win3zz

GitHub Search Syntax for Finding API Keys/Secrets/Tokens

As a security professional, it is important to conduct a thorough reconnaissance. With the increasing use of APIs nowadays, it has become paramount to keep access tokens and other API-related secrets secure in order to prevent leaks. However, despite technological advances, human error remains a factor, and many developers still unknowingly hardcode their API secrets into source code and commit them to public repositories. GitHub, being a widely popular platform for public code repositories, may inadvertently host such leaked secrets. To help identify these vulnerabilities, I have created a comprehensive search list using powerful search syntax that enables the search of thousands of leaked keys and secrets in a single search.

Search Syntax:

(path:*.{File_extension1} OR path:*.{File_extension-N}) AND ({Keyname1} OR {Keyname-N}) AND (({Signature/pattern1} OR {Signature/pattern-N}) AND ({PlatformTag1} OR {PlatformTag-N}))

Examples:

**1.

FezVrasta

# You can find some pictures here:
# https://www.reddit.com/r/homeassistant/comments/1qzf6x3/i_needed_a_compact_media_player_card_for_my/

type: custom:maxi-media-player
entities:
  - media_player.sonos_arc_ultra
sections:
  - player
player:
  artworkAsBackgroundBlur: 100

nikhilkumarsingh

from tkinter import *
from tkinter.colorchooser import askcolor


class Paint(object):

    DEFAULT_PEN_SIZE = 5.0
    DEFAULT_COLOR = 'black'

    def __init__(self):

Ultrawipf

// ==UserScript==
// @name         Youtube shorts redirector
// @version      0.1
// @description  Redirects all youtube shorts videos to normal video pages
// @author       Ultrawipf
// @match        https://*.youtube.com/shorts/*
// @icon         https://upload.wikimedia.org/wikipedia/commons/thumb/f/fc/Youtube_shorts_icon.svg/193px-Youtube_shorts_icon.svg.png
// @grant        none
// @run-at       document-start
// ==/UserScript==

gordonbrander

Content-Addressing Pi Sessions

Goal

Enable distribution of Pi session data across a network (including p2p) by content-addressing session files without modifying Pi itself.

Background

Pi Session Files

garrytan

Garry Tan's Mega Plan Review Mode

name: plan-mega-review
version: 2.0.0
description: |
  The most thorough plan review possible. Three modes: SCOPE EXPANSION (dream big,
  build the cathedral), HOLD SCOPE (review what's here with maximum rigor), and
  SCOPE REDUCTION (strip to essentials). Context-dependent defaults, but when the
 user says EXPANSION — go full send. Challenges premises, maps every failure mode,

rgreenjr

-- show running queries (pre 9.2)
SELECT procpid, age(clock_timestamp(), query_start), usename, current_query 
FROM pg_stat_activity 
WHERE current_query != '<IDLE>' AND current_query NOT ILIKE '%pg_stat_activity%' 
ORDER BY query_start desc;

-- show running queries (9.2)
SELECT pid, age(clock_timestamp(), query_start), usename, query 
FROM pg_stat_activity 
WHERE query != '<IDLE>' AND query NOT ILIKE '%pg_stat_activity%' 

arsho

• Run CMD as administrator
• Paste the following line:

  attrib -h -r -s /s /d X:\*.*
  

  Here X is the drive letter of the USB drive.

shu-yusa

#!/bin/sh
## Requires openssl, nodejs, jq
header='
{
  "kid": "12345",
  "alg": "RS256"
}'
payload='
{
  "iss": "https://example.com",

steipete

Twitter Mention Blocklist Policy

Public-safe version. Redacted. No handles, no links, no callouts.

Block immediately

• Strongly derogatory replies
• Crypto spam, token shills, wallet/contract junk
• Clear AI slop or reply-bot behavior
• Repetitive low-context spam