Merge pull request #2847 from geeknik/patch-34

Create credential-exposure.yaml
patch-1
Sandeep Singh 2021-10-08 02:49:02 +05:30 committed by GitHub
commit 0a95aa0c77
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 715 additions and 0 deletions

View File

@ -0,0 +1,715 @@
id: credentials-disclosure
# Extract secrets regex like api keys, password, token, etc ... for different services
# Always validate the leaked key/tokens/passwords to make sure it's valid, a token/keys without any impact is not an valid issue.
# Severity is not fixed in this case, it varies from none to critical depending upon impact of disclosed key/tokes.
# Regex count:- 687
# Notes:-
# This template requires manual inspection once found valid match.
# Generic token could be anything matching below regex.
# Impact of leaked token depends on validation of leaked token.
info:
name: Credentials Disclosure Check
author: Sy3Omda,geeknik
severity: info
description: Look for multiple keys/tokens/passwords hidden inside of files.
tags: exposure,token,file
file:
- extensions:
- all
extractors:
- type: regex
part: body
regex:
- "(?i)zopim[_-]?account[_-]?key(=| =|:| :).{1,32}"
- "(?i)zhuliang[_-]?gh[_-]?token(=| =|:| :).{1,32}"
- "(?i)zensonatypepassword(=| =|:| :).{1,32}"
- "(?i)zendesk[_-]?travis[_-]?github(=| =|:| :).{1,32}"
- "(?i)yt[_-]?server[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)yt[_-]?partner[_-]?refresh[_-]?token(=| =|:| :).{1,32}"
- "(?i)yt[_-]?partner[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)yt[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)yt[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)yt[_-]?account[_-]?refresh[_-]?token(=| =|:| :).{1,32}"
- "(?i)yt[_-]?account[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)yangshun[_-]?gh[_-]?token(=| =|:| :).{1,32}"
- "(?i)yangshun[_-]?gh[_-]?password(=| =|:| :).{1,32}"
- "(?i)www[_-]?googleapis[_-]?com(=| =|:| :).{1,32}"
- "(?i)wpt[_-]?ssh[_-]?private[_-]?key[_-]?base64(=| =|:| :).{1,32}"
- "(?i)wpt[_-]?ssh[_-]?connect(=| =|:| :).{1,32}"
- "(?i)wpt[_-]?report[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)wpt[_-]?prepare[_-]?dir(=| =|:| :).{1,32}"
- "(?i)wpt[_-]?db[_-]?user(=| =|:| :).{1,32}"
- "(?i)wpt[_-]?db[_-]?password(=| =|:| :).{1,32}"
- "(?i)wporg[_-]?password(=| =|:| :).{1,32}"
- "(?i)wpjm[_-]?phpunit[_-]?google[_-]?geocode[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)wordpress[_-]?db[_-]?user(=| =|:| :).{1,32}"
- "(?i)wordpress[_-]?db[_-]?password(=| =|:| :).{1,32}"
- "(?i)wincert[_-]?password(=| =|:| :).{1,32}"
- "(?i)widget[_-]?test[_-]?server(=| =|:| :).{1,32}"
- "(?i)widget[_-]?fb[_-]?password[_-]?3(=| =|:| :).{1,32}"
- "(?i)widget[_-]?fb[_-]?password[_-]?2(=| =|:| :).{1,32}"
- "(?i)widget[_-]?fb[_-]?password(=| =|:| :).{1,32}"
- "(?i)widget[_-]?basic[_-]?password[_-]?5(=| =|:| :).{1,32}"
- "(?i)widget[_-]?basic[_-]?password[_-]?4(=| =|:| :).{1,32}"
- "(?i)widget[_-]?basic[_-]?password[_-]?3(=| =|:| :).{1,32}"
- "(?i)widget[_-]?basic[_-]?password[_-]?2(=| =|:| :).{1,32}"
- "(?i)widget[_-]?basic[_-]?password(=| =|:| :).{1,32}"
- "(?i)watson[_-]?password(=| =|:| :).{1,32}"
- "(?i)watson[_-]?device[_-]?password(=| =|:| :).{1,32}"
- "(?i)watson[_-]?conversation[_-]?password(=| =|:| :).{1,32}"
- "(?i)wakatime[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)vscetoken(=| =|:| :).{1,32}"
- "(?i)visual[_-]?recognition[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)virustotal[_-]?apikey(=| =|:| :).{1,32}"
- "(?i)vip[_-]?github[_-]?deploy[_-]?key[_-]?pass(=| =|:| :).{1,32}"
- "(?i)vip[_-]?github[_-]?deploy[_-]?key(=| =|:| :).{1,32}"
- "(?i)vip[_-]?github[_-]?build[_-]?repo[_-]?deploy[_-]?key(=| =|:| :).{1,32}"
- "(?i)v[_-]?sfdc[_-]?password(=| =|:| :).{1,32}"
- "(?i)v[_-]?sfdc[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)usertravis(=| =|:| :).{1,32}"
- "(?i)user[_-]?assets[_-]?secret[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)user[_-]?assets[_-]?access[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)use[_-]?ssh(=| =|:| :).{1,32}"
- "(?i)us[_-]?east[_-]?1[_-]?elb[_-]?amazonaws[_-]?com(=| =|:| :).{1,32}"
- "(?i)urban[_-]?secret(=| =|:| :).{1,32}"
- "(?i)urban[_-]?master[_-]?secret(=| =|:| :).{1,32}"
- "(?i)urban[_-]?key(=| =|:| :).{1,32}"
- "(?i)unity[_-]?serial(=| =|:| :).{1,32}"
- "(?i)unity[_-]?password(=| =|:| :).{1,32}"
- "(?i)twitteroauthaccesstoken(=| =|:| :).{1,32}"
- "(?i)twitteroauthaccesssecret(=| =|:| :).{1,32}"
- "(?i)twitter[_-]?consumer[_-]?secret(=| =|:| :).{1,32}"
- "(?i)twitter[_-]?consumer[_-]?key(=| =|:| :).{1,32}"
- "(?i)twine[_-]?password(=| =|:| :).{1,32}"
- "(?i)twilio[_-]?token(=| =|:| :).{1,32}"
- "(?i)twilio[_-]?sid(=| =|:| :).{1,32}"
- "(?i)twilio[_-]?configuration[_-]?sid(=| =|:| :).{1,32}"
- "(?i)twilio[_-]?chat[_-]?account[_-]?api[_-]?service(=| =|:| :).{1,32}"
- "(?i)twilio[_-]?api[_-]?secret(=| =|:| :).{1,32}"
- "(?i)twilio[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)trex[_-]?okta[_-]?client[_-]?token(=| =|:| :).{1,32}"
- "(?i)trex[_-]?client[_-]?token(=| =|:| :).{1,32}"
- "(?i)travis[_-]?token(=| =|:| :).{1,32}"
- "(?i)travis[_-]?secure[_-]?env[_-]?vars(=| =|:| :).{1,32}"
- "(?i)travis[_-]?pull[_-]?request(=| =|:| :).{1,32}"
- "(?i)travis[_-]?gh[_-]?token(=| =|:| :).{1,32}"
- "(?i)travis[_-]?e2e[_-]?token(=| =|:| :).{1,32}"
- "(?i)travis[_-]?com[_-]?token(=| =|:| :).{1,32}"
- "(?i)travis[_-]?branch(=| =|:| :).{1,32}"
- "(?i)travis[_-]?api[_-]?token(=| =|:| :).{1,32}"
- "(?i)travis[_-]?access[_-]?token(=| =|:| :).{1,32}"
- "(?i)token[_-]?core[_-]?java(=| =|:| :).{1,32}"
- "(?i)thera[_-]?oss[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)tester[_-]?keys[_-]?password(=| =|:| :).{1,32}"
- "(?i)test[_-]?test(=| =|:| :).{1,32}"
- "(?i)test[_-]?github[_-]?token(=| =|:| :).{1,32}"
- "(?i)tesco[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)svn[_-]?pass(=| =|:| :).{1,32}"
- "(?i)surge[_-]?token(=| =|:| :).{1,32}"
- "(?i)surge[_-]?login(=| =|:| :).{1,32}"
- "(?i)stripe[_-]?public(=| =|:| :).{1,32}"
- "(?i)stripe[_-]?private(=| =|:| :).{1,32}"
- "(?i)strip[_-]?secret[_-]?key(=| =|:| :).{1,32}"
- "(?i)strip[_-]?publishable[_-]?key(=| =|:| :).{1,32}"
- "(?i)stormpath[_-]?api[_-]?key[_-]?secret(=| =|:| :).{1,32}"
- "(?i)stormpath[_-]?api[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)starship[_-]?auth[_-]?token(=| =|:| :).{1,32}"
- "(?i)starship[_-]?account[_-]?sid(=| =|:| :).{1,32}"
- "(?i)star[_-]?test[_-]?secret[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)star[_-]?test[_-]?location(=| =|:| :).{1,32}"
- "(?i)star[_-]?test[_-]?bucket(=| =|:| :).{1,32}"
- "(?i)star[_-]?test[_-]?aws[_-]?access[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)staging[_-]?base[_-]?url[_-]?runscope(=| =|:| :).{1,32}"
- "(?i)ssmtp[_-]?config(=| =|:| :).{1,32}"
- "(?i)sshpass(=| =|:| :).{1,32}"
- "(?i)srcclr[_-]?api[_-]?token(=| =|:| :).{1,32}"
- "(?i)square[_-]?reader[_-]?sdk[_-]?repository[_-]?password(=| =|:| :).{1,32}"
- "(?i)sqssecretkey(=| =|:| :).{1,32}"
- "(?i)sqsaccesskey(=| =|:| :).{1,32}"
- "(?i)spring[_-]?mail[_-]?password(=| =|:| :).{1,32}"
- "(?i)spotify[_-]?api[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)spotify[_-]?api[_-]?access[_-]?token(=| =|:| :).{1,32}"
- "(?i)spaces[_-]?secret[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)spaces[_-]?access[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)soundcloud[_-]?password(=| =|:| :).{1,32}"
- "(?i)soundcloud[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)sonatypepassword(=| =|:| :).{1,32}"
- "(?i)sonatype[_-]?token[_-]?user(=| =|:| :).{1,32}"
- "(?i)sonatype[_-]?token[_-]?password(=| =|:| :).{1,32}"
- "(?i)sonatype[_-]?password(=| =|:| :).{1,32}"
- "(?i)sonatype[_-]?pass(=| =|:| :).{1,32}"
- "(?i)sonatype[_-]?nexus[_-]?password(=| =|:| :).{1,32}"
- "(?i)sonatype[_-]?gpg[_-]?passphrase(=| =|:| :).{1,32}"
- "(?i)sonatype[_-]?gpg[_-]?key[_-]?name(=| =|:| :).{1,32}"
- "(?i)sonar[_-]?token(=| =|:| :).{1,32}"
- "(?i)sonar[_-]?project[_-]?key(=| =|:| :).{1,32}"
- "(?i)sonar[_-]?organization[_-]?key(=| =|:| :).{1,32}"
- "(?i)socrata[_-]?password(=| =|:| :).{1,32}"
- "(?i)socrata[_-]?app[_-]?token(=| =|:| :).{1,32}"
- "(?i)snyk[_-]?token(=| =|:| :).{1,32}"
- "(?i)snyk[_-]?api[_-]?token(=| =|:| :).{1,32}"
- "(?i)snoowrap[_-]?refresh[_-]?token(=| =|:| :).{1,32}"
- "(?i)snoowrap[_-]?password(=| =|:| :).{1,32}"
- "(?i)snoowrap[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)slate[_-]?user[_-]?email(=| =|:| :).{1,32}"
- "(?i)slash[_-]?developer[_-]?space[_-]?key(=| =|:| :).{1,32}"
- "(?i)slash[_-]?developer[_-]?space(=| =|:| :).{1,32}"
- "(?i)signing[_-]?key[_-]?sid(=| =|:| :).{1,32}"
- "(?i)signing[_-]?key[_-]?secret(=| =|:| :).{1,32}"
- "(?i)signing[_-]?key[_-]?password(=| =|:| :).{1,32}"
- "(?i)signing[_-]?key(=| =|:| :).{1,32}"
- "(?i)setsecretkey(=| =|:| :).{1,32}"
- "(?i)setdstsecretkey(=| =|:| :).{1,32}"
- "(?i)setdstaccesskey(=| =|:| :).{1,32}"
- "(?i)ses[_-]?secret[_-]?key(=| =|:| :).{1,32}"
- "(?i)ses[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)service[_-]?account[_-]?secret(=| =|:| :).{1,32}"
- "(?i)sentry[_-]?key(=| =|:| :).{1,32}"
- "(?i)sentry[_-]?secret(=| =|:| :).{1,32}"
- "(?i)sentry[_-]?endpoint(=| =|:| :).{1,32}"
- "(?i)sentry[_-]?default[_-]?org(=| =|:| :).{1,32}"
- "(?i)sentry[_-]?auth[_-]?token(=| =|:| :).{1,32}"
- "(?i)sendwithus[_-]?key(=| =|:| :).{1,32}"
- "(?i)sendgrid[_-]?username(=| =|:| :).{1,32}"
- "(?i)sendgrid[_-]?user(=| =|:| :).{1,32}"
- "(?i)sendgrid[_-]?password(=| =|:| :).{1,32}"
- "(?i)sendgrid[_-]?key(=| =|:| :).{1,32}"
- "(?i)sendgrid[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)sendgrid(=| =|:| :).{1,32}"
- "(?i)selion[_-]?selenium[_-]?host(=| =|:| :).{1,32}"
- "(?i)selion[_-]?log[_-]?level[_-]?dev(=| =|:| :).{1,32}"
- "(?i)segment[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)secretkey(=| =|:| :).{1,32}"
- "(?i)secretaccesskey(=| =|:| :).{1,32}"
- "(?i)secret[_-]?key[_-]?base(=| =|:| :).{1,32}"
- "(?i)secret[_-]?9(=| =|:| :).{1,32}"
- "(?i)secret[_-]?8(=| =|:| :).{1,32}"
- "(?i)secret[_-]?7(=| =|:| :).{1,32}"
- "(?i)secret[_-]?6(=| =|:| :).{1,32}"
- "(?i)secret[_-]?5(=| =|:| :).{1,32}"
- "(?i)secret[_-]?4(=| =|:| :).{1,32}"
- "(?i)secret[_-]?3(=| =|:| :).{1,32}"
- "(?i)secret[_-]?2(=| =|:| :).{1,32}"
- "(?i)secret[_-]?11(=| =|:| :).{1,32}"
- "(?i)secret[_-]?10(=| =|:| :).{1,32}"
- "(?i)secret[_-]?1(=| =|:| :).{1,32}"
- "(?i)secret[_-]?0(=| =|:| :).{1,32}"
- "(?i)sdr[_-]?token(=| =|:| :).{1,32}"
- "(?i)scrutinizer[_-]?token(=| =|:| :).{1,32}"
- "(?i)sauce[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)sandbox[_-]?aws[_-]?secret[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)sandbox[_-]?aws[_-]?access[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)sandbox[_-]?access[_-]?token(=| =|:| :).{1,32}"
- "(?i)salesforce[_-]?bulk[_-]?test[_-]?security[_-]?token(=| =|:| :).{1,32}"
- "(?i)salesforce[_-]?bulk[_-]?test[_-]?password(=| =|:| :).{1,32}"
- "(?i)sacloud[_-]?api(=| =|:| :).{1,32}"
- "(?i)sacloud[_-]?access[_-]?token[_-]?secret(=| =|:| :).{1,32}"
- "(?i)sacloud[_-]?access[_-]?token(=| =|:| :).{1,32}"
- "(?i)s3[_-]?user[_-]?secret(=| =|:| :).{1,32}"
- "(?i)s3[_-]?secret[_-]?key(=| =|:| :).{1,32}"
- "(?i)s3[_-]?secret[_-]?assets(=| =|:| :).{1,32}"
- "(?i)s3[_-]?secret[_-]?app[_-]?logs(=| =|:| :).{1,32}"
- "(?i)s3[_-]?key[_-]?assets(=| =|:| :).{1,32}"
- "(?i)s3[_-]?key[_-]?app[_-]?logs(=| =|:| :).{1,32}"
- "(?i)s3[_-]?key(=| =|:| :).{1,32}"
- "(?i)s3[_-]?external[_-]?3[_-]?amazonaws[_-]?com(=| =|:| :).{1,32}"
- "(?i)s3[_-]?bucket[_-]?name[_-]?assets(=| =|:| :).{1,32}"
- "(?i)s3[_-]?bucket[_-]?name[_-]?app[_-]?logs(=| =|:| :).{1,32}"
- "(?i)s3[_-]?access[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)s3[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)rubygems[_-]?auth[_-]?token(=| =|:| :).{1,32}"
- "(?i)rtd[_-]?store[_-]?pass(=| =|:| :).{1,32}"
- "(?i)rtd[_-]?key[_-]?pass(=| =|:| :).{1,32}"
- "(?i)route53[_-]?access[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)ropsten[_-]?private[_-]?key(=| =|:| :).{1,32}"
- "(?i)rinkeby[_-]?private[_-]?key(=| =|:| :).{1,32}"
- "(?i)rest[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)repotoken(=| =|:| :).{1,32}"
- "(?i)reporting[_-]?webdav[_-]?url(=| =|:| :).{1,32}"
- "(?i)reporting[_-]?webdav[_-]?pwd(=| =|:| :).{1,32}"
- "(?i)release[_-]?token(=| =|:| :).{1,32}"
- "(?i)release[_-]?gh[_-]?token(=| =|:| :).{1,32}"
- "(?i)registry[_-]?secure(=| =|:| :).{1,32}"
- "(?i)registry[_-]?pass(=| =|:| :).{1,32}"
- "(?i)refresh[_-]?token(=| =|:| :).{1,32}"
- "(?i)rediscloud[_-]?url(=| =|:| :).{1,32}"
- "(?i)redis[_-]?stunnel[_-]?urls(=| =|:| :).{1,32}"
- "(?i)randrmusicapiaccesstoken(=| =|:| :).{1,32}"
- "(?i)rabbitmq[_-]?password(=| =|:| :).{1,32}"
- "(?i)quip[_-]?token(=| =|:| :).{1,32}"
- "(?i)qiita[_-]?token(=| =|:| :).{1,32}"
- "(?i)pypi[_-]?passowrd(=| =|:| :).{1,32}"
- "(?i)pushover[_-]?token(=| =|:| :).{1,32}"
- "(?i)publish[_-]?secret(=| =|:| :).{1,32}"
- "(?i)publish[_-]?key(=| =|:| :).{1,32}"
- "(?i)publish[_-]?access(=| =|:| :).{1,32}"
- "(?i)project[_-]?config(=| =|:| :).{1,32}"
- "(?i)prod[_-]?secret[_-]?key(=| =|:| :).{1,32}"
- "(?i)prod[_-]?password(=| =|:| :).{1,32}"
- "(?i)prod[_-]?access[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)private[_-]?signing[_-]?password(=| =|:| :).{1,32}"
- "(?i)pring[_-]?mail[_-]?username(=| =|:| :).{1,32}"
- "(?i)preferred[_-]?username(=| =|:| :).{1,32}"
- "(?i)prebuild[_-]?auth(=| =|:| :).{1,32}"
- "(?i)postgresql[_-]?pass(=| =|:| :).{1,32}"
- "(?i)postgresql[_-]?db(=| =|:| :).{1,32}"
- "(?i)postgres[_-]?env[_-]?postgres[_-]?password(=| =|:| :).{1,32}"
- "(?i)postgres[_-]?env[_-]?postgres[_-]?db(=| =|:| :).{1,32}"
- "(?i)plugin[_-]?password(=| =|:| :).{1,32}"
- "(?i)plotly[_-]?apikey(=| =|:| :).{1,32}"
- "(?i)places[_-]?apikey(=| =|:| :).{1,32}"
- "(?i)places[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)pg[_-]?host(=| =|:| :).{1,32}"
- "(?i)pg[_-]?database(=| =|:| :).{1,32}"
- "(?i)personal[_-]?secret(=| =|:| :).{1,32}"
- "(?i)personal[_-]?key(=| =|:| :).{1,32}"
- "(?i)percy[_-]?token(=| =|:| :).{1,32}"
- "(?i)percy[_-]?project(=| =|:| :).{1,32}"
- "(?i)paypal[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)passwordtravis(=| =|:| :).{1,32}"
- "(?i)parse[_-]?js[_-]?key(=| =|:| :).{1,32}"
- "(?i)pagerduty[_-]?apikey(=| =|:| :).{1,32}"
- "(?i)packagecloud[_-]?token(=| =|:| :).{1,32}"
- "(?i)ossrh[_-]?username(=| =|:| :).{1,32}"
- "(?i)ossrh[_-]?secret(=| =|:| :).{1,32}"
- "(?i)ossrh[_-]?password(=| =|:| :).{1,32}"
- "(?i)ossrh[_-]?pass(=| =|:| :).{1,32}"
- "(?i)ossrh[_-]?jira[_-]?password(=| =|:| :).{1,32}"
- "(?i)os[_-]?password(=| =|:| :).{1,32}"
- "(?i)os[_-]?auth[_-]?url(=| =|:| :).{1,32}"
- "(?i)org[_-]?project[_-]?gradle[_-]?sonatype[_-]?nexus[_-]?password(=| =|:| :).{1,32}"
- "(?i)org[_-]?gradle[_-]?project[_-]?sonatype[_-]?nexus[_-]?password(=| =|:| :).{1,32}"
- "(?i)openwhisk[_-]?key(=| =|:| :).{1,32}"
- "(?i)open[_-]?whisk[_-]?key(=| =|:| :).{1,32}"
- "(?i)onesignal[_-]?user[_-]?auth[_-]?key(=| =|:| :).{1,32}"
- "(?i)onesignal[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)omise[_-]?skey(=| =|:| :).{1,32}"
- "(?i)omise[_-]?pubkey(=| =|:| :).{1,32}"
- "(?i)omise[_-]?pkey(=| =|:| :).{1,32}"
- "(?i)omise[_-]?key(=| =|:| :).{1,32}"
- "(?i)okta[_-]?oauth2[_-]?clientsecret(=| =|:| :).{1,32}"
- "(?i)okta[_-]?oauth2[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)okta[_-]?client[_-]?token(=| =|:| :).{1,32}"
- "(?i)ofta[_-]?secret(=| =|:| :).{1,32}"
- "(?i)ofta[_-]?region(=| =|:| :).{1,32}"
- "(?i)ofta[_-]?key(=| =|:| :).{1,32}"
- "(?i)octest[_-]?password(=| =|:| :).{1,32}"
- "(?i)octest[_-]?app[_-]?username(=| =|:| :).{1,32}"
- "(?i)octest[_-]?app[_-]?password(=| =|:| :).{1,32}"
- "(?i)oc[_-]?pass(=| =|:| :).{1,32}"
- "(?i)object[_-]?store[_-]?creds(=| =|:| :).{1,32}"
- "(?i)object[_-]?store[_-]?bucket(=| =|:| :).{1,32}"
- "(?i)object[_-]?storage[_-]?region[_-]?name(=| =|:| :).{1,32}"
- "(?i)object[_-]?storage[_-]?password(=| =|:| :).{1,32}"
- "(?i)oauth[_-]?token(=| =|:| :).{1,32}"
- "(?i)numbers[_-]?service[_-]?pass(=| =|:| :).{1,32}"
- "(?i)nuget[_-]?key(=| =|:| :).{1,32}"
- "(?i)nuget[_-]?apikey(=| =|:| :).{1,32}"
- "(?i)nuget[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)npm[_-]?token(=| =|:| :).{1,32}"
- "(?i)npm[_-]?secret[_-]?key(=| =|:| :).{1,32}"
- "(?i)npm[_-]?password(=| =|:| :).{1,32}"
- "(?i)npm[_-]?email(=| =|:| :).{1,32}"
- "(?i)npm[_-]?auth[_-]?token(=| =|:| :).{1,32}"
- "(?i)npm[_-]?api[_-]?token(=| =|:| :).{1,32}"
- "(?i)npm[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)now[_-]?token(=| =|:| :).{1,32}"
- "(?i)non[_-]?token(=| =|:| :).{1,32}"
- "(?i)node[_-]?pre[_-]?gyp[_-]?secretaccesskey(=| =|:| :).{1,32}"
- "(?i)node[_-]?pre[_-]?gyp[_-]?github[_-]?token(=| =|:| :).{1,32}"
- "(?i)node[_-]?pre[_-]?gyp[_-]?accesskeyid(=| =|:| :).{1,32}"
- "(?i)node[_-]?env(=| =|:| :).{1,32}"
- "(?i)ngrok[_-]?token(=| =|:| :).{1,32}"
- "(?i)ngrok[_-]?auth[_-]?token(=| =|:| :).{1,32}"
- "(?i)nexuspassword(=| =|:| :).{1,32}"
- "(?i)nexus[_-]?password(=| =|:| :).{1,32}"
- "(?i)new[_-]?relic[_-]?beta[_-]?token(=| =|:| :).{1,32}"
- "(?i)netlify[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)nativeevents(=| =|:| :).{1,32}"
- "(?i)mysqlsecret(=| =|:| :).{1,32}"
- "(?i)mysqlmasteruser(=| =|:| :).{1,32}"
- "(?i)mysql[_-]?username(=| =|:| :).{1,32}"
- "(?i)mysql[_-]?user(=| =|:| :).{1,32}"
- "(?i)mysql[_-]?root[_-]?password(=| =|:| :).{1,32}"
- "(?i)mysql[_-]?password(=| =|:| :).{1,32}"
- "(?i)mysql[_-]?hostname(=| =|:| :).{1,32}"
- "(?i)mysql[_-]?database(=| =|:| :).{1,32}"
- "(?i)my[_-]?secret[_-]?env(=| =|:| :).{1,32}"
- "(?i)multi[_-]?workspace[_-]?sid(=| =|:| :).{1,32}"
- "(?i)multi[_-]?workflow[_-]?sid(=| =|:| :).{1,32}"
- "(?i)multi[_-]?disconnect[_-]?sid(=| =|:| :).{1,32}"
- "(?i)multi[_-]?connect[_-]?sid(=| =|:| :).{1,32}"
- "(?i)multi[_-]?bob[_-]?sid(=| =|:| :).{1,32}"
- "(?i)minio[_-]?secret[_-]?key(=| =|:| :).{1,32}"
- "(?i)minio[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)mile[_-]?zero[_-]?key(=| =|:| :).{1,32}"
- "(?i)mh[_-]?password(=| =|:| :).{1,32}"
- "(?i)mh[_-]?apikey(=| =|:| :).{1,32}"
- "(?i)mg[_-]?public[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)mg[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)mapboxaccesstoken(=| =|:| :).{1,32}"
- "(?i)mapbox[_-]?aws[_-]?secret[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)mapbox[_-]?aws[_-]?access[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)mapbox[_-]?api[_-]?token(=| =|:| :).{1,32}"
- "(?i)mapbox[_-]?access[_-]?token(=| =|:| :).{1,32}"
- "(?i)manifest[_-]?app[_-]?url(=| =|:| :).{1,32}"
- "(?i)manifest[_-]?app[_-]?token(=| =|:| :).{1,32}"
- "(?i)mandrill[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)managementapiaccesstoken(=| =|:| :).{1,32}"
- "(?i)management[_-]?token(=| =|:| :).{1,32}"
- "(?i)manage[_-]?secret(=| =|:| :).{1,32}"
- "(?i)manage[_-]?key(=| =|:| :).{1,32}"
- "(?i)mailgun[_-]?secret[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)mailgun[_-]?pub[_-]?key(=| =|:| :).{1,32}"
- "(?i)mailgun[_-]?pub[_-]?apikey(=| =|:| :).{1,32}"
- "(?i)mailgun[_-]?priv[_-]?key(=| =|:| :).{1,32}"
- "(?i)mailgun[_-]?password(=| =|:| :).{1,32}"
- "(?i)mailgun[_-]?apikey(=| =|:| :).{1,32}"
- "(?i)mailgun[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)mailer[_-]?password(=| =|:| :).{1,32}"
- "(?i)mailchimp[_-]?key(=| =|:| :).{1,32}"
- "(?i)mailchimp[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)mail[_-]?password(=| =|:| :).{1,32}"
- "(?i)magento[_-]?password(=| =|:| :).{1,32}"
- "(?i)magento[_-]?auth[_-]?username (=| =|:| :).{1,32}"
- "(?i)magento[_-]?auth[_-]?password(=| =|:| :).{1,32}"
- "(?i)lottie[_-]?upload[_-]?cert[_-]?key[_-]?store[_-]?password(=| =|:| :).{1,32}"
- "(?i)lottie[_-]?upload[_-]?cert[_-]?key[_-]?password(=| =|:| :).{1,32}"
- "(?i)lottie[_-]?s3[_-]?secret[_-]?key(=| =|:| :).{1,32}"
- "(?i)lottie[_-]?happo[_-]?secret[_-]?key(=| =|:| :).{1,32}"
- "(?i)lottie[_-]?happo[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)looker[_-]?test[_-]?runner[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)ll[_-]?shared[_-]?key(=| =|:| :).{1,32}"
- "(?i)ll[_-]?publish[_-]?url(=| =|:| :).{1,32}"
- "(?i)linux[_-]?signing[_-]?key(=| =|:| :).{1,32}"
- "(?i)linkedin[_-]?client[_-]?secretor lottie[_-]?s3[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)lighthouse[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)lektor[_-]?deploy[_-]?username(=| =|:| :).{1,32}"
- "(?i)lektor[_-]?deploy[_-]?password(=| =|:| :).{1,32}"
- "(?i)leanplum[_-]?key(=| =|:| :).{1,32}"
- "(?i)kxoltsn3vogdop92m(=| =|:| :).{1,32}"
- "(?i)kubeconfig(=| =|:| :).{1,32}"
- "(?i)kubecfg[_-]?s3[_-]?path(=| =|:| :).{1,32}"
- "(?i)kovan[_-]?private[_-]?key(=| =|:| :).{1,32}"
- "(?i)keystore[_-]?pass(=| =|:| :).{1,32}"
- "(?i)kafka[_-]?rest[_-]?url(=| =|:| :).{1,32}"
- "(?i)kafka[_-]?instance[_-]?name(=| =|:| :).{1,32}"
- "(?i)kafka[_-]?admin[_-]?url(=| =|:| :).{1,32}"
- "(?i)jwt[_-]?secret(=| =|:| :).{1,32}"
- "(?i)jdbc:mysql(=| =|:| :).{1,32}"
- "(?i)jdbc[_-]?host(=| =|:| :).{1,32}"
- "(?i)jdbc[_-]?databaseurl(=| =|:| :).{1,32}"
- "(?i)itest[_-]?gh[_-]?token(=| =|:| :).{1,32}"
- "(?i)ios[_-]?docs[_-]?deploy[_-]?token(=| =|:| :).{1,32}"
- "(?i)internal[_-]?secrets(=| =|:| :).{1,32}"
- "(?i)integration[_-]?test[_-]?appid(=| =|:| :).{1,32}"
- "(?i)integration[_-]?test[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)index[_-]?name(=| =|:| :).{1,32}"
- "(?i)ij[_-]?repo[_-]?username(=| =|:| :).{1,32}"
- "(?i)ij[_-]?repo[_-]?password(=| =|:| :).{1,32}"
- "(?i)hub[_-]?dxia2[_-]?password(=| =|:| :).{1,32}"
- "(?i)homebrew[_-]?github[_-]?api[_-]?token(=| =|:| :).{1,32}"
- "(?i)hockeyapp[_-]?token(=| =|:| :).{1,32}"
- "(?i)heroku[_-]?token(=| =|:| :).{1,32}"
- "(?i)heroku[_-]?email(=| =|:| :).{1,32}"
- "(?i)heroku[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)hb[_-]?codesign[_-]?key[_-]?pass(=| =|:| :).{1,32}"
- "(?i)hb[_-]?codesign[_-]?gpg[_-]?pass(=| =|:| :).{1,32}"
- "(?i)hab[_-]?key(=| =|:| :).{1,32}"
- "(?i)hab[_-]?auth[_-]?token(=| =|:| :).{1,32}"
- "(?i)grgit[_-]?user(=| =|:| :).{1,32}"
- "(?i)gren[_-]?github[_-]?token(=| =|:| :).{1,32}"
- "(?i)gradle[_-]?signing[_-]?password(=| =|:| :).{1,32}"
- "(?i)gradle[_-]?signing[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)gradle[_-]?publish[_-]?secret(=| =|:| :).{1,32}"
- "(?i)gradle[_-]?publish[_-]?key(=| =|:| :).{1,32}"
- "(?i)gpg[_-]?secret[_-]?keys(=| =|:| :).{1,32}"
- "(?i)gpg[_-]?private[_-]?key(=| =|:| :).{1,32}"
- "(?i)gpg[_-]?passphrase(=| =|:| :).{1,32}"
- "(?i)gpg[_-]?ownertrust(=| =|:| :).{1,32}"
- "(?i)gpg[_-]?keyname(=| =|:| :).{1,32}"
- "(?i)gpg[_-]?key[_-]?name(=| =|:| :).{1,32}"
- "(?i)google[_-]?private[_-]?key(=| =|:| :).{1,32}"
- "(?i)google[_-]?maps[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)google[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)google[_-]?client[_-]?id(=| =|:| :).{1,32}"
- "(?i)google[_-]?client[_-]?email(=| =|:| :).{1,32}"
- "(?i)google[_-]?account[_-]?type(=| =|:| :).{1,32}"
- "(?i)gogs[_-]?password(=| =|:| :).{1,32}"
- "(?i)gitlab[_-]?user[_-]?email(=| =|:| :).{1,32}"
- "(?i)github[_-]?tokens(=| =|:| :).{1,32}"
- "(?i)github[_-]?token(=| =|:| :).{1,32}"
- "(?i)github[_-]?repo(=| =|:| :).{1,32}"
- "(?i)github[_-]?release[_-]?token(=| =|:| :).{1,32}"
- "(?i)github[_-]?pwd(=| =|:| :).{1,32}"
- "(?i)github[_-]?password(=| =|:| :).{1,32}"
- "(?i)github[_-]?oauth[_-]?token(=| =|:| :).{1,32}"
- "(?i)github[_-]?oauth(=| =|:| :).{1,32}"
- "(?i)github[_-]?key(=| =|:| :).{1,32}"
- "(?i)github[_-]?hunter[_-]?username(=| =|:| :).{1,32}"
- "(?i)github[_-]?hunter[_-]?token(=| =|:| :).{1,32}"
- "(?i)github[_-]?deployment[_-]?token(=| =|:| :).{1,32}"
- "(?i)github[_-]?deploy[_-]?hb[_-]?doc[_-]?pass(=| =|:| :).{1,32}"
- "(?i)github[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)github[_-]?auth[_-]?token(=| =|:| :).{1,32}"
- "(?i)github[_-]?auth(=| =|:| :).{1,32}"
- "(?i)github[_-]?api[_-]?token(=| =|:| :).{1,32}"
- "(?i)github[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)github[_-]?access[_-]?token(=| =|:| :).{1,32}"
- "(?i)git[_-]?token(=| =|:| :).{1,32}"
- "(?i)git[_-]?name(=| =|:| :).{1,32}"
- "(?i)git[_-]?email(=| =|:| :).{1,32}"
- "(?i)git[_-]?committer[_-]?name(=| =|:| :).{1,32}"
- "(?i)git[_-]?committer[_-]?email(=| =|:| :).{1,32}"
- "(?i)git[_-]?author[_-]?name(=| =|:| :).{1,32}"
- "(?i)git[_-]?author[_-]?email(=| =|:| :).{1,32}"
- "(?i)ghost[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)ghb[_-]?token(=| =|:| :).{1,32}"
- "(?i)gh[_-]?unstable[_-]?oauth[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)gh[_-]?token(=| =|:| :).{1,32}"
- "(?i)gh[_-]?repo[_-]?token(=| =|:| :).{1,32}"
- "(?i)gh[_-]?oauth[_-]?token(=| =|:| :).{1,32}"
- "(?i)gh[_-]?oauth[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)gh[_-]?next[_-]?unstable[_-]?oauth[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)gh[_-]?next[_-]?unstable[_-]?oauth[_-]?client[_-]?id(=| =|:| :).{1,32}"
- "(?i)gh[_-]?next[_-]?oauth[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)gh[_-]?email(=| =|:| :).{1,32}"
- "(?i)gh[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)gcs[_-]?bucket(=| =|:| :).{1,32}"
- "(?i)gcr[_-]?password(=| =|:| :).{1,32}"
- "(?i)gcloud[_-]?service[_-]?key(=| =|:| :).{1,32}"
- "(?i)gcloud[_-]?project(=| =|:| :).{1,32}"
- "(?i)gcloud[_-]?bucket(=| =|:| :).{1,32}"
- "(?i)ftp[_-]?username(=| =|:| :).{1,32}"
- "(?i)ftp[_-]?user(=| =|:| :).{1,32}"
- "(?i)ftp[_-]?pw(=| =|:| :).{1,32}"
- "(?i)ftp[_-]?password(=| =|:| :).{1,32}"
- "(?i)ftp[_-]?login(=| =|:| :).{1,32}"
- "(?i)ftp[_-]?host(=| =|:| :).{1,32}"
- "(?i)fossa[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)flickr[_-]?api[_-]?secret(=| =|:| :).{1,32}"
- "(?i)flickr[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)flask[_-]?secret[_-]?key(=| =|:| :).{1,32}"
- "(?i)firefox[_-]?secret(=| =|:| :).{1,32}"
- "(?i)firebase[_-]?token(=| =|:| :).{1,32}"
- "(?i)firebase[_-]?project[_-]?develop(=| =|:| :).{1,32}"
- "(?i)firebase[_-]?key(=| =|:| :).{1,32}"
- "(?i)firebase[_-]?api[_-]?token(=| =|:| :).{1,32}"
- "(?i)firebase[_-]?api[_-]?json(=| =|:| :).{1,32}"
- "(?i)file[_-]?password(=| =|:| :).{1,32}"
- "(?i)exp[_-]?password(=| =|:| :).{1,32}"
- "(?i)eureka[_-]?awssecretkey(=| =|:| :).{1,32}"
- "(?i)env[_-]?sonatype[_-]?password(=| =|:| :).{1,32}"
- "(?i)env[_-]?secret[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)env[_-]?secret(=| =|:| :).{1,32}"
- "(?i)env[_-]?key(=| =|:| :).{1,32}"
- "(?i)env[_-]?heroku[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)env[_-]?github[_-]?oauth[_-]?token(=| =|:| :).{1,32}"
- "(?i)end[_-]?user[_-]?password(=| =|:| :).{1,32}"
- "(?i)encryption[_-]?password(=| =|:| :).{1,32}"
- "(?i)elasticsearch[_-]?password(=| =|:| :).{1,32}"
- "(?i)elastic[_-]?cloud[_-]?auth(=| =|:| :).{1,32}"
- "(?i)dsonar[_-]?projectkey(=| =|:| :).{1,32}"
- "(?i)dsonar[_-]?login(=| =|:| :).{1,32}"
- "(?i)droplet[_-]?travis[_-]?password(=| =|:| :).{1,32}"
- "(?i)dropbox[_-]?oauth[_-]?bearer(=| =|:| :).{1,32}"
- "(?i)doordash[_-]?auth[_-]?token(=| =|:| :).{1,32}"
- "(?i)dockerhubpassword(=| =|:| :).{1,32}"
- "(?i)dockerhub[_-]?password(=| =|:| :).{1,32}"
- "(?i)docker[_-]?token(=| =|:| :).{1,32}"
- "(?i)docker[_-]?postgres[_-]?url(=| =|:| :).{1,32}"
- "(?i)docker[_-]?password(=| =|:| :).{1,32}"
- "(?i)docker[_-]?passwd(=| =|:| :).{1,32}"
- "(?i)docker[_-]?pass(=| =|:| :).{1,32}"
- "(?i)docker[_-]?key(=| =|:| :).{1,32}"
- "(?i)docker[_-]?hub[_-]?password(=| =|:| :).{1,32}"
- "(?i)digitalocean[_-]?ssh[_-]?key[_-]?ids(=| =|:| :).{1,32}"
- "(?i)digitalocean[_-]?ssh[_-]?key[_-]?body(=| =|:| :).{1,32}"
- "(?i)digitalocean[_-]?access[_-]?token(=| =|:| :).{1,32}"
- "(?i)dgpg[_-]?passphrase(=| =|:| :).{1,32}"
- "(?i)deploy[_-]?user(=| =|:| :).{1,32}"
- "(?i)deploy[_-]?token(=| =|:| :).{1,32}"
- "(?i)deploy[_-]?secure(=| =|:| :).{1,32}"
- "(?i)deploy[_-]?password(=| =|:| :).{1,32}"
- "(?i)ddgc[_-]?github[_-]?token(=| =|:| :).{1,32}"
- "(?i)ddg[_-]?test[_-]?email[_-]?pw(=| =|:| :).{1,32}"
- "(?i)ddg[_-]?test[_-]?email(=| =|:| :).{1,32}"
- "(?i)db[_-]?username(=| =|:| :).{1,32}"
- "(?i)db[_-]?user(=| =|:| :).{1,32}"
- "(?i)db[_-]?pw(=| =|:| :).{1,32}"
- "(?i)db[_-]?password(=| =|:| :).{1,32}"
- "(?i)db[_-]?host(=| =|:| :).{1,32}"
- "(?i)db[_-]?database(=| =|:| :).{1,32}"
- "(?i)db[_-]?connection(=| =|:| :).{1,32}"
- "(?i)datadog[_-]?app[_-]?key(=| =|:| :).{1,32}"
- "(?i)datadog[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)database[_-]?username(=| =|:| :).{1,32}"
- "(?i)database[_-]?user(=| =|:| :).{1,32}"
- "(?i)database[_-]?port(=| =|:| :).{1,32}"
- "(?i)database[_-]?password(=| =|:| :).{1,32}"
- "(?i)database[_-]?name(=| =|:| :).{1,32}"
- "(?i)database[_-]?host(=| =|:| :).{1,32}"
- "(?i)danger[_-]?github[_-]?api[_-]?token(=| =|:| :).{1,32}"
- "(?i)cypress[_-]?record[_-]?key(=| =|:| :).{1,32}"
- "(?i)coverity[_-]?scan[_-]?token(=| =|:| :).{1,32}"
- "(?i)coveralls[_-]?token(=| =|:| :).{1,32}"
- "(?i)coveralls[_-]?repo[_-]?token(=| =|:| :).{1,32}"
- "(?i)coveralls[_-]?api[_-]?token(=| =|:| :).{1,32}"
- "(?i)cos[_-]?secrets(=| =|:| :).{1,32}"
- "(?i)conversation[_-]?username(=| =|:| :).{1,32}"
- "(?i)conversation[_-]?password(=| =|:| :).{1,32}"
- "(?i)contentful[_-]?v2[_-]?access[_-]?token(=| =|:| :).{1,32}"
- "(?i)contentful[_-]?test[_-]?org[_-]?cma[_-]?token(=| =|:| :).{1,32}"
- "(?i)contentful[_-]?php[_-]?management[_-]?test[_-]?token(=| =|:| :).{1,32}"
- "(?i)contentful[_-]?management[_-]?api[_-]?access[_-]?token[_-]?new(=| =|:| :).{1,32}"
- "(?i)contentful[_-]?management[_-]?api[_-]?access[_-]?token(=| =|:| :).{1,32}"
- "(?i)contentful[_-]?integration[_-]?management[_-]?token(=| =|:| :).{1,32}"
- "(?i)contentful[_-]?cma[_-]?test[_-]?token(=| =|:| :).{1,32}"
- "(?i)contentful[_-]?access[_-]?token(=| =|:| :).{1,32}"
- "(?i)consumerkey(=| =|:| :).{1,32}"
- "(?i)consumer[_-]?key(=| =|:| :).{1,32}"
- "(?i)conekta[_-]?apikey(=| =|:| :).{1,32}"
- "(?i)coding[_-]?token(=| =|:| :).{1,32}"
- "(?i)codecov[_-]?token(=| =|:| :).{1,32}"
- "(?i)codeclimate[_-]?repo[_-]?token(=| =|:| :).{1,32}"
- "(?i)codacy[_-]?project[_-]?token(=| =|:| :).{1,32}"
- "(?i)cocoapods[_-]?trunk[_-]?token(=| =|:| :).{1,32}"
- "(?i)cocoapods[_-]?trunk[_-]?email(=| =|:| :).{1,32}"
- "(?i)cn[_-]?secret[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)cn[_-]?access[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)clu[_-]?ssh[_-]?private[_-]?key[_-]?base64(=| =|:| :).{1,32}"
- "(?i)clu[_-]?repo[_-]?url(=| =|:| :).{1,32}"
- "(?i)cloudinary[_-]?url[_-]?staging(=| =|:| :).{1,32}"
- "(?i)cloudinary[_-]?url(=| =|:| :).{1,32}"
- "(?i)cloudflare[_-]?email(=| =|:| :).{1,32}"
- "(?i)cloudflare[_-]?auth[_-]?key(=| =|:| :).{1,32}"
- "(?i)cloudflare[_-]?auth[_-]?email(=| =|:| :).{1,32}"
- "(?i)cloudflare[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)cloudant[_-]?service[_-]?database(=| =|:| :).{1,32}"
- "(?i)cloudant[_-]?processed[_-]?database(=| =|:| :).{1,32}"
- "(?i)cloudant[_-]?password(=| =|:| :).{1,32}"
- "(?i)cloudant[_-]?parsed[_-]?database(=| =|:| :).{1,32}"
- "(?i)cloudant[_-]?order[_-]?database(=| =|:| :).{1,32}"
- "(?i)cloudant[_-]?instance(=| =|:| :).{1,32}"
- "(?i)cloudant[_-]?database(=| =|:| :).{1,32}"
- "(?i)cloudant[_-]?audited[_-]?database(=| =|:| :).{1,32}"
- "(?i)cloudant[_-]?archived[_-]?database(=| =|:| :).{1,32}"
- "(?i)cloud[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)clojars[_-]?password(=| =|:| :).{1,32}"
- "(?i)client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)cli[_-]?e2e[_-]?cma[_-]?token(=| =|:| :).{1,32}"
- "(?i)claimr[_-]?token(=| =|:| :).{1,32}"
- "(?i)claimr[_-]?superuser(=| =|:| :).{1,32}"
- "(?i)claimr[_-]?db(=| =|:| :).{1,32}"
- "(?i)claimr[_-]?database(=| =|:| :).{1,32}"
- "(?i)ci[_-]?user[_-]?token(=| =|:| :).{1,32}"
- "(?i)ci[_-]?server[_-]?name(=| =|:| :).{1,32}"
- "(?i)ci[_-]?registry[_-]?user(=| =|:| :).{1,32}"
- "(?i)ci[_-]?project[_-]?url(=| =|:| :).{1,32}"
- "(?i)ci[_-]?deploy[_-]?password(=| =|:| :).{1,32}"
- "(?i)chrome[_-]?refresh[_-]?token(=| =|:| :).{1,32}"
- "(?i)chrome[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)cheverny[_-]?token(=| =|:| :).{1,32}"
- "(?i)cf[_-]?password(=| =|:| :).{1,32}"
- "(?i)certificate[_-]?password(=| =|:| :).{1,32}"
- "(?i)censys[_-]?secret(=| =|:| :).{1,32}"
- "(?i)cattle[_-]?secret[_-]?key(=| =|:| :).{1,32}"
- "(?i)cattle[_-]?agent[_-]?instance[_-]?auth(=| =|:| :).{1,32}"
- "(?i)cattle[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)cargo[_-]?token(=| =|:| :).{1,32}"
- "(?i)cache[_-]?s3[_-]?secret[_-]?key(=| =|:| :).{1,32}"
- "(?i)bx[_-]?username(=| =|:| :).{1,32}"
- "(?i)bx[_-]?password(=| =|:| :).{1,32}"
- "(?i)bundlesize[_-]?github[_-]?token(=| =|:| :).{1,32}"
- "(?i)built[_-]?branch[_-]?deploy[_-]?key(=| =|:| :).{1,32}"
- "(?i)bucketeer[_-]?aws[_-]?secret[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)bucketeer[_-]?aws[_-]?access[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)browserstack[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)browser[_-]?stack[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)brackets[_-]?repo[_-]?oauth[_-]?token(=| =|:| :).{1,32}"
- "(?i)bluemix[_-]?username(=| =|:| :).{1,32}"
- "(?i)bluemix[_-]?pwd(=| =|:| :).{1,32}"
- "(?i)bluemix[_-]?password(=| =|:| :).{1,32}"
- "(?i)bluemix[_-]?pass[_-]?prod(=| =|:| :).{1,32}"
- "(?i)bluemix[_-]?pass(=| =|:| :).{1,32}"
- "(?i)bluemix[_-]?auth(=| =|:| :).{1,32}"
- "(?i)bluemix[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)bintraykey(=| =|:| :).{1,32}"
- "(?i)bintray[_-]?token(=| =|:| :).{1,32}"
- "(?i)bintray[_-]?key(=| =|:| :).{1,32}"
- "(?i)bintray[_-]?gpg[_-]?password(=| =|:| :).{1,32}"
- "(?i)bintray[_-]?apikey(=| =|:| :).{1,32}"
- "(?i)bintray[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)b2[_-]?bucket(=| =|:| :).{1,32}"
- "(?i)b2[_-]?app[_-]?key(=| =|:| :).{1,32}"
- "(?i)awssecretkey(=| =|:| :).{1,32}"
- "(?i)awscn[_-]?secret[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)awscn[_-]?access[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)awsaccesskeyid(=| =|:| :).{1,32}"
- "(?i)aws[_-]?ses[_-]?secret[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)aws[_-]?ses[_-]?access[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)aws[_-]?secrets(=| =|:| :).{1,32}"
- "(?i)aws[_-]?secret[_-]?key(=| =|:| :).{1,32}"
- "(?i)aws[_-]?secret[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)aws[_-]?secret(=| =|:| :).{1,32}"
- "(?i)aws[_-]?key(=| =|:| :).{1,32}"
- "(?i)aws[_-]?config[_-]?secretaccesskey(=| =|:| :).{1,32}"
- "(?i)aws[_-]?config[_-]?accesskeyid(=| =|:| :).{1,32}"
- "(?i)aws[_-]?access[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)aws[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)aws[_-]?access(=| =|:| :).{1,32}"
- "(?i)author[_-]?npm[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)author[_-]?email[_-]?addr(=| =|:| :).{1,32}"
- "(?i)auth0[_-]?client[_-]?secret(=| =|:| :).{1,32}"
- "(?i)auth0[_-]?api[_-]?clientsecret(=| =|:| :).{1,32}"
- "(?i)auth[_-]?token(=| =|:| :).{1,32}"
- "(?i)assistant[_-]?iam[_-]?apikey(=| =|:| :).{1,32}"
- "(?i)artifacts[_-]?secret(=| =|:| :).{1,32}"
- "(?i)artifacts[_-]?key(=| =|:| :).{1,32}"
- "(?i)artifacts[_-]?bucket(=| =|:| :).{1,32}"
- "(?i)artifacts[_-]?aws[_-]?secret[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)artifacts[_-]?aws[_-]?access[_-]?key[_-]?id(=| =|:| :).{1,32}"
- "(?i)artifactory[_-]?key(=| =|:| :).{1,32}"
- "(?i)argos[_-]?token(=| =|:| :).{1,32}"
- "(?i)apple[_-]?id[_-]?password(=| =|:| :).{1,32}"
- "(?i)appclientsecret(=| =|:| :).{1,32}"
- "(?i)app[_-]?token(=| =|:| :).{1,32}"
- "(?i)app[_-]?secrete(=| =|:| :).{1,32}"
- "(?i)app[_-]?report[_-]?token[_-]?key(=| =|:| :).{1,32}"
- "(?i)app[_-]?bucket[_-]?perm(=| =|:| :).{1,32}"
- "(?i)apigw[_-]?access[_-]?token(=| =|:| :).{1,32}"
- "(?i)apiary[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)api[_-]?secret(=| =|:| :).{1,32}"
- "(?i)api[_-]?key[_-]?sid(=| =|:| :).{1,32}"
- "(?i)api[_-]?key[_-]?secret(=| =|:| :).{1,32}"
- "(?i)api[_-]?key(=| =|:| :).{1,32}"
- "(?i)aos[_-]?sec(=| =|:| :).{1,32}"
- "(?i)aos[_-]?key(=| =|:| :).{1,32}"
- "(?i)ansible[_-]?vault[_-]?password(=| =|:| :).{1,32}"
- "(?i)android[_-]?docs[_-]?deploy[_-]?token(=| =|:| :).{1,32}"
- "(?i)anaconda[_-]?token(=| =|:| :).{1,32}"
- "(?i)amazon[_-]?secret[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)amazon[_-]?bucket[_-]?name(=| =|:| :).{1,32}"
- "(?i)alicloud[_-]?secret[_-]?key(=| =|:| :).{1,32}"
- "(?i)alicloud[_-]?access[_-]?key(=| =|:| :).{1,32}"
- "(?i)alias[_-]?pass(=| =|:| :).{1,32}"
- "(?i)algolia[_-]?search[_-]?key[_-]?1(=| =|:| :).{1,32}"
- "(?i)algolia[_-]?search[_-]?key(=| =|:| :).{1,32}"
- "(?i)algolia[_-]?search[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)algolia[_-]?api[_-]?key[_-]?search(=| =|:| :).{1,32}"
- "(?i)algolia[_-]?api[_-]?key[_-]?mcm(=| =|:| :).{1,32}"
- "(?i)algolia[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)algolia[_-]?admin[_-]?key[_-]?mcm(=| =|:| :).{1,32}"
- "(?i)algolia[_-]?admin[_-]?key[_-]?2(=| =|:| :).{1,32}"
- "(?i)algolia[_-]?admin[_-]?key[_-]?1(=| =|:| :).{1,32}"
- "(?i)adzerk[_-]?api[_-]?key(=| =|:| :).{1,32}"
- "(?i)admin[_-]?email(=| =|:| :).{1,32}"
- "(?i)account[_-]?sid(=| =|:| :).{1,32}"
- "(?i)access[_-]?token(=| =|:| :).{1,32}"
- "(?i)access[_-]?secret(=| =|:| :).{1,32}"
- "(?i)access[_-]?key[_-]?secret(=| =|:| :).{1,32}"