Black Hat 2020: xGitGuard uses AI to detect inadvertently exposed data on GitHub

Source:-portswigger.net GitHub is often praised for offering a platform for developers to share their open source code and tools that they develop. However, some developers often unknowingly, or inadvertently, neglect to remove sensitive information such as API tokens and user credentials from their code prior to posting it on GitHub. Mistakes of this kind can expose an organizationā€™s internal secrets and tokens to harvesting and potential misuse. Security researchers at Comcast have developed a tool that detects organizationsā€™ secrets and

Read more