noseyparker
noseyparker copied to clipboard
praetorian-inc
Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.
Nosey Parker can enumerate repositories from GitHub given an organization or project name. Currently this only pulls down "regular" repositories. However, there are many additional bits of data that could...
Nosey Parker currently scans the content of blobs found within Git repositories. However, there may be secrets included within commit messages themselves. Nosey Parker should also scan commit messages.
Currently, the `scan` command runs in two main phases: input enumeration and content scanning. Each of these phases runs in parallel (but not concurrently; the input enumeration phase completes entirely...
The `scan` command currently is able to automatically clone Git repositories when invoked with the `--git-url`, `--github-user`, or `--github-org` arguments. This runs sequentially, and when you cast a large net...
Currently, Nosey Parker rules are just a bag of rules, undifferentiated from each other in terms of severity or the kind of thing they detect. As noted by @CameronLonsdale in...
`noseyparker scan` currently always does an initial enumeration of the filesystem inputs. The only user-facing reason for doing this currently is to show a progress bar when scanning. This is...
Hi :wave: A great option in secret scanner is to be able to scan a range of commits, for example by adding an option to `scan`. In my case, we...
**Describe the bug** A GitHub personal access token can be supplied to Nosey Parker via the `NP_GITHUB_TOKEN` environment variable. If a token is supplied, it is used for (a) GitHub...
Nosey Parker is primarily an offensive security tool. It would make sense if it were readily available in Kali Linux.
Metadata
Owner
Metadata
Nosey Parker is a command-line program that finds secrets and sensitive information in textual data and Git history.