Here's a tool named "Shhgit" that will scan across GitHub for private crypto keys exposed to hackers
New Post has been published on https://www.blockinspect.com/tech/heres-a-tool-named-shhgit-that-will-scan-across-github-for-private-crypto-keys-exposed-to-hackers/
Here's a tool named "Shhgit" that will scan across GitHub for private crypto keys exposed to hackers
As per recent reports, a new web app, called “Shhgit” is all set to scan GitHub’s code repository. Programmer and security expert Paul Price introduced his new tool that will scan public code repositories like GitHub for sensitive secrets like private crypto keys. Paul argued that such sensitive information if accessed by hackers can cause a potential data breach of an enormous scale. He further said that there are a number of open-source tools like gitrob and truggleHog, which have access to “commit history to find secret tokens from specific repositories, users or organizations.”
Talking about the security of public code repositories, Price commented, “config files should be encrypted with an environment-based key.”
The recent data breach involving Capital One has exposed the personal data of over 100 million individuals, which point towards faulty security standards.
Price claims that Shhgit has the capability to get hold of relevant secret information in real-time, that might have been accidentally inserted. This will also enable developers to delete such secret information before hackers can get hold of these and endanger personal and private information.









