Skip to content

Commit 35ac64b

Browse files
committed
Sentry Organization Auth Token
1 parent 2afc372 commit 35ac64b

File tree

7 files changed

+120
-3
lines changed

7 files changed

+120
-3
lines changed

credsweeper/rules/config.yaml

Lines changed: 16 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1407,6 +1407,22 @@
14071407
- code
14081408
- doc
14091409

1410+
- name: Sentry Organization Auth Token
1411+
severity: high
1412+
confidence: strong
1413+
type: pattern
1414+
values:
1415+
- (?:(?<![0-9A-Za-z_-])|\\[0abfnrtv]|(%|\\x)[0-9A-Fa-f]{2}|\\[0-7]{3}|\\[Uu]([0-9A-Fa-f]{4}){1,2}|\x1B\[[0-9;]{0,80}m)(?P<value>sntrys_eyJ[0-9A-Za-z_-]{80,8000}=*([0-9A-Za-z_-]{32,256})?)(?![0-9A-Za-z_-])
1416+
min_line_len: 37
1417+
filter_type:
1418+
- ValuePatternCheck(5)
1419+
- ValueEntropyBase64Check
1420+
required_substrings:
1421+
- sntrys_eyJ
1422+
target:
1423+
- code
1424+
- doc
1425+
14101426
- name: Discord Bot Token
14111427
severity: high
14121428
confidence: strong

tests/__init__.py

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,13 +1,13 @@
11
from pathlib import Path
22

33
# total number of files in test samples
4-
SAMPLES_FILES_COUNT = 148
4+
SAMPLES_FILES_COUNT = 149
55

66
# the lowest value of ML threshold is used to display possible lowest values
77
NEGLIGIBLE_ML_THRESHOLD = 0.0001
88

99
# credentials count after scan with negligible ML threshold
10-
SAMPLES_CRED_COUNT = 472
10+
SAMPLES_CRED_COUNT = 473
1111
SAMPLES_CRED_LINE_COUNT = SAMPLES_CRED_COUNT + 19
1212

1313
# Number of filtered credentials with ML
@@ -17,7 +17,7 @@
1717
SAMPLES_POST_CRED_COUNT = SAMPLES_CRED_COUNT - ML_FILTERED
1818

1919
# with option --doc
20-
SAMPLES_IN_DOC = 654
20+
SAMPLES_IN_DOC = 655
2121

2222
# archived credentials that are not found without --depth
2323
SAMPLES_IN_DEEP_1 = SAMPLES_POST_CRED_COUNT + 89

tests/data/depth_3.json

Lines changed: 25 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -10056,6 +10056,31 @@
1005610056
}
1005710057
]
1005810058
},
10059+
{
10060+
"rule": "Sentry Organization Auth Token",
10061+
"severity": "high",
10062+
"confidence": "strong",
10063+
"ml_probability": null,
10064+
"line_data_list": [
10065+
{
10066+
"line": "sntrys_eyJpYXQiOjE3NDEyNjQzNTYuMDAwMCwidXJsIjoiaHR0cHM6Ly9zZW50cnkuaW8iLCJyZWdpb25fdXJsIjoiaHR0cHM6Ly91YS5zZW50cnkuaW8iLCJvcmciOiIifQ==v8D-whr2cUQK91Civi4yNoLRjC3MDZH5I2aMcs_j5GDv",
10067+
"line_num": 1,
10068+
"path": "./tests/samples/sentry",
10069+
"info": "FILE|RAW",
10070+
"value": "sntrys_eyJpYXQiOjE3NDEyNjQzNTYuMDAwMCwidXJsIjoiaHR0cHM6Ly9zZW50cnkuaW8iLCJyZWdpb25fdXJsIjoiaHR0cHM6Ly91YS5zZW50cnkuaW8iLCJvcmciOiIifQ==v8D-whr2cUQK91Civi4yNoLRjC3MDZH5I2aMcs_j5GDv",
10071+
"value_start": 0,
10072+
"value_end": 179,
10073+
"variable": null,
10074+
"variable_start": -2,
10075+
"variable_end": -2,
10076+
"entropy_validation": {
10077+
"iterator": "BASE64STDPAD_CHARS",
10078+
"entropy": 5.424476232986917,
10079+
"valid": true
10080+
}
10081+
}
10082+
]
10083+
},
1005910084
{
1006010085
"rule": "Shopify Token",
1006110086
"severity": "high",

tests/data/doc.json

Lines changed: 25 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -16413,6 +16413,31 @@
1641316413
}
1641416414
]
1641516415
},
16416+
{
16417+
"rule": "Sentry Organization Auth Token",
16418+
"severity": "high",
16419+
"confidence": "strong",
16420+
"ml_probability": null,
16421+
"line_data_list": [
16422+
{
16423+
"line": "sntrys_eyJpYXQiOjE3NDEyNjQzNTYuMDAwMCwidXJsIjoiaHR0cHM6Ly9zZW50cnkuaW8iLCJyZWdpb25fdXJsIjoiaHR0cHM6Ly91YS5zZW50cnkuaW8iLCJvcmciOiIifQ==v8D-whr2cUQK91Civi4yNoLRjC3MDZH5I2aMcs_j5GDv",
16424+
"line_num": 1,
16425+
"path": "./tests/samples/sentry",
16426+
"info": "FILE|RAW",
16427+
"value": "sntrys_eyJpYXQiOjE3NDEyNjQzNTYuMDAwMCwidXJsIjoiaHR0cHM6Ly9zZW50cnkuaW8iLCJyZWdpb25fdXJsIjoiaHR0cHM6Ly91YS5zZW50cnkuaW8iLCJvcmciOiIifQ==v8D-whr2cUQK91Civi4yNoLRjC3MDZH5I2aMcs_j5GDv",
16428+
"value_start": 0,
16429+
"value_end": 179,
16430+
"variable": null,
16431+
"variable_start": -2,
16432+
"variable_end": -2,
16433+
"entropy_validation": {
16434+
"iterator": "BASE64STDPAD_CHARS",
16435+
"entropy": 5.424476232986917,
16436+
"valid": true
16437+
}
16438+
}
16439+
]
16440+
},
1641616441
{
1641716442
"rule": "Shopify Token",
1641816443
"severity": "high",

tests/data/ml_threshold.json

Lines changed: 25 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -10197,6 +10197,31 @@
1019710197
}
1019810198
]
1019910199
},
10200+
{
10201+
"rule": "Sentry Organization Auth Token",
10202+
"severity": "high",
10203+
"confidence": "strong",
10204+
"ml_probability": null,
10205+
"line_data_list": [
10206+
{
10207+
"line": "sntrys_eyJpYXQiOjE3NDEyNjQzNTYuMDAwMCwidXJsIjoiaHR0cHM6Ly9zZW50cnkuaW8iLCJyZWdpb25fdXJsIjoiaHR0cHM6Ly91YS5zZW50cnkuaW8iLCJvcmciOiIifQ==v8D-whr2cUQK91Civi4yNoLRjC3MDZH5I2aMcs_j5GDv",
10208+
"line_num": 1,
10209+
"path": "./tests/samples/sentry",
10210+
"info": "",
10211+
"value": "sntrys_eyJpYXQiOjE3NDEyNjQzNTYuMDAwMCwidXJsIjoiaHR0cHM6Ly9zZW50cnkuaW8iLCJyZWdpb25fdXJsIjoiaHR0cHM6Ly91YS5zZW50cnkuaW8iLCJvcmciOiIifQ==v8D-whr2cUQK91Civi4yNoLRjC3MDZH5I2aMcs_j5GDv",
10212+
"value_start": 0,
10213+
"value_end": 179,
10214+
"variable": null,
10215+
"variable_start": -2,
10216+
"variable_end": -2,
10217+
"entropy_validation": {
10218+
"iterator": "BASE64STDPAD_CHARS",
10219+
"entropy": 5.424476232986917,
10220+
"valid": true
10221+
}
10222+
}
10223+
]
10224+
},
1020010225
{
1020110226
"rule": "Shopify Token",
1020210227
"severity": "high",

tests/data/output.json

Lines changed: 25 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -8022,6 +8022,31 @@
80228022
}
80238023
]
80248024
},
8025+
{
8026+
"rule": "Sentry Organization Auth Token",
8027+
"severity": "high",
8028+
"confidence": "strong",
8029+
"ml_probability": null,
8030+
"line_data_list": [
8031+
{
8032+
"line": "sntrys_eyJpYXQiOjE3NDEyNjQzNTYuMDAwMCwidXJsIjoiaHR0cHM6Ly9zZW50cnkuaW8iLCJyZWdpb25fdXJsIjoiaHR0cHM6Ly91YS5zZW50cnkuaW8iLCJvcmciOiIifQ==v8D-whr2cUQK91Civi4yNoLRjC3MDZH5I2aMcs_j5GDv",
8033+
"line_num": 1,
8034+
"path": "./tests/samples/sentry",
8035+
"info": "",
8036+
"value": "sntrys_eyJpYXQiOjE3NDEyNjQzNTYuMDAwMCwidXJsIjoiaHR0cHM6Ly9zZW50cnkuaW8iLCJyZWdpb25fdXJsIjoiaHR0cHM6Ly91YS5zZW50cnkuaW8iLCJvcmciOiIifQ==v8D-whr2cUQK91Civi4yNoLRjC3MDZH5I2aMcs_j5GDv",
8037+
"value_start": 0,
8038+
"value_end": 179,
8039+
"variable": null,
8040+
"variable_start": -2,
8041+
"variable_end": -2,
8042+
"entropy_validation": {
8043+
"iterator": "BASE64STDPAD_CHARS",
8044+
"entropy": 5.424476232986917,
8045+
"valid": true
8046+
}
8047+
}
8048+
]
8049+
},
80258050
{
80268051
"rule": "Shopify Token",
80278052
"severity": "high",

tests/samples/sentry

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1 @@
1+
sntrys_eyJpYXQiOjE3NDEyNjQzNTYuMDAwMCwidXJsIjoiaHR0cHM6Ly9zZW50cnkuaW8iLCJyZWdpb25fdXJsIjoiaHR0cHM6Ly91YS5zZW50cnkuaW8iLCJvcmciOiIifQ==v8D-whr2cUQK91Civi4yNoLRjC3MDZH5I2aMcs_j5GDv

0 commit comments

Comments
 (0)