Inbox Secrets Detector

Scan Gmail for accidentally leaked API keys before attackers find them.

Founders leak secrets in support threads, forwarded screenshots, and shared docs every week. Connect Gmail read-only, scan body text + attachments, and get a remediation report with redaction-ready output.

Buy Access — $19/monthI already paid

Read-only Gmail OAuth

58+ key patterns

Instant redaction aid

Unlock Your Mailbox Access

After checkout, enter the email used for payment. If your Stripe redirect includes a `session_id`, paste that too for instant verification.

The problem

Founders reuse one mailbox for finance, devops, support, and hiring. Sensitive tokens end up in forwarded chains and attachments nobody re-audits.

The solution

We scan historical and new mailbox content with credential-specific detection patterns, then convert findings into a prioritized security report.

Why it matters

Credential leaks in email are quietly exploitable. Catching one exposed key can prevent account takeover, infra abuse, and painful incident response.

Pricing

Built for security-conscious solo founders who need one clear answer: “Did we leak any credentials in email?”

Starter mailbox

$19/month

  • Read-only Gmail OAuth connection
  • Body + attachment scanning
  • 58+ credential detection patterns
  • Redaction and remediation report
  • Cookie-based paid dashboard access
Buy with Stripe

FAQ

Does this read my mailbox contents permanently?

The scanner reads messages and attachments using Gmail read-only scope, then stores only masked previews + hashed fingerprints of suspected secrets. Raw keys are never persisted.

What types of leaks does it detect?

It scans for 50+ credential classes including AWS, Stripe, GitHub, OpenAI, connection URIs, private key blocks, and generic password/token assignments.

Why use this instead of DLP in my email provider?

Most SMB inboxes never configure DLP rules. This gives founders a fast, self-serve scan focused on real secret patterns and attachment extraction without enterprise setup overhead.

How does billing work?

Pricing is $19 per mailbox per month. Checkout is hosted by Stripe. After purchase, unlock the dashboard with your checkout email or Stripe session ID.

Secrets leak most often through “temporary” messages. Run a full scan now, then re-scan weekly.
Inbox Secrets Detector | Scan Gmail for leaked API keys