Add regex for various API keys

This change adds checks for API keys from: * Google * AWS * Mailgun * Twilio * Square * Stripe * GitHub * Slack The API keys in the tests have either been created by myself and then invalidated or found on pastebin and confirmed to no longer be active. Closes #42
bee-san · Jun 22, 2021 · 0edc1fe · 0edc1fe
1 parent ad4752c
commit 0edc1fe
Show file tree

Hide file tree

Showing 2 changed files with 329 additions and 44 deletions.
diff --git a/pywhat/Data/regex.json b/pywhat/Data/regex.json
@@ -163,6 +163,171 @@
  "Networking"
  ]
  },
+ {
+ "Name": "Google API Key",
+ "Regex": "AIza[0-9A-Za-z-_]{35}",
+ "plural_name": false,
+ "Description": "API Key for accessing Google services including [#CAE4F1][link=https://developers.google.com/maps/documentation/javascript/get-api-key]Google Maps[/link][/#CAE4F1]",
+ "Rarity": 1,
+ "URL": null,
+ "Tags": [
+ "API Keys",
+ "Credentials",
+ "Google"
+ ]
+ },
+ {
+ "Name": "Google ReCaptcha API Key",
+ "Regex": "6L[0-9A-Za-z-_]{38}|^6[0-9a-zA-Z_-]{39}$",
+ "plural_name": false,
+ "Description": "[#CAE4F1][link=https://developers.google.com/recaptcha/intro]API Key for Google ReCaptcha[/link][/#CAE4F1]",
+ "Rarity": 1,
+ "URL": null,
+ "Tags": [
+ "API Keys",
+ "Credentials",
+ "Google"
+ ]
+ },
+ {
+ "Name": "Google OAuth Token",
+ "Regex": "ya29.[0-9A-Za-z-_]+",
+ "plural_name": false,
+ "Description": "[#CAE4F1][link=https://developers.google.com/identity/protocols/oauth2]Token for Google OAuth[/link][/#CAE4F1]",
+ "Rarity": 1,
+ "URL": null,
+ "Tags": [
+ "API Keys",
+ "Credentials",
+ "Google"
+ ]
+ },
+ {
+ "Name": "AWS Access Key ID",
+ "Regex": "A[SK]IA[0-9A-Z]{16}",
+ "plural_name": false,
+ "Description": "[#CAE4F1][link=https://docs.aws.amazon.com/general/latest/gr/aws-sec-cred-types.html]Access Key ID for AWS Credentials[/link][/#CAE4F1]",
+ "Rarity": 1,
+ "URL": null,
+ "Tags": [
+ "API Keys",
+ "Credentials",
+ "AWS"
+ ]
+ },
+ {
+ "Name": "Mailgun API Key",
+ "Regex": "key-[0-9a-zA-Z]{32}",
+ "plural_name": false,
+ "Description": "[#CAE4F1][link=https://documentation.mailgun.com/en/latest/api-intro.html#introduction]API Key for Mailgun[/link][/#CAE4F1]",
+ "Rarity": 1,
+ "URL": null,
+ "Tags": [
+ "API Keys",
+ "Credentials"
+ ]
+ },
+ {
+ "Name": "Twilio API Key",
+ "Regex": "SK[0-9a-fA-F]{32}",
+ "plural_name": false,
+ "Description": "[#CAE4F1][link=https://www.twilio.com/docs]API Key for Twilio[/link][/#CAE4F1]",
+ "Rarity": 1,
+ "URL": null,
+ "Tags": [
+ "API Keys",
+ "Credentials",
+ "Twilio"
+ ]
+ },
+ {
+ "Name": "Twilio Account SID",
+ "Regex": "AC[a-zA-Z0-9_-]{32}",
+ "plural_name": false,
+ "Description": "[#CAE4F1][link=https://www.twilio.com/docs/glossary/what-is-a-sid]Account string identifier for Twilio[/link][/#CAE4F1]",
+ "Rarity": 1,
+ "URL": null,
+ "Tags": [
+ "API Keys",
+ "Credentials",
+ "Twilio"
+ ]
+ },
+ {
+ "Name": "Twilio Application SID",
+ "Regex": "AP[a-zA-Z0-9_-]{32}",
+ "plural_name": false,
+ "Description": "[#CAE4F1][link=https://support.twilio.com/hc/en-us/articles/223136607-What-is-an-Application-SID-]Application string identifier for Twilio[/link][/#CAE4F1]",
+ "Rarity": 1,
+ "URL": null,
+ "Tags": [
+ "API Keys",
+ "Credentials",
+ "Twilio"
+ ]
+ },
+ {
+ "Name": "Square Application Secret",
+ "Regex": "sandbox-?sq0csp-[0-9A-Za-z-_]{43}|sq0[a-z]{3}-[0-9A-Za-z-_]{22,43}",
+ "plural_name": false,
+ "Description": "[#CAE4F1][link=https://developer.squareup.com/docs/build-basics/access-tokens]Application secret for Square[/link][/#CAE4F1]",
+ "Rarity": 1,
+ "URL": null,
+ "Tags": [
+ "API Keys",
+ "Credentials",
+ "Square"
+ ]
+ },
+ {
+ "Name": "Square Access Token",
+ "Regex": "sqOatp-[0-9A-Za-z-_]{22}|EAAA[a-zA-Z0-9-_]{60}",
+ "plural_name": false,
+ "Description": "[#CAE4F1][link=https://developer.squareup.com/docs/build-basics/access-tokens]Access token for Square[/link][/#CAE4F1]",
+ "Rarity": 1,
+ "URL": null,
+ "Tags": [
+ "API Keys",
+ "Credentials",
+ "Square"
+ ]
+ },
+ {
+ "Name": "Stripe API Key",
+ "Regex": "[srp]k_live_[0-9a-zA-Z]{24}",
+ "plural_name": false,
+ "Description": "[#CAE4F1][link=https://stripe.com/docs/keys]API Key for Stripe[/link][/#CAE4F1]",
+ "Rarity": 1,
+ "URL": null,
+ "Tags": [
+ "API Keys",
+ "Credentials"
+ ]
+ },
+ {
+ "Name": "GitHub Access Token",
+ "Regex": "[a-zA-Z0-9_-]*:[a-zA-Z0-9_-]+@github.com*",
+ "plural_name": false,
+ "Description": "[#CAE4F1][link=https://docs.github.com/en/github/authenticating-to-github/keeping-your-account-and-data-secure/creating-a-personal-access-token]Access Token for GitHub[/link][/#CAE4F1]",
+ "Rarity": 1,
+ "URL": null,
+ "Tags": [
+ "API Keys",
+ "Credentials"
+ ]
+ },
+ {
+ "Name": "Slack Token",
+ "Regex": "xox[a-zA-Z]-[a-zA-Z0-9-]+",
+ "plural_name": false,
+ "Description": "[#CAE4F1][link=https://api.slack.com/authentication/token-types]Access Token for Slack[/link][/#CAE4F1]",
+ "Rarity": 1,
+ "URL": null,
+ "Tags": [
+ "API Keys",
+ "Credentials"
+ ]
+ },
  {
  "Name": "Amazon Resource Name (ARN)",
  "Regex": "(?i)^arn:(?P<Partition>[^:\n]*):(?P<Service>[^:\n]*):(?P<Region>[^:\n]*):(?P<AccountID>[^:\n]*):(?P<Ignore>(?P<ResourceType>[^:\/\n]*)[:\/])?(?P<Resource>.*)$",