| Package | Description |
|---|---|
| com.h3xstream.findsecbugs | |
| com.h3xstream.findsecbugs.injection | |
| com.h3xstream.findsecbugs.injection.command | |
| com.h3xstream.findsecbugs.injection.crlf | |
| com.h3xstream.findsecbugs.injection.custom | |
| com.h3xstream.findsecbugs.injection.formatter | |
| com.h3xstream.findsecbugs.injection.http | |
| com.h3xstream.findsecbugs.injection.ldap | |
| com.h3xstream.findsecbugs.injection.sql | |
| com.h3xstream.findsecbugs.injection.trust |
Trust Boundary Violation is fancy name to describe tainted value passed directly to session attribute.
|
| com.h3xstream.findsecbugs.scala | |
| com.h3xstream.findsecbugs.taintanalysis | |
| com.h3xstream.findsecbugs.xpath |
This package focus on the identification of XPath injection
vulnerability from various APIs:
javax.xml (JDK API)
org.apache.xpath
org.apache.commons.jxpath (Apache Commons) TODO
org.xmldb.api.modules (Apache Xindice) TODO
|
| com.h3xstream.findsecbugs.xss |
| Modifier and Type | Method and Description |
|---|---|
protected int |
HttpResponseSplittingDetector.getPriority(Taint taint) |
| Modifier and Type | Method and Description |
|---|---|
protected int |
AbstractInjectionDetector.getPriority(Taint taint)
The default implementation of
getPriority() can be overridden if the severity and the confidence for risk
is particular. |
| Modifier and Type | Method and Description |
|---|---|
protected int |
CommandInjectionDetector.getPriority(Taint taint) |
| Modifier and Type | Method and Description |
|---|---|
protected int |
CrlfLogInjectionDetector.getPriority(Taint taint) |
| Modifier and Type | Method and Description |
|---|---|
protected int |
CustomInjectionDetector.getPriority(Taint taint) |
| Modifier and Type | Method and Description |
|---|---|
protected int |
FormatStringManipulationDetector.getPriority(Taint taint) |
| Modifier and Type | Method and Description |
|---|---|
protected int |
HttpParameterPollutionDetector.getPriority(Taint taint) |
| Modifier and Type | Method and Description |
|---|---|
protected int |
LdapInjectionDetector.getPriority(Taint taint) |
| Modifier and Type | Method and Description |
|---|---|
protected int |
SqlInjectionDetector.getPriority(Taint taint) |
protected int |
AndroidSqlInjectionDetector.getPriority(Taint taint) |
| Modifier and Type | Method and Description |
|---|---|
protected int |
TrustBoundaryViolationValueDetector.getPriority(Taint taint)
=
All or nothing :
If the taint to sink path is found, it is mark as high
If the source is not confirm, it is mark as low.
|
protected int |
TrustBoundaryViolationAttributeDetector.getPriority(Taint taint)
All or nothing :
If the taint to sink path is found, it is mark as high
If the source is not confirm, it is mark as low.
|
| Modifier and Type | Method and Description |
|---|---|
protected int |
XssTwirlDetector.getPriority(Taint taint) |
protected int |
XssMvcApiDetector.getPriority(Taint taint) |
protected int |
ScalaSensitiveDataExposureDetector.getPriority(Taint taint) |
| Modifier and Type | Method and Description |
|---|---|
Taint |
TaintFrameModelingVisitor.getDefaultValue() |
Taint |
TaintMethodConfig.getOutputTaint()
Returns the output taint of the method describing the taint transfer
|
static Taint |
Taint.merge(Taint a,
Taint b)
Returns the merge of the facts such that it can represent any of them
|
Taint |
Taint.setDebugInfo(String debugInfo)
Sets info for debugging purposes (consumes much memory)
|
static Taint |
Taint.valueOf(String stateName)
Constructs a new instance of taint from the specified state name
|
static Taint |
Taint.valueOf(Taint.State state)
Constructs a new instance of taint from the specified state
|
| Modifier and Type | Method and Description |
|---|---|
static Taint |
Taint.merge(Taint a,
Taint b)
Returns the merge of the facts such that it can represent any of them
|
void |
TaintMethodConfig.setOuputTaint(Taint taint)
Sets the output taint of the method describing the taint transfer,
copy of the parameter is made and variable index is invalidated
|
| Constructor and Description |
|---|
Taint(Taint taint)
Creates a hard copy of the specified Taint instance
|
| Modifier and Type | Method and Description |
|---|---|
protected int |
XPathInjectionDetector.getPriority(Taint taint) |
| Modifier and Type | Method and Description |
|---|---|
protected int |
XssServletDetector.getPriority(Taint taint) |
protected int |
XssJspDetector.getPriority(Taint taint) |
Copyright © 2017. All rights reserved.