| Class | Description |
|---|---|
| BadHexadecimalConversionDetector | |
| CipherWithNoIntegrityDetector |
This detector mark cipher usage that doesn't provide integrity.
|
| CustomMessageDigestDetector |
Implementing a custom solution for message digest should not promote.
|
| DesUsageDetector |
Cipher identify
DES/CBC/NoPadding (56 bit)
DES/CBC/PKCS5Padding (56 bit)
DES/ECB/NoPadding (56 bit)
DES/ECB/PKCS5Padding (56 bit)
DESede/CBC/NoPadding (168 bit)
DESede/CBC/PKCS5Padding (168 bit)
DESede/ECB/NoPadding (168 bit)
DESede/ECB/PKCS5Padding (168 bit)
Ref: Partial list of ciphers
|
| EsapiEncryptorDetector |
This detector identify the usage of ESAPI cryptography components.
|
| HazelcastSymmetricEncryptionDetector |
http://code.google.com/p/hazelcast/wiki/Encryption
|
| InsecureSmtpSslDetector | |
| InsufficientKeySizeBlowfishDetector | |
| InsufficientKeySizeRsaDetector |
Similar to the blowfish key size detector
|
| NullCipherDetector | |
| RsaNoPaddingDetector |
Ref: http://cwe.mitre.org/data/definitions/780.html
|
| StaticIvDetector |
The main goal of the this detector is to find encryption being done with static initialization vector (IV).
|
| UnencryptedServerSocketDetector | |
| UnencryptedSocketDetector | |
| WeakMessageDigestDetector |
Identifies the use of MD2, MD5 and SHA1 hash function and recommends the
use of modern functions.
|
| WeakTLSDetector | |
| WeakTrustManagerDetector |
The first reflex for developer that encounter web services that have unsigned certificate
is often to trust all certificates.
|
Copyright © 2017. All rights reserved.