4 Repos
Validates potential credentials using read-only operations to prevent persistent storage of sensitive data.
Distinguishing note: Focuses on the verification process rather than general scanning.
Explore 4 awesome GitHub repositories matching security & cryptography · Credential Verification. Refine with filters or upvote what's useful.
TruffleHog is a secret scanning tool designed to identify leaked credentials and API keys across version control systems, cloud storage, and filesystems. It functions as a git secret detector that enumerates hidden commits and a cloud storage security auditor for inspecting container images and storage buckets. The project is distinguished by a credential verification engine that tests discovered secrets against service APIs to confirm they are active, which eliminates false positive alerts. It further analyzes these verified credentials to determine the specific access levels and resources t
Validates discovered secrets against service APIs to confirm they are active and eliminate false positives.
Trufflehog is a security tool designed to continuously monitor code repositories and cloud environments to detect, verify, and remediate exposed sensitive credentials and API keys. It functions as a comprehensive secret scanning engine that integrates directly into deployment pipelines and version control systems to intercept sensitive data before it is committed or pushed. By utilizing read-only operations and volatile memory processing, the system ensures that discovered credentials are never stored persistently, maintaining strict data privacy throughout the scanning lifecycle. The platfor
Analyzes potential credentials using read-only operations to ensure sensitive data is never stored.
This project is a self-hosted, cross-platform instant messaging platform featuring a Go backend and a protobuf-based messaging server. It provides a unified communication suite with native clients for iOS, Android, and web, utilizing gRPC and Protocol Buffers for efficient data exchange. The system is distinguished by an extensible chatbot framework that allows for the integration of automated bots and plugins via standardized service interfaces. It supports high-availability clustering with sharded load distribution and a pluggable database backend to ensure reliability and flexible data per
Validates user data such as email addresses and phone numbers during the account registration process.
Dieses Projekt ist ein Pluggable Authentication Module (PAM) für Linux-Systeme, das eine Multi-Faktor-Identitätsprüfung erzwingt. Es integriert sich direkt in den System-Authentifizierungs-Stack, um zeitbasierte Einmalpasswörter (TOTP) zusätzlich zu Standard-Benutzeranmeldedaten zu verlangen, und bietet so einen Mechanismus zur Absicherung lokaler und Remote-Shell-Zugriffe. Das Modul zeichnet sich durch seine Implementierung des TOTP-Algorithmus aus, der eine integrierte Unterstützung für Clock-Skew-Kompensation enthält, um Zeitdiskrepanzen zwischen Servern und Benutzergeräten auszugleichen. Es verwaltet individuelle geheime Benutzerschlüssel über einen lokalen dateibasierten Persistenzmechanismus und unterstützt modulares Stacking, was es Administratoren ermöglicht, Anmeldedaten innerhalb eines einzigen Login-Flows zwischen mehreren Authentifizierungsmodulen weiterzureichen. Über die Kernverifizierung hinaus bietet das Tool konfigurierbare Richtlinieneinstellungen, mit denen Administratoren Kulanzfristen definieren und Speicherorte für geheime Dateien verwalten können. Es erleichtert die Synchronisierung eindeutiger Authentifizierungsgeheimnisse mit mobilen Anwendungen und stellt sicher, dass die Multi-Faktor-Erzwingung funktionsfähig bleibt, während systemweite Sicherheitsstandards gewahrt werden.
Enforces a blocking authentication flow that requires successful validation of both primary credentials and secondary tokens.