What is GitGuardian Internal Monitoring?
GitGuardian Internal Monitoring is an automated secret detection & remediation solution. It integrates with the Version Control System to further secure the software development life cycle. It scans existing code as well as incremental changes to detect secrets (API keys, database credentials, certificates).
Scanning is done continuously but also on git history to ensure total coverage. The secret detection engine covers 250+ API providers, database connection strings, private keys, certificates, usernames and passwords and allows also to build custom detectors.
GitGuardian uses sophisticated pattern matching techniques to detect credentials that cannot be strictly defined with a distinctive pattern (like unprefixed credentials). The precision of the detection engine is very high as it returns 91% “true positive” feedback following our alerts, as reported by our users. The developer and the application security team get the alert and can start the remediation process immediately.
GitGuardian has a native integration with GitHub, GitLab and Bitbucket and there is both a Saas and an on-premise version available. It is also integrated with most common SIEM, ITSM, ticketing systems and chat to integrate with companies’ alerting flows.
Download the Application Security Buyer's Guide including reviews and more. Updated: November 2021
GitGuardian Internal Monitoring Customers
Genesys, Seequent, Iress, Stedi, Now:Pensions, Cloudbakers
GitGuardian Internal Monitoring Video