noseyparker ☆

« Back to VersTracker

Description:
Finds secrets and sensitive information in textual data and Git history

Type: Formula | Tracked Since: Dec 28, 2025

Links: Homepage | @praetorianinc | formulae.brew.sh

Category: Security

Tags: security secrets-detection devsecops git-scanning pentesting

Install: brew install noseyparker

About:
Noseyparker is a high-performance secrets scanning tool that analyzes textual data and Git history to detect sensitive information like API keys and credentials. It utilizes regex-based rules and ML-enhanced detection to identify hardcoded secrets across repositories and file systems. The tool provides detailed reports to help security teams remediate exposed credentials before they can be exploited.

Key Features:

Scans Git history in addition to current files
High-performance scanning using Rust
Built-in ruleset for common secret patterns
Supports multiple output formats (JSON, SARIF)
Minimal false positive rate with customizable rules

Use Cases:

Auditing Git repositories for accidentally committed secrets
CI/CD pipeline integration for pre-commit secret detection
Incident response and forensic analysis of data breaches
Periodic security scanning of codebases and file systems

Alternatives:

gitleaks – Noseyparker is generally faster and better at scanning large Git histories, while gitleaks is more commonly used in pre-commit hooks
truffleHog – Noseyparker offers better performance and more structured output formats compared to truffleHog's Python-based implementation
git-secrets – Noseyparker provides comprehensive scanning of existing history, whereas git-secrets focuses primarily on preventing new commits

Version History

Detected	Change	Commit
Sep 16, 2025 4:16pm	VERSION_BUMP	93b09a27
Oct 4, 2024 10:14pm	VERSION_BUMP	5553a9a5
Oct 4, 2024 6:47pm	VERSION_BUMP	c88e2a4c
Sep 11, 2024 6:44am	VERSION_BUMP	ad962069
Jul 12, 2024 5:57pm	VERSION_BUMP	181d3456
Feb 17, 2024 9:38am	VERSION_BUMP	d7770469