| layout | title | nav_order |
|---|---|---|
home |
Overview |
1 |
{: .fs-9 }
Static Token And Credential Scanner. {: .fs-6 .fw-300 }
STACS is a YARA powered static credential scanner which supports scanning of both text and binary files, analysis of nested archives, composable rulesets and ignore lists, CI / CD system integration, and SARIF reporting.
q
STACS supports plain-text, such as source code, as well as a number of common binary and
archive file formats, including: 7z, ar, bz2, cab, cpio, gz, iso, rar,
rpm, tar, xar, xz, and zip.
As STACS works on detected file types, rather than the filename, file formats based on these supported types are automatically supported, including all layers inside Docker images, Android APKs, Debian Packages, RPMs, macOS Packages, OVAs, JARs, WARs, EARs, and more!
For a full list please see supported file types.
STACS is designed for use by any teams who write and release code. STACS provides developers the ability to check for accidental inclusion of static credentials and key material in their releases and source code.