Identify the permissions and resources linked to leaked credentials with TruffleHog Analyze

TRUFFLEHOG

CUSTOMERS

COMPANY

RESOURCES

LOG IN

Get Started

Identify the permissions and resources linked to leaked credentials with TruffleHog Analyze

TruffleHog

TruffleHog

ENTERPRISE

ENTERPRISE

TruffleHog™ Enterprise operationalizes secrets scanning and facilitates remediation throughout the Software Development Lifecycle.

TruffleHog™ Enterprise operationalizes secrets scanning and facilitates remediation throughout the Software Development Lifecycle.

Watch a demo

Continuous scanning across your entire SDLC

Secrets scattered across your SDLC—from Git repos to CI logs—pose serious risks. A single leak can trigger security breaches, legal trouble, and reputational damage.

Slack

GitHub

GitLab

Jira

Confluence

S3

Bitbucket

Jenkins

Artifactory

Buildkite

Gerrit

Git

Teams

SharePoint

Google Drive

Azure DevOps

Docker

TruffleHog digs deep
TruffleHog digs deep

TruffleHog searches through commit histories, comments, archives, encoded text, and more.

TruffleHog searches through commit histories, comments, archives, encoded text, and more.

20+ integrations and counting
20+ integrations and counting

TruffleHog Enterprise continuously monitors your source code, chat platforms, wikis, ticketing systems and more, integrating seamlessly with your development workflows.

TruffleHog Enterprise continuously monitors your source code, chat platforms, wikis, ticketing systems and more, integrating seamlessly with your development workflows.

Secrets leak everywhere

Secrets leak everywhere

Credential compromise is a leading cause of breaches, costing companies billions.

They leak out in a variety of ways, and typically stay active for a long time after exposure.

Credential compromise is a leading cause of breaches, costing companies billions.

They leak out in a variety of ways, and typically stay active for a long time after exposure.

Read the research

An overview of TruffleHog Enterprise

An overview of TruffleHog Enterprise

TruffleHog Enterprise runs across all your platforms quietly in the background and only alerts when verified secrets are leaked.

Watch a demo

Intuitive dashboard

TruffleHog's dashboard provides a comprehensive overview of scans, tailored alerts, and prioritized remediation actions.

Secret verification

TruffleHog’s open-source engine scans 800+ credential types, directly verified with key providers for unmatched scan accuracy. No triaging false positives or inactive keys.

Run anywhere

TruffleHog can be run on-premises or from our secure, isolated cloud instances. This makes TruffleHog a great option for scanning on your internal network.

Continuous monitoring

TruffleHog monitors key liveness for remediation. Customized alerts and messages are sent to developers with how to rotate instructions.

Automatic updates

Updates are automatically pulled by your scanners for new integrations, supported secrets, remediation workflows, and more.

Prevent leaks

TruffleHog’s pre-commit and pre-receive hooks for developers prevent keys from being leaked in the first place.

Credential analysis

NEW!

Automatically identifies the resources and permissions associated with API key and other secrets without requiring access to a SaaS or Cloud provider UI.

Automatically identifies the resources and permissions associated with API key and other secrets without requiring access to a SaaS or Cloud provider UI.

  • Analyze all keys instead of just one at a time

  • Filters in the UI to sort keys based on permissions (administrator/writer)

  • Cloud keys are gated enterprise only and are highest impact

TruffleHog Enterprise
extends open-source

Open-source

FREE!

Enterprise

GitHub, S3, directory, GCS , and Docker scanning

800+ secret detectors

GitHub actions, pre-commit, and pre-receive hooks

Custom regex and secrets verification

Automatic updates

TruffleHog Analyze for SaaS

ADD-ON

TruffleHog Analyze for Cloud

ADD-ON

20+ Integrations (GitHub, Confluence, JIRA, Slack, the list goes on...)

Choice of on-premises and cloud scanning

Continuous monitoring

Intuitive dashboard

Alerting

Monitor vast public datasets

ADD-ON

Single sign-on: SAML 2.0 or OAuth 2.0

Role-based access control

Deployment and onboarding support

On-going priority technical  support

Detailed analytics and reporting

TruffleHog Enterprise
extends open-source

Open-source

FREE!

Enterprise

GitHub, S3, directory, GCS , and Docker scanning

800+ secret detectors

GitHub actions, pre-commit, and pre-receive hooks

Custom regex and secrets verification

Automatic updates

TruffleHog Analyze for SaaS

ADD-ON

TruffleHog Analyze for Cloud

ADD-ON

20+ Integrations (GitHub, Confluence, JIRA, Slack, the list goes on...)

Choice of on-premises and cloud scanning

Continuous monitoring

Intuitive dashboard for secrets management

Alerting and detailed analytics and reporting

Monitor vast public datasets with Forager

ADD-ON

Single sign-on: SAML 2.0 or OAuth 2.0

Role-based access control

Deployment and onboarding support

On-going priority technical  support

Detailed analytics and reporting

AVAILABLE AS AN ADD-ON

TRUFFLEHOG

Analyze

Analyze

Know your secrets

Know your secrets

TruffleHog Analyze is the only tool that automatically provides a comprehensive analysis of each key’s capabilities, enabling security teams to understand the impact of credential leaks and prioritize remediation across multiple SaaS (and cloud) providers.

TruffleHog Analyze is the only tool that automatically provides a comprehensive analysis of each key’s capabilities, enabling security teams to understand the impact of credential leaks and prioritize remediation across multiple SaaS (and cloud) providers.

Learn more

TRUFFLEHOG

Forager

Forager

Scan the internet

Scan the internet

Forager scans millions of pushes to public GitHub and all of NPM for live keys, and attributes them back to your organization. It correlates email addresses, account IDs and other attributes back to you.

Forager scans millions of pushes to public GitHub and all of NPM for live keys, and attributes them back to your organization. It correlates email addresses, account IDs and other attributes back to you.

Try Forager!

Gett rides with TruffleHog to automate secrets detection and remediation

"TruffleHog was the only tool we looked at that could go beyond simply detecting the secret. TruffleHog validates whether or not it was a live key or false positive and isolates where the secrets are in the code. This information is automatically pushed to the developer so they can pinpoint and address the issue."

Andy Pannell, Application Security Lead

Find out how Gett leveraged TruffleHog to identify and address leaked secrets with minimal strain on internal resources.

Read the case study

Gett rides with TruffleHog to automate secrets detection and remediation

"TruffleHog was the only tool we looked at that could go beyond simply detecting the secret. TruffleHog validates whether or not it was a live key or false positive and isolates where the secrets are in the code. This information is automatically pushed to the developer so they can pinpoint and address the issue."

Andy Pannell, Application Security Lead

Find out how Gett leveraged TruffleHog to identify and address leaked secrets with minimal strain on internal resources.

Read the case study

Cmd eliminates secrets injected into codebase

"We knew that there was a ton of exposure that was possible through the software that we were building. Secrets being injected into our codebase were inevitably going to happen. We had a ton of developers building a lot of software and we were moving super super fast. When you move fast, mistakes happen."

Jake King, Co-founder & Chief Security Officer, Cmd

Find out how Cmd was able to elevate its security posture by automating secrets detection with TruffleHog.

Read the case study

Cmd eliminates secrets injected into codebase

"We knew that there was a ton of exposure that was possible through the software that we were building. Secrets being injected into our codebase were inevitably going to happen. We had a ton of developers building a lot of software and we were moving super super fast. When you move fast, mistakes happen."

Jake King, Co-founder & Chief Security Officer, Cmd

Find out how Cmd was able to elevate its security posture by automating secrets detection with TruffleHog.

Read the study

Take control of your secrets with TruffleHog

Contact us to protect your data across the entire SDLC

Get started

Take control of your secrets with TruffleHog

Contact us to protect your data across the entire SDLC

Get started

STAY STRONG

DIG DEEP

TRUFFLEHOG

Open-source

Enterprise

Analyze

NEW!

Forager

Security

Integrations

Pricing

CUSTOMERS

COMPANY

About

Careers

Press

FAQ

Contact us

RESOURCES

Blog

Content library

Events

Videos

GitHub

Enterprise docs

Open-source docs

How to rotate

NEW!

DOING IT THE RIGHT WAY

SINCE 2021

#trufflehog-community

#Secret Scanning

© 2025 Truffle Security Co.

Privacy policy

Terms and conditions

Data processing agreement

Acceptable use policy

STAY STRONG

DIG DEEP

#trufflehog-community

#Secret Scanning

© 2025 Truffle Security Co.

Privacy policy

Terms and conditions

Data processing agreement

Acceptable use policy