Muhamad Ghufron mughu94

GitHub Search Syntax for Finding API Keys/Secrets/Tokens

As a security professional, it is important to conduct a thorough reconnaissance. With the increasing use of APIs nowadays, it has become paramount to keep access tokens and other API-related secrets secure in order to prevent leaks. However, despite technological advances, human error remains a factor, and many developers still unknowingly hardcode their API secrets into source code and commit them to public repositories. GitHub, being a widely popular platform for public code repositories, may inadvertently host such leaked secrets. To help identify these vulnerabilities, I have created a comprehensive search list using powerful search syntax that enables the search of thousands of leaked keys and secrets in a single search.

Search Syntax:

(path:*.{File_extension1} OR path:*.{File_extension-N}) AND ({Keyname1} OR {Keyname-N}) AND (({Signature/pattern1} OR {Signature/pattern-N}) AND ({PlatformTag1} OR {PlatformTag-N}))

Examples:

**1.

	deb http://archive.ubuntu.com/ubuntu/ focal main restricted universe multiverse
	deb-src http://archive.ubuntu.com/ubuntu/ focal main restricted universe multiverse

	deb http://archive.ubuntu.com/ubuntu/ focal-updates main restricted universe multiverse
	deb-src http://archive.ubuntu.com/ubuntu/ focal-updates main restricted universe multiverse

	deb http://archive.ubuntu.com/ubuntu/ focal-security main restricted universe multiverse
	deb-src http://archive.ubuntu.com/ubuntu/ focal-security main restricted universe multiverse

	deb http://archive.ubuntu.com/ubuntu/ focal-backports main restricted universe multiverse

	RAR registration data
	WinRAR
	Unlimited Company License
	UID=4b914fb772c8376bf571
	6412212250f5711ad072cf351cfa39e2851192daf8a362681bbb1d
	cd48da1d14d995f0bbf960fce6cb5ffde62890079861be57638717
	7131ced835ed65cc743d9777f2ea71a8e32c7e593cf66794343565
	b41bcf56929486b8bcdac33d50ecf773996052598f1f556defffbd
	982fbe71e93df6b6346c37a3890f3c7edc65d7f5455470d13d1190
	6e6fb824bcf25f155547b5fc41901ad58c0992f570be1cf5608ba9

	<?php

	// Include the phpQuery library
	// Download at http://code.google.com/p/phpquery/
	include 'phpQuery.php';

	// Load Mike Fisher's player page on thescore.com
	$ch = curl_init();
	curl_setopt($ch, CURLOPT_URL, 'http://www.thescore.com/nhl/player_profiles/859-mike-fisher');
	curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);

	#!/bin/bash

	# free keys complements of pastebin, and wtf goofle why AIza
	keylist=(
	"AIzaSyAafvOlmpO-nhRMdTKhwcK2jVQ8XeZwBfg"
	"AIzaSyAAW1uwHofZ7c1zxl75u0flELX5PMs2LvM"
	"AIzaSyA8OmKcw2DMNkJicyCJ0vqvf90xgeH52zE"
	"AIzaSyBSnh-sIjd97_FmQVzlyGbcaYXuSt_oh84"
	"AIzaSyBBcXtLP34Evs2rrdvYyZ63qbY36bQ96wk"
	"AIzaSyCQu8QRr-9H_qyWvbXpL6jseGthkd1VCtw"

	<?php
	class Pipeline
	{
	public static function make_pipeline(...$funcs)
	{
	return function($arg) use ($funcs)
	{
	//print_r($funcs);
	//die();
	foreach ($funcs as $func)

	SELECT name FROM employees
	WHERE id NOT IN(SELECT managerId FROM employees WHERE managerId IS NOT NULL AND NOT '');

	<?php

	class Palindrome
	{
	public static function isPalindrome($word)
	{
	$word = preg_replace('/[^a-zA-Z]/', '', $word);
	$word = strtolower($word);
	if($word)
	$hasil_word = $word == strrev($word);

	Pasang ini untuk membuka akses blokir selain tiga dibawah ini. Pilih resolver yang paling deket (singapura)
	https://dnscrypt.org