27 lines
860 B
YAML
27 lines
860 B
YAML
id: dropbox-access-token
|
|
|
|
info:
|
|
name: Dropbox Access Token
|
|
author: DhiyaneshDK
|
|
severity: info
|
|
reference:
|
|
- https://github.com/praetorian-inc/noseyparker/blob/main/crates/noseyparker/data/default/builtin/rules/dropbox.yml
|
|
- https://developers.dropbox.com/oauth-guide
|
|
- https://www.dropbox.com/developers/
|
|
- https://www.dropbox.com/developers/documentation/http/documentation
|
|
metadata:
|
|
verified: true
|
|
max-request: 1
|
|
tags: dropbox,exposure,tokens
|
|
|
|
http:
|
|
- method: GET
|
|
path:
|
|
- "{{BaseURL}}"
|
|
|
|
extractors:
|
|
- type: regex
|
|
part: body
|
|
regex:
|
|
- \b(sl\.[a-zA-Z0-9_-]{130,152})(?:$|[^a-zA-Z0-9_-])
|
|
# digest: 490a0046304402200169d9224cba17b7e5e84bd51fad6b2d439416845993c627368505001e6481080220058a792358d541e5e0f225bc88910b681ca1109a5c7abc25b346c7f38634beb4:922c64590222798bb761d5b6d8e72950 |