EarlyBird — Secret Discovery | Tools

Description

EarlyBird is a sensitive data detection tool by American Express. It scans source code repositories for clear text passwords, PII, outdated cryptography, key files, and 100+ other security-relevant patterns.

Installation

                        BASH
                        
                            # Download from releases
# https://github.com/americanexpress/earlybird/releases

# From source
git clone https://github.com/americanexpress/earlybird.git
cd earlybird && go build

Basic Usage

BASH

                            # Scan current directory
earlybird --path .

# Scan specific path
earlybird --path /path/to/project
                        

Advanced Usage

                        BASH
                        
                            # Output formats
earlybird --path . --format json
earlybird --path . --format csv

# Specific modules
earlybird --path . --enable password,pii,crypto

# Exclude paths
earlybird --path . --skip node_modules,vendor,.git

# Severity filter
earlybird --path . --severity high

Common Workflows

                        BASH
                        
                            # Pre-deployment scan
earlybird --path . --format json --severity high > security_findings.json

# CI/CD integration
earlybird --path . --severity critical --fail-on-findings || exit 1

# Bug bounty — scan leaked source code
earlybird --path /path/to/leaked/source --format json