-
Notifications
You must be signed in to change notification settings - Fork 4
/
trufflehog-rules.json
20 lines (20 loc) · 1.4 KB
/
trufflehog-rules.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
{
"Slack Token": "(xox[pboa]-[0-9]{12}-[0-9]{12}-[0-9]{12}-[a-z0-9]{32})",
"RSA private key": "-----BEGIN RSA PRIVATE KEY-----[^[]",
"SSH (OPENSSH) private key": "-----BEGIN OPENSSH PRIVATE KEY-----[^[]",
"SSH (DSA) private key": "-----BEGIN DSA PRIVATE KEY-----[^[]",
"SSH (EC) private key": "-----BEGIN EC PRIVATE KEY-----[^[]",
"PGP private key block": "-----BEGIN PGP PRIVATE KEY BLOCK-----[^[]",
"Facebook Oauth": "[fF][aA][cC][eE][bB][oO][oO][kK].*['\"][0-9a-f]{32}['\"]",
"Twitter Oauth": "[tT][wW][iI][tT][tT][eE][rR].*['\"][0-9a-zA-Z]{35,44}['\"]",
"GitHub": "[gG][iI][tT][hH][uU][bB].*['\"][0-9a-zA-Z]{35,40}['\"]",
"Google Oauth": "(\"client_secret\":\"[a-zA-Z0-9-_]{24}\")",
"AWS API Key": "AKIA(?!IOSFODNN7EXAMPLE)[0-9A-Z]{16}",
"Heroku API Key": "[hH][eE][rR][oO][kK][uU].*[0-9A-F]{8}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{4}-[0-9A-F]{12}",
"Generic Secret": "[sS][eE][cC][rR][eE][tT].*['\"][0-9a-zA-Z]{32,45}['\"]",
"Generic API Key": "[aA][pP][iI][_]?[kK][eE][yY].*['\"][0-9a-zA-Z]{32,45}['\"]",
"Slack Webhook": "https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24}",
"Google (GCP) Service-account": "\"type\": \"service_account\"",
"Twilio API Key": "SK[a-z0-9]{32}",
"AWS Secret": "(?:\"|')?(?:AWS|aws|Aws)?_?(?:SECRET|secret|Secret)?_?(?:ACCESS|access|Access)?_?(?:KEY|key|Key)(?:\"|')?\\s*(?:\\:|=>|=)\\s*(?:\"|')?[A-Za-z0-9/\\+=]{40}(?:\"|')?"
}