CredScan

CredScan (Credential Scanner) is a static analysis tool developed by Microsoft that scans source code, configuration files, and build outputs to detect credential leaks including hardcoded passwords, SQL connection strings, API keys, certificates with private keys, storage access keys, and other sensitive information that could pose security risks. The tool is available as part of the Microsoft Security Code Analysis extension for Azure DevOps and as a Code Analyzer in Visual Studio, providing automated detection with customizable rule sets and suppression capabilities to prevent accidental exposure of secrets in code repositories.