| Class | Description |
|---|---|
| BadHexadecimalConversionDetector | |
| CipherWithNoIntegrityDetector |
This detector mark cipher usage that doesn't provide integrity.
|
| CustomMessageDigestDetector |
Implementing a custom solution for message digest should not promote.
|
| DesUsageDetector |
Cipher identify
|
| EsapiEncryptorDetector |
This detector identify the usage of ESAPI cryptography components.
|
| HazelcastSymmetricEncryptionDetector |
http://code.google.com/p/hazelcast/wiki/Encryption
|
| InsufficientKeySizeBlowfishDetector | |
| InsufficientKeySizeRsaDetector |
Similar to the blowfish key size detector
|
| NullCipherDetector | |
| RsaNoPaddingDetector |
Ref: http://cwe.mitre.org/data/definitions/780.html
|
| StaticIvDetector |
The main goal of the this detector is to find encryption being done with static initialization vector (IV).
|
| UnencryptedSocketDetector | |
| WeakMessageDigestDetector |
Identify the use MD2 and MD5 hashing function and recommend the
use of SHA functions.
|
| WeakTrustManagerDetector |
The first reflex for developer that encounter web services that have unsigned certificate
is often to trust all certificates.
|
Copyright © 2015. All rights reserved.