CloakScan is a local-first tool that finds and redacts secrets, credentials, and personal data in text before you share it. Everything runs on your device — no cloud, no account, no telemetry.
This release renames the project from CloakGuard to CloakScan (the old name clashed with an existing app) and adds:
- Cloak Lists export/import as
.txt— move your reusable exact-match term lists between machines without hand-copying from the editor. - New Scan button — clear the current text and results in one click and start fresh.
- Better internal-network detection — internal Active Directory hostnames (e.g.
DC02.ad.contoso.com), LDAP/LDAPS URLs, and service/admin ports.
Try it or install
- Live browser demo: https://benthompsondev.github.io/cloakscan/
- Windows:
CloakScan-Setup-1.2.0-x64.exe— unsigned, so SmartScreen will warn (More info → Run anyway). Verify it againstSHA256SUMS-windows.txt. - Linux:
CloakScan_1.2.0_amd64.deborCloakScan_1.2.0_amd64.AppImage. Verify againstSHA256SUMS-linux.txt.
Nothing is uploaded. The desktop scan UI has no network access at all (connect-src 'none'); the only network call is the manual "check for updates."
Because the app identifier changed with the rename, this is a fresh install — it will not auto-update over an existing CloakGuard install.