Uses of Package
com.h3xstream.findsecbugs.taintanalysis
-
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrameTaintFrame Representation of the dataflow value (fact) modeling taint state of local variables and values on stack, consists ofTaintvalues -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.common Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrame -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.crypto.cipher Class Description TaintFrame Representation of the dataflow value (fact) modeling taint state of local variables and values on stack, consists ofTaintvalues -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.file Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrameTaintFrame Representation of the dataflow value (fact) modeling taint state of local variables and values on stack, consists ofTaintvalues -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.injection Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrameTaintFrame Representation of the dataflow value (fact) modeling taint state of local variables and values on stack, consists ofTaintvaluesTaintFrameAdditionalVisitor -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.injection.command Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrame -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.injection.crlf Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrame -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.injection.custom Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrame -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.injection.formatter Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrame -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.injection.http Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrame -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.injection.ldap Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrame -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.injection.redirect Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrame -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.injection.smtp Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrame -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.injection.sql Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrame -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.injection.trust Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrame -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.injection.xml Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrameTaintFrame Representation of the dataflow value (fact) modeling taint state of local variables and values on stack, consists ofTaintvaluesTaintFrameAdditionalVisitor -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.kotlin Class Description TaintFrameAdditionalVisitor -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.password Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrameTaintFrame Representation of the dataflow value (fact) modeling taint state of local variables and values on stack, consists ofTaintvaluesTaintFrameAdditionalVisitor -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.scala Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrameTaintFrame Representation of the dataflow value (fact) modeling taint state of local variables and values on stack, consists ofTaintvalues -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.taintanalysis Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrameTaint.State Taint.Tag TaintAnalysis Implements taint dataflow operations, in particular meeting facts, transfer function is delegated toTaintFrameModelingVisitorTaintClassConfig Summary of information about a class related to taint analysis, allows to configure default behavior for return types and type casts.TaintConfig Map of taint summaries for all known methods and classes This class extends HashMap: The key is the method signature (ie : org/hibernate/Session.createQuery(Ljava/lang/String;)Lorg/hibernate/Query;) The value is the behavior of the method ("0" for param index 0 is tainted, "UNKNOWN" if the method does not become tainted base on the value, "TAINTED" if the result must be consider unsafe)TaintConfigLoader.TaintConfigReceiver Specifies what to do for each loaded summaryTaintDataflow Analysis object storing the result of taint analysis on a methodTaintFieldConfig Summary of information about a class field related to taint analysis, allows to configure default behavior for class fields.TaintFrame Representation of the dataflow value (fact) modeling taint state of local variables and values on stack, consists ofTaintvaluesTaintFrameAdditionalVisitor TaintMethodConfig Summary of information about a method related to taint analysis.
For loading sinks files please seeSinksLoaderTaintMethodConfigWithArgumentsAndLocation Summary of information about a taint analysis method with configured arguments and location of the call.
Can be used to fine-tune false-positives in specific classes.
Examples:
javax/servlet/http/HttpServletRequest.getAttribute("applicationConstant"):SAFE@org/apache/jsp/edit_jsp
javax/servlet/http/HttpServletRequest.getAttribute(UNKNOWN):SAFE@org/apache/jsp/constants_jspTaintTypeConfig Predecessor for method and class type summary configs -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.taintanalysis.data Class Description Taint.State -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.taintanalysis.extra Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrameTaintFrame Representation of the dataflow value (fact) modeling taint state of local variables and values on stack, consists ofTaintvaluesTaintFrameAdditionalVisitor -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.xpath Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrame -
Classes in com.h3xstream.findsecbugs.taintanalysis used by com.h3xstream.findsecbugs.xss Class Description Taint Representation of taint dataflow facts (dataflow values) for each slot inTaintFrame