Praetorian has open-sourced the regular expression-based (RegEx) scanning capabilities of its Nosey Parker secret scanning tool. Scanning filesystem content for secrets Inadvertent secrets disclosure is one of an organization’s more common attack paths. Nosey Parker addresses the pervasive problem of secret exposure in source code and configuration files where sensitive information such as passwords, API keys, access tokens, asymmetric private keys, client secrets, and credentials exist. An attacker’s ability to discover these secrets may result … More
The post Nosey Parker: Find sensitive information in textual data and Git history appeared first on Help Net Security.
