daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #9259 from projectdiscovery/add-missing-token 

Adding Missing Token
patch-1
pussycat0x 2024-03-06 14:47:14 +05:30 committed by GitHub
parent 9ad6582f0c b5632592d3
commit 7666d45a41
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
26 changed files with 647 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

25
http/exposures/tokens/dependency/dependency-track-api.yaml Normal file
View File

@ -0,0 +1,25 @@
id: dependency-track-api
info:
name: Dependency Track API Key
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/dependency_track.yml
- https://docs.dependencytrack.org/integrations/rest-api/
- https://docs.dependencytrack.org/getting-started/configuration/
metadata:
verified: true
max-request: 1
tags: dependency,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- \b(odt_[A-Za-z0-9]{32,255})\b

24
http/exposures/tokens/docker/docker-hub-pat.yaml Normal file
View File

@ -0,0 +1,24 @@
id: docker-hub-pat
info:
name: Docker Hub Personal Access Token
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/dockerhub.yml
- https://docs.docker.com/security/for-developers/access-tokens/
metadata:
verified: true
max-request: 1
tags: docker,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- \b(dckr_pat_[a-zA-Z0-9_-]{27})(?:$|[^a-zA-Z0-9_-])

25
http/exposures/tokens/doppler/doppler-audit-token.yaml Normal file
View File

@ -0,0 +1,25 @@
id: doppler-audit-token
info:
name: Doppler Audit Token
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/doppler.yml
- https://docs.doppler.com/reference/api
- https://docs.doppler.com/reference/auth-token-formats
metadata:
verified: true
max-request: 1
tags: doppler,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- \b(dp\.audit\.[a-zA-Z0-9]{40,44})\b

25
http/exposures/tokens/doppler/doppler-cli-token.yaml Normal file
View File

@ -0,0 +1,25 @@
id: doppler-cli-token
info:
name: Doppler CLI Token
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/doppler.yml
- https://docs.doppler.com/reference/api
- https://docs.doppler.com/reference/auth-token-formats
metadata:
verified: true
max-request: 1
tags: doppler,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- \b(dp\.ct\.[a-zA-Z0-9]{40,44})\b

25
http/exposures/tokens/doppler/doppler-scim-token.yaml Normal file
View File

@ -0,0 +1,25 @@
id: doppler-scim-token
info:
name: Doppler SCIM Token
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/doppler.yml
- https://docs.doppler.com/reference/api
- https://docs.doppler.com/reference/auth-token-formats
metadata:
verified: true
max-request: 1
tags: doppler,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- \b(dp\.scim\.[a-zA-Z0-9]{40,44})\b

25
http/exposures/tokens/doppler/doppler-service-account-token.yaml Normal file
View File

@ -0,0 +1,25 @@
id: doppler-service-account-token
info:
name: Doppler Service Account Token
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/doppler.yml
- https://docs.doppler.com/reference/api
- https://docs.doppler.com/reference/auth-token-formats
metadata:
verified: true
max-request: 1
tags: doppler,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- \b(dp\.sa\.[a-zA-Z0-9]{40,44})\b

25
http/exposures/tokens/doppler/doppler-service-token.yaml Normal file
View File

@ -0,0 +1,25 @@
id: doppler-service-token
info:
name: Doppler Service Token
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/doppler.yml
- https://docs.doppler.com/reference/api
- https://docs.doppler.com/reference/auth-token-formats
metadata:
verified: true
max-request: 1
tags: doppler,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- \b(dp\.st\.(?:[a-z0-9\-_]{2,35}\.)?[a-zA-Z0-9]{40,44})\b

26
http/exposures/tokens/dropbox/dropbox-access-token.yaml Normal file
View File

@ -0,0 +1,26 @@
id: dropbox-access-token
info:
name: Dropbox Access Token
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/dropbox.yml
- https://developers.dropbox.com/oauth-guide
- https://www.dropbox.com/developers/
- https://www.dropbox.com/developers/documentation/http/documentation
metadata:
verified: true
max-request: 1
tags: dropbox,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- \b(sl\.[a-zA-Z0-9_-]{130,152})(?:$|[^a-zA-Z0-9_-])

24
http/exposures/tokens/huggingface/huggingface-user-access-token.yaml Normal file
View File

@ -0,0 +1,24 @@
id: huggingface-user-access-token
info:
name: HuggingFace User Access Token
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/huggingface.yml
- https://huggingface.co/docs/hub/security-tokens
metadata:
verified: true
max-request: 1
tags: huggingface,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- '\b(hf_[a-zA-Z]{34})\b'

24
http/exposures/tokens/linkedin/linkedin-client-id.yaml Normal file
View File

@ -0,0 +1,24 @@
id: linkedin-client-id
info:
name: LinkedIn Client ID
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/linkedin.yml
- https://docs.microsoft.com/en-us/linkedin/shared/api-guide/best-practices/secure-applications
metadata:
verified: true
max-request: 1
tags: linkedin,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- (?i)linkedin.?(?:api|app|application|client|consumer|customer)?.?(?:id|identifier|key).{0,2}\s{0,20}.{0,2}\s{0,20}.{0,2}\b([a-z0-9]{12,14})\b

24
http/exposures/tokens/linkedin/linkedin-secret-key.yaml Normal file
View File

@ -0,0 +1,24 @@
id: linkedin-secret-key
info:
name: LinkedIn Secret Key
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/linkedin.yml
- https://docs.microsoft.com/en-us/linkedin/shared/api-guide/best-practices/secure-applications
metadata:
verified: true
max-request: 1
tags: linkedin,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- (?i)linkedin.?(?:api|app|application|client|consumer|customer|secret|key).?(?:key|oauth|sec|secret)?.{0,2}\s{0,20}.{0,2}\s{0,20}.{0,2}\b([a-z0-9]{16})\b

25
http/exposures/tokens/newrelic/newrelic-api-service-key.yaml Normal file
View File

@ -0,0 +1,25 @@
id: newrelic-api-service-key
info:
name: New Relic API Service Key
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/newrelic.yml
- https://docs.newrelic.com/docs/apis/intro-apis/new-relic-api-keys
- https://docs.newrelic.com/docs/apis/intro-apis/new-relic-api-keys/#user-key
metadata:
verified: true
max-request: 1
tags: newrelic,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- (?i)\b(nrak-[a-z0-9]{27})\b

25
http/exposures/tokens/newrelic/newrelic-license-key-non.yaml Normal file
View File

@ -0,0 +1,25 @@
id: newrelic-license-key-non
info:
name: New Relic License Key (non-suffixed)
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/newrelic.yml
- https://docs.newrelic.com/docs/apis/intro-apis/new-relic-api-keys
- https://docs.newrelic.com/docs/apis/intro-apis/new-relic-api-keys/#license-key
metadata:
verified: true
max-request: 1
tags: newrelic,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- (?i)associated\ with\ your\ New\ Relic\ account\.\s+license_key:\s*([a-f0-9]{40})\b

25
http/exposures/tokens/newrelic/newrelic-license-key.yaml Normal file
View File

@ -0,0 +1,25 @@
id: newrelic-license-key
info:
name: New Relic License Key
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/newrelic.yml
- https://docs.newrelic.com/docs/apis/intro-apis/new-relic-api-keys
- https://docs.newrelic.com/docs/apis/intro-apis/new-relic-api-keys/#license-key
metadata:
verified: true
max-request: 1
tags: newrelic,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- (?i)\b([a-z0-9]{6}[a-f0-9]{30}nral)\b

23
http/exposures/tokens/odbc/odbc-connection-string.yaml Normal file
View File

@ -0,0 +1,23 @@
id: odbc-connection-string
info:
name: ODBC Connection String
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/odbc.yml
metadata:
verified: true
max-request: 1
tags: odbc,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- (?i)(?:User|User\sId|UserId|Uid)\s*=\s*([^\s;]{3,100})\s*;[\ \t]*.{0,10}[\ \t]*(?:Password|Pwd)\s*=\s*([^\t\ ;]{3,100})\s*(?:[;]|$)

25
http/exposures/tokens/okta/okta-api-token.yaml Normal file
View File

@ -0,0 +1,25 @@
id: okta-api-token
info:
name: Okta API Token
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/okta.yml
- https://devforum.okta.com/t/api-token-length/5519
- https://developer.okta.com/docs/guides/create-an-api-token/main/
metadata:
verified: true
max-request: 1
tags: okta,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- (?i)(?s)(?:okta|ssws).{0,40}\b(00[a-z0-9_-]{39}[a-z0-9_])\b

25
http/exposures/tokens/particle/particle-access-token.yaml Normal file
View File

@ -0,0 +1,25 @@
id: particle-access-token
info:
name: particle.io Access Token
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/particle.io.yml
- https://docs.particle.io/reference/cloud-apis/api/
metadata:
verified: true
max-request: 1
tags: particle,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- 'https://api\.particle\.io/v1/[a-zA-Z0-9_\-\s/"\\?]*(?:access_token=|Authorization:\s*Bearer\s*)\b([a-zA-Z0-9]{40})\b'
- '(?:access_token=|Authorization:\s*Bearer\s*)\b([a-zA-Z0-9]{40})\b[\s"\\]*https://api\.particle\.io/v1'

25
http/exposures/tokens/react/react-app-password.yaml Normal file
View File

@ -0,0 +1,25 @@
id: react-app-password
info:
name: React App Password
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/react.yml
- https://create-react-app.dev/docs/adding-custom-environment-variables/
- https://stackoverflow.com/questions/48699820/how-do-i-hide-an-api-key-in-create-react-app
metadata:
verified: true
max-request: 1
tags: react,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- \bREACT_APP(?:_[A-Z0-9]+)*_PASS(?:\s+WORD)?\s*=\s*['"]?([^\s'"$]{6,})(?:[\s'"$]|$)

25
http/exposures/tokens/react/react-app-username.yaml Normal file
View File

@ -0,0 +1,25 @@
id: react-app-username
info:
name: React App Username
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/react.yml
- https://create-react-app.dev/docs/adding-custom-environment-variables/
- https://stackoverflow.com/questions/48699820/how-do-i-hide-an-api-key-in-create-react-app
metadata:
verified: true
max-request: 1
tags: react,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- \bREACT_APP(?:_[A-Z0-9]+)*_USER(?:\s+NAME)?\s*=\s*['"]?([^\s'"$]{3,})(?:[\s'"$]|$)

23
http/exposures/tokens/salesforce/salesforce-access-token.yaml Normal file
View File

@ -0,0 +1,23 @@
id: salesforce-access-token
info:
name: Salesforce Access Token
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/salesforce.yml
metadata:
verified: true
max-request: 1
tags: salesforce,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- \b(00[a-zA-Z0-9]{13}![a-zA-Z0-9._]{96})(?:\b|$|[^a-zA-Z0-9._])

25
http/exposures/tokens/thingsboard/thingsboard-access-token.yaml Normal file
View File

@ -0,0 +1,25 @@
id: thingsboard-access-token
info:
name: ThingsBoard Access Token
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/thingsboard.yml
- https://thingsboard.io/docs/paas/reference/http-api/
- https://thingsboard.io/docs/paas/reference/coap-api/
metadata:
verified: true
max-request: 1
tags: thingsboard,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- thingsboard\.cloud/api/v1/([a-z0-9]{20})

29
http/exposures/tokens/truenas/truenas-api-key.yaml Normal file
View File

@ -0,0 +1,29 @@
id: truenas-api-key
info:
name: TrueNAS API Key (WebSocket)
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/truenas.yml
- https://www.truenas.com/docs/api/core_websocket_api.html
- https://www.truenas.com/docs/api/scale_rest_api.html
- https://www.truenas.com/docs/scale/scaletutorials/toptoolbar/managingapikeys/
- https://www.truenas.com/docs/scale/scaleclireference/auth/cliapikey/
- https://www.truenas.com/docs/scale/api/
- https://www.truenas.com/community/threads/api-examples-in-perl-python.108053/
metadata:
verified: true
max-request: 1
tags: truenas,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- '"params"\s*:\s*\[\s*"(\d+-[a-zA-Z0-9]{64})"\s*\]'

24
http/exposures/tokens/twitter/twitter-client-id.yaml Normal file
View File

@ -0,0 +1,24 @@
id: twitter-client-id
info:
name: Twitter Client ID
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/twitter.yml
- https://developer.twitter.com/en/docs/authentication/overview
metadata:
verified: true
max-request: 1
tags: twitter,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- (?i)\btwitter.?(?:api|app|application|client|consumer|customer)?.?(?:id|identifier|key).{0,2}\s{0,20}.{0,2}\s{0,20}.{0,2}\b([a-z0-9]{18,25})\b

24
http/exposures/tokens/twitter/twitter-secret-key.yaml Normal file
View File

@ -0,0 +1,24 @@
id: twitter-secret-key
info:
name: Twitter Secret Key
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/twitter.yml
- https://developer.twitter.com/en/docs/authentication/overview
metadata:
verified: true
max-request: 1
tags: twitter,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- (?i)twitter.?(?:api|app|application|client|consumer|customer|secret|key).?(?:key|oauth|sec|secret)?.{0,2}\s{0,20}.{0,2}\s{0,20}.{0,2}\b([a-z0-9]{35,44})\b

26
http/exposures/tokens/wireguard/wireguard-preshared-key.yaml Normal file
View File

@ -0,0 +1,26 @@
id: wireguard-preshared-key
info:
name: WireGuard Preshared Key
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/wireguard.yml
- https://www.wireguard.com/quickstart/
- https://manpages.debian.org/testing/wireguard-tools/wg.8.en.html
- https://gist.github.com/lanceliao/5d2977f417f34dda0e3d63ac7e217fd
metadata:
verified: true
max-request: 1
tags: wireguard,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- PresharedKey\s*=\s*([A-Za-z0-9+/]{43}=)

26
http/exposures/tokens/wireguard/wireguard-private-key.yaml Normal file
View File

@ -0,0 +1,26 @@
id: wireguard-private-key
info:
name: WireGuard Private Key
author: DhiyaneshDK
severity: info
reference:
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/wireguard.yml
- https://www.wireguard.com/quickstart/
- https://manpages.debian.org/testing/wireguard-tools/wg.8.en.html
- https://gist.github.com/lanceliao/5d2977f417f34dda0e3d63ac7e217fd
metadata:
verified: true
max-request: 1
tags: wireguard,exposure,tokens
http:
- method: GET
path:
- "{{BaseURL}}"
extractors:
- type: regex
part: body
regex:
- PrivateKey\s*=\s*([A-Za-z0-9+/]{43}=)