trufflehog

mirror of https://github.com/trufflesecurity/trufflehog.git synced 2024-09-20 14:42:03 +00:00

Author	SHA1	Message	Date
fml09	9da396e237	Fix incorrect regular expression with missing closing bracket (#2616 )	2024-03-26 13:32:14 -05:00
ahrav	11afc3215b	[chore] - upgrade dep (#2618 ) * upgrade dep * remove dupe deps	2024-03-26 11:21:07 -07:00
Ankush Goel	6dbe80806b	Dockerhub v2 detector (#2361 ) * Dockerhub v2 detector * update package structure --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-03-22 09:30:35 -07:00
Richard Gomez	441d9ff005	Update Snyk detector (#2559 ) * feat(snyk): add extradata from api * update test --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-03-22 09:14:48 -07:00
faktas2	72fb2b9deb	MaxMind detector uses the right endpoint (#2577 ) * MaxMind detector uses the right endpoint The endpoint that the current detector uses fails in validating the license key as some license keys do not have permissions to the geoip API. This commit is to make the detector use the right endpoint https://dev.maxmind.com/license-key-validation-api * Remove RawV2 * Remove trimspace and extra if branch * Add the proper tests * Use SetVerificationError * Add SetVerificationError * update tests --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-03-22 09:10:44 -07:00
Miccah	931a28a537	[chore] Replace "Trufflehog" with "TruffleHog" (#2584 )	2024-03-18 11:01:25 -07:00
Richard Gomez	fd7e7e6e29	fix(github): response can be nil (#2583 )	2024-03-16 01:12:44 -07:00
āh̳̕mͭͭͨͩ̐e̘ͬ́͋ͬ̊̓͂d	2ef7a4a49f	pull out verification logic from github detectors (#2554 ) * pull out verification logic from github detectors * deduplicate verify github logic * pull out nil check * return nil instead of empty struct * skip gh old test bc we can't make new tokens	2024-03-15 15:00:45 -04:00
joeleonjr	0bbb68931c	Canary verification (#2531 ) * verify canaries against SNS; get ARN * clean comments * Update tests and logic * added test for invalid canary secret * added verify logic for canaries * go mod tidy --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-03-07 18:18:18 -08:00
āh̳̕mͭͭͨͩ̐e̘ͬ́͋ͬ̊̓͂d	d7a33055ad	add version to extra data + moving existing versioned detectors into subdirectory format (#2471 ) * moving existing versioned detectors into subdirectory format * update docs for adding version number to extra data * nits	2024-03-07 15:48:27 -05:00
Dustin Decker	dbf6965152	DB is not needed for ping command (#2540 )	2024-03-06 17:08:37 -08:00
ahrav	3da0c5e125	[feat] - Make the client configurable (#2528 ) * Make the client configurable * add comment * add backoff option	2024-03-01 13:29:25 -08:00
Dylan Ayrey	7620906b07	Ignore canary IDs in notifications (#2526 ) * Update aws.go * Update aws.go * Update tests --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-02-28 16:52:50 -08:00
Dustin Decker	8ed0c0ad5d	Remove one filter word (#2525 ) Removes a problematic word from the unverified filtering while we work on a more holistic fix.	2024-02-28 15:46:39 -08:00
Simon Whitaker	431586ce78	Implement detectors.EndpointCustomizer on datadogtoken (#2510 ) Closes #2265	2024-02-28 10:52:01 -06:00
Dustin Decker	ad9d4e53e1	JDBC test and parsing improvements (#2516 ) * JDBC test and parsing improvements - Uses net/url for more robust URI parsing - Supports common JDBC formats for MySQL - Supports URI format for MSSQL - Uses allowlist for params across all drivers - Uses testcontainers-go for integration testing - much faster, more robust, no port collisions - Uses gofakeit for random data (db, user, password) generation in integration tests - Adds connection timeouts - Use Microsoft's driver for MSSQL * go mod tidy	2024-02-28 08:51:37 -08:00
Dustin Decker	5805f11ac6	Improve monogo and snowflake detectors (#2518 ) * Set timeouts on mongo connection string * use lightened snowflake driver * update param	2024-02-28 08:26:27 -08:00
Dustin Decker	2d2ca4d3d6	fix prefix check when returning early (#2503 )	2024-02-24 09:15:54 -08:00
Dustin Decker	8a825fde52	Clean up some detectors (#2501 )	2024-02-23 15:04:02 -08:00
Dustin Decker	d53b83b58e	Identify some canary tokens without detonation (#2500 ) * Identify canary tokens * Update README.md * Update README.md --------- Co-authored-by: dylanTruffle <52866392+dylanTruffle@users.noreply.github.com>	2024-02-21 09:42:21 -08:00
ahrav	5c313c14db	tighten keyword match (#2473 )	2024-02-16 13:38:07 -08:00
Zachary Rice	834163acf5	add lazy quantifier to prefixregex (#2466 )	2024-02-15 17:08:27 -06:00
Zachary Rice	bd729ce48e	add missing prefixregex (#2468 )	2024-02-15 07:13:57 -06:00
Dustin Decker	a9817a3292	Remove some noisy / less useful detectors (#2467 )	2024-02-14 15:27:03 -08:00
Richard Gomez	9572628dc6	chore(gcp): ignore known test creds (#2413 )	2024-02-12 10:29:00 -06:00
Miccah	4acf3ccb80	[chore] Ensure Postgres detector respects context deadline (#2408 )	2024-02-10 23:32:05 -08:00
dylanTruffle	901c851698	tightening opsgenie detection and verification (#2389 ) Co-authored-by: Dylan Ayrey <dylan@Dylans-MacBook-Pro.local>	2024-02-05 17:31:09 -08:00
Dustin Decker	c2ae31d060	Make AzureDevopsPersonalAccessToken verification more robust (#2359 ) * Make AzureDevopsPersonalAccessToken verification more robust * fix snifftest	2024-02-01 08:40:44 -08:00
roxanne-tampus	143e275272	update azure test files to check rawV2 (#2353 )	2024-01-31 08:36:52 -08:00
āh̳̕mͭͭͨͩ̐e̘ͬ́͋ͬ̊̓͂d	7ece4c3e66	Detectors Updates 1 for Tristate Verification (#2187 ) * updating alibaba * updating agora * updating aeroworkflow * updating aha * updating artifactory * updating abbysale * updating abstract * updating abuseipdb * updating accuweather * updating adafruitio * updating adzuna * cleanup on abuseipdb * cleanup on aha * cleanup on abuseipdb * cleanup on aeroworkflow * cleanup on adzuna * cleanup on accuweather * cleanup/refactor * update token pattern to be explicitly 73char (old) or 64char (new) * comment to clarify 403 on Aha * mocking out verified case for aha + adding inactive account test * using contact response instead of gock * update 403 to be determinate	2024-01-30 12:20:56 -05:00
Richard Gomez	232032410c	feat(detectors): update template (#2342 )	2024-01-29 21:21:23 -08:00
Dustin Decker	7befefd369	Improve fp ignore logic (#2351 ) * forgot field change * use aho corasick for filter * reduce wordlist sensitivity	2024-01-29 11:28:46 -08:00
roxanne-tampus	303e191f38	added azuresearchquerykey detector (#2349 ) Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-01-29 10:19:51 -08:00
roxanne-tampus	06b7ebf824	added azuresearchadminkey detector (#2348 ) * added azuresearchadminkey detector * additional update * update import * fix raw fields for new detectors and entropy check --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-01-29 09:55:46 -08:00
roxanne-tampus	83dc986b07	added azurefunctionkey detector (#2337 ) * added azurefunctionkey detector * update raw field to include url * clean up and added prefix on key pattern * update bench script * update imports, snifftest, and gen proto --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-01-29 09:20:33 -08:00
faktas2	76fcdae3a0	Add the new MaxMind license key format (#2181 ) * Add the new MaxMind license key format * feedback * reorg rules --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-01-26 11:49:47 -08:00
Dustin Decker	3a6cfd9d97	Prevent print or logging in detectors (#2341 ) * Prevent print or logging in detectors * mount repo * update job name	2024-01-26 11:39:41 -08:00
ahrav	41cfec4e1c	make sure to close connections after testing (#2343 )	2024-01-26 09:24:06 -08:00
Dustin Decker	f078df43eb	Fix test (#2339 )	2024-01-25 23:15:37 -08:00
Zubair Khan	76057618ba	add tri-state verification to yelp (#1736 ) * init yelp tri state * fix detector and test --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-01-25 22:28:16 -08:00
Richard Gomez	c6f73a7d10	Update DockerHub detector logic (#2266 ) * feat(dockerhub): update logic * updates --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-01-25 22:02:36 -08:00
Richard Gomez	d4a0645c29	Add Google oauth2 token detector (#2274 ) * feat(google): add oauth2 token detector * update pr --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-01-25 21:32:03 -08:00
joeleonjr	792266afa9	updating doppler logic (#2329 ) * updating doppler logic * added json response struct	2024-01-24 12:20:33 -05:00
roxanne-tampus	47c6539a41	added azuredevopspersonalaccesstoken detector (#2315 ) * added azuredevopspersonalaccesstoken detector * fix comment * update raw field to include all parts of the credential --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2024-01-23 20:46:51 -08:00
ahrav	e44802a31d	[feat] - Replace regexp pkg w/ go-re2 in detectors (#2324 ) * update detectors to use go-re regex library replacement * update go mod and sum * add tests with invalid utf-8 * revert	2024-01-23 13:16:22 -08:00
Cody Rose	e0a1b11a8e	Narrow Postgres detector to only look for URIs (#2314 )	2024-01-23 14:42:31 -05:00
joeleonjr	443ef98e41	updating detector logic for zenscrape (#2316 ) * updating detector logic for zenscrape * updating to use status endpoint	2024-01-22 16:57:51 -05:00
ahrav	b0fd951652	[chore] - Add regex and keyword for api_org tokens (#2240 ) * Add regex and keyword for api_org tokens. * handle org token auth struct * update keywords	2024-01-16 15:25:26 -08:00
dylanTruffle	3b4518cbab	adding postgres detector (#2108 ) * adding postgres detector --------- Co-authored-by: Chair <chair@Chairs-MacBook-Pro.local> Co-authored-by: ahmed <ahmed.zahran@trufflesec.com>	2024-01-10 16:19:45 -05:00
Richard Gomez	04bf244f38	fix(signable): ignore common false positives (#2230 )	2024-01-09 17:53:25 -08:00
Richard Gomez	38f36475de	fix(parseur): ignore false positives (#2229 )	2024-01-09 17:50:30 -08:00
Shivasurya	e5289ac8e4	Updated trufflehog sourcegraph secret format (#2254 )	2024-01-06 08:48:41 -08:00
NIKHIL PANWAR	7365dba9c9	Update stripe detector regex (#2261 )	2024-01-06 08:43:39 -08:00
Dustin Decker	6b90a96ca0	Add missing import (#2246 )	2023-12-19 16:40:31 -08:00
Richard Gomez	69d5e0c993	fix(snowflake): avoid extraneous attempts (#2057 ) Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2023-12-19 16:04:08 -08:00
Richard Gomez	97afd570ae	feat(github): update extradata (#2219 )	2023-12-19 16:01:07 -08:00
Richard Gomez	eeb4dbd304	feat(shortcut): use tri-state verification (#2211 )	2023-12-17 15:47:14 -08:00
Richard Gomez	ded8e459bd	feat(huggingface): enhance extradata (#2222 )	2023-12-17 14:29:45 -08:00
Richard Gomez	69a70a3374	fix(myfreshworks): check for valid JSON (#2212 )	2023-12-17 10:26:38 -08:00
Richard Gomez	06b137fd93	fix(gitlab): check for valid JSON (#2218 )	2023-12-14 11:22:06 -08:00
Miccah	4db20e29f8	Update metabase verification to check for a valid JSON response (#2210 ) * Update metabase verification to check for a valid JSON response * added test tokens + cleanup --------- Co-authored-by: ahmed <ahmed.zahran@trufflesec.com>	2023-12-13 12:18:56 -08:00
Miccah	84b7461796	[chore] Remove unnecessary string conversion in tefter detector (#2209 )	2023-12-13 11:39:16 -08:00
āh̳̕mͭͭͨͩ̐e̘ͬ́͋ͬ̊̓͂d	6987507534	fix and refactor browserstack detector (#2208 ) * fix and refactor browserstack detector	2023-12-12 16:14:31 -05:00
āh̳̕mͭͭͨͩ̐e̘ͬ́͋ͬ̊̓͂d	5e3ea1a8f2	Fix azurestorage detector (#2207 ) * bugfix + cleanup - update azurestorage detector raw string to use key instead of id	2023-12-12 16:07:09 -05:00
Cody Rose	405f356071	Use bad json in slackwebhooks (#2193 ) * add rotation guides to SlackWebhook tests * begin cleaning up tests * have slack webhook detector use malformed json * update test secrets --------- Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2023-12-11 15:04:55 -08:00
Richard Gomez	6c5fc2f212	feat(privatekey): run checks concurrently (#2139 )	2023-12-10 10:11:17 -08:00
ahrav	f772fd8b44	update regex (#2184 )	2023-12-06 17:04:38 -08:00
Dustin Decker	3167dde8a1	Deprecate some detectors (#2186 )	2023-12-06 16:57:55 -08:00
ahrav	c6e9b8ff64	use https for verification endpoints (#2185 )	2023-12-06 16:06:04 -08:00
dylanTruffle	96aa50d119	fixing how to rotate URL (#2183 )	2023-12-06 11:59:21 -08:00
āh̳̕mͭͭͨͩ̐e̘ͬ́͋ͬ̊̓͂d	11394ea318	[thog-1548] add auto redaction for verification errors (#2106 ) * Updating VerificationError to have auto redaction logic * find/replace error	2023-12-05 08:57:52 -05:00
ahrav	c34efc3cf9	make empty slice delcration consistent (#2144 )	2023-12-01 11:03:44 -08:00
ahrav	279f915799	[chore] - fix error comparisons (#2142 ) * fix error comparisons * fix imports	2023-12-01 08:32:41 -08:00
ahrav	52ffab1034	[chore] - fix import name clashes (#2143 ) * fix import name clashes * fix missing var	2023-12-01 06:53:15 -08:00
Dustin Decker	a367f9ce34	Fix azure panic when invalid URL is constructed (#2137 )	2023-11-30 11:33:04 -08:00
Zachary Rice	d552222385	add extradata nil check and use make (#2129 ) * add extradata nil check and use make * remove some lines	2023-11-28 09:45:37 -06:00
Richard Gomez	62c628fb52	feat(telegram): add username to extradata (#2100 )	2023-11-20 14:00:09 -08:00
Dustin Decker	9e88cdf625	add extra data to github detector (#1909 ) * add extra data to github detector * Add verification error	2023-11-20 13:55:16 -08:00
Zachary Rice	d69de658b2	fix nil map assignment (#2117 )	2023-11-20 11:13:09 -06:00
joeleonjr	b2042e4e03	extract AWS account number from ID without verification (#2091 ) * added GetAccountNumFromAWSID function * refacted aws func, moved to common	2023-11-16 11:45:47 -05:00
āh̳̕mͭͭͨͩ̐e̘ͬ́͋ͬ̊̓͂d	737d6b764d	Adding Sumo Logic how to rotate (#2103 )	2023-11-09 12:48:08 -05:00
Damanpreet Singh	d066a3fa78	Detector-Competition-Feat: Added Replicate API token detector (#2021 ) * Detector-Competition-Feat: Added Replicate API token detector * fix fullstory --------- Co-authored-by: Zachary Rice <zachary.rice@trufflesec.com>	2023-11-07 12:16:39 -06:00
Damanpreet Singh	bcde7856c3	Detector-Competition-Feat: Added Ngrok API token detector (#2024 ) Co-authored-by: Zachary Rice <zachary.rice@trufflesec.com>	2023-11-07 09:28:05 -06:00
Ankush Goel	1b93c0545c	Competition-Detector-New:added v2 version for fullstory (#2067 ) * added v2 version for fullstory * added versioner to the v1 fullstory detector	2023-11-07 08:55:06 -06:00
Miccah	8e3f6e98dc	Add support for user:pass@host to postgres JDBC detector (#2089 ) * Add support for user:pass@host to postgres JDBC detector * Remove ineffectual assignment	2023-11-06 17:17:37 -08:00
Corben Leo	1094190ff5	Detector-Competition-Feat: Add Overloop detector (#2080 ) * Detector-Competition-Feat: Add Overloop detector * add protos and to defaults.go --------- Co-authored-by: Zachary Rice <zachary.rice@trufflesec.com>	2023-11-06 16:43:31 -06:00
Damanpreet Singh	da59b72735	Detector-Competition-Feat: Added Request.Finance API token detector (#2020 ) Co-authored-by: Zachary Rice <zachary.rice@trufflesec.com>	2023-11-06 16:13:33 -06:00
Ankush Goel	703e158648	Detector-Competition-New : created grafana service account detector (#1960 ) * created grafana service account detector * add import --------- Co-authored-by: Zachary Rice <zachary.rice@trufflesec.com>	2023-11-06 15:41:37 -06:00
Ankush Goel	b2d541e0ea	Detector-Competition-Fix: fixed zulipchat detector (#1990 ) * fixed zulipchat detector * fixed testing scenarios * fixed test detector * fixed test * made chunking keyword from zulipchat to zulip * fixed email regex * fixed domain regex	2023-11-06 12:22:47 -06:00
Ankush Goel	aabfec4cdf	Competition-Detector-New: added eventbrite detector (#2072 ) * added eventbrite detector * added packagename to defaults.go --------- Co-authored-by: Zachary Rice <zachary.rice@trufflesec.com>	2023-11-03 16:42:13 -05:00
Ankush Goel	1371512ff3	logz.io detector (#2076 ) Co-authored-by: Zachary Rice <zachary.rice@trufflesec.com>	2023-11-03 16:32:35 -05:00
Ankush Goel	06b5fc25ef	Coda Detector (#2075 ) Co-authored-by: Zachary Rice <zachary.rice@trufflesec.com>	2023-11-03 15:50:05 -05:00
Zachary Rice	50a3a82cbb	fix (#2094 )	2023-11-03 12:56:12 -05:00
Corben Leo	de8889b406	Detector-Competition-Fix: Fix LiveAgent Detector & Verifier (#2001 ) * Detector-Competition-Fix: Fix LiveAgent Detector & Verifier * update regex	2023-11-03 12:28:20 -05:00
dylanTruffle	0b90265802	pulling short lived AWS keys into their own thing, fixes #1224 (#2088 ) * pulling short lived AWS keys into their own thing, fixes #1224 * Update awssessionkey.go * fmt --------- Co-authored-by: Chair <chair@Chairs-MacBook-Pro.local> Co-authored-by: Zachary Rice <zachary.rice@trufflesec.com>	2023-11-03 11:58:49 -05:00
Miccah	600903f391	[chore] Speedup IsKnownFalsePositive using sets (#2090 ) Also check that the match is a valid UTF-8 string.	2023-11-03 08:45:00 -07:00
Corben Leo	3b9ecaa704	Detector-Competition-Fix: Fix ScraperSite (deprecated) (#2074 ) Co-authored-by: āh̳̕mͭͭͨͩ̐e̘ͬ́͋ͬ̊̓͂d <13666360+0x1@users.noreply.github.com>	2023-11-03 11:15:53 -04:00
Corben Leo	41e9cc59e2	Detector-Competition-Fix: Fix PassBase (acquired, deprecated) (#2079 )	2023-11-03 08:59:32 -05:00
Ankush Goel	b95ed3b41a	Detector-Competition-New - Created Grafana Cloud API Key detector (#1959 ) * Created Grafana Cloud API Key detector * made the regex more bounded * added boundary to regex	2023-11-03 09:25:54 -04:00
Corben Leo	9e52e3e86f	Detector-Competition-Fix: Fix/Deprecate Prospect.io (#2081 ) * Detector-Competition-Feat: Fix/Deprecate Prospect.io * Detector-Competition-Fix: fix defaults.go	2023-11-03 07:04:42 -05:00
joeleonjr	a1d74cd887	added resource type mapping to extraData in AWS (#2087 ) * added resource type mapping to extraData in AWS * updating aws regex + logic for resource type	2023-11-02 17:03:03 -04:00
Corben Leo	b5cc6c196c	Detector-Competition-Fix: Fix FakeJSON (deprecated) (#2073 )	2023-11-02 15:43:49 -05:00
Ankush Goel	ab896890b4	fixed helpscout detector regex and verifier (#2056 )	2023-11-02 14:20:26 -05:00
Ankush Goel	965a274de9	Detector-Competition-Fix: fixed regex for databricks domain and fixed tests (#1965 ) * fixed regex for domain and fixed tests * fixed regex * fixed an issue with regex subgrouping * made recommended changes * made recommended changed * fixed RawV2	2023-11-02 11:26:31 -05:00
Ankush Goel	b6469f23ac	modified regex (#2033 )	2023-11-02 11:24:37 -05:00
dylanTruffle	4106ce7bf0	Detector-Competition-Feat: Adding Azure Container Registry Password Detector (#1958 ) * implementing azure container registry password detector * Fixing boundry feedback * whoops * update verification code * fix regex --------- Co-authored-by: Chair <chair@Chairs-MacBook-Pro.local> Co-authored-by: Zachary Rice <zachary.rice@trufflesec.com>	2023-11-02 11:17:01 -05:00
Corben Leo	07f6c84aa4	Detector-Competition-Fix: Fix SentimentInvestor (deprecated) (#2078 )	2023-11-01 11:54:40 -05:00
Cody Rose	7197e4b3f1	use rawv2 for pubnubpublish (#2062 ) We're seeing secrets of this type flap between verified and unverified, which is expected behavior for multipart secrets without RawV2 defined. This PR adds RawV2 for secrets of this type.	2023-11-01 10:14:28 -04:00
āh̳̕mͭͭͨͩ̐e̘ͬ́͋ͬ̊̓͂d	74a56de831	update braintreepayments detector to tri-state verification (#1834 ) * update braintreepayments detector to tri-state verification * Update pkg/detectors/braintreepayments/braintreepayments.go Co-authored-by: Zachary Rice <zachary.rice@trufflesec.com> * small nits * small nits --------- Co-authored-by: Zachary Rice <zachary.rice@trufflesec.com>	2023-10-31 16:13:48 -04:00
dylanTruffle	8bac2b15ba	Detector-Competition-Feat: Adding Azure Batch keys (#1956 ) * adding azure batch * fmt * fix lint --------- Co-authored-by: Chair <chair@Chairs-MacBook-Pro.local> Co-authored-by: Zachary Rice <zachary.rice@trufflesec.com>	2023-10-31 10:49:04 -05:00
dylanTruffle	499cb64546	Detector-Competition-Fix: Fix redis to now support SSL, and look for azure redis connection strings (#1957 ) * adding azure redis, and fixing the old detector to support ssl too * fix? * other way --------- Co-authored-by: Chair <chair@Chairs-MacBook-Pro.local> Co-authored-by: Zachary Rice <zachary.rice@trufflesec.com>	2023-10-31 10:17:55 -05:00
Corben Leo	a4fd17c9d1	Detector-Competition-Fix: Fix AppFollow Detection & Verification (#1933 ) * Detector-Competition-Fix: Fix AppFollow Detection & Verification * fix(regex): update jwt regex for appfollow	2023-10-31 09:43:20 -05:00
Corben Leo	de4a14b3f9	Detector-Competition-Fix: Fix SalesBlink Detection & Verification (#1950 )	2023-10-30 16:10:24 -05:00
Damanpreet Singh	244ba3a214	Detector-Competition-Fix: Update formio regex to match Jwt token (#1935 )	2023-10-30 16:08:19 -05:00
Corben Leo	6a15cd8f30	Detector-Competition-Fix: Fix Bitcoin Average detector (#1929 )	2023-10-30 16:02:30 -05:00
Corben Leo	509fc6c0eb	Detector-Competition-Fix: Fix currencycloud.com API key (#1917 ) * Detector-Competition-Fix: Fix currencycloud.com API environment * Detector-Competition-Fix: Fix currencycloud.com API environment * fix(env): update environment	2023-10-30 15:56:30 -05:00
Ankush Goel	2a66d4117a	adding 'token' keyword to regex for github_old (#2037 )	2023-10-29 20:45:35 -07:00
Damanpreet Singh	7a9332152a	Detector-Competition-Feat: Added Reply.io API token detector (#2019 ) Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2023-10-29 17:57:36 -07:00
Damanpreet Singh	0068ec54f2	Detector-Competition-Feat: Added Stripo API token detector (#2018 ) * Detector-Competition-Feat: Added Stripo API token detector * adjust regex --------- Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2023-10-29 17:26:14 -07:00
Richard Gomez	0427985ebe	feat: deno deploy detector (#2040 ) Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2023-10-29 16:58:00 -07:00
Damanpreet Singh	3ffc0dfd22	Detector-Competition-Feat: Added Budibase API token detector (#2016 )	2023-10-29 10:12:45 -07:00
Damanpreet Singh	52b3c99868	Detector-Competition-Feat: Added LemonSqueezy API token detector (#2017 ) * Detector-Competition-Feat: Added LemonSqueezy API token detector * fix regex --------- Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2023-10-28 15:03:14 -07:00
Richard Gomez	96b25150d0	Add Coinbase Wallet-as-a-Service detector (#1895 ) * feat(coinbase): basic Wallet-as-a-Service detector * update test --------- Co-authored-by: Dustin Decker <dustin@trufflesec.com>	2023-10-27 10:32:36 -07:00
Damanpreet Singh	eb0c0fa99f	Detector-Competition-Feat: Add Metabase Session Secret Detector (#1902 ) Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2023-10-26 20:17:41 -07:00
Damanpreet Singh	bf6ece39ca	Detector-Competition-Feat: Added AppOptics API token detector (#1989 ) Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2023-10-26 20:06:30 -07:00
Damanpreet Singh	4d0a40d2f3	Detector-Competition-Feat: Added ZeroTier API token detector (#1988 ) Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2023-10-26 19:55:58 -07:00
Damanpreet Singh	f1a75395e8	Detector-Competition-Feat: Added BetterStack API token detector (#1987 ) Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2023-10-26 19:46:56 -07:00
Corben Leo	98d2922bee	Detector-Competition-Fix: Fix SurveyBot Verification (#1948 )	2023-10-26 12:10:00 -05:00
Corben Leo	8505d24d7d	Detector-Competition-Fix: Fix/Remove Flowdock detector (#2004 ) * Detector-Competition-Fix: Fix/Remove Flowdock detector --------- Co-authored-by: āh̳̕mͭͭͨͩ̐e̘ͬ́͋ͬ̊̓͂d <13666360+0x1@users.noreply.github.com> Co-authored-by: ahmed <ahmed.zahran@trufflesec.com>	2023-10-26 09:35:13 -04:00
Corben Leo	b776f9c122	Detector-Competition-Fix: Fix/Remove Happi Detection & Verification (#2003 ) * Detector-Competition-Fix: Fix/Remove Happi Detection & Verification --------- Co-authored-by: āh̳̕mͭͭͨͩ̐e̘ͬ́͋ͬ̊̓͂d <13666360+0x1@users.noreply.github.com> Co-authored-by: ahmed <ahmed.zahran@trufflesec.com>	2023-10-26 09:20:53 -04:00
Corben Leo	6914dacde3	Detector-Competition-Fix: Fix/Remove DataFire, API retired (#1995 ) * Detector-Competition-Fix: Fix/Remove DataFire, API retired * Detector-Competition-Fix: Depreciate Datafire Proto * make protos for deprecating datafire --------- Co-authored-by: āh̳̕mͭͭͨͩ̐e̘ͬ́͋ͬ̊̓͂d <13666360+0x1@users.noreply.github.com> Co-authored-by: ahmed <ahmed.zahran@trufflesec.com>	2023-10-25 21:51:54 -04:00
Corben Leo	f7960265ea	Detector-Competition-Fix: Fix/Remove QuickMetrics (shutdown) (#1997 ) * Detector-Competition-Fix: Fix/Remove QuickMetrics (shutdown) * Detector-Competition-Fix: Fix/Remove QuickMetrics protos * make protos for deprecating Blablabus (#2002) * make protos for deprecating quickmetrics --------- Co-authored-by: āh̳̕mͭͭͨͩ̐e̘ͬ́͋ͬ̊̓͂d <13666360+0x1@users.noreply.github.com> Co-authored-by: ahmed <ahmed.zahran@trufflesec.com>	2023-10-25 20:05:26 -04:00
Corben Leo	51b7fcc5d6	Detector-Competition-Fix: Fix/Remove BlaBlaBus, API retired (#1996 ) * Detector-Competition-Fix: Fix/Remove BlaBlaBus, API retired * Detector-Competition-Fix: Depreciate Blabus proto	2023-10-25 18:45:40 -04:00
Corben Leo	cebd92d79e	Detector-Competition-Fix: Depreciate Glitterly (#2000 )	2023-10-25 18:08:50 -04:00
Corben Leo	386c54ecbe	Detector-Competition-Fix: Fix MeaningCloud Verification (#1946 )	2023-10-25 14:52:36 -05:00
Corben Leo	cef05b8d5a	Detector-Competition-Fix: Fix ScreenshotAPI Verification (#1949 ) * Detector-Competition-Fix: Fix ScreenshotAPI * Detector-Competition-Fix: Fix ScreenshotAPI	2023-10-25 14:50:20 -05:00
Ankush Goel	6c35dcffa5	Detector-Competition-Fix : fixed monday.com regex (#1961 ) * fixed monday.com regex * updating test secrets to use detectors5 --------- Co-authored-by: ahmed <ahmed.zahran@trufflesec.com>	2023-10-25 12:50:07 -04:00
Damanpreet Singh	b2811bcf78	Detector-Competition-Feat: Added Vagrant Cloud Access Token Detector (#1941 ) Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2023-10-25 11:03:45 -05:00
Corben Leo	c674f1fc34	Detector-Competition-Fix: Fix/Remove baseapi detector (no longer exists) (#1992 )	2023-10-25 07:17:08 -07:00
Damanpreet Singh	2189dc9b0f	Detector-Competition-Feat: Added Portainer Detector (#1936 ) Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2023-10-25 06:32:57 -07:00
Damanpreet Singh	b2702b7839	Detector-Competition-Feat: Added OpenVPN API Detector (#1940 )	2023-10-25 04:57:07 -07:00
Ankush Goel	84cb33ce3d	loggly detector (#1782 ) * loggly detector * fixed the loggly_test.go * fixed the test file to pass the test --------- Co-authored-by: dsingdev-rocketx <bughunter00@protonmail.com>	2023-10-24 20:06:47 -07:00
Damanpreet Singh	f467cf923c	Detector-Competition-Feat: Added PortainerToken Detector (#1938 ) Co-authored-by: Ahrav Dutta <ahrav.dutta@trufflesec.com>	2023-10-24 13:48:40 -07:00
Damanpreet Singh	664c4884a6	fix #1751 : update facebookOauth Detector (#1921 )	2023-10-24 11:07:52 -05:00
Damanpreet Singh	8184a62e24	fix: NewRelic Detector: fallback to EU Api for verification (#1932 )	2023-10-24 11:02:39 -05:00
Corben Leo	7bc0b77374	Detector-Competition-Fix: Fix CloudSmith detection (#1944 )	2023-10-24 11:01:27 -05:00
Corben Leo	f3479194d2	Detector-Competition-Fix: Fix CodeClimate verification (#1945 )	2023-10-23 20:19:02 -05:00
Damanpreet Singh	855aba2407	Detector-Competition-Feat: Add InstaMojo Payment Detector (#1905 )	2023-10-23 16:58:25 -05:00
Corben Leo	893bb3548d	Detector-Competition-Fix: Fix SuperNotes API verification (#1947 )	2023-10-23 16:29:55 -05:00
Damanpreet Singh	b4753a60be	Detector-Competition-New: add IP2Location api key detector (#1915 )	2023-10-23 13:51:14 -05:00

1 2 3 4 5 ...

1770 commits