Secrets Detection

Nightfall's API Key Detector

Nightfall's API key supports generic API key detection plus vendor-specific and use-case-specific keys. Nightfall attempts to validate the key status of vendor-specific keys and JWT tokens.

Vendor SupportToken Support

• AWS

• Azure

• Coinbase

• Confluence

• Confluent

• Databricks

• Datadog

• ElasticSearch

• Facebook • GCP - Google Cloud

• Google API - All other Google Services

• GitHub

• GitLab

• Hugging Face

• JIRA

• Nightfall

• Notion

• Okta

• OpenAI

• PagerDuty

• Paypal

• Plaid

• Postmark

• Postman

• Rapid API

• Salesforce

• Sendgrid

• Slack

• Snyk

• Square

• Stripe

• Twitter

• Twilio

• Zapier

• Authentication Token

• CSRF Token

• OAuth Token

• Generic API Key

• Generic Token

• JWT

• Private Key

• Refresh Token

• Session Token

Nightfall identifies and validates popular crypto keys for locking or unlocking cryptographic functions, including authentication, authorization, and encryption.

• DSA Private Key

• RSA Private Key

• EC Private Key

• OpenSSH Private Key

• Private Key

• Encrypted Private Key

• PGP Private Key Block

You can send us a request for new Secrets detectors directly in Nightfall.

Last updated