AnchorscapeANCHORSCAPEFull Scanner
FREE TOOL - RUNS IN YOUR BROWSER

Secret Scanner

Detect hardcoded secrets, API keys, and credentials in your code. 100% client-side - your code never leaves your browser.

0 characters

Paste code and click scan to detect secrets

What to paste

Copy and paste the contents of files that might contain secrets, such as:

  • .env files (environment variables)
  • config.js, settings.py (configuration files)
  • Any source code file where you set API keys or passwords

What NOT to paste

This tool scans text content, not binary files. Don't paste:

  • Random text or documentation that doesn't contain code
  • Images, PDFs, or compiled binaries
  • Output from terminal commands (unless checking for leaks)

How it works

We use pattern matching (regex) to find common secret formats like AWS keys, API tokens, database URLs, and passwords. Your code is scanned entirely in your browser - nothing is sent to any server.

Want AI-Powered Security Analysis?

This scanner finds common patterns. Anchorscape Lookout uses AI to understand context, find complex vulnerabilities, and provide actionable fix recommendations.

Try Lookout FreeView Pricing

Free tool by Anchorscape. Your code is processed entirely in your browser - we never see or store it.