GhostType: Open‑Source Forensic Scanner for Leaked Credentials in AI Chat Histories

GhostType is an open‑source forensic scanner that parses local conversation files from popular AI coding assistants, uses TruffleHog’s 800+ detectors plus custom regex rules to locate exposed API keys or passwords, verifies their validity in real time, and outputs detailed JSON or CSV reports for red‑team or DLP use.

AI assistantsDLPGhostType

0 likes · 3 min read

GhostType: Open‑Source Forensic Scanner for Leaked Credentials in AI Chat Histories

Black & White Path

Apr 6, 2026 · Information Security

Why Your Public GitHub Repo Is Exposed: A Cheat‑Sheet on GitHub Dorks

The article explains how attackers use GitHub Dorks to locate sensitive credentials hidden in public repositories, illustrates the types of data at risk, and provides concrete steps—such as .gitignore rules, environment variables, regular audits, and immediate key revocation—to secure your codebase.

GitHub DorksGitleaksRepository Security

0 likes · 5 min read

Why Your Public GitHub Repo Is Exposed: A Cheat‑Sheet on GitHub Dorks