Trufflehog-PingPwn

Trufflehog-PingPwn scans web pages and referenced resources for common secret patterns (API keys, tokens, private keys, webhook URLs) so you can identify accidental exposures quickly. Scanning and detection are performed entirely in your browser; this extension does not send findings to any remote server. Use the popup to review findings, clear them, or download a CSV of results. This extension tries to brings the scanning & Detection capabilities of well known Trufflehog to browser in real time scanning.

Key features:

- Detects generic API keys, specific provider tokens, and common secret formats.

- Optionally checks for `.env` files and `.git` directories (may trigger server protections).

- Shows per-origin findings with a badge count and in-popup listing.

- Local-only storage of findings using the browser's storage; no remote transmission.