Secret Scanning Patterns

Use these patterns in CI/CD pipelines, git hooks, or code review to detect accidentally committed secrets.

Secret TypePattern
AWS Access KeyAKIA[0-9A-Z]{16}
GitHub Tokengh[pousr]_[A-Za-z0-9_]{36,}
Private Key-----BEGIN .* PRIVATE KEY-----
JWT TokeneyJ[A-Za-z0-9_-]+\.eyJ[A-Za-z0-9_-]+\.[A-Za-z0-9_-]+
Connection String(postgres|mysql|mongodb)://[^\s]+
Generic API Keyapi[_-]?key['":\s]+['"]([\w\-]{16,64})
Slack Tokenxox[baprs]-[0-9A-Za-z\-]{10,}

Related Tools

๐Ÿ”’ SSL Certificate Checker Check SSL certificate status & expiry ๐Ÿงฎ Password Entropy Calculator Calculate password entropy & strength ๐Ÿ›ก XSS Reference XSS payloads and defense reference ๐Ÿ—ƒ SQL Injection Reference SQL injection testing & defense guide ๐Ÿ›ก CSP Policy Generator Generate Content Security Policy ๐Ÿ”‘ OAuth 2.0 Builder Build OAuth 2.0 auth request params ๐Ÿ” Sensitive Info Detector Detect secrets & passwords in text ๐Ÿ”’ Hash Algorithm Reference Hash algorithm security reference ๐Ÿ” SSL/TLS Reference SSL/TLS versions & cipher suites ref ๐ŸŽซ JWT Best Practices JWT security guide & common errors ๐ŸŒ CORS Security Guide CORS cross-origin security practices โšก Rate Limiting Patterns Token bucket, sliding window algos