piihunter is a sensitive unencrypted data detection tool built to scan source code repositories for passwords, token, weak cryptography usage, private key voilations and lot more. It can also scan your codebase for unencrypted PII such as emails, phone numbers, addresses, zip codes, credit/debit card numbers etc.
It can be used to scan remote git repositories or local directories.
If you already have Go installed and $GOPATH set, then simply clone this repository and run make install. It will install executable to your $GOPATH/bin directory.
To launch a scan against directory:
$ piihunter --dir=/path/to/directory/
To launch a scan against git repository:
$ piihunter --git=https://github.com/[USERNAME]/[REPOSITORY]
Writing scan result to a file:
$ piihunter --dir=/path/to/directory/ --out=/path/to/file.json
Assuming you have Go installed on your machine
- Clone the repository
cd piihuntergo build
In the project base directory, run make test. Alternatively you can go to cmd directory and run go test.