https://github.com/advanced-security/secret-scanning-custom-patterns

Examples of Custom Secret Scanning Patterns
https://github.com/advanced-security/secret-scanning-custom-patterns

github-advanced-security regex regex-patterns secret-scanning

Last synced: about 2 months ago
JSON representation

Examples of Custom Secret Scanning Patterns

• Host: GitHub
• URL: https://github.com/advanced-security/secret-scanning-custom-patterns
• Owner: advanced-security
• License: mit
• Created: 2021-06-08T14:09:10.000Z (almost 4 years ago)
• Default Branch: main
• Last Pushed: 2024-04-19T18:20:40.000Z (about 1 year ago)
• Last Synced: 2024-04-20T15:36:11.529Z (about 1 year ago)
• Topics: github-advanced-security, regex, regex-patterns, secret-scanning
• Language: HTML
• Homepage:
• Size: 4.06 MB
• Stars: 113
• Watchers: 3
• Forks: 19
• Open Issues: 8
• Metadata Files:
  • Readme: README.md
  • Contributing: CONTRIBUTING
  • License: LICENSE
  • Code of conduct: CODE_OF_CONDUCT.md
  • Codeowners: .github/CODEOWNERS
  • Security: SECURITY.md
  • Support: SUPPORT.md

Awesome Lists containing this project

README

        
# custom-pattern-secrets

Custom Secret Scanning Patterns repository.

## Patterns

### [Commonly Used Secrets / Passwords](./common)

- Common Passwords Shortlist

  

### [Configuration Secrets](./configs)

- Hardcoded Database Passwords

- Hardcoded Spring SQL passwords

- Django Secret Key

- GitHub Actions SHA Checker

- .NET Configuration file

- .NET MachineKey

  

### [Database passwords](./database)

- Database Connection String (full string)

- Database Connection String (1)

- Database Connection String (2)

- Database Connection String (3)

- TSQL CREATE LOGIN/USER

- SQLAlchemy Database Connection String

- MongoDB connection string

- JDBC Database Connection String

  

### [Generic Secrets / Passwords](./generic)

- Generic Passwords (fewer FPs)

- Generic Password with hex encoded secrets

- Generic Password with Base64 encoded secrets

- Generic Password with URI-safe Base64 encoded secrets

- UUIDs

- Bearer Tokens

- OAuth client secret and ID pair

  

### [JWT](./jwt)

- JWT

  

### [Password stores](./password_store)

- Arc

  

### [Personally identifiable information (PII)](./pii)

- Credit Cards

- Credit Cards - Visa

- Credit Cards - MasterCard

- Credit Cards - American Express

- Credit Cards - Discover

- IBAN

- Norwegian national identity number/D number

  

### [RSA Keys](./rsa)

- Generic RSA keys

- SSH Private Keys

- GPG Private Key

  

### [URI / URL Custom Patterns](./uri)

- Hardcoded Internal Emails

- Hardcoded Internal URLs

- Hardcoded URI Passwords

- Routable IPv4 Addresses

- GitHub Container Registry typos

  

### [Vendors](./vendors)

- Azure SQL Connection String

- Grafana API token

- SendGrid (deprecated)

- Sentry Auth Token

- Sentry API Key

- Sentry DSN secret

- Sentry webpack plugin token

- Sentry Terraform provider token

- Okta token

- Okta API key (precise)

- DataDog API key

- DataDog APP key

- Microsoft Teams incoming webhook

- LaunchDarkly API key

- PagerDuty API/Service key

- Flickr OAuth token

- Flickr API key

- BrowserStack access key

- BrowserStack access key (imprecise)

- BrowserStack token (URL)

- Vercel Access Token (imprecise)

- Vercel Access Token

- Vercel CLI token

- Vercel OAuth client secrets

- UUIDv4 Bearer token (maybe Heroku)

- Azure client secret

- Google private key id (or older API key)

- OpenStack password/API key

- AlienVault OTX API key

- Apollo.io API key

- ClickUp API key

- Amazon MWS Auth Token

- Jenkins API token

- AWS S3 presigned URL

- Azure Access Key (legacy format)

- Azure Shared Access Signature (SAS) Token

- CircleCI API token