Skip to main content

Discord Bot Token



  • Documentation:

  • Summary: Discord is an instant messaging and VoIP application. Bots can read and send text messages, join VoIP discussions and manage servers via its API. A token is needed for authentication. This detector finds them.

  • IPs allowlist: This feature is not supported.

  • Scopes: A bot can have no permissions or it can be the administrator of a discord server. See the documentation.

Revoke the secret#

A token can be regenerated from the developer portal.

Check for suspicious activity#

Audit Log are accessible in each Discord server settings. You should review the logs of every Discord server accessible by the bot.

Details for Discord bot token#

  • Category: Messaging system

  • Company: Discord

  • High recall: False

  • Validity check available: True

  • Only valid secrets raise an alert: True

  • Minimum number of matches: 1

  • Occurrences found for one million commits: 2.74

  • Prefixed: False

  • PreValidators:

- type: FilenameBanlistPreValidator  banlist_extensions:  - ^(cs|x|p|s|r)?html5?~?$  - ^[aps]?cssc?~?$  - ^lock$  - ^mdx?~?$  - ^storyboard(c|er)?~?$  - ^xib$  banlist_filenames: []  check_binaries: false- type: ContentWhitelistPreValidator  patterns:  - '[m-z][a-z0-9_-]{23}\.[a-z0-9_-]{6}\.[a-z0-9_-]{27}'


- text: >'MZ1yGvKTjE0rY0cV8i47CjAa.uRHQPq.Xb1Mk2nEhe-4iUcrGOuegj57zMC')  apikey: MZ1yGvKTjE0rY0cV8i47CjAa.uRHQPq.Xb1Mk2nEhe-4iUcrGOuegj57zMC- text: >    "token": "Nzk5MjgxNDk0NDc2NDU1OTg3.YABS5g.2lmzECVlZv3vv6miVnUaKPQi2wI",  apikey: Nzk5MjgxNDk0NDc2NDU1OTg3.YABS5g.2lmzECVlZv3vv6miVnUaKPQi2wI