@trufflesec.bsky.social
The company behind TruffleHog, the popular open-source security project.
YoutTube: https://www.youtube.com/c/TruffleSecurity
LinkedIn: https://www.linkedin.com/company/trufflesecurity/
TikTok: https://www.tiktok.com/@trufflesecurity
YoutTube: https://www.youtube.com/c/TruffleSecurity
LinkedIn: https://www.linkedin.com/company/trufflesecurity/
TikTok: https://www.tiktok.com/@trufflesecurity
⚠️ Supply chain attacks keep stacking up- Salesforce, S1ngularity/NX & more.
⚒️ The same tools attackers use to find secrets are the ones defenders need too.
🐷 That’s why threat intel groups recommend TruffleHog.
🔗 Learn why it shows up in your logs: trufflesecurity.com/blog/truffle...
⚒️ The same tools attackers use to find secrets are the ones defenders need too.
🐷 That’s why threat intel groups recommend TruffleHog.
🔗 Learn why it shows up in your logs: trufflesecurity.com/blog/truffle...
September 17, 2025 at 8:13 PM
⚠️ Supply chain attacks keep stacking up- Salesforce, S1ngularity/NX & more.
⚒️ The same tools attackers use to find secrets are the ones defenders need too.
🐷 That’s why threat intel groups recommend TruffleHog.
🔗 Learn why it shows up in your logs: trufflesecurity.com/blog/truffle...
⚒️ The same tools attackers use to find secrets are the ones defenders need too.
🐷 That’s why threat intel groups recommend TruffleHog.
🔗 Learn why it shows up in your logs: trufflesecurity.com/blog/truffle...
🔐 8,437 #GCP images. 147M files. 0 live secrets.
☁️ GCP’s strict image controls show clear results vs. AWS & Azure.
🔗 Full CloudQuarry report: trufflesecurity.com/blog/guest-p...
☁️ GCP’s strict image controls show clear results vs. AWS & Azure.
🔗 Full CloudQuarry report: trufflesecurity.com/blog/guest-p...
July 18, 2025 at 6:31 PM
🔐 8,437 #GCP images. 147M files. 0 live secrets.
☁️ GCP’s strict image controls show clear results vs. AWS & Azure.
🔗 Full CloudQuarry report: trufflesecurity.com/blog/guest-p...
☁️ GCP’s strict image controls show clear results vs. AWS & Azure.
🔗 Full CloudQuarry report: trufflesecurity.com/blog/guest-p...
🔍Accessing 15 million "Permanently deleted" commits at scale across GitHub.
🔗A guest post by Sharon Brizinov: trufflesecurity.com/blog/guest-p...
🔗A guest post by Sharon Brizinov: trufflesecurity.com/blog/guest-p...
July 1, 2025 at 8:45 PM
🔍Accessing 15 million "Permanently deleted" commits at scale across GitHub.
🔗A guest post by Sharon Brizinov: trufflesecurity.com/blog/guest-p...
🔗A guest post by Sharon Brizinov: trufflesecurity.com/blog/guest-p...
🔥 You can now add TruffleHog to Burp Suite!
🌐 Install it directly from the BApp Store
🔍Scan web traffic for live, verified credentials—active & exploitable
Because secrets don’t just leak in code… 😬
🔗 trufflesecurity.com/blog/introdu...
🌐 Install it directly from the BApp Store
🔍Scan web traffic for live, verified credentials—active & exploitable
Because secrets don’t just leak in code… 😬
🔗 trufflesecurity.com/blog/introdu...
March 13, 2025 at 4:57 PM
🔥 You can now add TruffleHog to Burp Suite!
🌐 Install it directly from the BApp Store
🔍Scan web traffic for live, verified credentials—active & exploitable
Because secrets don’t just leak in code… 😬
🔗 trufflesecurity.com/blog/introdu...
🌐 Install it directly from the BApp Store
🔍Scan web traffic for live, verified credentials—active & exploitable
Because secrets don’t just leak in code… 😬
🔗 trufflesecurity.com/blog/introdu...
We scanned 400TB of DeepSeek’s training data & found:
🚨 ~12K live API keys & passwords
🌐 2.76M affected pages
🔄 One key appeared 57K+ times
🔑 219 secret types (AWS root keys, Slack webhooks, etc.)
🔗 Full research: trufflesecurity.com/blog/researc...
🚨 ~12K live API keys & passwords
🌐 2.76M affected pages
🔄 One key appeared 57K+ times
🔑 219 secret types (AWS root keys, Slack webhooks, etc.)
🔗 Full research: trufflesecurity.com/blog/researc...
February 27, 2025 at 5:57 PM
We scanned 400TB of DeepSeek’s training data & found:
🚨 ~12K live API keys & passwords
🌐 2.76M affected pages
🔄 One key appeared 57K+ times
🔑 219 secret types (AWS root keys, Slack webhooks, etc.)
🔗 Full research: trufflesecurity.com/blog/researc...
🚨 ~12K live API keys & passwords
🌐 2.76M affected pages
🔄 One key appeared 57K+ times
🔑 219 secret types (AWS root keys, Slack webhooks, etc.)
🔗 Full research: trufflesecurity.com/blog/researc...
Removing Jeff Bezos from my bed -
Do you expect to find an AWS key in your bed?
We found one, and we removed it. We’re sleeping great now.
🔗 trufflesecurity.com/blog/removing-jeff-bezos-from-my-bed
Do you expect to find an AWS key in your bed?
We found one, and we removed it. We’re sleeping great now.
🔗 trufflesecurity.com/blog/removing-jeff-bezos-from-my-bed
February 21, 2025 at 4:04 PM
Removing Jeff Bezos from my bed -
Do you expect to find an AWS key in your bed?
We found one, and we removed it. We’re sleeping great now.
🔗 trufflesecurity.com/blog/removing-jeff-bezos-from-my-bed
Do you expect to find an AWS key in your bed?
We found one, and we removed it. We’re sleeping great now.
🔗 trufflesecurity.com/blog/removing-jeff-bezos-from-my-bed
🐷 Under the Hood of TruffleHog!
⚡ Part 1 of 2: How Aho-Corasick + CPU optimizations deliver 11-17% faster scans with precomputed keyword matching. 🚀
👉 trufflesecurity.com/blog/under-t...
⚡ Part 1 of 2: How Aho-Corasick + CPU optimizations deliver 11-17% faster scans with precomputed keyword matching. 🚀
👉 trufflesecurity.com/blog/under-t...
January 24, 2025 at 8:04 PM
🐷 Under the Hood of TruffleHog!
⚡ Part 1 of 2: How Aho-Corasick + CPU optimizations deliver 11-17% faster scans with precomputed keyword matching. 🚀
👉 trufflesecurity.com/blog/under-t...
⚡ Part 1 of 2: How Aho-Corasick + CPU optimizations deliver 11-17% faster scans with precomputed keyword matching. 🚀
👉 trufflesecurity.com/blog/under-t...
🚨Today we are announcing a new OAuth bug that affects millions of accounts
🌟 TLDR: Google’s OAuth login doesn’t protect against someone purchasing a failed startup’s domain and using it to re-create email accounts for former employees
👉 full blog: trufflesecurity.com/blog/million...
🌟 TLDR: Google’s OAuth login doesn’t protect against someone purchasing a failed startup’s domain and using it to re-create email accounts for former employees
👉 full blog: trufflesecurity.com/blog/million...
January 13, 2025 at 10:59 PM
🚨Today we are announcing a new OAuth bug that affects millions of accounts
🌟 TLDR: Google’s OAuth login doesn’t protect against someone purchasing a failed startup’s domain and using it to re-create email accounts for former employees
👉 full blog: trufflesecurity.com/blog/million...
🌟 TLDR: Google’s OAuth login doesn’t protect against someone purchasing a failed startup’s domain and using it to re-create email accounts for former employees
👉 full blog: trufflesecurity.com/blog/million...
Vigilante Justice on GitHub. 🦇🦸
Here's how to spray painting on other fraudster's GitHub Activity Graph.
trufflesecurity.com/blog/vigilan...
Here's how to spray painting on other fraudster's GitHub Activity Graph.
trufflesecurity.com/blog/vigilan...
January 8, 2025 at 8:02 AM
Vigilante Justice on GitHub. 🦇🦸
Here's how to spray painting on other fraudster's GitHub Activity Graph.
trufflesecurity.com/blog/vigilan...
Here's how to spray painting on other fraudster's GitHub Activity Graph.
trufflesecurity.com/blog/vigilan...
🚨 10% of SaaS platforms mishandle GitHub OAuth tokens, opening potential backdoors into corporate accounts. 😱
⚠️ Extends to Azure, Slack & more—increasing risk with poor token handling.
🛑 The issue isn’t OAuth; it’s how platforms secure tokens.
👉 trufflesecurity.com/blog/mishand...
⚠️ Extends to Azure, Slack & more—increasing risk with poor token handling.
🛑 The issue isn’t OAuth; it’s how platforms secure tokens.
👉 trufflesecurity.com/blog/mishand...
December 19, 2024 at 9:57 PM
🚨 10% of SaaS platforms mishandle GitHub OAuth tokens, opening potential backdoors into corporate accounts. 😱
⚠️ Extends to Azure, Slack & more—increasing risk with poor token handling.
🛑 The issue isn’t OAuth; it’s how platforms secure tokens.
👉 trufflesecurity.com/blog/mishand...
⚠️ Extends to Azure, Slack & more—increasing risk with poor token handling.
🛑 The issue isn’t OAuth; it’s how platforms secure tokens.
👉 trufflesecurity.com/blog/mishand...
🐷 TruffleHog now decodes APKs to scan for secrets 🚀
💡 Why it matters:
🔍 APKs often leak secrets, but scanning was slow & complex.
🔓 Now it’s fast, efficient & scalable.
📊 Tested on WhatsApp & Facebook Messenger—up to 16.5x faster!
👉https://trufflesecurity.com/blog/cracking-open-apk-files-at-scale
💡 Why it matters:
🔍 APKs often leak secrets, but scanning was slow & complex.
🔓 Now it’s fast, efficient & scalable.
📊 Tested on WhatsApp & Facebook Messenger—up to 16.5x faster!
👉https://trufflesecurity.com/blog/cracking-open-apk-files-at-scale
December 9, 2024 at 5:33 PM
🐷 TruffleHog now decodes APKs to scan for secrets 🚀
💡 Why it matters:
🔍 APKs often leak secrets, but scanning was slow & complex.
🔓 Now it’s fast, efficient & scalable.
📊 Tested on WhatsApp & Facebook Messenger—up to 16.5x faster!
👉https://trufflesecurity.com/blog/cracking-open-apk-files-at-scale
💡 Why it matters:
🔍 APKs often leak secrets, but scanning was slow & complex.
🔓 Now it’s fast, efficient & scalable.
📊 Tested on WhatsApp & Facebook Messenger—up to 16.5x faster!
👉https://trufflesecurity.com/blog/cracking-open-apk-files-at-scale