| | How to Scan Force Pushed Commits for Secrets (trufflesecurity.com) |
| 20 points by mmcclure 39 days ago | past | 6 comments |
|
| | GCP CloudQuarry: Searching for Secrets in Public GCP Images (trufflesecurity.com) |
| 18 points by mooreds 39 days ago | past |
|
| | Searching for Secrets in Public GCP Images (trufflesecurity.com) |
| 2 points by alexcos 42 days ago | past |
|
| | I scanned all of GitHub's "oops commits" for leaked secrets (trufflesecurity.com) |
| 203 points by elza_1111 68 days ago | past | 110 comments |
|
| | I Scanned all of GitHub's "Oops Commits" for Leaked Secrets worth $25k in B (trufflesecurity.com) |
| 1 point by todsacerdoti 68 days ago | past | 1 comment |
|
| | This is how you build an AI Ransomware Worm (trufflesecurity.com) |
| 1 point by austinallegro 77 days ago | past |
|
| | Driftwood: Know if private keys are sensitive (trufflesecurity.com) |
| 1 point by fanf2 5 months ago | past |
|
| | Research Finds 12,000 'Live' API Keys and Passwords in DeepSeek's Training Data (trufflesecurity.com) |
| 7 points by bathtub365 6 months ago | past | 2 comments |
|
| | I found a backdoor into my bed (trufflesecurity.com) |
| 980 points by riverdroid 6 months ago | past | 385 comments |
|
| | Vigilante Justice on GitHub (trufflesecurity.com) |
| 2 points by campuscodi 7 months ago | past |
|
| | Secrets Leak in CI/CD Pipelines (trufflesecurity.com) |
| 1 point by aquastorm 7 months ago | past |
|
| | Google’s OAuth login doesn’t protect against purchasing a failed startup domain (trufflesecurity.com) |
| 503 points by simiones 7 months ago | past | 285 comments |
|
| | Postman is largest public source of leaked secrets? (trufflesecurity.com) |
| 22 points by Letmetest 9 months ago | past |
|
| | Anyone Can Access Private Azure Repo Data (trufflesecurity.com) |
| 2 points by __0x1__ 12 months ago | past |
|
| | Hugging Face Now Automatically Detects Leaked Secrets (trufflesecurity.com) |
| 3 points by __0x1__ on Sept 4, 2024 | past |
|
| | TruffleHog now finds all Deleted and Private Commits on GitHub (trufflesecurity.com) |
| 15 points by riverdroid on Aug 5, 2024 | past | 2 comments |
|
| | Secrets are not a code security problem (trufflesecurity.com) |
| 2 points by computersuck on July 25, 2024 | past |
|
| | Anyone can access deleted and private repository data on GitHub (trufflesecurity.com) |
| 1983 points by __0x1__ on July 24, 2024 | past | 374 comments |
|
| | Credentials Leaking with Subdomain Takeover (trufflesecurity.com) |
| 3 points by ncts on June 8, 2024 | past |
|
| | (The) Postman Carries Lots of Secrets (trufflesecurity.com) |
| 1 point by aa_is_op on April 28, 2024 | past |
|
| | (The) Postman Carries Lots of Secrets (trufflesecurity.com) |
| 4 points by emilburzo on April 26, 2024 | past |
|
| | Google OAuth is broken (sort of) (trufflesecurity.com) |
| 350 points by mooreds on Dec 21, 2023 | past | 182 comments |
|
| | Google OAuth is broken (sort of) (trufflesecurity.com) |
| 2 points by chillax on Dec 20, 2023 | past |
|
| | New Google OAuth Vulnerability (trufflesecurity.com) |
| 2 points by riverdroid on Dec 18, 2023 | past |
|
| | Google OAuth is broken (sort of) (trufflesecurity.com) |
| 5 points by SergeAx on Dec 17, 2023 | past | 1 comment |
|
| | Google OAuth is broken (sort of) [Retain access after being offboarded] (trufflesecurity.com) |
| 4 points by srejk on Dec 16, 2023 | past |
|
| | Live API Keys and Source Code Leaked in 4,500 of the Top Alexa Sites (trufflesecurity.com) |
| 13 points by zricethezav on Sept 5, 2023 | past |
|
| | Show HN: Forager – Browse millions of live secrets leaked from GitHub/NPM (trufflesecurity.com) |
| 2 points by zricethezav on July 21, 2023 | past |
|
| | Browse millions of secrets leaked in GitHub/NPM via Forager (trufflesecurity.com) |
| 11 points by zricethezav on July 19, 2023 | past | 3 comments |
|
| | Forager by Trufflehog: Monitor public commits on GitHub (trufflesecurity.com) |
| 1 point by muhammedkilic on June 22, 2023 | past |
|
|
| More |
