Hey everyone! 🌟

     I’ve been working on something cool and it’s finally ready for the spotlight. Meet, Rahasya,my latest creation designed to up your secret scanning game. This tool is all about making sure those sneaky secrets don’t end up where they shouldn’t.

Why Rahasya?

   We all know the struggle — keeping API keys, passwords, and other sensitive info out of public repositories is a must, but it can be a pain to manage.

  That’s where Rahasya comes in. It bundles some of the best open-source tools into one package, making comprehensive scans a breeze.

What’s Inside?

   Rahasya combines the strengths of several top-tier tools like GitLeaks, Gitty Leaks, TruffleHog, Detect Secrets, Git Guardian, and Talisman. Whether you’re a developer or a security engineer, Rahasya is here to make your life easier and your code safer.

How to Use It?

   Pull the Docker image and run it in your project’s root directory where it’s git cloned.

# download the image
$ docker pull raikaustubh/rahasya # run the image at the project's location in a self deleting container once its done using
$ docker run -it --rm -v "$(PWD):/repo" raikaustubh/rahasya

   You can customize the scans to fit your needs, whether you want to run all tools at once or pick and choose specific ones. The results are organized neatly, so reviewing them is a breeze.

Shift Left Security for Devs

  Rahasya isn’t just for security pros; it’s great for developers too. You can deploy it as a GitHub Action, which means every time you push code or create a pull request, Rahasya will run the scans and alert you to any issues.

  It’s a fantastic way to integrate security into your development process right from the start.

Want to Know More?

     I’ve written an in-depth post about Rahasya on BreachForce. If you’re curious to dive deeper into what Rahasya can do, head over to

Take a gander here: BreachForce Blog.

   Stay tuned for more updates and tools. I might not post often, but when I do, I make sure it’s worth your time. 🚀