trufflehog

trufflehog copied to clipboard

NotGitBleed trufflehog support

1

Although trufflehog scans file systems and git repos as far as I am aware it doesn't currently scan commit metadata for passwords. Recently this has been published: https://www.notgitbleed.com A lot...

carolosf

**Is your feature request related to a problem? Please describe.** Hi!, thanks for the awesome tool. I have a feature request: could trufflehog have a feature to scan the remote...

sssseossss

Option to not verify ssl certificates in git option

4

# Hello trufflehog devs ## Thanks for all the hard work that you have done I am requesting to add support for an `-k` option to bypass ssl validations. example...

MrJico

Support additional Doppler auth token formats

1

Trufflehog currently supports scanning for Doppler personal tokens. Doppler supports various other token types that we'd love to see included. All token formats are documented at the link below. Lmk...

Piccirello

**Is your feature request related to a problem? Please describe.** Today when Driftwood gets a match TruffleHog just says "verified". It would be great if it included the rest of...

dxa4481

Json output is undocumented

mterron

**Is your feature request related to a problem? Please describe.** Currently it's not possible to output to a JSON file, and also to the terminal in the normal format. **Describe...

ElvenSpellmaker

Crawl sites for js files and scan those for apikeys

1

It would be cool if we can pass something like -url ‘urllistfile’ or httpx | Trufflehog so the tool would crawl domain for .js, .js.map files and search credentials in...

wellenc-lex

In addition to the standard 64 BASE64 alphabet characters, you should add '_' and '-'. These are frequently used in place of '+' and '/' to create values that would...

FrugalGuy

The fact that input rules are required in JSON means that we have to do additional escaping for special regex chars just in order for the JSON to be valid....

clay584