The Microsoft Teams integration scans channel messages and attachments in Microsoft Teams for credentials and other sensitive data.

The Microsoft Teams integration is configured in TruffleHog under 

. Local configuration is not available for this source.

Each integration scans a single team. To scan multiple teams, create a separate integration for each. 

 page in TruffleHog. Setup requires an admin account to grant permissions during the OAuth2 flow.

The integration requires the following scope:

 — read access to messages in all public and private channels within the team. Include/exclude filters narrow this scope at scan time.

 to grant access for all users in the organization. This option only appears for admin users.

 When the integration prompts for a Team ID, it expects the Microsoft Teams group ID for the team you want to scan.

 menu next to the team name (not a channel) and select 

In the link that's generated, copy the value following groupId=. For example, in https://teams.microsoft.com/l/team/.../?groupId=xxxxxx&tenantId=..., the Team ID is xxxxxx. 

Direct messages are not scanned. The integration covers channel messages only.

Scanning private channels requires authorization from the tenant admin during the OAuth2 flow.

Learn how to configure the integration of Microsoft Teams with TruffleHog. This document provides step-by-step instructions and outlines the necessary permissions and scopes required for accessing and reading mess

Microsoft Sharepoint

Microsoft Teams

source

Postman

TruffleHog Docs

Choose your adventure

Configuring a scanner

Hosted Scanner deployment

Creating a scanner

Configuring a self-hosted scanner

Self-Hosted Deployment Guide

Linux Host

Docker

Helm Chart

Kubernetes Manifest

Resource requirements

Configuration file reference

Credential management

Running the scanner

Self-Hosted Scanner deployment

TruffleHog Enterprise - Getting started

Artifactory

AWS S3

Azure Repos (cloud)

Bitbucket

Buildkite

CircleCI

Confluence

Filesystem

Gerrit

GitLab

GitHub Real-time

GitHub

Google Cloud Storage (GCS)

Google Drive Domain-Wide Delegation (DWD)

Google Drive

Jenkins

Jira

Slack

Vector

Reverify secrets

Verification caching

Scan for secrets

Self-discovery analyzers

GCP analyze

Analyze secrets

Email

Multi-project ticket synchronization

Splunk

Stdout

Webhook

Notify results

Shared Secrets

Scanning in CI

Pre-commit hooks

Pre-receive hooks

Block secrets from leaking

Custom detectors

Customizing detection

On-premise verification

Customizing detectors

Customizing TruffleHog

User Enablement Guide

Exported Secrets Column Definitions

Resource Hub

Architecture

Dynamic Role-Based Access Control (RBAC)

Authentication

Compliance

Data flow

How we handle your data

Security and Compliance

Secret Management Best Practices

Terminology

2026 April

2026 March

2026 January

2025 December

2025 November

2025 October

2025 September

2025 August

2025 July

2025 June

2025 May

TruffleHog Release Notes