Skip to main content

Getting started

Discover GitGuardian's Honeytoken

Honeytoken is a new module in the GitGuardian platform. You can request a live demo!

The module is restricted to Manager roles

The Honeytoken module is reserved for users with a "Manager" role on the GitGuardian workspace. This will evolve in the future to allow more roles to create and manage honeytokens.

Create and deploy your first honeytoken

Create first honeytoken

In the Honeytoken module, click “Create honeytoken”. Enter a name for the honeytoken, and optionally a description. The description may contain more detail about where and how exactly you will place this honeytoken. You can also select or create some labels to define your honeytoken in a more structured way.

Create honeytoken

Note: For now, we are only proposing AWS keys, but we are exploring other types of honeytokens.

Honeytoken created

Congratulations! Your honeytoken creation is confirmed, and you get your honeytoken key.
Insert this key in the asset you want to protect! If an attacker ever trips on the honeytoken, you'll get an instant alert letting you know that it has happened.


This method allows you to decide exactly where and how your honeytoken will be inserted, but is quite manual. If you seek a more automated and effortless solution for deploying honeytokens across numerous repositories, explore our Deployment Jobs feature.

Test your honeytoken

If you want to test the triggering and alerting mechanism, you can trigger your own honeytoken.


To use the following method, ensure that the AWS CLI is installed on your system. If not, refer to the official AWS CLI documentation for instructions on how to install it.

In the honeytoken detail page, click “How to test your honeytoken”.

Test honeytoken

Copy the AWS “get-caller-identity” command and run it in your terminal or command prompt.

This will generate an event and thus trigger the honeytoken.

Don’t forget to reset your honeytoken afterward to be alerted of any “real” trigger on it.

How can I help you ?