Skip to content
/ leaky-regexes Public

Regex patterns for detecting sensitive information leaks in source code during security assessments and bug bounty hunts.

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

KaanBicaklar/leaky-regexes

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

3 Commits
README.md
README.md
Β 
Β 
leaky-regexes.json
leaky-regexes.json
Β 
Β 

Repository files navigation

πŸ” leaky-regexes: Advanced Regex Patterns for Secret Detection

SecretHound is a collection of advanced regular expressions crafted to detect hardcoded secrets in codebases, configurations, and logs. Designed for use in bug bounty, red teaming, pentests, and CI/CD pipelines, it helps uncover credentials, tokens, private keys, and other sensitive data.

πŸ“ Features

  • 🎯 API keys & tokens (Google, Facebook, Twitter, etc.)
  • πŸ” OAuth2, JWT, AWS/GCP/Azure access keys
  • πŸ—οΈ Private keys (.pem, .key, .p12, etc.)
  • πŸ”Ž Hardcoded usernames and passwords
  • 🌐 Webhook URLs (Slack, Discord, etc.)
  • πŸ’Ύ Database connection strings (MongoDB, PostgreSQL, MySQL, etc.)
  • ☁️ Cloud provider secrets
  • πŸ“² Mobile app embedded secrets
  • 🧩 Custom patterns for specific technologies and frameworks

βš™οΈ Usage Examples

πŸ”ŽGrep (Quick Local Search)

grep -EiR --color=always -f regex.txt

About

Regex patterns for detecting sensitive information leaks in source code during security assessments and bug bounty hunts.

Topics

security information secrets information-extraction bug-bounty bugbounty information-security security-tools secrets-detection senstive-logging senstive

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published