Free Exposed Files Scanner
Check for publicly accessible sensitive files like .env, .git, and backup files.
β No signup required β Instant results β 100% free
Common Exposed Files to Watch For
π .env Files
Environment files contain database passwords, API keys, and other secrets.
π .git Directory
Git repositories can expose your entire source code and commit history.
βοΈ Config Files
Configuration files like wp-config.php contain database credentials.
πΎ Backup Files
SQL dumps and backup files can contain entire database contents.
π Log Files
Error logs may expose system paths, queries, and sensitive debug info.
π phpinfo Files
PHP info pages reveal server configuration and installed modules.