Metadata-Version: 2.4
Name: edge-password-leak-scanner
Version: 0.1.0
Summary: Compliance-grade CLI scanner for cleartext passwords in browser memory
Project-URL: Homepage, https://github.com/yourusername/edge-password-leak-scanner
Project-URL: Documentation, https://github.com/yourusername/edge-password-leak-scanner#readme
Project-URL: Repository, https://github.com/yourusername/edge-password-leak-scanner
Project-URL: Issues, https://github.com/yourusername/edge-password-leak-scanner/issues
Author-email: Security Team <security@example.com>
License: MIT
License-File: LICENSE
Keywords: browser,compliance,memory-scanner,password,security
Classifier: Development Status :: 4 - Beta
Classifier: Intended Audience :: System Administrators
Classifier: License :: OSI Approved :: MIT License
Classifier: Programming Language :: Python :: 3.10
Classifier: Programming Language :: Python :: 3.11
Classifier: Programming Language :: Python :: 3.12
Classifier: Topic :: Security
Requires-Python: >=3.10
Requires-Dist: click>=8.1.0
Requires-Dist: jinja2>=3.1.0
Requires-Dist: psutil>=5.9.0
Requires-Dist: pydantic>=2.0.0
Requires-Dist: pyyaml>=6.0.0
Requires-Dist: reportlab>=4.0.0
Requires-Dist: rich>=13.0.0
Requires-Dist: stripe>=7.0.0
Provides-Extra: dev
Requires-Dist: black>=23.0.0; extra == 'dev'
Requires-Dist: pytest-cov>=4.1.0; extra == 'dev'
Requires-Dist: pytest>=7.4.0; extra == 'dev'
Requires-Dist: ruff>=0.1.0; extra == 'dev'
Description-Content-Type: text/markdown

# Edge Password Leak Scanner

**Compliance-grade CLI tool for detecting cleartext passwords in browser process memory.**

## What is this?

Edge Password Leak Scanner audits running browser processes (Edge, Chrome, Arc, Brave) for cleartext password storage vulnerabilities. It generates SOC2/ISO 27001-compliant audit reports, helping enterprise security teams respond to the Microsoft Edge credential leak vulnerability and verify their environments aren't exposing sensitive data in memory.

## Features

- **Multi-browser scanning** – Detects credential leaks in Edge, Chrome, Brave, and Arc processes
- **Memory forensics engine** – Pattern-based detection of cleartext passwords and sensitive data
- **Compliance reporting** – Generates SOC2/ISO 27001-formatted audit reports (JSON, PDF)
- **CI/CD integration** – GitHub Actions workflow for automated security scanning
- **Enterprise-ready** – Zero telemetry, local-first processing, air-gap compatible
- **Scheduled scans** – Background monitoring with Slack/email alerting
- **No dependencies** – Minimal runtime footprint, Python-only

## Quick Start

### Installation

```bash
pip install edge-password-leak-scanner
```

### Basic Usage

```bash
# Scan all browser processes
epls scan

# Generate compliance report
epls scan --report pdf --output audit_2025.pdf

# Scan specific browser
epls scan --browser edge --json

# Scheduled monitoring (enterprise)
epls daemon --interval 3600 --alert slack
```

### Configuration

Create `.env` in your project root (see `.env.example`):

```env
SCAN_INTERVAL=3600
ALERT_SLACK_WEBHOOK=https://hooks.slack.com/services/YOUR/WEBHOOK/URL
REPORT_FORMAT=json
OUTPUT_DIR=./security-audits
```

## Usage Examples

**One-time audit for compliance:**
```bash
epls scan --report pdf --output compliance_audit_$(date +%Y%m%d).pdf
```

**GitHub Actions integration:**
```yaml
- name: Security Scan
  uses: your-org/edge-password-leak-scanner@v1
  with:
    report: pdf
    fail-on-findings: true
```

**Continuous monitoring:**
```bash
epls daemon --interval 3600 --alert slack --report json
```

## Tech Stack

- **Language** – Python 3.9+
- **Process inspection** – `psutil`
- **Memory analysis** – Pattern matching, regex-based detection
- **Reporting** – JSON, PDF (jinja2 templates)
- **CI/CD** – GitHub Actions
- **Testing** – pytest

## License

MIT – See LICENSE for details

---

**Security Notice**: This tool performs local memory inspection only. No data is transmitted. For questions, see [SECURITY.md](SECURITY.md).