AppSec Santa
Contact

GitGuardian - Secrets Detection Tool

Summary

GitGuardian is great scanning GitHub activity in real-time for API secret tokens, database credentials, certificates.

11 min read

GitGuardian

What is GitGuardian?

GitGuardian scans your source code to detect secrets like API keys, hardcoded passwords, certificates, encryption keys or any other sensitive data in real-time.

GitGuardian Dashboard

You can integrate your source code (Bitbucket, GitHub, GitHub Enterprise, GitLab) and monitor for API keys, OAuth tokens, certificates, PEM files, passwords, passphrases and API keys with GitGuardian.

GitGuardian

Allowing GitGuardian's IP addresses

GitGuardian serves the application from the following IP addresses:

 

  • 44.231.207.147/32
  • 44.224.13.10/32
  • 35.163.105.95/32
  •  

These IP addresses are used for:

 

  • VCS integrations
  • Alerting integration (eg: Slack)
  •  

Allowing GitGuardian's domains

The following domains are used to expose the application:

 

  • dashboard.gitguardian.com
  • hook.gitguardian.com
  • api.gitguardian.com
  •  

Note: HTTP is only used to redirect to HTTPS

On this page:

Leave a Reply

Your email address will not be published. Required fields are marked *

Privacy Policy | Terms of Use 

appsecsanta.com is part of CNT Friends Oy registered in Finland. Company No: 2993839-3 | © 2019-2022. All rights reserved.