KeySentry is an open-source CLI tool designed to detect leaked API keys and sensitive files in GitHub repositories and local projects, helping prevent account compromises and financial losses. It uses regex patterns, filename flags, and JSON logging to identify secrets such as AWS keys, API tokens, and private keys before they are exploited. #APILeaks #GitHubSecrets #CyberSecurityTools
Keypoints
- KeySentry scans GitHub repositories and local projects for leaked API keys and secrets.
- It recognizes various secret types, including AWS, Google, Slack, but also private RSA keys.
- The tool flags risky files like .env, credentials.json, and id_rsa that should not be publicly exposed.
- Scans are fast, private, and do not require GitHub API tokens, ensuring local control.
- Using regex and entropy measures, KeySentry effectively detects sensitive information before leaks occur.