PRISM ์ ์์: furkanumut
PRISM - Advanced browser-based secret scanner that reveals invisible security risks. Refracting the web to find hidden secrets.
ํ์ฅ ๋ฉํ ๋ฐ์ดํฐ
์คํฌ๋ฆฐ์ท
์ ๋ณด
PRISM is a lightweight browser extension designed for security engineers and bug bounty hunters. It performs passive scanning on web pages to detect exposed secrets (API keys, tokens, credentials) and sensitive information in client-side code.
PRISM is a lightweight browser extension designed for security engineers and bug bounty hunters. It performs passive scanning on web pages to detect exposed secrets (API keys, tokens, credentials) and sensitive information in client-side code.
๐ KEY FEATURES:
- Passive Scanning: Automatically scans HTML, inline scripts, and external JS/CSS files
- Real-Time Alerts: Badge counter on icon + in-page notification for high-severity findings
- 60+ Built-in Regex Patterns: AWS, Google, Stripe, Slack, Firebase, and more
- Customizable Rules: Add, edit, or disable detection patterns
- Privacy First: All scanning happens locally - no data sent to external servers
- Domain Exclusions: Skip scanning on specific domains with regex patterns
- Scan History: Local history with auto-expiration settings
๐ฏ DETECTION CATEGORIES:
AWS Access Keys, Google API Keys, Stripe API Keys, Slack Tokens, Firebase URLs, GitHub Tokens, RSA/PGP Private Keys, Bearer/Basic Auth Tokens, Sentry DSN, Discord Bot Tokens, and many more.
โ ๏ธ DISCLAIMER: This tool is intended for security research and educational purposes. Always ensure you have proper authorization before scanning websites you don't own.
Source Code: https://github.com/furkanumut/prism
๐ KEY FEATURES:
- Passive Scanning: Automatically scans HTML, inline scripts, and external JS/CSS files
- Real-Time Alerts: Badge counter on icon + in-page notification for high-severity findings
- 60+ Built-in Regex Patterns: AWS, Google, Stripe, Slack, Firebase, and more
- Customizable Rules: Add, edit, or disable detection patterns
- Privacy First: All scanning happens locally - no data sent to external servers
- Domain Exclusions: Skip scanning on specific domains with regex patterns
- Scan History: Local history with auto-expiration settings
๐ฏ DETECTION CATEGORIES:
AWS Access Keys, Google API Keys, Stripe API Keys, Slack Tokens, Firebase URLs, GitHub Tokens, RSA/PGP Private Keys, Bearer/Basic Auth Tokens, Sentry DSN, Discord Bot Tokens, and many more.
โ ๏ธ DISCLAIMER: This tool is intended for security research and educational purposes. Always ensure you have proper authorization before scanning websites you don't own.
Source Code: https://github.com/furkanumut/prism
PRISM is a lightweight browser extension designed for security engineers and bug bounty hunters. It performs passive scanning on web pages to detect exposed secrets (API keys, tokens, credentials) and sensitive information in client-side code.
๐ KEY FEATURES:
- Passive Scanning: Automatically scans HTML, inline scripts, and external JS/CSS files
- Real-Time Alerts: Badge counter on icon + in-page notification for high-severity findings
- 60+ Built-in Regex Patterns: AWS, Google, Stripe, Slack, Firebase, and more
- Customizable Rules: Add, edit, or disable detection patterns
- Privacy First: All scanning happens locally - no data sent to external servers
- Domain Exclusions: Skip scanning on specific domains with regex patterns
- Scan History: Local history with auto-expiration settings
๐ฏ DETECTION CATEGORIES:
AWS Access Keys, Google API Keys, Stripe API Keys, Slack Tokens, Firebase URLs, GitHub Tokens, RSA/PGP Private Keys, Bearer/Basic Auth Tokens, Sentry DSN, Discord Bot Tokens, and many more.
โ ๏ธ DISCLAIMER: This tool is intended for security research and educational purposes. Always ensure you have proper authorization before scanning websites you don't own.
Source Code: https://github.com/furkanumut/prism
๐ KEY FEATURES:
- Passive Scanning: Automatically scans HTML, inline scripts, and external JS/CSS files
- Real-Time Alerts: Badge counter on icon + in-page notification for high-severity findings
- 60+ Built-in Regex Patterns: AWS, Google, Stripe, Slack, Firebase, and more
- Customizable Rules: Add, edit, or disable detection patterns
- Privacy First: All scanning happens locally - no data sent to external servers
- Domain Exclusions: Skip scanning on specific domains with regex patterns
- Scan History: Local history with auto-expiration settings
๐ฏ DETECTION CATEGORIES:
AWS Access Keys, Google API Keys, Stripe API Keys, Slack Tokens, Firebase URLs, GitHub Tokens, RSA/PGP Private Keys, Bearer/Basic Auth Tokens, Sentry DSN, Discord Bot Tokens, and many more.
โ ๏ธ DISCLAIMER: This tool is intended for security research and educational purposes. Always ensure you have proper authorization before scanning websites you don't own.
Source Code: https://github.com/furkanumut/prism
0๋ช
์ด 0์ ์ผ๋ก ํ๊ฐํจ
๊ถํ ๋ฐ ๋ฐ์ดํฐ
ํ์ ๊ถํ:
- ์๋ฆผ ํ์
์ ํ์ ๊ถํ:
- ๋ชจ๋ ์น์ฌ์ดํธ์์ ์ฌ์ฉ์์ ๋ฐ์ดํฐ์ ์ ๊ทผ
๋ฐ์ดํฐ ์์ง:
- ๊ฐ๋ฐ์๊ฐ ์ด ํ์ฅ ๊ธฐ๋ฅ์ ๋ฐ์ดํฐ ์์ง์ด ํ์ํ์ง ์๋ค๊ณ ํฉ๋๋ค.
์ถ๊ฐ ์ ๋ณด
- ๋ถ๊ฐ ๊ธฐ๋ฅ ๋งํฌ
- ๋ฒ์
- 1.0.0
- ํฌ๊ธฐ
- 1.67 MB
- ๋ง์ง๋ง ์ ๋ฐ์ดํธ
- 3์ผ ์ (2026๋ 2์ 1์ผ)
- ๊ด๋ จ ์นดํ ๊ณ ๋ฆฌ
- ๋ผ์ด์ ์ค
- GNU General Public License v3.0 ์ ์ฉ
- ๋ฒ์ ๋ชฉ๋ก
- ๋ชจ์์ง์ ์ถ๊ฐ