added apilayer scanner #368

lonmarsDev · 2022-04-11T06:39:53Z

No description provided.

dustin-decker · 2022-04-24T01:08:03Z

pkg/detectors/apilayer/apilayer.go

+				}
+				body := string(bodyBytes)
+
+				if !strings.Contains(body, "invalid_access_key") {


Please invert this logic so that this will fail safely during a service outage. Check for contents of a successful response instead.

roxanne-tampus · 2022-05-14T06:31:42Z

pkg/detectors/apilayer/apilayer.go

+		}
+
+		if verify {
+			req, err := http.NewRequestWithContext(ctx, "GET", "http://apilayer.net/api/validate?access_key="+resMatch+"&number=09066200872", nil)


Is the detector's site is https://apilayer.com? If it is, they might have updated their top-level domain and also the endpoint on verifying the number https://apilayer.com/marketplace/description/number_verification-api. They also updated the key pattern into base64 from hex encoding.

Add Honeycomb detector by @MNThomson in trufflesecurity/trufflehog#687 Feature/scalr detector by @lonmarsDev in trufflesecurity/trufflehog#519 added websitepulse detector by @lonmarsDev in trufflesecurity/trufflehog#516 added tokeet detector by @lonmarsDev in trufflesecurity/trufflehog#515 Feature/salesmate detector by @lonmarsDev in trufflesecurity/trufflehog#514 added kanbantool detector by @lonmarsDev in trufflesecurity/trufflehog#513 added demio detector by @lonmarsDev in trufflesecurity/trufflehog#512 added heatmapapi detector by @lonmarsDev in trufflesecurity/trufflehog#509 added getresponse detector by @lonmarsDev in trufflesecurity/trufflehog#506 added codeclimate detector by @lonmarsDev in trufflesecurity/trufflehog#484 added flightlabs detector by @ladybug0125 in trufflesecurity/trufflehog#475 added prodpad detector by @lonmarsDev in trufflesecurity/trufflehog#470 added lemlist detector by @lonmarsDev in trufflesecurity/trufflehog#469 added formsite detector by @lonmarsDev in trufflesecurity/trufflehog#467 added docparser detector by @lonmarsDev in trufflesecurity/trufflehog#458 added parseur detector by @lonmarsDev in trufflesecurity/trufflehog#454 Added ecostruxureit detector by @roxanne-tampus in trufflesecurity/trufflehog#555 Added transferwise detector by @roxanne-tampus in trufflesecurity/trufflehog#558 Added holistic detector by @roxanne-tampus in trufflesecurity/trufflehog#556 Added twist detector by @roxanne-tampus in trufflesecurity/trufflehog#549 Added monkeylearn detector by @roxanne-tampus in trufflesecurity/trufflehog#553 Added gtmetrix detector by @roxanne-tampus in trufflesecurity/trufflehog#554 Added duply detector by @roxanne-tampus in trufflesecurity/trufflehog#552 Added braintreepayments detector by @roxanne-tampus in trufflesecurity/trufflehog#541 added apilayer scanner by @lonmarsDev in trufflesecurity/trufflehog#368 added appointed scanner by @lonmarsDev in trufflesecurity/trufflehog#425 [bug] - Fix the starting index value for plus line check. by @ahrav in trufflesecurity/trufflehog#734

added apilayer scanner

1e49478

dustin-decker reviewed Apr 24, 2022

View reviewed changes

fix comment

78e1412

roxanne-tampus reviewed May 14, 2022

View reviewed changes

fix comment

4506876

dustin-decker approved these changes Aug 25, 2022

View reviewed changes

dustin-decker merged commit 8709b4f into trufflesecurity:main Aug 25, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

added apilayer scanner #368

added apilayer scanner #368

lonmarsDev commented Apr 11, 2022

dustin-decker Apr 24, 2022

roxanne-tampus May 14, 2022

added apilayer scanner #368

added apilayer scanner #368

Conversation

lonmarsDev commented Apr 11, 2022

dustin-decker Apr 24, 2022

Choose a reason for hiding this comment

roxanne-tampus May 14, 2022

Choose a reason for hiding this comment