| 1 | + | { |
| 2 | + | "Slack Token": "(xox[p|b|o|a]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})", |
| 3 | + | "RSA private key": "-----BEGIN RSA PRIVATE KEY-----", |
| 4 | + | "SSH (DSA) private key": "-----BEGIN DSA PRIVATE KEY-----", |
| 5 | + | "SSH (EC) private key": "-----BEGIN EC PRIVATE KEY-----", |
| 6 | + | "PGP private key block": "-----BEGIN PGP PRIVATE KEY BLOCK-----", |
| 7 | + | "Authorization Header": "authorization: (bearer|basic|digest) .*", |
| 8 | + | "Amazon AWS Access Key ID": "AKIA[0-9A-Z]{16}", |
| 9 | + | "Amazon Web Services Secret Key": "[0-9a-zA-Z/+]{40}", |
| 10 | + | "Amazon MWS Auth Token": "amzn\\.mws\\.[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}", |
| 11 | + | "Dynatrace Cloud API Key": "dt0c01\\..*", |
| 12 | + | "Facebook Access Token": "EAACEdEose0cBA[0-9A-Za-z]+", |
| 13 | + | "Facebook OAuth": "[f|F][a|A][c|C][e|E][b|B][o|O][o|O][k|K].*['|\"][0-9a-f]{32}['|\"]", |
| 14 | + | "Foursquare Secret Key": "R_[0-9a-f]{32}", |
| 15 | + | "GitHub": "[g|G][i|I][t|T][h|H][u|U][b|B].*['|\"][0-9a-zA-Z]{35,40}['|\"]", |
| 16 | + | "Generic API Key": "[a|A][p|P][i|I][_]?[k|K][e|E][y|Y].*['|\"][0-9a-zA-Z]{32,45}['|\"]", |
| 17 | + | "Generic Secret": "[s|S][e|E][c|C][r|R][e|E][t|T].*['|\"][0-9a-zA-Z]{32,45}['|\"]", |
| 18 | + | "Google API Key": "AIza[0-9A-Za-z\\-_]{35}", |
| 19 | + | "Google OAuth 2.0 Refresh Token": "1/[0-9A-Za-z\\-_]{43}|1/[0-9A-Za-z\\-_]{64}", |
| 20 | + | "Google OAuth 2.0 Access Token": "ya29\\.[0-9A-Za-z\\-_]+", |
| 21 | + | "GitHub OAuth 2.0 ID": "[A-Za-z0-9_]{255}", |
| 22 | + | "Google Cloud Platform API Key": "AIza[0-9A-Za-z\\-_]{35}", |
| 23 | + | "Google Cloud Platform OAuth": "[0-9]+-[0-9A-Za-z_]{32}\\.apps\\.googleusercontent\\.com", |
| 24 | + | "Google Cloud Platform OAuth 2.0": "[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}", |
| 25 | + | "Google Cloud Platform API Key": "[A-Za-z0-9_]{21}--[A-Za-z0-9_]{8}", |
| 26 | + | "Google Drive API Key": "AIza[0-9A-Za-z\\-_]{35}", |
| 27 | + | "Google Drive OAuth": "[0-9]+-[0-9A-Za-z_]{32}\\.apps\\.googleusercontent\\.com", |
| 28 | + | "Google (GCP) Service-account": "\"type\": \"service_account\"", |
| 29 | + | "Google Gmail API Key": "AIza[0-9A-Za-z\\-_]{35}", |
| 30 | + | "Google Gmail OAuth": "[0-9]+-[0-9A-Za-z_]{32}\\.apps\\.googleusercontent\\.com", |
| 31 | + | "Google OAuth Access Token": "ya29\\.[0-9A-Za-z\\-_]+", |
| 32 | + | "Google YouTube API Key": "AIza[0-9A-Za-z\\-_]{35}", |
| 33 | + | "Google YouTube OAuth": "[0-9]+-[0-9A-Za-z_]{32}\\.apps\\.googleusercontent\\.com", |
| 34 | + | "Heroku API Key": "[h|H][e|E][r|R][o|O][k|K][u|U].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}", |
| 35 | + | "Heroku OAuth 2.0": "[0-9a-fA-F]{8}-[0-9a-fA-F]{4}-[0-9a-fA-F]{12}", |
| 36 | + | "Instagram OAuth 2.0": "[0-9a-fA-F]{7}\\.[0-9a-fA-F]{32}", |
| 37 | + | "Mapbox Public Key": "([s,p]k.eyJ1Ijoi[\\w\\.-]+)", |
| 38 | + | "Mapbox Secret Key": "([s,p]k.eyJ1Ijoi[\\w\\.-]+)", |
| 39 | + | "MailChimp API Key": "[0-9a-f]{32}-us[0-9]{1,2}", |
| 40 | + | "Mailgun API Key": "key-[0-9a-zA-Z]{32}", |
| 41 | + | "Microsoft ServiceBus Authorization Header": "authorization: SharedAccessSignature .*", |
| 42 | + | "Password in URL": "[a-zA-Z]{3,10}://[^/\\s:@]{3,20}:[^/\\s:@]{3,20}@.{1,100}[\"'\\s]", |
| 43 | + | "PayPal Braintree Access Token": "access_token\\$production\\$[0-9a-z]{16}\\$[0-9a-f]{32}", |
| 44 | + | "Picatic API Key": "sk_live_[0-9a-z]{32}", |
| 45 | + | "Sharepoint Admin URL": "https:\/\/.*-admin.sharepoint\\.com", |
| 46 | + | "SOTI Server": "s\\d{6}\\.mobicontrolcloud\\.com", |
| 47 | + | "Slack Webhook": "https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}", |
| 48 | + | "Slack OAuth v2 Bot Access Token": "xoxb-[0-9]{11}-[0-9]{11}-[0-9a-zA-Z]{24}", |
| 49 | + | "Slack OAuth v2 User Access Token": "xoxp-[0-9]{11}-[0-9]{11}-[0-9a-zA-Z]{24}", |
| 50 | + | "Slack OAuth v2 Configuration Token": "xoxe.xoxp-1-[0-9a-zA-Z]{166}", |
| 51 | + | "Slack OAuth v2 Refresh Token": "xoxe-1-[0-9a-zA-Z]{147}", |
| 52 | + | "Splunk Authorization Header": "authorization: Splunk .*", |
| 53 | + | "Stripe API Key": "sk_live_[0-9a-zA-Z]{24}", |
| 54 | + | "Stripe Restricted API Key": "rk_live_[0-9a-zA-Z]{24}", |
| 55 | + | "Square Access Token": "sq0atp-[0-9A-Za-z\\-_]{22}", |
| 56 | + | "Square OAuth Secret": "sq0csp-[0-9A-Za-z\\-_]{43}", |
| 57 | + | "Twilio API Key": "SK[0-9a-fA-F]{32}", |
| 58 | + | "Twitter Access Token": "[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*[1-9][0-9]+-[0-9a-zA-Z]{40}", |
| 59 | + | "Twitter OAuth": "[t|T][w|W][i|I][t|T][t|T][e|E][r|R].*['|\"][0-9a-zA-Z]{35,44}['|\"]" |
| 60 | + | } |
| 61 | + | |