nuclei-templates/tokens/slack-access-token.yaml

29 lines
662 B
YAML
Raw Normal View History

id: slack-access-token
# xoxp-702234529XXX-688970480XXX-109182524XXXX-87fa5b4d2e62ac5c16fc6ea93bXXXXXX
# xoxb-702234529XXX-1076883857XXX-Ou9aRuvtFZ4DuTsepevXXXXX
info:
name: Slack access token
author: nadino
severity: medium
requests:
- method: GET
path:
2020-05-09 08:59:35 +00:00
- "{{BaseURL}}"
2020-07-11 05:50:35 +00:00
matchers-condition: and
matchers:
- type: regex
part: body
regex:
2020-05-25 08:24:39 +00:00
- "xoxp-[0-9A-Za-z\\-]{72}" # Person
- "xoxb-[0-9A-Za-z\\-]{51}" # Bot
extractors:
- type: regex
part: body
regex:
- "xoxp-[0-9A-Za-z\\-]{72}"
- "xoxb-[0-9A-Za-z\\-]{51}"