Merge pull request streaak#81 from dee-see/patch-1

New Relic keys
Latkes · Sep 19, 2020 · 0d75d39 · 0d75d39
2 parents d0c588a + 9d64e66
commit 0d75d39
Showing 1 changed file with 20 additions and 0 deletions.
diff --git a/README.md b/README.md
@@ -46,6 +46,8 @@ KeyHacks shows ways in which particular API keys found on a Bug Bounty Program c
 - [Mapbox API key](#Mapbox-API-Key)
 - [Microsoft Azure Tenant](#Microsoft-Azure-Tenant)
 - [Microsoft Shared Access Signatures (SAS)](#Microsoft-Shared-Access-Signatures-(SAS))
+- [New Relic Personal API Key (NerdGraph)](#New-Relic-Personal-API-Key-(NerdGraph))
+- [New Relic REST API](#New-Relic-REST-API)
 - [NPM token](#NPM-token)
 - [Pagerduty API token](#Pagerduty-API-token)
 - [Paypal client id and secret key](#Paypal-client-id-and-secret-key)
@@ -317,6 +319,24 @@ static void UseAccountSAS(string sasToken)
 }
 ```
 
+## [New Relic Personal API Key (NerdGraph)](https://docs.newrelic.com/docs/apis/nerdgraph/get-started/introduction-new-relic-nerdgraph#endpoint)
+
+```
+curl -X POST https://api.newrelic.com/graphql \
+-H 'Content-Type: application/json' \
+-H 'API-Key: YOUR_API_KEY' \
+-d '{ "query":  "{ requestContext { userId apiKey } }" } '
+```
+
+## [New Relic REST API](https://docs.newrelic.com/docs/apis/rest-api-v2/application-examples-v2/list-your-app-id-metric-timeslice-data-v2)
+
+```
+curl -X GET 'https://api.newrelic.com/v2/applications.json' \
+     -H "X-Api-Key:${APIKEY}" -i
+```
+
+If valid, test further to see if it's an [admin key](https://docs.newrelic.com/docs/apis/get-started/intro-apis/types-new-relic-api-keys#admin)
+
 ## [Heroku API key](https://devcenter.heroku.com/articles/platform-api-quickstart)
 ```
 curl -X POST https://api.heroku.com/apps -H "Accept: application/vnd.heroku+json; version=3" -H "Authorization: Bearer API_KEY_HERE"