The cybersecurity landscape has witnessed the introduction of Betterleaks, a new open-source secrets scanner designed to scan directories, files, and Git repositories. Developed by the creator of Gitleaks, Betterleaks is sponsored by Aikido Security, and aims to provide a faster and more configurable solution for detecting exposed credentials.
Enhanced Features and Capabilities
Betterleaks serves as a direct replacement for its predecessor, Gitleaks, which has garnered over 26 million downloads. With the loss of administrative control over the Gitleaks repository, its creator embarked on developing an improved tool from scratch, resulting in Betterleaks. The tool retains full compatibility with existing command-line interface options, ensuring a seamless transition for users.
The tool operates under an MIT license and is maintained by a team of four security experts from notable companies such as Red Hat, Amazon, and RBC. This structure supports long-term project stability and encourages community-driven development.
Innovative Technological Advancements
Among its advancements, Betterleaks improves detection speed and accuracy. Version 1.0 introduces Token Efficiency Scanning, which utilizes BPE tokenization, achieving a 98.6% recall rate. This technique surpasses traditional entropy-based methods.
Furthermore, the tool incorporates Rule-Defined Validation via the Common Expression Language, simplifying rule creation for new service providers. Its architecture is based on Go, eliminating dependencies on CGO or Hyperscan, facilitating easy deployment across different environments.
Future Developments and Contributions
Looking ahead, the Betterleaks team plans to expand its functionality beyond Git repositories and files. Upcoming features include LLM-assisted secret classification, auto-revocation of exposed credentials, and permissions mapping to assess the impact of leaked secrets. Continuous rule expansion is encouraged through GitHub contributions.
Betterleaks is tailored for AI-driven development environments, offering utility for AI agents to automate the scanning of generated code or enhance bug bounty workflows. Its development team comprises professionals from RBC, Red Hat, and Amazon, ensuring robust project governance.
Available on GitHub, Betterleaks is part of Aikido’s suite of open-source security tools, promising a significant contribution to the cybersecurity community. Stay updated on cybersecurity news by following us on Google News, LinkedIn, and X.
