From d0bff5a72b949119585333d027b127341adbccdb Mon Sep 17 00:00:00 2001 From: Jean-Louis Huynen Date: Tue, 17 Dec 2019 09:37:43 +0100 Subject: [PATCH] chg: [cryptopatterns] pimped the regex / tested --- bin/finder.py | 5 +---- 1 file changed, 1 insertion(+), 4 deletions(-) diff --git a/bin/finder.py b/bin/finder.py index 99f6f61..de3fe97 100644 --- a/bin/finder.py +++ b/bin/finder.py @@ -27,10 +27,7 @@ args = parser.parse_args() vulnpatterns = re.compile("(?i)(denial of service |\bXXE\b|remote code execution|\bopen redirect|OSVDB|\bvuln|\bCVE\b |\bXSS\b|\bReDoS\b|\bNVD\b|malicious|x−frame−options|attack|cross site |exploit|malicious|directory traversal |\bRCE\b|\bdos\b|\bXSRF \b|\bXSS\b|clickjack|session.fixation|hijack|\badvisory|\binsecure |security |\bcross−origin\b|unauthori[z|s]ed |infinite loop)") -cryptopatterns = re.compile("(?i) -(?Pcrypto|cryptographic|cryptography|encipherement|encryption|ciphers|cipherAES|DES|3DES|cipher|GPG|PGP|OpenSSL|SSH|wireguard|VPN|CBC|ECB|CTR|key|private([\s-]?)key|public([\s-]?)key|size|length|strenght|generation|randomness|entropy|prng|rng) -(?Passessment|lack of|bad|vulnerable|missing|unproper|unsuitable|breakable|broken|replace|assessment|pen([\s-]?)test|pentest|penetration([\s-]?)test|report|vulnerablity|replace|fix|issue|fixes|add|remove|check) -|.*(\g).*(\g)>*") +cryptopatterns = re.compile("(?i)(?Pcrypto|cryptographic|cryptography|encipherement|encryption|ciphers|cipherAES|DES|3DES|cipher|GPG|PGP|OpenSSL|SSH|wireguard|VPN|CBC|ECB|CTR|key|private([\s-]?)key|public([\s-]?)key|size|length|strenght|generation|randomness|entropy|prng|rng)(?Passessment|lack of|bad|vulnerable|missing|unproper|unsuitable|breakable|broken|replace|assessment|pen([\s-]?)test|pentest|penetration([\s-]?)test|report|vulnerablity|replace|fix|issue|fixes|add|remove|check)|.*(g).*(g)>*") cpatterns = re.compile("(?i)(double[-| ]free|buffer overflow|double free|race[-| ]condition)")