Skip navigation links
B C F G I L M O S T U V W 

B

BusinessImpactFactor - Class in us.springett.owasp.riskrating.factors
The business impact stems from the technical impact, but requires a deep understanding of what is important to the company running the application.
BusinessImpactFactor.FinancialDamage - Enum in us.springett.owasp.riskrating.factors
How much financial damage will result from an exploit?
BusinessImpactFactor.NonCompliance - Enum in us.springett.owasp.riskrating.factors
How much exposure does non-compliance introduce?
BusinessImpactFactor.PrivacyViolation - Enum in us.springett.owasp.riskrating.factors
How much personally identifiable information could be disclosed?
BusinessImpactFactor.ReputationDamage - Enum in us.springett.owasp.riskrating.factors
Would an exploit result in reputation damage that would harm the business?

C

calculateScore() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
Calculates a OWASP Risk Rating score.

F

fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.FinancialDamage
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.NonCompliance
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.PrivacyViolation
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.ReputationDamage
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfAccountability
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfAvailability
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfConfidentiality
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfIntegrity
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Motive
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Opportunity
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Size
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.SkillLevel
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.Awareness
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.EaseOfDiscovery
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.EaseOfExploit
 
fromDouble(double) - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.IntrusionDetection
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.FinancialDamage
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.NonCompliance
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.PrivacyViolation
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.ReputationDamage
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfAccountability
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfAvailability
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfConfidentiality
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfIntegrity
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Motive
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Opportunity
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Size
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.SkillLevel
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.Awareness
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.EaseOfDiscovery
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.EaseOfExploit
 
fromString(String) - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.IntrusionDetection
 
fromVector(String) - Static method in class us.springett.owasp.riskrating.OwaspRiskRating
 

G

getAwareness() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getBusinessImpact() - Method in class us.springett.owasp.riskrating.Score
 
getBusinessImpactScore() - Method in class us.springett.owasp.riskrating.Score
 
getEaseOfDiscovery() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getEaseOfExploit() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getFinancialDamage() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getIntrusionDetection() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.FinancialDamage
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.NonCompliance
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.PrivacyViolation
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.ReputationDamage
 
getLikelihood() - Method in interface us.springett.owasp.riskrating.factors.ILikelihood
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfAccountability
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfAvailability
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfConfidentiality
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfIntegrity
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Motive
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Opportunity
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Size
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.SkillLevel
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.Awareness
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.EaseOfDiscovery
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.EaseOfExploit
 
getLikelihood() - Method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.IntrusionDetection
 
getLikelihood() - Method in class us.springett.owasp.riskrating.Score
 
getLikelihoodScore() - Method in class us.springett.owasp.riskrating.Score
 
getLossOfAccountability() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getLossOfAvailability() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getLossOfConfidentiality() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getLossOfIntegrity() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getMotive() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getNonCompliance() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getOpportunity() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getPrivacyViolation() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getReputationDamage() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getSize() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getSkillLevel() - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
getTechnicalImpact() - Method in class us.springett.owasp.riskrating.Score
 
getTechnicalImpactScore() - Method in class us.springett.owasp.riskrating.Score
 

I

ILikelihood - Interface in us.springett.owasp.riskrating.factors
 

L

Level - Enum in us.springett.owasp.riskrating
 

M

MissingFactorException - Exception in us.springett.owasp.riskrating
 
MissingFactorException() - Constructor for exception us.springett.owasp.riskrating.MissingFactorException
 

O

OWASP_RR_VECTOR_PATTERN - Static variable in class us.springett.owasp.riskrating.OwaspRiskRating
 
OwaspRiskRating - Class in us.springett.owasp.riskrating
 
OwaspRiskRating() - Constructor for class us.springett.owasp.riskrating.OwaspRiskRating
 

S

Score - Class in us.springett.owasp.riskrating
Defines a Score object that defines: - Threat Agent and Vulnerability (likelihood) score - Technical Impact score - Business Impact score
Score(double, double, double) - Constructor for class us.springett.owasp.riskrating.Score
 

T

TechnicalImpactFactor - Class in us.springett.owasp.riskrating.factors
Technical impact can be broken down into factors aligned with the traditional security areas of concern: confidentiality, integrity, availability, and accountability.
TechnicalImpactFactor.LossOfAccountability - Enum in us.springett.owasp.riskrating.factors
Are the threat agents' actions traceable to an individual?
TechnicalImpactFactor.LossOfAvailability - Enum in us.springett.owasp.riskrating.factors
How much service could be lost and how vital is it?
TechnicalImpactFactor.LossOfConfidentiality - Enum in us.springett.owasp.riskrating.factors
How much data could be disclosed and how sensitive is it?
TechnicalImpactFactor.LossOfIntegrity - Enum in us.springett.owasp.riskrating.factors
How much data could be corrupted and how damaged is it?
ThreatAgentFactor - Class in us.springett.owasp.riskrating.factors
This set of factors are related to the threat agent involved.
ThreatAgentFactor.Motive - Enum in us.springett.owasp.riskrating.factors
How motivated is this group of threat agents to find and exploit this vulnerability?
ThreatAgentFactor.Opportunity - Enum in us.springett.owasp.riskrating.factors
What resources and opportunities are required for this group of threat agents to find and exploit this vulnerability?
ThreatAgentFactor.Size - Enum in us.springett.owasp.riskrating.factors
How large is this group of threat agents?
ThreatAgentFactor.SkillLevel - Enum in us.springett.owasp.riskrating.factors
How technically skilled is this group of threat agents?

U

us.springett.owasp.riskrating - package us.springett.owasp.riskrating
 
us.springett.owasp.riskrating.factors - package us.springett.owasp.riskrating.factors
 

V

valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.FinancialDamage
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.NonCompliance
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.PrivacyViolation
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.ReputationDamage
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfAccountability
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfAvailability
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfConfidentiality
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfIntegrity
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Motive
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Opportunity
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Size
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.SkillLevel
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.Awareness
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.EaseOfDiscovery
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.EaseOfExploit
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.IntrusionDetection
Returns the enum constant of this type with the specified name.
valueOf(String) - Static method in enum us.springett.owasp.riskrating.Level
Returns the enum constant of this type with the specified name.
values() - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.FinancialDamage
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.NonCompliance
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.PrivacyViolation
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.BusinessImpactFactor.ReputationDamage
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfAccountability
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfAvailability
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfConfidentiality
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.TechnicalImpactFactor.LossOfIntegrity
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Motive
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Opportunity
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.Size
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.ThreatAgentFactor.SkillLevel
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.Awareness
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.EaseOfDiscovery
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.EaseOfExploit
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.factors.VulnerabilityFactor.IntrusionDetection
Returns an array containing the constants of this enum type, in the order they are declared.
values() - Static method in enum us.springett.owasp.riskrating.Level
Returns an array containing the constants of this enum type, in the order they are declared.
VECTOR_PATTERN - Static variable in class us.springett.owasp.riskrating.OwaspRiskRating
 
VulnerabilityFactor - Class in us.springett.owasp.riskrating.factors
This set of factors are related to the vulnerability involved.
VulnerabilityFactor.Awareness - Enum in us.springett.owasp.riskrating.factors
How well known is this vulnerability to this group of threat agents?
VulnerabilityFactor.EaseOfDiscovery - Enum in us.springett.owasp.riskrating.factors
How easy is it for this group of threat agents to discover this vulnerability?
VulnerabilityFactor.EaseOfExploit - Enum in us.springett.owasp.riskrating.factors
How easy is it for this group of threat agents to actually exploit this vulnerability?
VulnerabilityFactor.IntrusionDetection - Enum in us.springett.owasp.riskrating.factors
How likely is an exploit to be detected?

W

with(ThreatAgentFactor.SkillLevel) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(ThreatAgentFactor.Motive) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(ThreatAgentFactor.Opportunity) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(ThreatAgentFactor.Size) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(VulnerabilityFactor.EaseOfDiscovery) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(VulnerabilityFactor.EaseOfExploit) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(VulnerabilityFactor.Awareness) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(VulnerabilityFactor.IntrusionDetection) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(TechnicalImpactFactor.LossOfConfidentiality) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(TechnicalImpactFactor.LossOfIntegrity) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(TechnicalImpactFactor.LossOfAvailability) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(TechnicalImpactFactor.LossOfAccountability) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(BusinessImpactFactor.FinancialDamage) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(BusinessImpactFactor.ReputationDamage) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(BusinessImpactFactor.NonCompliance) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
with(BusinessImpactFactor.PrivacyViolation) - Method in class us.springett.owasp.riskrating.OwaspRiskRating
 
B C F G I L M O S T U V W 
Skip navigation links

Copyright © 2019–2022. All rights reserved.