Addressing The Growing Challenge of Generic Secrets: Beyond GitHub's Push Protection
Generic secrets are hard to detect and are getting leaked more often. See how GitGuardian offers advanced protection where GitHub's push protection falls short.
The State of Secrets Sprawl 2025
GitGuardian's 2025 report reveals 70% of leaked secrets remain active two years later. Discover the alarming state of secrets sprawl & protect your organization.
Comparing Secrets Detection Solutions? Here’s Why You Should Use the F1 Score
Learn how the F1 score helps you choose the right tool to strengthen your security posture.
Why Hedge Funds Must Prioritize Secrets Security
Protect hedge fund assets from secrets-related attacks. Learn how GitGuardian provides visibility and control over secrets and mitigates the risks of hardcoded secrets.
Doomed Keys and Hidden Threats: The Scariest Secrets in Your Repositories
At GitGuardian we see things that no one should ever see. We detect and collect leaked secrets that are so hideous we could lose our sanity. Let us introduce you to some of the most terrifying leaks we saw this year. If you dare.
![Precision & Recall [Security Zines]](/content/images/size/w600/2024/10/Recall-in-Detection.png)
Precision & Recall [Security Zines]
Or how to find a key in a code haystack
The Extent of Hardcoded Secrets: From Development to Production
This blog post provides a data-driven breakdown of where secrets have been discovered in recent years, with detailed examples highlighting the risks, starting from the developer boundary to the lesser-known infrastructure one.
Real-Time Secrets Security for Developers with GitGuardian’s Extension for Visual Studio Code
Enhance your secure coding practices with GitGuardian’s Visual Studio Code extension. Detect secrets in real-time by embedding security into developers' workflows, boosting productivity and ensuring compliance.
Protect Your Company Secrets: Free GitHub Leaks Audit in One Click
Discover how exposed your company is on public GitHub, anonymously and for free.
How Popular Malware Is Stealing Credentials and What You Can Do About It
Credentials are prime targets for attackers, as they make it easy to access resources as legitimate users without discovering vulnerabilities or using technical exploits. Malware authors know how interesting these low-hanging fruits are and are coming after your secrets!
The Secrets of the New York Times Source Code Breach
The New York Times had their entire codebase leaked. In this article we explore what was inside that code, how the leak happened and what the risk for the New York Times going forward is. (Spoiler we found thousands of secrets).
