Merge branch 'main' into fuzzing-templates
commit
eddfdcedcd
|
@ -8,7 +8,7 @@ password = sys.argv[3]
|
||||||
repo_owner = "projectdiscovery"
|
repo_owner = "projectdiscovery"
|
||||||
repo_name = "nuclei-templates"
|
repo_name = "nuclei-templates"
|
||||||
pr_user_list = ["DhiyaneshGeek", "pussycat0x", "ritikchaddha"]
|
pr_user_list = ["DhiyaneshGeek", "pussycat0x", "ritikchaddha"]
|
||||||
issue_user_list = ["princechaddha", "DhiyaneshGeek", "pussycat0x", "ritikchaddha"]
|
issue_user_list = ["DhiyaneshGeek", "pussycat0x", "ritikchaddha", "princechaddha"]
|
||||||
|
|
||||||
headers = {'Authorization': f'Bearer {password}',
|
headers = {'Authorization': f'Bearer {password}',
|
||||||
'Accept': 'application/vnd.github+json',
|
'Accept': 'application/vnd.github+json',
|
||||||
|
|
|
@ -3,12 +3,40 @@ on:
|
||||||
push:
|
push:
|
||||||
paths:
|
paths:
|
||||||
- '.new-additions'
|
- '.new-additions'
|
||||||
|
- 'file/keys/dependency/dependency-track.yaml'
|
||||||
|
- 'file/keys/docker/dockerhub-pat.yaml'
|
||||||
|
- 'file/keys/doppler/doppler-audit.yaml'
|
||||||
|
- 'file/keys/doppler/doppler-cli.yaml'
|
||||||
|
- 'file/keys/doppler/doppler-scim.yaml'
|
||||||
|
- 'file/keys/doppler/doppler-service-account.yaml'
|
||||||
|
- 'file/keys/doppler/doppler-service.yaml'
|
||||||
|
- 'file/keys/dropbox/dropbox-access.yaml'
|
||||||
|
- 'file/keys/huggingface/huggingface-user-access.yaml'
|
||||||
|
- 'file/keys/linkedin/linkedin-client.yaml'
|
||||||
|
- 'file/keys/linkedin/linkedin-secret.yaml'
|
||||||
|
- 'file/keys/newrelic/newrelic-api-service.yaml'
|
||||||
|
- 'file/keys/newrelic/newrelic-license-non.yaml'
|
||||||
|
- 'file/keys/newrelic/newrelic-license.yaml'
|
||||||
|
- 'file/keys/odbc/odbc-connection.yaml'
|
||||||
|
- 'file/keys/okta/okta-api.yaml'
|
||||||
|
- 'file/keys/particle/particle-access.yaml'
|
||||||
|
- 'file/keys/react/reactapp-password.yaml'
|
||||||
|
- 'file/keys/react/reactapp-username.yaml'
|
||||||
|
- 'file/keys/salesforce/salesforce-access.yaml'
|
||||||
|
- 'file/keys/thingsboard/thingsboard-access.yaml'
|
||||||
|
- 'file/keys/truenas/truenas-api.yaml'
|
||||||
|
- 'file/keys/twitter/twitter-client.yaml'
|
||||||
|
- 'file/keys/twitter/twitter-secret.yaml'
|
||||||
|
- 'file/keys/wireguard/wireguard-preshared.yaml'
|
||||||
|
- 'file/keys/wireguard/wireguard-private.yaml'
|
||||||
- 'http/cves/2023/CVE-2023-49785.yaml'
|
- 'http/cves/2023/CVE-2023-49785.yaml'
|
||||||
- 'http/cves/2024/CVE-2023-5914.yaml'
|
- 'http/cves/2023/CVE-2023-5830.yaml'
|
||||||
|
- 'http/cves/2023/CVE-2023-5914.yaml'
|
||||||
- 'http/cves/2024/CVE-2024-1698.yaml'
|
- 'http/cves/2024/CVE-2024-1698.yaml'
|
||||||
- 'http/exposed-panels/bynder-panel.yaml'
|
- 'http/exposed-panels/bynder-panel.yaml'
|
||||||
|
- 'http/exposed-panels/cisco/cisco-expressway-panel.yaml'
|
||||||
- 'http/exposed-panels/emqx-panel.yaml'
|
- 'http/exposed-panels/emqx-panel.yaml'
|
||||||
- 'http/exposed-panels/forticlientems-panel.yaml'
|
- 'http/exposed-panels/fortinet/forticlientems-panel.yaml'
|
||||||
- 'http/exposed-panels/fortinet/fortiwlm-panel.yaml'
|
- 'http/exposed-panels/fortinet/fortiwlm-panel.yaml'
|
||||||
- 'http/exposed-panels/neocase-hrportal-panel.yaml'
|
- 'http/exposed-panels/neocase-hrportal-panel.yaml'
|
||||||
- 'http/exposed-panels/osnexus-panel.yaml'
|
- 'http/exposed-panels/osnexus-panel.yaml'
|
||||||
|
|
|
@ -1,9 +1,37 @@
|
||||||
|
file/keys/dependency/dependency-track.yaml
|
||||||
|
file/keys/docker/dockerhub-pat.yaml
|
||||||
|
file/keys/doppler/doppler-audit.yaml
|
||||||
|
file/keys/doppler/doppler-cli.yaml
|
||||||
|
file/keys/doppler/doppler-scim.yaml
|
||||||
|
file/keys/doppler/doppler-service-account.yaml
|
||||||
|
file/keys/doppler/doppler-service.yaml
|
||||||
|
file/keys/dropbox/dropbox-access.yaml
|
||||||
|
file/keys/huggingface/huggingface-user-access.yaml
|
||||||
|
file/keys/linkedin/linkedin-client.yaml
|
||||||
|
file/keys/linkedin/linkedin-secret.yaml
|
||||||
|
file/keys/newrelic/newrelic-api-service.yaml
|
||||||
|
file/keys/newrelic/newrelic-license-non.yaml
|
||||||
|
file/keys/newrelic/newrelic-license.yaml
|
||||||
|
file/keys/odbc/odbc-connection.yaml
|
||||||
|
file/keys/okta/okta-api.yaml
|
||||||
|
file/keys/particle/particle-access.yaml
|
||||||
|
file/keys/react/reactapp-password.yaml
|
||||||
|
file/keys/react/reactapp-username.yaml
|
||||||
|
file/keys/salesforce/salesforce-access.yaml
|
||||||
|
file/keys/thingsboard/thingsboard-access.yaml
|
||||||
|
file/keys/truenas/truenas-api.yaml
|
||||||
|
file/keys/twitter/twitter-client.yaml
|
||||||
|
file/keys/twitter/twitter-secret.yaml
|
||||||
|
file/keys/wireguard/wireguard-preshared.yaml
|
||||||
|
file/keys/wireguard/wireguard-private.yaml
|
||||||
http/cves/2023/CVE-2023-49785.yaml
|
http/cves/2023/CVE-2023-49785.yaml
|
||||||
http/cves/2024/CVE-2023-5914.yaml
|
http/cves/2023/CVE-2023-5830.yaml
|
||||||
|
http/cves/2023/CVE-2023-5914.yaml
|
||||||
http/cves/2024/CVE-2024-1698.yaml
|
http/cves/2024/CVE-2024-1698.yaml
|
||||||
http/exposed-panels/bynder-panel.yaml
|
http/exposed-panels/bynder-panel.yaml
|
||||||
|
http/exposed-panels/cisco/cisco-expressway-panel.yaml
|
||||||
http/exposed-panels/emqx-panel.yaml
|
http/exposed-panels/emqx-panel.yaml
|
||||||
http/exposed-panels/forticlientems-panel.yaml
|
http/exposed-panels/fortinet/forticlientems-panel.yaml
|
||||||
http/exposed-panels/fortinet/fortiwlm-panel.yaml
|
http/exposed-panels/fortinet/fortiwlm-panel.yaml
|
||||||
http/exposed-panels/neocase-hrportal-panel.yaml
|
http/exposed-panels/neocase-hrportal-panel.yaml
|
||||||
http/exposed-panels/osnexus-panel.yaml
|
http/exposed-panels/osnexus-panel.yaml
|
||||||
|
|
|
@ -16,7 +16,6 @@ tags:
|
||||||
- "dos"
|
- "dos"
|
||||||
- "local"
|
- "local"
|
||||||
- "bruteforce"
|
- "bruteforce"
|
||||||
- "phishing"
|
|
||||||
|
|
||||||
# The following templates have been excluded because they have weak matchers and may generate FP results.
|
# The following templates have been excluded because they have weak matchers and may generate FP results.
|
||||||
# Please feel free to create PR if you can update the templates with strict matchers.
|
# Please feel free to create PR if you can update the templates with strict matchers.
|
||||||
|
|
|
@ -1,4 +1,54 @@
|
||||||
[
|
[
|
||||||
|
{
|
||||||
|
"author": "princechaddha",
|
||||||
|
"links": {
|
||||||
|
"github": "https://github.com/princechaddha",
|
||||||
|
"twitter": "https://twitter.com/princechaddha",
|
||||||
|
"linkedin": "https://www.linkedin.com/in/princechaddha/",
|
||||||
|
"website": "https://pwnmachine.me/",
|
||||||
|
"email": ""
|
||||||
|
}
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"author": "gy741",
|
||||||
|
"links": {
|
||||||
|
"github": "https://github.com/gy741",
|
||||||
|
"twitter": "",
|
||||||
|
"linkedin": "",
|
||||||
|
"website": "",
|
||||||
|
"email": ""
|
||||||
|
}
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"author": "ritikchaddha",
|
||||||
|
"links": {
|
||||||
|
"github": "https://github.com/ritikchaddha",
|
||||||
|
"twitter": "https://twitter.com/ritikchaddha",
|
||||||
|
"linkedin": "",
|
||||||
|
"website": "",
|
||||||
|
"email": ""
|
||||||
|
}
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"author": "theamanrawat",
|
||||||
|
"links": {
|
||||||
|
"github": "https://github.com/theamanrawat",
|
||||||
|
"twitter": "https://twitter.com/theamanrawat",
|
||||||
|
"linkedin": "",
|
||||||
|
"website": "",
|
||||||
|
"email": ""
|
||||||
|
}
|
||||||
|
},
|
||||||
|
{
|
||||||
|
"author": "dwisiswant0",
|
||||||
|
"links": {
|
||||||
|
"github": "https://github.com/dwisiswant0",
|
||||||
|
"twitter": "https://twitter.com/dwisiswant0",
|
||||||
|
"linkedin": "",
|
||||||
|
"website": "",
|
||||||
|
"email": ""
|
||||||
|
}
|
||||||
|
},
|
||||||
{
|
{
|
||||||
"author": "Tirtha",
|
"author": "Tirtha",
|
||||||
"links": {
|
"links": {
|
||||||
|
@ -20,7 +70,7 @@
|
||||||
}
|
}
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
"author": "DhiyaneshDk",
|
"author": "dhiyaneshdk",
|
||||||
"links": {
|
"links": {
|
||||||
"github": "https://github.com/DhiyaneshGeek",
|
"github": "https://github.com/DhiyaneshGeek",
|
||||||
"twitter": "https://twitter.com/DhiyaneshDK",
|
"twitter": "https://twitter.com/DhiyaneshDK",
|
||||||
|
@ -120,10 +170,10 @@
|
||||||
}
|
}
|
||||||
},
|
},
|
||||||
{
|
{
|
||||||
"author": "Akokonunes",
|
"author": "0x_akoko",
|
||||||
"links": {
|
"links": {
|
||||||
"github": "https://www.github.com/Akokonunes",
|
"github": "https://github.com/akokonunes",
|
||||||
"twitter": "",
|
"twitter": "https://twitter.com/0x_Akoko",
|
||||||
"linkedin": "",
|
"linkedin": "",
|
||||||
"website": "",
|
"website": "",
|
||||||
"email": ""
|
"email": ""
|
||||||
|
@ -613,7 +663,7 @@
|
||||||
"author": "daffainfo",
|
"author": "daffainfo",
|
||||||
"links": {
|
"links": {
|
||||||
"github": "https://www.github.com/daffainfo",
|
"github": "https://www.github.com/daffainfo",
|
||||||
"twitter": "",
|
"twitter": "https://twitter.com/daffainfo",
|
||||||
"linkedin": "",
|
"linkedin": "",
|
||||||
"website": "",
|
"website": "",
|
||||||
"email": ""
|
"email": ""
|
||||||
|
@ -713,7 +763,7 @@
|
||||||
"author": "geeknik",
|
"author": "geeknik",
|
||||||
"links": {
|
"links": {
|
||||||
"github": "https://www.github.com/geeknik",
|
"github": "https://www.github.com/geeknik",
|
||||||
"twitter": "",
|
"twitter": "https://twitter.com/geeknik",
|
||||||
"linkedin": "",
|
"linkedin": "",
|
||||||
"website": "",
|
"website": "",
|
||||||
"email": ""
|
"email": ""
|
||||||
|
@ -1133,7 +1183,7 @@
|
||||||
"author": "pikpikcu",
|
"author": "pikpikcu",
|
||||||
"links": {
|
"links": {
|
||||||
"github": "https://www.github.com/pikpikcu",
|
"github": "https://www.github.com/pikpikcu",
|
||||||
"twitter": "",
|
"twitter": "https://twitter.com/pikpikcu",
|
||||||
"linkedin": "",
|
"linkedin": "",
|
||||||
"website": "",
|
"website": "",
|
||||||
"email": ""
|
"email": ""
|
||||||
|
|
|
@ -31,8 +31,65 @@ file:
|
||||||
name: extracted-uri
|
name: extracted-uri
|
||||||
regex:
|
regex:
|
||||||
- "(?i)([a-z]{2,10}):(//|/)[a-z0-9\\./?&-_=:]+"
|
- "(?i)([a-z]{2,10}):(//|/)[a-z0-9\\./?&-_=:]+"
|
||||||
|
|
||||||
- type: regex
|
- type: regex
|
||||||
name: AMAZON-ACCES-KEY
|
name: amazon-access-key
|
||||||
regex:
|
regex:
|
||||||
- "(?i)(A3T[A-Z0-9]|AKIA|AGPA|AROA|AIPA|ANPA|ANVA|ASIA)[A-Z0-9]{16}"
|
- "(?i)(A3T[A-Z0-9]|AKIA|AGPA|AROA|AIPA|ANPA|ANVA|ASIA)[A-Z0-9]{16}"
|
||||||
# digest: 4a0a0047304502200738658ef4985c1261c662fd545a23504b402343ad994af584866d74d37e11ac022100c8213e439b8a574bee55ce0881363c0964830df8255bcd89249d37a778f038ba:922c64590222798bb761d5b6d8e72950
|
|
||||||
|
- type: regex
|
||||||
|
name: amazon-s3-url
|
||||||
|
regex:
|
||||||
|
- "(?i)([a-z0-9_\\-\\.]+\\.s3\\.amazonaws\\.com)"
|
||||||
|
- "(?i)([a-z0-9\\.-]+\\.s3-[a-z0-9-\\.]+\\.amazonaws\\.com)"
|
||||||
|
- "(?i)[a-z0-9\\.-]+\\.s3-website[\\.-](eu|ap|us|ca|sa|cn)"
|
||||||
|
- "(?i)(s3://[a-z0-9_\\-\\./]+)"
|
||||||
|
- "(?i)(s3\\.amazonaws\\.com/[a-z0-9/_\\-\\.]+)"
|
||||||
|
- "(?i)(s3\\.console\\.aws\\.com/s3/buckets/[a-z0-9/_\\-\\.]+)"
|
||||||
|
- "(?i)(s3-[a-z0-9-\\.]\\.amazonaws\\.com/[a-z0-9/_\\-\\.]+)"
|
||||||
|
|
||||||
|
- type: regex
|
||||||
|
name: github-personal-access-token
|
||||||
|
regex:
|
||||||
|
- "(?i)(ghp_[a-z0-9]{36}|github_pat_[a-z0-9]{82})"
|
||||||
|
|
||||||
|
- type: regex
|
||||||
|
name: github-oauth-access-token
|
||||||
|
regex:
|
||||||
|
- "(?i)(gho_[a-zA-Z0-9]{36})"
|
||||||
|
|
||||||
|
- type: regex
|
||||||
|
name: github-app-token
|
||||||
|
regex:
|
||||||
|
- "\b((?:ghu|ghs)_[a-zA-Z0-9]{36})\b"
|
||||||
|
|
||||||
|
- type: regex
|
||||||
|
name: authorization-basic
|
||||||
|
regex:
|
||||||
|
- "(?i)(Authorization:\\sbasic\\s+[a-z0-9=:_\\-+/]{5,100})"
|
||||||
|
|
||||||
|
- type: regex
|
||||||
|
name: authorization-bearer
|
||||||
|
regex:
|
||||||
|
- "(?i)(Authorization:\\sbearer\\s+[a-z0-9=:_\\-\\.+/]{5,100})"
|
||||||
|
|
||||||
|
- type: regex
|
||||||
|
name: rsa-private-key
|
||||||
|
regex:
|
||||||
|
- "(?i)(-----BEGIN RSA PRIVATE KEY-----)"
|
||||||
|
|
||||||
|
- type: regex
|
||||||
|
name: ssh-dsa-private-key
|
||||||
|
regex:
|
||||||
|
- "(?i)(-----BEGIN DSA PRIVATE KEY-----)"
|
||||||
|
|
||||||
|
- type: regex
|
||||||
|
name: ssh-ec-private-key
|
||||||
|
regex:
|
||||||
|
- "(?i)(-----BEGIN EC PRIVATE KEY-----)"
|
||||||
|
|
||||||
|
- type: regex
|
||||||
|
name: potential-ajax-request
|
||||||
|
regex:
|
||||||
|
- "(?i)(new\\s+xmlhttprequest\\(\\)|\\$\\.ajax\\(\\{)"
|
||||||
|
# digest: 4a0a00473045022100a1dfbb218bb6e589fe608e853b26ab2acd789a197a02d92e3f0499331b80e03602206ac9cf015a855085c501f0e372f587e6dd518133e9bb9781de0d34ee15266bb9:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,25 @@
|
||||||
|
id: dependency-track
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: Dependency Track API Key
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/dependency_track.yml
|
||||||
|
- https://docs.dependencytrack.org/integrations/rest-api/
|
||||||
|
- https://docs.dependencytrack.org/getting-started/configuration/
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
max-request: 1
|
||||||
|
tags: dependency,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- \b(odt_[A-Za-z0-9]{32,255})\b
|
||||||
|
# digest: 4a0a004730450220702a4c3c4219c5f6c449c503a1ada1924589fe8a8ee69ca9788a4fd1da542a7f022100c396ad3ca884547cbb32a55a497a33e09e9d592987536b27742dae33485e1abf:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,23 @@
|
||||||
|
id: dockerhub-pat
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: Docker Hub Personal Access Token
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/dockerhub.yml
|
||||||
|
- https://docs.docker.com/security/for-developers/access-tokens/
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: docker,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- \b(dckr_pat_[a-zA-Z0-9_-]{27})(?:$|[^a-zA-Z0-9_-])
|
||||||
|
# digest: 4a0a00473045022100bc73fcf69453af6d917f363d99e57d06620e6b40f1e38b54ac72982c1aff0865022030218f700bce4f88878c34d596fcc3563ee6a6a0f233055703455751caaabd08:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,24 @@
|
||||||
|
id: doppler-audit
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: Doppler Audit Token
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/doppler.yml
|
||||||
|
- https://docs.doppler.com/reference/api
|
||||||
|
- https://docs.doppler.com/reference/auth-token-formats
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: doppler,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- \b(dp\.audit\.[a-zA-Z0-9]{40,44})\b
|
||||||
|
# digest: 490a00463044022047f3853a49b38bfc41c3a21edae871fa20dbc00c3e4fec75a443da4c802ce4e702205fce2aa010ee24edfbc190aad5475ba28a4ea42e81476b2e36a2eb95de8c4479:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,24 @@
|
||||||
|
id: doppler-cli
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: Doppler CLI Token
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/doppler.yml
|
||||||
|
- https://docs.doppler.com/reference/api
|
||||||
|
- https://docs.doppler.com/reference/auth-token-formats
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: doppler,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- \b(dp\.ct\.[a-zA-Z0-9]{40,44})\b
|
||||||
|
# digest: 4b0a00483046022100de413ad22bea43d8292d3d22ed07b2d5c6a06bfb4819104c20eeb9134f913be2022100d2915ad20b135f4f8d477c1acec455af6c749833455e09d2542c0e849ab3fc7b:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,24 @@
|
||||||
|
id: doppler-scim
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: Doppler SCIM Token
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/doppler.yml
|
||||||
|
- https://docs.doppler.com/reference/api
|
||||||
|
- https://docs.doppler.com/reference/auth-token-formats
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: doppler,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- \b(dp\.scim\.[a-zA-Z0-9]{40,44})\b
|
||||||
|
# digest: 4a0a00473045022010274194b3725b6ef14112e5fc7f4e0d5c60123a51583f044bf2e94b76077001022100a0caa7739f04c145ec8ee920c613f38a6b5befd04918931bd0ee39cfdbcf3a44:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,24 @@
|
||||||
|
id: doppler-service-account
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: Doppler Service Account Token
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/doppler.yml
|
||||||
|
- https://docs.doppler.com/reference/api
|
||||||
|
- https://docs.doppler.com/reference/auth-token-formats
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: doppler,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- \b(dp\.sa\.[a-zA-Z0-9]{40,44})\b
|
||||||
|
# digest: 4a0a00473045022100c8177f1a0244e794af08cc9615e65a415d8cb7dc3616acc9f779e61aab518eb002204d63814164c93815807eb87c0919830977be1d4f878bd1697b90644de744894c:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,24 @@
|
||||||
|
id: doppler-service
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: Doppler Service
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/doppler.yml
|
||||||
|
- https://docs.doppler.com/reference/api
|
||||||
|
- https://docs.doppler.com/reference/auth-token-formats
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: doppler,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- \b(dp\.st\.(?:[a-z0-9\-_]{2,35}\.)?[a-zA-Z0-9]{40,44})\b
|
||||||
|
# digest: 4a0a00473045022100b61969103e1649c2c330814280aea5b020d5f47ca55c9601d0647af01c47ddbf02200698f545c2217332324593dffcc44a82bccb5ec45faf31507c356b71ee4ad7cf:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,25 @@
|
||||||
|
id: dropbox-access
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: Dropbox Access Token
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/dropbox.yml
|
||||||
|
- https://developers.dropbox.com/oauth-guide
|
||||||
|
- https://www.dropbox.com/developers/
|
||||||
|
- https://www.dropbox.com/developers/documentation/http/documentation
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: dropbox,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- \b(sl\.[a-zA-Z0-9_-]{130,152})(?:$|[^a-zA-Z0-9_-])
|
||||||
|
# digest: 490a0046304402203d0305c1997e320e30d2d0ad0460beb9c8478986a0f1b75f621167a79f8ca17302206da5b41a7402312c0d16fc2665349e3caf8aac3cee677a34f34089d739a743c6:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,23 @@
|
||||||
|
id: huggingface-user-access
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: HuggingFace User Access Token
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/huggingface.yml
|
||||||
|
- https://huggingface.co/docs/hub/security-tokens
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: huggingface,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- '\b(hf_[a-zA-Z]{34})\b'
|
||||||
|
# digest: 4b0a00483046022100934e5db46a96a95fbd52e60737825b1ed564ae6f42363a5843a5317f25c8b15d0221008fd6451b353118cd6c0b7a054f49e79c36d5c4222658de97e4b5fea6731da789:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,23 @@
|
||||||
|
id: linkedin-client
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: LinkedIn Client ID
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/linkedin.yml
|
||||||
|
- https://docs.microsoft.com/en-us/linkedin/shared/api-guide/best-practices/secure-applications
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: linkedin,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- (?i)linkedin.?(?:api|app|application|client|consumer|customer)?.?(?:id|identifier|key).{0,2}\s{0,20}.{0,2}\s{0,20}.{0,2}\b([a-z0-9]{12,14})\b
|
||||||
|
# digest: 4a0a00473045022100ade417f9932824017914990383cd867a37ba57dd1badc60aa55dac97e73cbf3f02203bb0babcad422204af64f70926c18827b3940c69f909d205f440468d18b0bb31:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,23 @@
|
||||||
|
id: linkedin-secret
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: LinkedIn Secret Key
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/linkedin.yml
|
||||||
|
- https://docs.microsoft.com/en-us/linkedin/shared/api-guide/best-practices/secure-applications
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: linkedin,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- (?i)linkedin.?(?:api|app|application|client|consumer|customer|secret|key).?(?:key|oauth|sec|secret)?.{0,2}\s{0,20}.{0,2}\s{0,20}.{0,2}\b([a-z0-9]{16})\b
|
||||||
|
# digest: 4a0a0047304502205def151b767d6270018ea90666e56089b0dde70467ca94489c6ab9ec0b735fe2022100ea3cee5471199b7e21bd6a63b75a667adcddad7281d249e83cbb8eb8cda82fd7:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,24 @@
|
||||||
|
id: newrelic-api-service
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: New Relic API Service Key
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/newrelic.yml
|
||||||
|
- https://docs.newrelic.com/docs/apis/intro-apis/new-relic-api-keys
|
||||||
|
- https://docs.newrelic.com/docs/apis/intro-apis/new-relic-api-keys/#user-key
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: newrelic,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- (?i)\b(nrak-[a-z0-9]{27})\b
|
||||||
|
# digest: 4a0a00473045022100b0305a1f0644ca813e1b1408183fb6100e36a5ccf5716a072f32d60cf9956d7102207b59c7dc0411cc69bf362c9a1035ac73c61bccbabbbfeea75aa3eff7db628214:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,24 @@
|
||||||
|
id: newrelic-license-non
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: New Relic License Key (non-suffixed)
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/newrelic.yml
|
||||||
|
- https://docs.newrelic.com/docs/apis/intro-apis/new-relic-api-keys
|
||||||
|
- https://docs.newrelic.com/docs/apis/intro-apis/new-relic-api-keys/#license-key
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: newrelic,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- (?i)associated\ with\ your\ New\ Relic\ account\.\s+license_key:\s*([a-f0-9]{40})\b
|
||||||
|
# digest: 4b0a00483046022100cb892d11153aa7205e3a23dab514da50e195f959de8fc957589d622d9ab5cc2b0221008328f65ee06dc78d96499d42170e2fb036cfa2aacb467698c39c672dc53cba96:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,24 @@
|
||||||
|
id: newrelic-license
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: New Relic License Key
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/newrelic.yml
|
||||||
|
- https://docs.newrelic.com/docs/apis/intro-apis/new-relic-api-keys
|
||||||
|
- https://docs.newrelic.com/docs/apis/intro-apis/new-relic-api-keys/#license-key
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: newrelic,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- (?i)\b([a-z0-9]{6}[a-f0-9]{30}nral)\b
|
||||||
|
# digest: 4b0a00483046022100e041b8d63bb59009c36c1d2f8b42a95d352acb3c8d0345afae5b908a78ab8f090221009e2de0a5b782aa3b65c7cbf357c0c7cd47497bef6ade233b239afa63ff863fff:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,22 @@
|
||||||
|
id: odbc-connection
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: ODBC Connection String
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/odbc.yml
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: odbc,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- (?i)(?:User|User\sId|UserId|Uid)\s*=\s*([^\s;]{3,100})\s*;[\ \t]*.{0,10}[\ \t]*(?:Password|Pwd)\s*=\s*([^\t\ ;]{3,100})\s*(?:[;]|$)
|
||||||
|
# digest: 4a0a004730450221009cdd18eb9c779b2230d9b141a315ef98d1da77f0173be2da4d099c46e3b5c46f02207ae6fac5ccfbcbe6ab6902e3e4431449873bf31680040ec3b616c0e3750e1c4d:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,24 @@
|
||||||
|
id: okta-api
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: Okta API Token
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/okta.yml
|
||||||
|
- https://devforum.okta.com/t/api-token-length/5519
|
||||||
|
- https://developer.okta.com/docs/guides/create-an-api-token/main/
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: okta,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- (?i)(?s)(?:okta|ssws).{0,40}\b(00[a-z0-9_-]{39}[a-z0-9_])\b
|
||||||
|
# digest: 4b0a0048304602210099f31a1c5cf66963fb04f1f4a78317a1329098914e756d1a97879086ca81de74022100c51328ddf041ad3e06759c5ce691eed371adf63ef1c6d203b2a50d87b165b1f9:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,24 @@
|
||||||
|
id: particle-access
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: particle.io Access Token
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/particle.io.yml
|
||||||
|
- https://docs.particle.io/reference/cloud-apis/api/
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: particle,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- 'https://api\.particle\.io/v1/[a-zA-Z0-9_\-\s/"\\?]*(?:access_token=|Authorization:\s*Bearer\s*)\b([a-zA-Z0-9]{40})\b'
|
||||||
|
- '(?:access_token=|Authorization:\s*Bearer\s*)\b([a-zA-Z0-9]{40})\b[\s"\\]*https://api\.particle\.io/v1'
|
||||||
|
# digest: 4b0a00483046022100a93af0a2a59859c973d5551ca538c3445e1bbdcdb6ffae6bb511031ab0920b6e022100b5528e182489365a2d48d40ff6ef41f6b79a28fa270c311e4fe6f767e45e4414:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,24 @@
|
||||||
|
id: reactapp-password
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: React App Password
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/react.yml
|
||||||
|
- https://create-react-app.dev/docs/adding-custom-environment-variables/
|
||||||
|
- https://stackoverflow.com/questions/48699820/how-do-i-hide-an-api-key-in-create-react-app
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: react,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- \bREACT_APP(?:_[A-Z0-9]+)*_PASS(?:\s+WORD)?\s*=\s*['"]?([^\s'"$]{6,})(?:[\s'"$]|$)
|
||||||
|
# digest: 4b0a00483046022100b4791a0989f14242e6ffe187281643b8b1417e5aba7fe98f353e37dbdc2ffb6c022100c3eee981ff792f8372f7f9292d0e73e0718b69a12d6d40ba0a58dff15dc3f948:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,24 @@
|
||||||
|
id: reactapp-username
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: React App Username
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/react.yml
|
||||||
|
- https://create-react-app.dev/docs/adding-custom-environment-variables/
|
||||||
|
- https://stackoverflow.com/questions/48699820/how-do-i-hide-an-api-key-in-create-react-app
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: react,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- \bREACT_APP(?:_[A-Z0-9]+)*_USER(?:\s+NAME)?\s*=\s*['"]?([^\s'"$]{3,})(?:[\s'"$]|$)
|
||||||
|
# digest: 4a0a0047304502201077003a86f122901374676e5f9dfda39f6c54f870a6e4f12b7dd01707a3a5e2022100c998646fe193fa833a18772b90679efa1ba4cca48a55a2da1c839b79e50b4cfd:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,22 @@
|
||||||
|
id: salesforce-access
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: Salesforce Access Token
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/salesforce.yml
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: salesforce,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- \b(00[a-zA-Z0-9]{13}![a-zA-Z0-9._]{96})(?:\b|$|[^a-zA-Z0-9._])
|
||||||
|
# digest: 490a0046304402207a4efb9c2401eaa2ebf49fcc5ec4676dfc142a5f5d607777827383c94bf144f102207b75489de473e1c5e3264e2d664fbb87cecbfc5811b20e6ac658fcd3f1415806:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,24 @@
|
||||||
|
id: thingsboard-access
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: ThingsBoard Access Token
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/thingsboard.yml
|
||||||
|
- https://thingsboard.io/docs/paas/reference/http-api/
|
||||||
|
- https://thingsboard.io/docs/paas/reference/coap-api/
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: thingsboard,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- thingsboard\.cloud/api/v1/([a-z0-9]{20})
|
||||||
|
# digest: 4b0a00483046022100e85330533e34d275242ad231bb436951116dabe56acafa94f3db46fca45ed3ae022100a799502b27b8e16f77e8406be58127578dd5f3465dab8b0a2381ee944432c239:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,28 @@
|
||||||
|
id: truenas-api
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: TrueNAS API Key (WebSocket)
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/truenas.yml
|
||||||
|
- https://www.truenas.com/docs/api/core_websocket_api.html
|
||||||
|
- https://www.truenas.com/docs/api/scale_rest_api.html
|
||||||
|
- https://www.truenas.com/docs/scale/scaletutorials/toptoolbar/managingapikeys/
|
||||||
|
- https://www.truenas.com/docs/scale/scaleclireference/auth/cliapikey/
|
||||||
|
- https://www.truenas.com/docs/scale/api/
|
||||||
|
- https://www.truenas.com/community/threads/api-examples-in-perl-python.108053/
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: truenas,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- '"params"\s*:\s*\[\s*"(\d+-[a-zA-Z0-9]{64})"\s*\]'
|
||||||
|
# digest: 490a0046304402207bb4c8c5d8688099a5fb0972662080602259b4356fa5f947f6bf7ace68af235702201273f66e211b1ddfafc26dd957bc970aa1b23f7c0de5c142347e4d83f5ce1b49:922c64590222798bb761d5b6d8e72950
|
|
@ -1,17 +0,0 @@
|
||||||
id: twitter-secret
|
|
||||||
|
|
||||||
info:
|
|
||||||
name: Twitter Secret
|
|
||||||
author: gaurang,daffainfo
|
|
||||||
severity: medium
|
|
||||||
tags: file,keys,token,twitter
|
|
||||||
file:
|
|
||||||
- extensions:
|
|
||||||
- all
|
|
||||||
|
|
||||||
extractors:
|
|
||||||
- type: regex
|
|
||||||
regex:
|
|
||||||
- "(?i)twitter(.{0,20})?[0-9a-z]{35,44}"
|
|
||||||
- "(?i)twitter(.{0,20})?['\"][0-9a-z]{35,44}"
|
|
||||||
# digest: 490a00463044022070cedf48e8996b407257da229d7553720f700fc1f154260196c812ba9423159f022010695ee7d48aeac7287967c049bd5dfad24faf6e701db05ede091e8be3e79305:922c64590222798bb761d5b6d8e72950
|
|
|
@ -0,0 +1,23 @@
|
||||||
|
id: twitter-client
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: Twitter Client ID
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/twitter.yml
|
||||||
|
- https://developer.twitter.com/en/docs/authentication/overview
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: twitter,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- (?i)\btwitter.?(?:api|app|application|client|consumer|customer)?.?(?:id|identifier|key).{0,2}\s{0,20}.{0,2}\s{0,20}.{0,2}\b([a-z0-9]{18,25})\b
|
||||||
|
# digest: 4a0a00473045022030cb9bb226fc38ff17accc2fbe89603cae16c35050ec725ad20ce14d5fbc5ad2022100860577843f28d261d7fbf35ef59577e5fd0e84a50eb370cfbd714f1039338c19:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,23 @@
|
||||||
|
id: twitter-secret
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: Twitter Secret Key
|
||||||
|
author: DhiyaneshDK,gaurang,daffainfo
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/twitter.yml
|
||||||
|
- https://developer.twitter.com/en/docs/authentication/overview
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: twitter,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- (?i)twitter.?(?:api|app|application|client|consumer|customer|secret|key).?(?:key|oauth|sec|secret)?.{0,2}\s{0,20}.{0,2}\s{0,20}.{0,2}\b([a-z0-9]{35,44})\b
|
||||||
|
# digest: 4a0a00473045022100ae8d7dcc6d380f9b0ba6d16ca558e7af6254078b3f1a0a2230f8ddc28f47267102206348551061cffebd4da2b42ec393373ef0987eeeb4382f0e517c38c836fb46cf:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,25 @@
|
||||||
|
id: wireguard-preshared
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: WireGuard Preshared Key
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/wireguard.yml
|
||||||
|
- https://www.wireguard.com/quickstart/
|
||||||
|
- https://manpages.debian.org/testing/wireguard-tools/wg.8.en.html
|
||||||
|
- https://gist.github.com/lanceliao/5d2977f417f34dda0e3d63ac7e217fd
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: wireguard,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- PresharedKey\s*=\s*([A-Za-z0-9+/]{43}=)
|
||||||
|
# digest: 4a0a00473045022055b7809c89c44f01db811de03d659329878fabbb6006f65a5cfc4c231e72b5ce022100916852a09714e7cf50f5e239c48dba2b243d889df28c54c7671cb3b0ec8dc9e5:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,25 @@
|
||||||
|
id: wireguard-private
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: WireGuard Private Key
|
||||||
|
author: DhiyaneshDK
|
||||||
|
severity: info
|
||||||
|
reference:
|
||||||
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/wireguard.yml
|
||||||
|
- https://www.wireguard.com/quickstart/
|
||||||
|
- https://manpages.debian.org/testing/wireguard-tools/wg.8.en.html
|
||||||
|
- https://gist.github.com/lanceliao/5d2977f417f34dda0e3d63ac7e217fd
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
tags: wireguard,keys,file
|
||||||
|
|
||||||
|
file:
|
||||||
|
- extensions:
|
||||||
|
- all
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
regex:
|
||||||
|
- PrivateKey\s*=\s*([A-Za-z0-9+/]{43}=)
|
||||||
|
# digest: 4a0a004730450221008bd7fd7c9c74eb3c6d2f1d5e4c8cc9c0fcc230534b094814ee0ca7dff2f7f9800220688ed7ae288880609a373ea69defa1d5ed93ca3fcb312e5c4ea2acea46b2e27c:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,63 @@
|
||||||
|
id: CVE-2023-5830
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: ColumbiaSoft DocumentLocator - Improper Authentication
|
||||||
|
author: Gonski
|
||||||
|
severity: critical
|
||||||
|
description: |
|
||||||
|
Instances of ColumbiaSoft's Document Locator prior to version 7.2 SP4 and 2021.1 are vulnerable to an Improper Authentication/SSRF vulnerability. This template identifies vulnerable instances of the ColumbiaSoft Document Locater application by confirming external DNS interaction/lookups by modifying the value of the client-side SERVER parameter at /api/authentication/login.
|
||||||
|
impact: |
|
||||||
|
An attacker could exploit this vulnerability to gain unauthorized access to sensitive information.
|
||||||
|
remediation: |
|
||||||
|
Upgrade to a patched version of ColumbiaSoft DocumentLocator to fix the improper authentication issue.
|
||||||
|
reference:
|
||||||
|
- https://nvd.nist.gov/vuln/detail/CVE-2023-5830
|
||||||
|
- https://vuldb.com/?ctiid.243729
|
||||||
|
- https://github.com/advisories/GHSA-j89v-wm7x-4434
|
||||||
|
- https://vuldb.com/?id.243729
|
||||||
|
classification:
|
||||||
|
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
||||||
|
cvss-score: 9.8
|
||||||
|
cve-id: CVE-2023-5830
|
||||||
|
cwe-id: CWE-287
|
||||||
|
epss-score: 0.00091
|
||||||
|
epss-percentile: 0.37579
|
||||||
|
cpe: cpe:2.3:a:documentlocator:document_locator:*:*:*:*:*:*:*:*
|
||||||
|
metadata:
|
||||||
|
max-request: 1
|
||||||
|
vendor: documentlocator
|
||||||
|
product: document_locator
|
||||||
|
shodan-query: 'title:"Document Locator - WebTools"'
|
||||||
|
tags: cve,cve2023,ssrf,unauth,columbiasoft,intrusive,webtools
|
||||||
|
|
||||||
|
http:
|
||||||
|
- raw:
|
||||||
|
- |
|
||||||
|
@timeout: 20s
|
||||||
|
POST /api/authentication/login HTTP/1.1
|
||||||
|
Host: {{Hostname}}
|
||||||
|
Content-Type: application/json;charset=UTF-8
|
||||||
|
Origin: {{BaseURL}}
|
||||||
|
Referer: {{BaseURL}}
|
||||||
|
|
||||||
|
{
|
||||||
|
"LoginType":"differentWindows",
|
||||||
|
"User":"{{randstr}}",
|
||||||
|
"Password":"{{rand_base(5, "abc")}}",
|
||||||
|
"Domain":"{{randstr}}",
|
||||||
|
"Server":"{{interactsh-url}}",
|
||||||
|
"Repository":"{{randstr}}"
|
||||||
|
}
|
||||||
|
|
||||||
|
matchers-condition: and
|
||||||
|
matchers:
|
||||||
|
- type: word
|
||||||
|
part: interactsh_protocol
|
||||||
|
words:
|
||||||
|
- "dns"
|
||||||
|
|
||||||
|
- type: word
|
||||||
|
part: body
|
||||||
|
words:
|
||||||
|
- '"Authorized":false'
|
||||||
|
# digest: 4a0a0047304502201a739a9a323bb1ce5f468a13c31ecc02400b08053b2b81930e86f5decb5d83a2022100b712b21b2b241e8a04f480fe2c2b7cb3e7710265f1332dd9c2996d1a1e0cc3aa:922c64590222798bb761d5b6d8e72950
|
|
@ -0,0 +1,35 @@
|
||||||
|
id: cisco-expressway-panel
|
||||||
|
|
||||||
|
info:
|
||||||
|
name: CISCO Expressway Login Panel - Detect
|
||||||
|
author: righettod
|
||||||
|
severity: info
|
||||||
|
description: |
|
||||||
|
CISCO Expressway login panel was detected.
|
||||||
|
reference:
|
||||||
|
- https://www.cisco.com/c/en/us/products/unified-communications/expressway-series/index.html
|
||||||
|
metadata:
|
||||||
|
verified: true
|
||||||
|
max-request: 1
|
||||||
|
shodan-query: html:"Cisco Expressway"
|
||||||
|
tags: panel,cisco,login,detect
|
||||||
|
|
||||||
|
http:
|
||||||
|
- method: GET
|
||||||
|
path:
|
||||||
|
- "{{BaseURL}}/login"
|
||||||
|
|
||||||
|
matchers:
|
||||||
|
- type: dsl
|
||||||
|
dsl:
|
||||||
|
- 'status_code == 200'
|
||||||
|
- 'contains_any(to_lower(body), "cisco expressway", "cisco expway")'
|
||||||
|
condition: and
|
||||||
|
|
||||||
|
extractors:
|
||||||
|
- type: regex
|
||||||
|
part: body
|
||||||
|
group: 1
|
||||||
|
regex:
|
||||||
|
- 'Cisco\s+(?:Expressway|Expway)\s+([A-Za-z\s]+)<\/legend>'
|
||||||
|
# digest: 4a0a004730450221009a93171a94b3dcd6d212e35ffa66bf4d9432bd4ccac43de4141f63c5e61c060e0220021d84484a72649f562eaf3d436b260c53cc31c830240371f88855c097a4c6c8:922c64590222798bb761d5b6d8e72950
|
|
@ -24,3 +24,4 @@ tcp:
|
||||||
part: body
|
part: body
|
||||||
words:
|
words:
|
||||||
- "Wing FTP Server"
|
- "Wing FTP Server"
|
||||||
|
# digest: 490a00463044022041b78c4dea63a1fbdd51b152e120900093db0ab7e81b050e75d03c542d80b4a10220476a48aa15c3c12290b8d485e4ddd49d48d0173d1bc14ad16cbf0d2079fb8acf:922c64590222798bb761d5b6d8e72950
|
|
@ -104,7 +104,7 @@ config/osint.yml:683fe1e52716d054760d707dbc123f5e09de5418
|
||||||
config/pentest.yml:c7b04a39e2efaf1a5f627da9b49ecf714d927f0e
|
config/pentest.yml:c7b04a39e2efaf1a5f627da9b49ecf714d927f0e
|
||||||
config/privilege-escalation.yml:325607b721fcea55111f8698b10951fd2f0d17b8
|
config/privilege-escalation.yml:325607b721fcea55111f8698b10951fd2f0d17b8
|
||||||
config/recommended.yml:eb4d0cb29634218f0279692e8c59fa1906d7148c
|
config/recommended.yml:eb4d0cb29634218f0279692e8c59fa1906d7148c
|
||||||
contributors.json:7aceb02f36b26022058d0a11cd8517df6aae4445
|
contributors.json:951e2ab8bbae42da01f52da9ef0a14ce7f17e159
|
||||||
cves.json:51d8ac58d8ffdf6cfd4660d3e19373bb08bb6605
|
cves.json:51d8ac58d8ffdf6cfd4660d3e19373bb08bb6605
|
||||||
cves.json-checksum.txt:fdca644f563bcfe217c57881fc5991db50a942e4
|
cves.json-checksum.txt:fdca644f563bcfe217c57881fc5991db50a942e4
|
||||||
dns/azure-takeover-detection.yaml:34e8e8a0db3e2ff7af0bf8df8ee9c54f2ee8e3b4
|
dns/azure-takeover-detection.yaml:34e8e8a0db3e2ff7af0bf8df8ee9c54f2ee8e3b4
|
||||||
|
@ -164,7 +164,7 @@ file/audit/pfsense/set-hostname.yaml:c123a3b395ce655438028aab12c18d25423dc136
|
||||||
file/bash/bash-scanner.yaml:5bc8d723949612cfaed57eddf1e19d8c45b15f6e
|
file/bash/bash-scanner.yaml:5bc8d723949612cfaed57eddf1e19d8c45b15f6e
|
||||||
file/electron/electron-version-detect.yaml:9e6b4ced33952723bbf371889793cd69bfe918e2
|
file/electron/electron-version-detect.yaml:9e6b4ced33952723bbf371889793cd69bfe918e2
|
||||||
file/electron/node-integration-enabled.yaml:772455563db410b4b9113615e1958a45a25965ff
|
file/electron/node-integration-enabled.yaml:772455563db410b4b9113615e1958a45a25965ff
|
||||||
file/js/js-analyse.yaml:1259e3d3620e8f698ad0f05b62be281febf350a1
|
file/js/js-analyse.yaml:d3c27e7fbd123cc86c0f4fbb3ad8f51cb363db41
|
||||||
file/keys/adafruit-key.yaml:dc4ce3917a2ca4d061ef45032d59ccd68b9e1551
|
file/keys/adafruit-key.yaml:dc4ce3917a2ca4d061ef45032d59ccd68b9e1551
|
||||||
file/keys/adobe/adobe-client.yaml:bb33624aa34163fabe1d338d33239c8f566ecc7a
|
file/keys/adobe/adobe-client.yaml:bb33624aa34163fabe1d338d33239c8f566ecc7a
|
||||||
file/keys/adobe/adobe-secret.yaml:e6e4152b3ff3a42223a8ac7169b0a38b0a622234
|
file/keys/adobe/adobe-secret.yaml:e6e4152b3ff3a42223a8ac7169b0a38b0a622234
|
||||||
|
@ -203,14 +203,22 @@ file/keys/credential-exposure-file.yaml:d6be05c931599edd628a0591224a0c7ba56fa987
|
||||||
file/keys/credentials.yaml:7d9557524fa206e8bb91295da81890e44084838f
|
file/keys/credentials.yaml:7d9557524fa206e8bb91295da81890e44084838f
|
||||||
file/keys/databricks-api-token.yaml:a9bfc986be3fff96341f96b4213700a370c852a4
|
file/keys/databricks-api-token.yaml:a9bfc986be3fff96341f96b4213700a370c852a4
|
||||||
file/keys/datadog-access-token.yaml:12b74598ee375f3a5ffbcd81ef8d526c9b852638
|
file/keys/datadog-access-token.yaml:12b74598ee375f3a5ffbcd81ef8d526c9b852638
|
||||||
|
file/keys/dependency/dependency-track.yaml:9d4af12139dc253e1afa70ca7678f2b5a550e3c4
|
||||||
file/keys/digitalocean/digitalocean-access-token.yaml:29da3c43c8ff92cead04e92fd1961e8b8599c69a
|
file/keys/digitalocean/digitalocean-access-token.yaml:29da3c43c8ff92cead04e92fd1961e8b8599c69a
|
||||||
file/keys/digitalocean/digitalocean-personal-access.yaml:8e82ebd4f3e85120abc293e1e9312cef25531950
|
file/keys/digitalocean/digitalocean-personal-access.yaml:8e82ebd4f3e85120abc293e1e9312cef25531950
|
||||||
file/keys/digitalocean/digitalocean-refresh-token.yaml:07071ed0e0a505395e4557e9d7d366a95ef4b668
|
file/keys/digitalocean/digitalocean-refresh-token.yaml:07071ed0e0a505395e4557e9d7d366a95ef4b668
|
||||||
file/keys/discord/discord-api-token.yaml:2dedd90e44f3c638beab645b83a757d31673b880
|
file/keys/discord/discord-api-token.yaml:2dedd90e44f3c638beab645b83a757d31673b880
|
||||||
file/keys/discord/discord-cilent-secret.yaml:1ecb39bf91f8bb1190acb0c183867d7feeea1890
|
file/keys/discord/discord-cilent-secret.yaml:1ecb39bf91f8bb1190acb0c183867d7feeea1890
|
||||||
file/keys/discord/discord-client-id.yaml:987ee6636deb77670c3578276cd9f46681d87bdb
|
file/keys/discord/discord-client-id.yaml:987ee6636deb77670c3578276cd9f46681d87bdb
|
||||||
|
file/keys/docker/dockerhub-pat.yaml:929cef0af54303dafb5262cbd000758da94e76e9
|
||||||
|
file/keys/doppler/doppler-audit.yaml:e35727b74223049f36b0bb0ae61a6407a2b2796d
|
||||||
|
file/keys/doppler/doppler-cli.yaml:ab8577b4917f225376dadb06fa2291ff7cf3bf60
|
||||||
|
file/keys/doppler/doppler-scim.yaml:ac4dc0cd37e6e6f1088321cccdc3446b816c8986
|
||||||
|
file/keys/doppler/doppler-service-account.yaml:ee8d6ddbf75cb40624430ba3d054361e9fe43a20
|
||||||
|
file/keys/doppler/doppler-service.yaml:af6d77daa3c56bc765f263849c4cec53fb202ccc
|
||||||
file/keys/doppler-api-token.yaml:1c64194e0ee54ece342ac3be8abf4cd1e435cbab
|
file/keys/doppler-api-token.yaml:1c64194e0ee54ece342ac3be8abf4cd1e435cbab
|
||||||
file/keys/droneci-access-token.yaml:50eecf6767282a184e8e35bed455ddc90aa77f5a
|
file/keys/droneci-access-token.yaml:50eecf6767282a184e8e35bed455ddc90aa77f5a
|
||||||
|
file/keys/dropbox/dropbox-access.yaml:bb07dd2c5200bf2d3ac92eef0040005f3777edc6
|
||||||
file/keys/dropbox/dropbox-api-token.yaml:73c1e3c967b0c8c2869417f9b0fbd9943e571814
|
file/keys/dropbox/dropbox-api-token.yaml:73c1e3c967b0c8c2869417f9b0fbd9943e571814
|
||||||
file/keys/dropbox/dropbox-longlived-token.yaml:c39f688533f912ff0482778740f03ad46183824c
|
file/keys/dropbox/dropbox-longlived-token.yaml:c39f688533f912ff0482778740f03ad46183824c
|
||||||
file/keys/dropbox/dropbox-shortlived-token.yaml:4ede1ec7aa2b17ba7e8a60b3f01e5136ec4ec176
|
file/keys/dropbox/dropbox-shortlived-token.yaml:4ede1ec7aa2b17ba7e8a60b3f01e5136ec4ec176
|
||||||
|
@ -255,26 +263,38 @@ file/keys/grafana/grafana-cloud-api-token.yaml:7866324b7ee666df3acdac0d3f66c2345
|
||||||
file/keys/grafana/grafana-service-account-token.yaml:ab639575a2a2ee8e223f0e579c9fcd519b3bc2cd
|
file/keys/grafana/grafana-service-account-token.yaml:ab639575a2a2ee8e223f0e579c9fcd519b3bc2cd
|
||||||
file/keys/hashicorp-api-token.yaml:9bb83e6cda00977645b1f613864243fd126576d6
|
file/keys/hashicorp-api-token.yaml:9bb83e6cda00977645b1f613864243fd126576d6
|
||||||
file/keys/heroku-key.yaml:591f63afb7e7ebf8e75644e8dc0131f6524cdf39
|
file/keys/heroku-key.yaml:591f63afb7e7ebf8e75644e8dc0131f6524cdf39
|
||||||
|
file/keys/huggingface/huggingface-user-access.yaml:cee36c254222da7a52d04a30522992c15bf0dd93
|
||||||
file/keys/jenkins-token.yaml:f48b5889c3815de3948e3eb5bb07fbd9e6902eb7
|
file/keys/jenkins-token.yaml:f48b5889c3815de3948e3eb5bb07fbd9e6902eb7
|
||||||
file/keys/kubernetes/kubernetes-dockercfg-secret.yaml:fdd22e6e0b0fac8772d949ba8bc6a296c9845074
|
file/keys/kubernetes/kubernetes-dockercfg-secret.yaml:fdd22e6e0b0fac8772d949ba8bc6a296c9845074
|
||||||
file/keys/kubernetes/kubernetes-dockerconfigjson-secret.yaml:f7ada6c8e01ad6561cb6d97e31bec4c95a71de9c
|
file/keys/kubernetes/kubernetes-dockerconfigjson-secret.yaml:f7ada6c8e01ad6561cb6d97e31bec4c95a71de9c
|
||||||
|
file/keys/linkedin/linkedin-client.yaml:7c3b0741a3dd4093054efcbed23ca1e728b1dc46
|
||||||
|
file/keys/linkedin/linkedin-secret.yaml:6aebe5a012f34324a3d7f3bfbecdf707a8388614
|
||||||
file/keys/linkedin-id.yaml:39efe931f4ace6377fbc63d76bd12d88fcecd7e9
|
file/keys/linkedin-id.yaml:39efe931f4ace6377fbc63d76bd12d88fcecd7e9
|
||||||
file/keys/mailchimp-api.yaml:5b1ee7bc57b19f46f705d27419e8d0b802258b71
|
file/keys/mailchimp-api.yaml:5b1ee7bc57b19f46f705d27419e8d0b802258b71
|
||||||
file/keys/mailgun-api.yaml:7299dc580989b55622b2f460fce1c8724cbf7343
|
file/keys/mailgun-api.yaml:7299dc580989b55622b2f460fce1c8724cbf7343
|
||||||
file/keys/mapbox-token.yaml:b911206f1ccba8f70d6e9387771ca97a18fee32a
|
file/keys/mapbox-token.yaml:b911206f1ccba8f70d6e9387771ca97a18fee32a
|
||||||
|
file/keys/newrelic/newrelic-api-service.yaml:ef41de67162d12bedf4d6c5d90d74768214e57fe
|
||||||
|
file/keys/newrelic/newrelic-license-non.yaml:e7a7abb5354e833ee34a7f078aabd5529c2e4755
|
||||||
|
file/keys/newrelic/newrelic-license.yaml:c4c9f83dba1796287e40555a794632adb71e7afd
|
||||||
file/keys/newrelic/newrelic-pixie-apikey.yaml:6896635d7b4c891ffabb946ff9ab6deb8fba5d51
|
file/keys/newrelic/newrelic-pixie-apikey.yaml:6896635d7b4c891ffabb946ff9ab6deb8fba5d51
|
||||||
file/keys/newrelic/newrelic-pixie-deploykey.yaml:d038d136304e6c13d533f3302e1c1eafc39bdf38
|
file/keys/newrelic/newrelic-pixie-deploykey.yaml:d038d136304e6c13d533f3302e1c1eafc39bdf38
|
||||||
file/keys/npm-accesstoken.yaml:a2ea270e9e7f1a236e7d4da33e833ab26031e5ce
|
file/keys/npm-accesstoken.yaml:a2ea270e9e7f1a236e7d4da33e833ab26031e5ce
|
||||||
file/keys/nuget-key.yaml:4c0a481dc9873f455ed2dc3d990c17a8550b243a
|
file/keys/nuget-key.yaml:4c0a481dc9873f455ed2dc3d990c17a8550b243a
|
||||||
|
file/keys/odbc/odbc-connection.yaml:758733489bf7b3defba93b1cda11f384ed7da182
|
||||||
|
file/keys/okta/okta-api.yaml:e70809f9fbcaec530687ff077c63796b5eef3031
|
||||||
file/keys/openai-key.yaml:362b3e2c11d11f7183034aaa5cdb47f3b40700b9
|
file/keys/openai-key.yaml:362b3e2c11d11f7183034aaa5cdb47f3b40700b9
|
||||||
|
file/keys/particle/particle-access.yaml:676becab681ec168bae43c74b13e552af4657f5c
|
||||||
file/keys/paypal-braintree-token.yaml:402e0754808e014fb8b0ebdb3fb1e0eb585c3be2
|
file/keys/paypal-braintree-token.yaml:402e0754808e014fb8b0ebdb3fb1e0eb585c3be2
|
||||||
file/keys/pictatic-api-key.yaml:5d254108f9865c20a83080b3f92a3152b54d3c05
|
file/keys/pictatic-api-key.yaml:5d254108f9865c20a83080b3f92a3152b54d3c05
|
||||||
file/keys/postman-api-key.yaml:91b5bbc73ae8fc4430498d92e5ab029e332f8817
|
file/keys/postman-api-key.yaml:91b5bbc73ae8fc4430498d92e5ab029e332f8817
|
||||||
file/keys/private-key.yaml:c297f883a9ff39ab4807a35914edffc3f0cc01a9
|
file/keys/private-key.yaml:c297f883a9ff39ab4807a35914edffc3f0cc01a9
|
||||||
file/keys/pypi-token.yaml:d5d89be532cce80e65a912bf277f94d7bcf8f1c2
|
file/keys/pypi-token.yaml:d5d89be532cce80e65a912bf277f94d7bcf8f1c2
|
||||||
file/keys/razorpay-client-id.yaml:a88d58769de655a660b4e5ee8a58aba9faeed91d
|
file/keys/razorpay-client-id.yaml:a88d58769de655a660b4e5ee8a58aba9faeed91d
|
||||||
|
file/keys/react/reactapp-password.yaml:4613021cd4c5d458ab778000587b7229980e4238
|
||||||
|
file/keys/react/reactapp-username.yaml:deb652d737576b6ae7c84eb9de36f0b329baf0bd
|
||||||
file/keys/rubygems-key.yaml:fa5cdc44cbd4f734c9aedf00b112ccf27a073a50
|
file/keys/rubygems-key.yaml:fa5cdc44cbd4f734c9aedf00b112ccf27a073a50
|
||||||
file/keys/s3-bucket.yaml:5604162f278a70b8742678a1a006949ca62e64e2
|
file/keys/s3-bucket.yaml:5604162f278a70b8742678a1a006949ca62e64e2
|
||||||
|
file/keys/salesforce/salesforce-access.yaml:6cb655725ac01c05b073db6645b96cf9e7e7bf8d
|
||||||
file/keys/sauce-access-token.yaml:c9aa59af67698af4ffa2486af99819e3cb4147c3
|
file/keys/sauce-access-token.yaml:c9aa59af67698af4ffa2486af99819e3cb4147c3
|
||||||
file/keys/segment-public-api.yaml:a193504eea902e1c11b23f3e408a7b7593389b22
|
file/keys/segment-public-api.yaml:a193504eea902e1c11b23f3e408a7b7593389b22
|
||||||
file/keys/sendgrid-api.yaml:15e1a6951aa39738c4fa1310f420a55340460f11
|
file/keys/sendgrid-api.yaml:15e1a6951aa39738c4fa1310f420a55340460f11
|
||||||
|
@ -290,8 +310,13 @@ file/keys/square-oauth-secret.yaml:6d588fb6fcb3851617348b0cfa394d85824708f1
|
||||||
file/keys/stackhawk-api-key.yaml:0bfb39d55ad1ba8e731e72918dfc1b098059d1c8
|
file/keys/stackhawk-api-key.yaml:0bfb39d55ad1ba8e731e72918dfc1b098059d1c8
|
||||||
file/keys/stripe-api-key.yaml:5df4a9e34d7acd181f0451c1e620cdbff2c8ff0b
|
file/keys/stripe-api-key.yaml:5df4a9e34d7acd181f0451c1e620cdbff2c8ff0b
|
||||||
file/keys/telegram-token.yaml:a7fbf76a80e8dbb51ae3876632d15afae04eb519
|
file/keys/telegram-token.yaml:a7fbf76a80e8dbb51ae3876632d15afae04eb519
|
||||||
|
file/keys/thingsboard/thingsboard-access.yaml:2393412b4f8629f6fe28837cd394699e344c906e
|
||||||
|
file/keys/truenas/truenas-api.yaml:8cb5b99a4702f4fbe69c5ba1a09cc24b7093ba49
|
||||||
file/keys/twilio-api.yaml:b225fe4dd0f8f0f2bc7b76870aaac28f70993d12
|
file/keys/twilio-api.yaml:b225fe4dd0f8f0f2bc7b76870aaac28f70993d12
|
||||||
file/keys/twitter-secret.yaml:994272364c3c831d4a6db48e34a0154cb8f52983
|
file/keys/twitter/twitter-client.yaml:9bd5486ea151363def2820c6282b380da52d9b25
|
||||||
|
file/keys/twitter/twitter-secret.yaml:65827a76234f874f90f5323afd3ad625821d5b52
|
||||||
|
file/keys/wireguard/wireguard-preshared.yaml:f30e419b0c15a28facb053e105c9f0916e3ac9cb
|
||||||
|
file/keys/wireguard/wireguard-private.yaml:1fb9592fb98b0e4b26f90bc2d4a5029dd09644dd
|
||||||
file/keys/zapier-webhook.yaml:8d0f9312fd5acb2f63899a50b2ac8b670f389464
|
file/keys/zapier-webhook.yaml:8d0f9312fd5acb2f63899a50b2ac8b670f389464
|
||||||
file/keys/zendesk-secret-key.yaml:cdf5d13a59f7036d60f6ea546087c7e48f016612
|
file/keys/zendesk-secret-key.yaml:cdf5d13a59f7036d60f6ea546087c7e48f016612
|
||||||
file/logs/django-framework-exceptions.yaml:84d8ecc728d13f3f5e756cf29b1b2691a64e031e
|
file/logs/django-framework-exceptions.yaml:84d8ecc728d13f3f5e756cf29b1b2691a64e031e
|
||||||
|
@ -3030,6 +3055,8 @@ http/cves/2023/CVE-2023-5244.yaml:32f7df605dda4c16610c548f773673f5b69c67a5
|
||||||
http/cves/2023/CVE-2023-5360.yaml:387bf52196ed2e1d383a97ea158fe90b94d213b9
|
http/cves/2023/CVE-2023-5360.yaml:387bf52196ed2e1d383a97ea158fe90b94d213b9
|
||||||
http/cves/2023/CVE-2023-5375.yaml:394c4b2b0867a8922fcfad500616380c117983d8
|
http/cves/2023/CVE-2023-5375.yaml:394c4b2b0867a8922fcfad500616380c117983d8
|
||||||
http/cves/2023/CVE-2023-5556.yaml:7d50d6e2861161f90b7876147d3405d5c7eeccf4
|
http/cves/2023/CVE-2023-5556.yaml:7d50d6e2861161f90b7876147d3405d5c7eeccf4
|
||||||
|
http/cves/2023/CVE-2023-5830.yaml:85965a9925a1cd03639181416b2c20995b33f501
|
||||||
|
http/cves/2023/CVE-2023-5914.yaml:93f627b753ac975d5a74a2532a42aa9449682207
|
||||||
http/cves/2023/CVE-2023-6018.yaml:e840e467eab7d472ae719996be481de06fafb2cf
|
http/cves/2023/CVE-2023-6018.yaml:e840e467eab7d472ae719996be481de06fafb2cf
|
||||||
http/cves/2023/CVE-2023-6020.yaml:68c05fb386a060d81834e2ddbaefb5779ae81b51
|
http/cves/2023/CVE-2023-6020.yaml:68c05fb386a060d81834e2ddbaefb5779ae81b51
|
||||||
http/cves/2023/CVE-2023-6021.yaml:83ada3f6cf527a6e4f084151e60fc36c47a31785
|
http/cves/2023/CVE-2023-6021.yaml:83ada3f6cf527a6e4f084151e60fc36c47a31785
|
||||||
|
@ -3048,7 +3075,6 @@ http/cves/2023/CVE-2023-6895.yaml:0ef4052f3a65107072ee47d11c4028e55f54b472
|
||||||
http/cves/2023/CVE-2023-6909.yaml:e8c84b54fb87c65ef2afbbe6e44f305c8eb67188
|
http/cves/2023/CVE-2023-6909.yaml:e8c84b54fb87c65ef2afbbe6e44f305c8eb67188
|
||||||
http/cves/2023/CVE-2023-6977.yaml:5f16b7bdb7c8c98ab5e1c333cffaccbb4fbe51ae
|
http/cves/2023/CVE-2023-6977.yaml:5f16b7bdb7c8c98ab5e1c333cffaccbb4fbe51ae
|
||||||
http/cves/2023/CVE-2023-7028.yaml:16a6a22a93bf8caea281ec34d32def83f8e06fac
|
http/cves/2023/CVE-2023-7028.yaml:16a6a22a93bf8caea281ec34d32def83f8e06fac
|
||||||
http/cves/2024/CVE-2023-5914.yaml:8d84ed75ed56b35ba6e6f81a23ba37de27945e96
|
|
||||||
http/cves/2024/CVE-2024-0204.yaml:6fe6e29907168dd0d6bf7ca67ef70b3e5114430b
|
http/cves/2024/CVE-2024-0204.yaml:6fe6e29907168dd0d6bf7ca67ef70b3e5114430b
|
||||||
http/cves/2024/CVE-2024-0305.yaml:81dbabe027bcd8f7733aefac310dcb7efa6e0a4f
|
http/cves/2024/CVE-2024-0305.yaml:81dbabe027bcd8f7733aefac310dcb7efa6e0a4f
|
||||||
http/cves/2024/CVE-2024-0352.yaml:e324d6ccb69d2bee50aa487f5e068cc005c715d8
|
http/cves/2024/CVE-2024-0352.yaml:e324d6ccb69d2bee50aa487f5e068cc005c715d8
|
||||||
|
@ -3406,6 +3432,7 @@ http/exposed-panels/cisco/cisco-ace-device-manager.yaml:c5c9e855c9978d5f1770f828
|
||||||
http/exposed-panels/cisco/cisco-anyconnect-vpn.yaml:426651066804491b7128cb9d1518adcece334719
|
http/exposed-panels/cisco/cisco-anyconnect-vpn.yaml:426651066804491b7128cb9d1518adcece334719
|
||||||
http/exposed-panels/cisco/cisco-asa-panel.yaml:404619b86f43443c4cb6a77e46855879a1ad4778
|
http/exposed-panels/cisco/cisco-asa-panel.yaml:404619b86f43443c4cb6a77e46855879a1ad4778
|
||||||
http/exposed-panels/cisco/cisco-edge-340.yaml:cd15ec08c18c29079865df10dfec7f1fe23008f3
|
http/exposed-panels/cisco/cisco-edge-340.yaml:cd15ec08c18c29079865df10dfec7f1fe23008f3
|
||||||
|
http/exposed-panels/cisco/cisco-expressway-panel.yaml:27975d60e84a053e1473319a625a353d448dd516
|
||||||
http/exposed-panels/cisco/cisco-finesse-login.yaml:742d956488dcddf7305d32facc6a47b5a5e51f4e
|
http/exposed-panels/cisco/cisco-finesse-login.yaml:742d956488dcddf7305d32facc6a47b5a5e51f4e
|
||||||
http/exposed-panels/cisco/cisco-integrated-login.yaml:1e712a4925fe31fb6076255a1ea1d3c5518d600e
|
http/exposed-panels/cisco/cisco-integrated-login.yaml:1e712a4925fe31fb6076255a1ea1d3c5518d600e
|
||||||
http/exposed-panels/cisco/cisco-ios-xe-panel.yaml:2c260bc7aeaaea7892a11b22c8d1f08007b7c479
|
http/exposed-panels/cisco/cisco-ios-xe-panel.yaml:2c260bc7aeaaea7892a11b22c8d1f08007b7c479
|
||||||
|
@ -3565,9 +3592,9 @@ http/exposed-panels/footprints-panel.yaml:12b1ff801c88bafe46638794e739adb9d5379f
|
||||||
http/exposed-panels/forcepoint-applicance.yaml:f18ffbd665ae28a2bacec9117186e68621287db4
|
http/exposed-panels/forcepoint-applicance.yaml:f18ffbd665ae28a2bacec9117186e68621287db4
|
||||||
http/exposed-panels/forcepoint.yaml:c3c1417daa067deaf421ae9c0a30d4b88c3b0350
|
http/exposed-panels/forcepoint.yaml:c3c1417daa067deaf421ae9c0a30d4b88c3b0350
|
||||||
http/exposed-panels/forti/fortiadc-panel.yaml:8dfb7582c659d516cc6eb9d8dceb42a0424fe143
|
http/exposed-panels/forti/fortiadc-panel.yaml:8dfb7582c659d516cc6eb9d8dceb42a0424fe143
|
||||||
http/exposed-panels/forticlientems-panel.yaml:376dfeea4aba569ce865208dc9fe81f7858b175d
|
|
||||||
http/exposed-panels/fortinet/fortiap-panel.yaml:300ab4949fd73ca59e9e7c4706a2c616ada75914
|
http/exposed-panels/fortinet/fortiap-panel.yaml:300ab4949fd73ca59e9e7c4706a2c616ada75914
|
||||||
http/exposed-panels/fortinet/fortiauthenticator-detect.yaml:c0f02944e1c861c523acfe6f5a3c823327339989
|
http/exposed-panels/fortinet/fortiauthenticator-detect.yaml:c0f02944e1c861c523acfe6f5a3c823327339989
|
||||||
|
http/exposed-panels/fortinet/forticlientems-panel.yaml:65d946fe428862980085d4410cf8a4367cd8f3fc
|
||||||
http/exposed-panels/fortinet/fortimail-panel.yaml:c0202da50a4af46f6290259e367f7fa997ffa18e
|
http/exposed-panels/fortinet/fortimail-panel.yaml:c0202da50a4af46f6290259e367f7fa997ffa18e
|
||||||
http/exposed-panels/fortinet/fortinet-fortiddos-panel.yaml:ba098255839e2c7f85c7793ea2b4056aea91839c
|
http/exposed-panels/fortinet/fortinet-fortiddos-panel.yaml:ba098255839e2c7f85c7793ea2b4056aea91839c
|
||||||
http/exposed-panels/fortinet/fortinet-fortigate-panel.yaml:6b53e7e548ca993721fd221cc473775d56f8398d
|
http/exposed-panels/fortinet/fortinet-fortigate-panel.yaml:6b53e7e548ca993721fd221cc473775d56f8398d
|
||||||
|
@ -6500,8 +6527,8 @@ http/technologies/mappproxy-detect.yaml:34f8715bb04d15e410646087f140852d5e67e6a4
|
||||||
http/technologies/matrix-detect.yaml:33b6e2aef92cf34e8fdfa015ed1d7c4cbb0c9ca7
|
http/technologies/matrix-detect.yaml:33b6e2aef92cf34e8fdfa015ed1d7c4cbb0c9ca7
|
||||||
http/technologies/matrix-homeserver-detect.yaml:03f44055b1385667e1d860c9160c9b0a3b5b24b0
|
http/technologies/matrix-homeserver-detect.yaml:03f44055b1385667e1d860c9160c9b0a3b5b24b0
|
||||||
http/technologies/metatag-cms.yaml:dddeec9fe5817ce89ce12c7fb09e5702c6cf5ea7
|
http/technologies/metatag-cms.yaml:dddeec9fe5817ce89ce12c7fb09e5702c6cf5ea7
|
||||||
http/technologies/microsoft/aspnet-version-detect.yaml:c2322047d526d4cbf5e23afb5299227a493e76b7
|
http/technologies/microsoft/aspnet-version-detect.yaml:5bed426fbdc77d0e323d7d3c0113c4bfb34ce8f6
|
||||||
http/technologies/microsoft/aspnetmvc-version-disclosure.yaml:ec99bbdc39f070ec50892003e8edc062b0526de4
|
http/technologies/microsoft/aspnetmvc-version-disclosure.yaml:341d9ec2d4e676c7d022608a43527ec30e3df2c9
|
||||||
http/technologies/microsoft/default-iis7-page.yaml:c4e22ee6e9c969c526ea2609a510a8e23150963d
|
http/technologies/microsoft/default-iis7-page.yaml:c4e22ee6e9c969c526ea2609a510a8e23150963d
|
||||||
http/technologies/microsoft/default-microsoft-azure-page.yaml:edf6bd39671cbd1eeda217a1956965a66e368d06
|
http/technologies/microsoft/default-microsoft-azure-page.yaml:edf6bd39671cbd1eeda217a1956965a66e368d06
|
||||||
http/technologies/microsoft/default-windows-server-page.yaml:eddc0c09081a8fdfdd579671ba67816b49e8bb81
|
http/technologies/microsoft/default-windows-server-page.yaml:eddc0c09081a8fdfdd579671ba67816b49e8bb81
|
||||||
|
@ -8057,6 +8084,7 @@ network/detection/vmware-authentication-daemon-detect.yaml:fe32f8021fd370465c0f9
|
||||||
network/detection/vnc-service-detect.yaml:22f648aa53fa7fb08f258bcd06fa4b15d80eebca
|
network/detection/vnc-service-detect.yaml:22f648aa53fa7fb08f258bcd06fa4b15d80eebca
|
||||||
network/detection/weblogic-iiop-detect.yaml:05bf3f6fdfa938cfb88ee0e5f27da5e1b8d70bfa
|
network/detection/weblogic-iiop-detect.yaml:05bf3f6fdfa938cfb88ee0e5f27da5e1b8d70bfa
|
||||||
network/detection/weblogic-t3-detect.yaml:06f88de334b8bae8279d944c0cf4467919930e93
|
network/detection/weblogic-t3-detect.yaml:06f88de334b8bae8279d944c0cf4467919930e93
|
||||||
|
network/detection/wing-ftp-detect.yaml:79fe3254d4657278f122977cda7145287f7b993c
|
||||||
network/detection/ws_ftp-ssh-detect.yaml:558ac2fd876a7239ddfd7c5c9433769f166644bd
|
network/detection/ws_ftp-ssh-detect.yaml:558ac2fd876a7239ddfd7c5c9433769f166644bd
|
||||||
network/detection/xlight-ftp-service-detect.yaml:c1bcbafb4cd2ad7a5b4b6c7b947779ee08367781
|
network/detection/xlight-ftp-service-detect.yaml:c1bcbafb4cd2ad7a5b4b6c7b947779ee08367781
|
||||||
network/enumeration/beanstalk-service.yaml:4116fb96469ca087e5b79686fe57c54862835ad8
|
network/enumeration/beanstalk-service.yaml:4116fb96469ca087e5b79686fe57c54862835ad8
|
||||||
|
@ -8142,7 +8170,7 @@ ssl/tls-version.yaml:4e40f08efbb39172b9280ea9e26ca5f0a14a575a
|
||||||
ssl/untrusted-root-certificate.yaml:a91d36990a1d052f5ee64d170ad8f084d38dab19
|
ssl/untrusted-root-certificate.yaml:a91d36990a1d052f5ee64d170ad8f084d38dab19
|
||||||
ssl/weak-cipher-suites.yaml:62fe808d9dfafda67c410e6cb9445fdc70257e89
|
ssl/weak-cipher-suites.yaml:62fe808d9dfafda67c410e6cb9445fdc70257e89
|
||||||
ssl/wildcard-tls.yaml:d244f62c7bd22d3868fc6fc7cb9550af6b261210
|
ssl/wildcard-tls.yaml:d244f62c7bd22d3868fc6fc7cb9550af6b261210
|
||||||
templates-checksum.txt:5b1362ef552ea57e67c47c4d472d4386c9aa6368
|
templates-checksum.txt:f6eaac90af8e77b23be2e3482cf5afbd3b015566
|
||||||
wappalyzer-mapping.yml:7f03bd65baacac20c1dc6bbf35ff2407959574f1
|
wappalyzer-mapping.yml:7f03bd65baacac20c1dc6bbf35ff2407959574f1
|
||||||
workflows/74cms-workflow.yaml:bb010e767ad32b906153e36ea618be545b4e22d0
|
workflows/74cms-workflow.yaml:bb010e767ad32b906153e36ea618be545b4e22d0
|
||||||
workflows/acrolinx-workflow.yaml:8434089bb55dec3d7b2ebc6a6f340e73382dd0c4
|
workflows/acrolinx-workflow.yaml:8434089bb55dec3d7b2ebc6a6f340e73382dd0c4
|
||||||
|
|
Loading…
Reference in New Issue