-
Notifications
You must be signed in to change notification settings - Fork 11
/
Copy pathcredentials.yaml
35 lines (35 loc) · 1.58 KB
/
credentials.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
- id: cred-001
description: Generic credential
regex: '(dbpasswd|dbuser|dbname|dbhost|api_key|apikey|secret|key|password|guid|hostname|pw|auth)(.{0,20})'
reference: https://github.com/zricethezav/gitleaks/blob/master/examples/leaky-repo.toml
severity: Medium
- id: cred-002
description: AWS Manager ID
regex: '((A3T[A-Z0-9]|AKIA|AGPA|AIDA|AROA|AIPA|ANPA|ANVA|ASIA)[A-Z0-9]{16})'
reference: https://github.com/zricethezav/gitleaks/blob/master/examples/leaky-repo.toml
severity: High
- id: cred-003
description: AWS MWS key
regex: '(amzn\.mws\.[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12})'
reference: https://github.com/zricethezav/gitleaks/blob/master/examples/leaky-repo.toml
severity: High
- id: cred-004
description: EC Private Key
regex: '(-----BEGIN EC PRIVATE KEY-----)'
reference: https://github.com/zricethezav/gitleaks/blob/master/examples/leaky-repo.toml
severity: High
- id: cred-005
description: Google API key
regex: '(AIza[0-9A-Za-z\\-_]{35})'
reference: https://github.com/zricethezav/gitleaks/blob/master/examples/leaky-repo.toml
severity: High
- id: cred-006
description: Slack Webhook
regex: '(https://hooks.slack.com/services/T[a-zA-Z0-9_]{8}/B[a-zA-Z0-9_]{8}/[a-zA-Z0-9_]{24})'
reference: https://github.com/zricethezav/gitleaks/blob/master/examples/leaky-repo.toml
severity: High
#- id: cred-006
# description: Environment Vars
# regex: '((?i)(api_key|apikey|secret|key|api|password|pw|host)=[0-9a-zA-Z-_{}]{4,120})'
# reference: https://github.com/zricethezav/gitleaks/blob/master/examples/leaky-repo.toml
# severity: High