Skip to content

alioguzhan/truffleshow

Repository files navigation

TruffleShow Logo

TruffleShow

A simple web viewer for TruffleHog JSON output.

Completely client-side. No data is sent to the server. Actually, there is no server.

  • Get the JSON output from TruffleHog
  • Upload it to TruffleShow.
  • View the results.

Note: TruffleHog produces a broken JSON file. To get a valid JSON file, you can use jq like this:

trufflehog git https://github.com/trufflesecurity/test_keys --json | jq -s . > trufflehog.json

Screenshot:

TruffleShow Screenshot

Roadmap

I am not sure if I will implement these features but here are some ideas:

  • Complete the PDF report generation (currently it is very basic and incomplete)
  • Accept JSON file via text input
  • Generate and export ignore rules for TruffleHog by selecting items
  • Search among the findings
  • Add more TruffleHog sources (e.g. GitLab, Bitbucket, Docker, etc.)

Feedback and Contributing

This is a very simple tool. I don't plan to add many features but I'm open to suggestions. Feel free to open an issue or send a pull request.

License

MIT