Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data and Git history.

Find, validate, and map the impact of leaked secrets across your stack. Revoke fast. 900+ rules.

Lightweight static analyzer for several programming languages

Collect crash (or UndefinedBehaviorSanitizer error) reports, triage, and estimate severity.

⚡ Fast Web Security Scanner written in Rust based on Lua Scripts 🌖 🦀

Static analysis tool based on clang, which detects source-to-binary information leaks in C and C++ projects

🛡️ Blazing fast Supply Chain Security tool written in Rust. Features ephemeral sandboxing, hybrid analysis (CVE + Heuristics), and entropy-based malware detection.

Polyglot execution engine and CLI for vulnerability detection using real code

Rust-based ScanCode-compatible scanner for licenses, package metadata, SBOMs, and provenance data.

🔐 Secrets, configs, and platform outputs as code — typed, versioned, encrypted.

Qryon — Find security vulnerabilities in seconds. 647+ rules, 28 languages, 10x faster than Semgrep. Free & open source CLI.

Paranoid security scanner + sandboxed step runner for GitHub Actions. Verifies pins, audits workflows, runs steps in a kernel sandbox where secrets are capabilities.

UZYNTRA API Firewall is a high-performance API security engine that inspects, detects, and mitigates threats in real time through a programmable reverse proxy architecture.

Secrets scanner with pattern matching, entropy analysis, and live validation

Real-time CLI code scanner for secrets, misconfigs, and known bad practices

Secure your dependencies before they land in production. secure-packages audits package source, reviews new-version diffs, and blocks risky updates in CI/CD, starting with PyPI.

📦🩺 Pre-install guard that vets package release diffs before installs

An Azure Security Assessment Tool Written with 200+ Rules

🔍 Terraform/OpenTofu module constraint analyzer -- detect version drift, deprecated modules, and risky constraints across all your repos