A simple web viewer for TruffleHog JSON output.
Completely client-side. No data is sent to the server. Actually, there is no server.
- Get the JSON output from TruffleHog
- Upload it to TruffleShow.
- View the results.
Note: TruffleHog produces a broken JSON file. To get a valid JSON file, you can use jq
like this:
trufflehog git https://github.com/trufflesecurity/test_keys --json | jq -s . > trufflehog.json
Screenshot:
I am not sure if I will implement these features but here are some ideas:
- Complete the PDF report generation (currently it is very basic and incomplete)
- Accept JSON file via text input
- Generate and export ignore rules for TruffleHog by selecting items
- Search among the findings
- Add more TruffleHog sources (e.g. GitLab, Bitbucket, Docker, etc.)
This is a very simple tool. I don't plan to add many features but I'm open to suggestions. Feel free to open an issue or send a pull request.
MIT