Challenges
Solution
Results
What is most valuable?
Key quote
What’s next
What is our primary use case?
We use GitGuardian Public Monitoring for code that is exposed in public.
How has it helped my organization?
GitGuardian Public Monitoring's detection capabilities are good. I'm still learning the ropes of using some search techniques. However, it's impressive how we can find information even if it's been deleted. That's helpful!
What is most valuable?
The Explore function is valuable for finding specific things I'm looking for. I also appreciate that critical or high-priority issues are sent directly to my email. This ensures I'm notified even if I'm not actively checking the website.
What needs improvement?
I'm excited about the possibility of Public Postman scanning being integrated with GitGuardian in the future. Additionally, I'm interested in exploring the potential use of honeytokens, which seems like a compelling approach to lure and identify attackers.
For how long have I used the solution?
I have been using GitGuardian Public Monitoring for less than one year.
What do I think about the stability of the solution?
I've never had any problems with GitGuardian's stability. The only issue I ran into was when our free trial expired. Until we renewed it, I couldn't access the product, which caused some delays with my follow-up tasks. It's important to note that this wasn't a problem with GitGuardian itself, but rather a limitation of the free trial. Overall, I've been very impressed with the stability of their product.
What do I think about the scalability of the solution?
Right now, we're only considering using GitGuardian for public GitHub repositories. While it offers additional features, we don't have a current need for them. It's a powerful tool with capabilities we might explore in the future, but for now, our focus is on its basic functionalities.
How are customer service and support?
The customer support has been very responsive to our requests and inquiries. They are very quick to take action, and I learn more about the product each time I reach out to them. They have been great to work with.
Which solution did I use previously and why did I switch?
We have used other solutions to find secrets in the code. However, we did not have a specific tool to look for public exposure of our code.
How was the initial setup?
We're still deploying GitGuardian. It's proving to be more complex than anticipated. I suspect this is due to internal processes rather than GitGuardian itself. When I tested it out, it was quite straightforward to get started. However, the onboarding process seems to involve a lot more bureaucracy.
What about the implementation team?
The implementation was completed in-house.
What was our ROI?
What's my experience with pricing, setup cost, and licensing?
Which other solutions did I evaluate?
What other advice do I have?
I would rate GitGuardian Public Monitoring nine out of ten.
.svg)
