SecretSurfer
We find what developers leave behind, including passwords, API keys, and abandoned infrastructure.
Services
Sensitive information leaks
We scan open-source data repositories like GitHub to find secrets like API keys, passwords, and proprietary data, then use our innovative attribution engine to pinpoint the owners of these secrets.
Infrastructure misconfigurations
We find high-risk infrastructure misconfiguraitons that can lead to subdomain takeover.
GitHound
Our open-source tool for finding sensitive information across GitHub has over 1,100 stars. Check it out!
© 2024 SecretSurfer