eblume/kingfisher
1
0
Fork 0
forked from mirrors/kingfisher
Code Pull requests Activity Actions
kingfisher/data/rules/clearbit.yml
Mick Grove 951b62d61e - Added rules for clearbit, kickbox, azure container registry, improved Azure Storage key 
- Grouped JSON and JSONL outputs by rule, restoring matches arrays in reports
2025-08-18 22:56:34 -07:00

33 lines
No EOL
812 B
YAML
Raw Blame History

rules:
- name: Clearbit API Key
id: kingfisher.clearbit.1
pattern: |
(?xi)
\b
clearbit
(?:.|[\n\r]){0,16}?
(?:SECRET|PRIVATE|ACCESS|KEY|TOKEN)
(?:.|[\n\r]){0,32}?
\b
(
[0-9a-z_]{35}
)
\b
min_entropy: 3.5
confidence: medium
examples:
- clearbit_token = tq50141fm92fl4nid9c1c7liouhbertbvg1
validation:
type: Http
content:
request:
method: GET
url: https://discovery.clearbit.com/v1/companies/entities?name=kingfisher
headers:
Authorization: "Bearer {{ TOKEN }}"
response_matcher:
- report_response: true
- type: WordMatch
words:
- '"Invalid API key provided"'
negative: true
View git blame Copy permalink