[FEATURE] Enhancing secret detection with regex rules #2191

ksg97031 · 2023-06-20T02:37:33Z

Hello,

I believe that simply searching for keywords like 'api' or 'key' is insufficient when trying to �detect a secret. Have you considered using regular expression rules to detect secret patterns?

As you are already know, it's quite simple to find an example demonstrating the implementation of this approach.
https://github.com/dwisiswant0/apkleaks/blob/master/config/regexes.json

github-actions · 2023-06-20T02:37:47Z

👋 @ksg97031
Issues is only for reporting a bug/feature request. For limited support, questions, and discussions, please join MobSF Slack channel
Please include all the requested and relevant information when opening a bug report. Improper reports will be closed without any response.

ohyeah521 · 2023-06-20T08:38:15Z

Regularity is indeed a good strategy, but it will increase system overhead. If the apk file is large and a single smali file exceeds 5m, the matching speed will be extremely slow

ajinabraham · 2023-07-23T20:14:06Z

Tracked separately.

ksg97031 added the enhancement MobSF enhancements and feature requests label Jun 20, 2023

ksg97031 assigned ajinabraham Jun 20, 2023

ajinabraham closed this as completed Jul 23, 2023

ajinabraham mentioned this issue Jul 23, 2023

All Enhancements are tracked here (Not top priority) #264

Open

94 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[FEATURE] Enhancing secret detection with regex rules #2191

[FEATURE] Enhancing secret detection with regex rules #2191

ksg97031 commented Jun 20, 2023

github-actions bot commented Jun 20, 2023

ohyeah521 commented Jun 20, 2023

ajinabraham commented Jul 23, 2023

[FEATURE] Enhancing secret detection with regex rules #2191

[FEATURE] Enhancing secret detection with regex rules #2191

Comments

ksg97031 commented Jun 20, 2023

github-actions bot commented Jun 20, 2023

ohyeah521 commented Jun 20, 2023

ajinabraham commented Jul 23, 2023