eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions
kingfisher/crates/kingfisher-rules/data/rules/sshpass.yml
Mick Grove 3645db2214 performance improvements and rule improvements
2026-04-21 16:44:49 -07:00

22 lines
595 B
YAML
Raw Permalink Blame History

rules:
- name: SSH / SCP Password (sshpass)
id: kingfisher.sshpass.1
pattern: |
(?xi)
\b
sshpass\s+-p\s+
['"]?
(
[^\s"']{6,128}
)
['"\s]
pattern_requirements:
min_digits: 1
min_entropy: 2.5
confidence: low
examples:
- "sshpass -p 'hkjento6hjfdaiwbhC' scp /home/user/data/*.js sftp-user@files.example.com:data/"
- "sshpass -p \"xY3#mK81wP\" ssh deploy@prod.example.com"
references:
- https://linux.die.net/man/1/sshpass
# No public validation endpoint: SSH servers are instance-specific.
View git blame Copy permalink