Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cannot configure high entropy string option #587

Open
tnbach3chan opened this issue Jul 27, 2022 · 1 comment
Open

Cannot configure high entropy string option #587

tnbach3chan opened this issue Jul 27, 2022 · 1 comment
Labels
question The issue is a technical question related to the project. triaged The issue has been reviewed but has not been solved yet.

Comments

@tnbach3chan
Copy link

tnbach3chan commented Jul 27, 2022
edited

Hi team,

I am trying to lower string entropy index with the configuration below. However, it does not seem to work well. Could anyone help me with this problem?

config = {
    'plugins_used': [
        {
            'name': 'Base64HighEntropyString',
            'limit': 3.0,
        },
    ],
}

def test() :
    secrets = SecretsCollection()
    with transient_settings(config):
        secrets.scan_file('./directory/test.js')

    print(json.dumps(secrets.json(), indent=2))

Test secrets:

db = 'SoMeRandomlyGenerated12345Password@#!'
paypal_deets = 'au2(@Awi9Aj01-22,/\1394'
@lorenzodb1 lorenzodb1 added the pending The issue still needs to be reviewed by one of the maintainers. label Aug 24, 2022
@AIGeneratedUsername
Copy link

AIGeneratedUsername commented Dec 5, 2022
edited

A similar problem. I am trying to set any possible limit value between 1.0 and 8.0, but I see not difference. Some simple strings like "lxqt" are always detected as a secret (Base64 High Entropy String). Am I doing something wrong?

@lorenzodb1 lorenzodb1 added question The issue is a technical question related to the project. triaged The issue has been reviewed but has not been solved yet. and removed pending The issue still needs to be reviewed by one of the maintainers. labels May 16, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
question The issue is a technical question related to the project. triaged The issue has been reviewed but has not been solved yet.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@lorenzodb1 @AIGeneratedUsername @tnbach3chan