A high-performance alternative to proprietary secret scanning tools like GitHub Advanced Security. It scans Git history, filesystems, and S3 buckets to find and automatically verify over 700 types of credentials.
Tech Stack
GoSecurity & Passwords
Why trufflehog?
• Verified secret detection
• Extremely fast scanning
• Supports 700+ detectors
Limitations
• High false positive rate
• Enterprise features paid
• Resource intensive history scans
3/6/2026
Last Update
2,248
Forks
380
Issues
AGPL-3.0
License
Financial Leak Detected
Stop the "SaaS Tax"
Your team could be burning cash. Switching to trufflehog instantly boosts your runway.
