NeoShield Security logo NeoShield Security Quantum X

// tool reference · Vulnerability & Assessment

Secret Scanner Free

Find hardcoded credentials, API keys and tokens in a blob of text or code.

Open Secret Scanner →


What it does

Finds hardcoded credentials, API keys, tokens and private keys in code or config before they reach a repository.

When to use it

Inputs

Field names are the actual form parameters, verified against source.

FieldTypeRequiredNotes
blob textarea required Code or configuration.

What you get back

Detected secrets by type and location, with remediation.

How it works

Deterministic pattern matching against known credential formats. Offline — your code is not transmitted.

Privacy

Analysed in memory. Not stored. If a real secret is found, rotate it — detection means it existed in plaintext.

Standards

CWE-798 Hardcoded CredentialsOWASP Top 10

Related tools

← All tools Manual home