

Scan an S3 bucket for verified keys:

trufflehog s3 --bucket=bucket name --only-verified

Scan S3 buckets using IAM Roles:

trufflehog s3 --role-arn=iam-role-arn

Scan individual files or directories:

trufflehog filesystem path/to/file_or_directory1 path/to/file_or_directory2 ...

Scan a Docker image for verified secrets:

trufflehog docker --image trufflesecurity/secrets --only-verified

This document was created using the contents of the tldr project.

a
b
c
d
e
f
g
h
i
j
k
l
m
n
o
p
q
r
s
t
u
v
w
x
y
z
others