id: firebase-detect info: name: firebase detect author: organiccrap severity: low reference: - http://ghostlulz.com/google-exposed-firebase-database/ tags: tech,firebase metadata: max-request: 1 http: - method: GET path: - "{{BaseURL}}/.settings/rules.json?auth=FIREBASE_SECRET" matchers: - type: word words: - "Could not parse auth token" part: body