Join us

ContentUpdates from Truffle Security...
 Activity
devopslinks
@devopslinks added a new tool ServiceNow , 2 days, 5 hours ago.
 Activity
cmndrsp0ck
@cmndrsp0ck started using tool Terraform , 2 days, 9 hours ago.
 Activity
cmndrsp0ck
@cmndrsp0ck started using tool Ansible , 2 days, 9 hours ago.
 Activity
cmndrsp0ck
@cmndrsp0ck started using tool Python , 2 days, 9 hours ago.
 Activity
cmndrsp0ck
@cmndrsp0ck started using tool Kubernetes , 2 days, 9 hours ago.
 Activity
cmndrsp0ck
@cmndrsp0ck started using tool Go , 2 days, 9 hours ago.
 Activity
cmndrsp0ck
@cmndrsp0ck started using tool GNU/Linux , 2 days, 9 hours ago.
 Activity
cmndrsp0ck
@cmndrsp0ck started using tool GitLab CI/CD , 2 days, 9 hours ago.
 Activity
cmndrsp0ck
@cmndrsp0ck started using tool Docker , 2 days, 9 hours ago.
Story
laura_garcia
@laura_garcia shared a post, 2 days, 13 hours ago
Software Developer, RELIANOID

The UK raises the bar on digital security

With cyberattacks on the rise, the Product Security and Telecommunications Infrastructure (PSTI) Act marks a major step toward making connected technology secure by design. In our latest article, we explain: What the PSTI Act requires Why it matters beyond consumer IoT How it signals a global sh..

351 views  
Share: Twitter

|

Linkedin

|

Facebook

|

Pocket

|

Reddit

|

Hacker News

|

Email
Truffle Security is the company behind TruffleHog, one of the most widely used open-source tools for discovering leaked secrets in code repositories, cloud environments, and developer infrastructure. The company focuses on securing the modern software supply chain by detecting exposed credentials early, validating them with high accuracy, and providing actionable remediation workflows.

Their platform supports large-scale scanning across GitHub, GitLab, Bitbucket, CI/CD systems, and enterprise codebases, with specialized products for continuous monitoring and automated alerting. Truffle Security works closely with security researchers and enterprises to reduce the risk of account takeovers, data breaches, and supply chain attacks driven by credential leakage. The company also invests in security research programs that uncover real-world vulnerabilities across open-source ecosystems.