Inicio Explorar Ayuda
Iniciar sesión
LBP
/
gitleaks
espejo de https://github.com/gitleaks/gitleaks.git
4
0
Fork 0
Archivos Incidencias 0 Wiki
Rama: master
Ramas Etiquetas
gitleaks
/
cmd
/
generate
/
config
/
rules
/
newrelic.go

newrelic.go 2.4 KB
Permalink Histórico Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293 
  1. package rules
    2. 

  2. 

  3. import (
    4. 

  4. 	"github.com/zricethezav/gitleaks/v8/cmd/generate/config/utils"
    5. 

  5. 	"github.com/zricethezav/gitleaks/v8/cmd/generate/secrets"
    6. 

  6. 	"github.com/zricethezav/gitleaks/v8/config"
    7. 

  7. )
    8. 

  8. 

  9. func NewRelicUserID() *config.Rule {
    10. 

  10. 	// define rule
    11. 

  11. 	r := config.Rule{
    12. 

  12. 		RuleID:      "new-relic-user-api-key",
    13. 

  13. 		Description: "Discovered a New Relic user API Key, which could lead to compromised application insights and performance monitoring.",
    14. 

  14. 		Regex: utils.GenerateSemiGenericRegex([]string{
    15. 

  15. 			"new-relic",
    16. 

  16. 			"newrelic",
    17. 

  17. 			"new_relic",
    18. 

  18. 		}, `NRAK-[a-z0-9]{27}`, true),
    19. 

  19. 

  20. 		Keywords: []string{
    21. 

  21. 			"NRAK",
    22. 

  22. 		},
    23. 

  23. 	}
    24. 

  24. 

  25. 	// validate
    26. 

  26. 	tps := utils.GenerateSampleSecrets("new-relic", "NRAK-"+secrets.NewSecret(utils.AlphaNumeric("27")))
    27. 

  27. 	return utils.Validate(r, tps, nil)
    28. 

  28. }
    29. 

  29. 

  30. func NewRelicUserKey() *config.Rule {
    31. 

  31. 	// define rule
    32. 

  32. 	r := config.Rule{
    33. 

  33. 		RuleID:      "new-relic-user-api-id",
    34. 

  34. 		Description: "Found a New Relic user API ID, posing a risk to application monitoring services and data integrity.",
    35. 

  35. 		Regex: utils.GenerateSemiGenericRegex([]string{
    36. 

  36. 			"new-relic",
    37. 

  37. 			"newrelic",
    38. 

  38. 			"new_relic",
    39. 

  39. 		}, utils.AlphaNumeric("64"), true),
    40. 

  40. 

  41. 		Keywords: []string{
    42. 

  42. 			"new-relic",
    43. 

  43. 			"newrelic",
    44. 

  44. 			"new_relic",
    45. 

  45. 		},
    46. 

  46. 	}
    47. 

  47. 

  48. 	// validate
    49. 

  49. 	tps := utils.GenerateSampleSecrets("new-relic", secrets.NewSecret(utils.AlphaNumeric("64")))
    50. 

  50. 	return utils.Validate(r, tps, nil)
    51. 

  51. }
    52. 

  52. 

  53. func NewRelicBrowserAPIKey() *config.Rule {
    54. 

  54. 	// define rule
    55. 

  55. 	r := config.Rule{
    56. 

  56. 		RuleID:      "new-relic-browser-api-token",
    57. 

  57. 		Description: "Identified a New Relic ingest browser API token, risking unauthorized access to application performance data and analytics.",
    58. 

  58. 		Regex: utils.GenerateSemiGenericRegex([]string{
    59. 

  59. 			"new-relic",
    60. 

  60. 			"newrelic",
    61. 

  61. 			"new_relic",
    62. 

  62. 		}, `NRJS-[a-f0-9]{19}`, true),
    63. 

  63. 

  64. 		Keywords: []string{
    65. 

  65. 			"NRJS-",
    66. 

  66. 		},
    67. 

  67. 	}
    68. 

  68. 

  69. 	// validate
    70. 

  70. 	tps := utils.GenerateSampleSecrets("new-relic", "NRJS-"+secrets.NewSecret(utils.Hex("19")))
    71. 

  71. 	return utils.Validate(r, tps, nil)
    72. 

  72. }
    73. 

  73. 

  74. func NewRelicInsertKey() *config.Rule {
    75. 

  75. 	// define rule
    76. 

  76. 	r := config.Rule{
    77. 

  77. 		RuleID:      "new-relic-insert-key",
    78. 

  78. 		Description: "Discovered a New Relic insight insert key, compromising data injection into the platform.",
    79. 

  79. 		Regex: utils.GenerateSemiGenericRegex([]string{
    80. 

  80. 			"new-relic",
    81. 

  81. 			"newrelic",
    82. 

  82. 			"new_relic",
    83. 

  83. 		}, `NRII-[a-z0-9-]{32}`, true),
    84. 

  84. 

  85. 		Keywords: []string{
    86. 

  86. 			"NRII-",
    87. 

  87. 		},
    88. 

  88. 	}
    89. 

  89. 

  90. 	// validate
    91. 

  91. 	tps := utils.GenerateSampleSecrets("new-relic", "NRII-"+secrets.NewSecret(utils.Hex("32")))
    92. 

  92. 	return utils.Validate(r, tps, nil)
    93. 

  93. }
    94.