Secret Exposure Risk Scanner for Websites
Detect exposed API keys, tokens, and sensitive information on public websites
Website URL
Enter domain name (e.g., xyz.com) - we'll add https://www. automatically
Initializing scan...
API Keys
Detects AWS, GitHub, Google, and other API keys
Database Credentials
Find exposed database connection strings
Private Keys
Identify SSH and RSA private keys
Security Notice
This tool is for educational and security research purposes. Only scan websites you own or have explicit permission to test. KeySweep respects robots.txt and implements reasonable rate limiting.