- "Org_name" password
- "org_name" key
- "org_name" api
- "org_name" “filename:vim_settings.xml”
- "org_name" "Authorization: Bearer"
- "org_name" "Language: PHP"
- filename:manifest.xml
- filename:travis.yml
- filename:vim_settings.xml
- filename:database
- filename:secrets.yml password
- filename:.esmtprc password
- filename:passwd path:etc
- filename:dbeaver-data-sources.xml
- path:sites databases password
- filename:config.php dbpasswd
- language:python username
- language:php username
- language:sql username
- language:html password
- language:perl password
- language:shell username
- language:java api
- HOMEBREW_GITHUB_API_TOKEN language:shell
- SecretKey / Secrect_key / skey
- privatekey / private_key / pkey
- user_secret / userSecret
- admin_passwd / adminpasswd / adminPass etc
- “api keys”
- authorization_bearer:
- oauth
- auth
- authentication
- client_secret
- api_token:
- “api token”
- client_id
- password
- user_password
- user_pass
- passcode
- client_secret
- secret
- password hash
- OTP
- user auth
- user:name (user:admin)
- org:name (org:google type:users)
- in:login ( in:login)
- in:name ( in:name)
- fullname:firstname lastname (fullname: )
- in:email (data in:email)
- created:<2012–04–05
- created:>=2011–06–12
- created:2016–02–07 location:iceland
- created:2011–04–06..2013–01–14 in:username
- extension:pem private
- extension:ppk private
- extension:sql mysql dump
- extension:sql mysql dump password
- extension:json api.forecast.io
If you find any API key or credentials or any other sensitive information under test directory then do not report it because that is an intended behaviour.