From cc9a6f45094fdb707e7767391c5579b01e9ba1b2 Mon Sep 17 00:00:00 2001
From: Fazle Arefin <fazlearefin@users.noreply.github.com>
Date: Sun, 25 Feb 2024 21:43:33 +1100
Subject: [PATCH] trufflehog: add page (#12348)

* trufflehog: add page

---------

Co-authored-by: K.B.Dharun Krishna <kbdharunkrishna@gmail.com>
---
 pages/common/trufflehog.md | 36 ++++++++++++++++++++++++++++++++++++
 1 file changed, 36 insertions(+)
 create mode 100644 pages/common/trufflehog.md

diff --git a/pages/common/trufflehog.md b/pages/common/trufflehog.md
new file mode 100644
index 000000000..69670bc06
--- /dev/null
+++ b/pages/common/trufflehog.md
@@ -0,0 +1,36 @@
+# trufflehog
+
+> Find and verify credentials in files, Git repositories, S3 buckets, and Docker images.
+> More information: <https://github.com/trufflesecurity/trufflehog>.
+
+- Scan a Git repository for verified secrets:
+
+`trufflehog git {{https://github.com/trufflesecurity/test_keys}} --only-verified`
+
+- Scan a GitHub organization for verified secrets:
+
+`trufflehog github --org={{trufflesecurity}} --only-verified`
+
+- Scan a GitHub repository for verified keys and get JSON output:
+
+`trufflehog git {{https://github.com/trufflesecurity/test_keys}} --only-verified --json`
+
+- Scan a GitHub repository along with its Issues and Pull Requests:
+
+`trufflehog github --repo={{https://github.com/trufflesecurity/test_keys}} --issue-comments --pr-comments`
+
+- Scan an S3 bucket for verified keys:
+
+`trufflehog s3 --bucket={{bucket name}} --only-verified`
+
+- Scan S3 buckets using IAM Roles:
+
+`trufflehog s3 --role-arn={{iam-role-arn}}`
+
+- Scan individual files or directories:
+
+`trufflehog filesystem {{path/to/file_or_directory1 path/to/file_or_directory2 ...}}`
+
+- Scan a Docker image for verified secrets:
+
+`trufflehog docker --image {{trufflesecurity/secrets}} --only-verified`