codesake-dawn 0.85 → 1.0.0.rc1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/.ruby-version +1 -1
- data/.travis.yml +1 -1
- data/Changelog.md +67 -1
- data/README.md +137 -29
- data/Rakefile +29 -2
- data/Roadmap.md +10 -93
- data/features/{dawn_complains_about_an_incorrect_command_line.feature → dawn_complains_about_an_incorrect_command_line.feature.disabled} +0 -0
- data/features/{dawn_scan_a_secure_sinatra_app.feature → dawn_scan_a_secure_sinatra_app.feature.disabled} +0 -0
- data/features/{dawn_scan_a_vulnerable_sinatra_app.feature → dawn_scan_a_vulnerable_sinatra_app.feature.disabled} +0 -0
- data/lib/codesake/dawn/kb/basic_check.rb +7 -1
- data/lib/codesake/dawn/kb/cve_2004_0755.rb +32 -0
- data/lib/codesake/dawn/kb/cve_2004_0983.rb +30 -0
- data/lib/codesake/dawn/kb/cve_2005_1992.rb +30 -0
- data/lib/codesake/dawn/kb/cve_2005_2337.rb +32 -0
- data/lib/codesake/dawn/kb/cve_2006_1931.rb +32 -0
- data/lib/codesake/dawn/kb/cve_2006_2582.rb +30 -0
- data/lib/codesake/dawn/kb/cve_2006_3694.rb +31 -0
- data/lib/codesake/dawn/kb/cve_2006_4112.rb +29 -0
- data/lib/codesake/dawn/kb/cve_2006_5467.rb +30 -0
- data/lib/codesake/dawn/kb/cve_2006_6303.rb +30 -0
- data/lib/codesake/dawn/kb/cve_2006_6852.rb +29 -0
- data/lib/codesake/dawn/kb/cve_2006_6979.rb +31 -0
- data/lib/codesake/dawn/kb/cve_2007_0469.rb +29 -0
- data/lib/codesake/dawn/kb/cve_2007_5162.rb +30 -0
- data/lib/codesake/dawn/kb/cve_2007_5379.rb +29 -0
- data/lib/codesake/dawn/kb/cve_2007_5380.rb +29 -0
- data/lib/codesake/dawn/kb/cve_2007_5770.rb +32 -0
- data/lib/codesake/dawn/kb/cve_2007_6077.rb +31 -0
- data/lib/codesake/dawn/kb/cve_2007_6612.rb +30 -0
- data/lib/codesake/dawn/kb/cve_2008_1145.rb +40 -0
- data/lib/codesake/dawn/kb/cve_2008_1891.rb +40 -0
- data/lib/codesake/dawn/kb/cve_2008_2376.rb +32 -0
- data/lib/codesake/dawn/kb/cve_2008_2662.rb +35 -0
- data/lib/codesake/dawn/kb/cve_2008_2663.rb +34 -0
- data/lib/codesake/dawn/kb/cve_2008_2664.rb +35 -0
- data/lib/codesake/dawn/kb/cve_2008_2725.rb +33 -0
- data/lib/codesake/dawn/kb/cve_2008_3655.rb +39 -0
- data/lib/codesake/dawn/kb/cve_2008_3657.rb +39 -0
- data/lib/codesake/dawn/kb/cve_2008_3790.rb +32 -0
- data/lib/codesake/dawn/kb/cve_2008_3905.rb +38 -0
- data/lib/codesake/dawn/kb/cve_2008_4094.rb +29 -0
- data/lib/codesake/dawn/kb/cve_2008_4310.rb +103 -0
- data/lib/codesake/dawn/kb/cve_2008_5189.rb +29 -0
- data/lib/codesake/dawn/kb/cve_2008_7248.rb +29 -0
- data/lib/codesake/dawn/kb/cve_2009_4078.rb +31 -0
- data/lib/codesake/dawn/kb/cve_2009_4124.rb +32 -0
- data/lib/codesake/dawn/kb/cve_2009_4214.rb +29 -0
- data/lib/codesake/dawn/kb/cve_2010_2489.rb +62 -0
- data/lib/codesake/dawn/kb/cve_2010_3933.rb +29 -0
- data/lib/codesake/dawn/kb/cve_2011_0188.rb +69 -0
- data/lib/codesake/dawn/kb/cve_2011_0739.rb +30 -0
- data/lib/codesake/dawn/kb/cve_2011_1004.rb +36 -0
- data/lib/codesake/dawn/kb/cve_2011_1005.rb +33 -0
- data/lib/codesake/dawn/kb/cve_2011_2686.rb +31 -0
- data/lib/codesake/dawn/kb/cve_2011_2705.rb +34 -0
- data/lib/codesake/dawn/kb/cve_2011_2930.rb +29 -0
- data/lib/codesake/dawn/kb/cve_2011_3009.rb +30 -0
- data/lib/codesake/dawn/kb/cve_2011_3187.rb +30 -0
- data/lib/codesake/dawn/kb/cve_2011_4319.rb +30 -0
- data/lib/codesake/dawn/kb/cve_2013_2090.rb +30 -0
- data/lib/codesake/dawn/kb/cve_2013_4457.rb +1 -1
- data/lib/codesake/dawn/kb/dependency_check.rb +2 -2
- data/lib/codesake/dawn/kb/nokogiri_dos_20131217.rb +1 -0
- data/lib/codesake/dawn/kb/operating_system_check.rb +4 -3
- data/lib/codesake/dawn/kb/ruby_version_check.rb +9 -3
- data/lib/codesake/dawn/knowledge_base.rb +113 -0
- data/lib/codesake/dawn/padrino.rb +1 -1
- data/lib/codesake/dawn/version.rb +14 -2
- data/lib/tasks/dawn.rake +4 -0
- data/spec/lib/dawn/codesake_knowledgebase_spec.rb +256 -0
- data/spec/lib/dawn/{codesake_padrino_engine_spec.rb → codesake_padrino_engine_disabled.rb} +0 -0
- data/spec/lib/dawn/{codesake_rails_engine_spec.rb → codesake_rails_engine_disabled.rb} +0 -0
- data/spec/lib/dawn/{codesake_sinatra_engine_spec.rb → codesake_sinatra_engine_disabled.rb} +5 -5
- data/spec/lib/kb/codesake_cve_2013_4457_spec.rb +40 -0
- data/spec/lib/kb/{codesake_cve_2013_6416.rb → codesake_cve_2013_6416_spec.rb} +5 -5
- data/spec/lib/kb/codesake_ruby_version_check_spec.rb +1 -0
- data/spec/lib/kb/cve_2004_0983_spec.rb +8 -0
- data/spec/lib/kb/cve_2005_1992_spec.rb +8 -0
- data/spec/lib/kb/cve_2005_2337_spec.rb +8 -0
- data/spec/lib/kb/cve_2006_1931_spec.rb +8 -0
- data/spec/lib/kb/cve_2006_2582_spec.rb +8 -0
- data/spec/lib/kb/cve_2006_3694_spec.rb +8 -0
- data/spec/lib/kb/cve_2006_4112_spec.rb +8 -0
- data/spec/lib/kb/cve_2006_5467_spec.rb +8 -0
- data/spec/lib/kb/cve_2006_6303_spec.rb +8 -0
- data/spec/lib/kb/cve_2006_6852_spec.rb +8 -0
- data/spec/lib/kb/cve_2006_6979_spec.rb +8 -0
- data/spec/lib/kb/cve_2007_0469_spec.rb +8 -0
- data/spec/lib/kb/cve_2007_5162_spec.rb +8 -0
- data/spec/lib/kb/cve_2007_5379_spec.rb +8 -0
- data/spec/lib/kb/cve_2007_5380_spec.rb +8 -0
- data/spec/lib/kb/cve_2007_5770_spec.rb +8 -0
- data/spec/lib/kb/cve_2007_6077_spec.rb +8 -0
- data/spec/lib/kb/cve_2007_6612_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_1145_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_1891_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_2376_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_2662_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_2663_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_2664_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_2725_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_3655_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_3657_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_3790_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_3905_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_4094_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_4310_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_5189_spec.rb +8 -0
- data/spec/lib/kb/cve_2008_7248_spec.rb +8 -0
- data/spec/lib/kb/cve_2009_4078_spec.rb +8 -0
- data/spec/lib/kb/cve_2009_4124_spec.rb +8 -0
- data/spec/lib/kb/cve_2009_4214_spec.rb +8 -0
- data/spec/lib/kb/cve_2010_2489_spec.rb +8 -0
- data/spec/lib/kb/cve_2010_3933_spec.rb +8 -0
- data/spec/lib/kb/cve_2011_0188_spec.rb +8 -0
- data/spec/lib/kb/cve_2011_0739_spec.rb +8 -0
- data/spec/lib/kb/cve_2011_1004_spec.rb +8 -0
- data/spec/lib/kb/cve_2011_1005_spec.rb +8 -0
- data/spec/lib/kb/cve_2011_2686_spec.rb +8 -0
- data/spec/lib/kb/cve_2011_2705_spec.rb +8 -0
- data/spec/lib/kb/cve_2011_2930_spec.rb +8 -0
- data/spec/lib/kb/cve_2011_3009_spec.rb +8 -0
- data/spec/lib/kb/cve_2011_3187_spec.rb +8 -0
- data/spec/lib/kb/cve_2011_4319_spec.rb +8 -0
- data/spec/lib/kb/cve_2013_2090_spec.rb +8 -0
- data/spec/lib/kb/{owasp_ror_cheatsheet_spec.rb → owasp_ror_cheatsheet_disabled.rb} +0 -0
- metadata +172 -395
- data/Competitive_matrix.md +0 -177
- data/TODO.md +0 -64
- data/spec/support/hello_world_3.0.19/Gemfile +0 -31
- data/spec/support/hello_world_3.0.19/README +0 -256
- data/spec/support/hello_world_3.0.19/Rakefile +0 -7
- data/spec/support/hello_world_3.0.19/app/controllers/application_controller.rb +0 -3
- data/spec/support/hello_world_3.0.19/app/helpers/application_helper.rb +0 -2
- data/spec/support/hello_world_3.0.19/app/views/layouts/application.html.erb +0 -14
- data/spec/support/hello_world_3.0.19/config.ru +0 -4
- data/spec/support/hello_world_3.0.19/config/application.rb +0 -42
- data/spec/support/hello_world_3.0.19/config/boot.rb +0 -6
- data/spec/support/hello_world_3.0.19/config/database.yml +0 -22
- data/spec/support/hello_world_3.0.19/config/environment.rb +0 -5
- data/spec/support/hello_world_3.0.19/config/environments/development.rb +0 -26
- data/spec/support/hello_world_3.0.19/config/environments/production.rb +0 -49
- data/spec/support/hello_world_3.0.19/config/environments/test.rb +0 -35
- data/spec/support/hello_world_3.0.19/config/initializers/backtrace_silencers.rb +0 -7
- data/spec/support/hello_world_3.0.19/config/initializers/inflections.rb +0 -10
- data/spec/support/hello_world_3.0.19/config/initializers/mime_types.rb +0 -5
- data/spec/support/hello_world_3.0.19/config/initializers/secret_token.rb +0 -7
- data/spec/support/hello_world_3.0.19/config/initializers/session_store.rb +0 -8
- data/spec/support/hello_world_3.0.19/config/locales/en.yml +0 -5
- data/spec/support/hello_world_3.0.19/config/routes.rb +0 -58
- data/spec/support/hello_world_3.0.19/db/seeds.rb +0 -7
- data/spec/support/hello_world_3.0.19/lib/tasks/.gitkeep +0 -0
- data/spec/support/hello_world_3.0.19/public/404.html +0 -26
- data/spec/support/hello_world_3.0.19/public/422.html +0 -26
- data/spec/support/hello_world_3.0.19/public/500.html +0 -26
- data/spec/support/hello_world_3.0.19/public/favicon.ico +0 -0
- data/spec/support/hello_world_3.0.19/public/images/rails.png +0 -0
- data/spec/support/hello_world_3.0.19/public/index.html +0 -239
- data/spec/support/hello_world_3.0.19/public/javascripts/application.js +0 -2
- data/spec/support/hello_world_3.0.19/public/javascripts/controls.js +0 -965
- data/spec/support/hello_world_3.0.19/public/javascripts/dragdrop.js +0 -974
- data/spec/support/hello_world_3.0.19/public/javascripts/effects.js +0 -1123
- data/spec/support/hello_world_3.0.19/public/javascripts/prototype.js +0 -6001
- data/spec/support/hello_world_3.0.19/public/javascripts/rails.js +0 -202
- data/spec/support/hello_world_3.0.19/public/robots.txt +0 -5
- data/spec/support/hello_world_3.0.19/public/stylesheets/.gitkeep +0 -0
- data/spec/support/hello_world_3.0.19/script/rails +0 -6
- data/spec/support/hello_world_3.0.19/test/performance/browsing_test.rb +0 -9
- data/spec/support/hello_world_3.0.19/test/test_helper.rb +0 -13
- data/spec/support/hello_world_3.0.19/vendor/plugins/.gitkeep +0 -0
- data/spec/support/hello_world_3.1.0/Gemfile +0 -33
- data/spec/support/hello_world_3.1.0/README +0 -261
- data/spec/support/hello_world_3.1.0/Rakefile +0 -7
- data/spec/support/hello_world_3.1.0/app/assets/images/rails.png +0 -0
- data/spec/support/hello_world_3.1.0/app/assets/javascripts/application.js +0 -9
- data/spec/support/hello_world_3.1.0/app/assets/stylesheets/application.css +0 -7
- data/spec/support/hello_world_3.1.0/app/controllers/application_controller.rb +0 -3
- data/spec/support/hello_world_3.1.0/app/helpers/application_helper.rb +0 -2
- data/spec/support/hello_world_3.1.0/app/mailers/.gitkeep +0 -0
- data/spec/support/hello_world_3.1.0/app/models/.gitkeep +0 -0
- data/spec/support/hello_world_3.1.0/app/views/layouts/application.html.erb +0 -14
- data/spec/support/hello_world_3.1.0/config.ru +0 -4
- data/spec/support/hello_world_3.1.0/config/application.rb +0 -48
- data/spec/support/hello_world_3.1.0/config/boot.rb +0 -6
- data/spec/support/hello_world_3.1.0/config/database.yml +0 -25
- data/spec/support/hello_world_3.1.0/config/environment.rb +0 -5
- data/spec/support/hello_world_3.1.0/config/environments/development.rb +0 -30
- data/spec/support/hello_world_3.1.0/config/environments/production.rb +0 -60
- data/spec/support/hello_world_3.1.0/config/environments/test.rb +0 -42
- data/spec/support/hello_world_3.1.0/config/initializers/backtrace_silencers.rb +0 -7
- data/spec/support/hello_world_3.1.0/config/initializers/inflections.rb +0 -10
- data/spec/support/hello_world_3.1.0/config/initializers/mime_types.rb +0 -5
- data/spec/support/hello_world_3.1.0/config/initializers/secret_token.rb +0 -7
- data/spec/support/hello_world_3.1.0/config/initializers/session_store.rb +0 -8
- data/spec/support/hello_world_3.1.0/config/initializers/wrap_parameters.rb +0 -14
- data/spec/support/hello_world_3.1.0/config/locales/en.yml +0 -5
- data/spec/support/hello_world_3.1.0/config/routes.rb +0 -58
- data/spec/support/hello_world_3.1.0/db/seeds.rb +0 -7
- data/spec/support/hello_world_3.1.0/lib/assets/.gitkeep +0 -0
- data/spec/support/hello_world_3.1.0/lib/tasks/.gitkeep +0 -0
- data/spec/support/hello_world_3.1.0/log/.gitkeep +0 -0
- data/spec/support/hello_world_3.1.0/public/404.html +0 -26
- data/spec/support/hello_world_3.1.0/public/422.html +0 -26
- data/spec/support/hello_world_3.1.0/public/500.html +0 -26
- data/spec/support/hello_world_3.1.0/public/favicon.ico +0 -0
- data/spec/support/hello_world_3.1.0/public/index.html +0 -241
- data/spec/support/hello_world_3.1.0/public/robots.txt +0 -5
- data/spec/support/hello_world_3.1.0/script/rails +0 -6
- data/spec/support/hello_world_3.1.0/test/fixtures/.gitkeep +0 -0
- data/spec/support/hello_world_3.1.0/test/functional/.gitkeep +0 -0
- data/spec/support/hello_world_3.1.0/test/integration/.gitkeep +0 -0
- data/spec/support/hello_world_3.1.0/test/performance/browsing_test.rb +0 -12
- data/spec/support/hello_world_3.1.0/test/test_helper.rb +0 -13
- data/spec/support/hello_world_3.1.0/test/unit/.gitkeep +0 -0
- data/spec/support/hello_world_3.1.0/vendor/assets/stylesheets/.gitkeep +0 -0
- data/spec/support/hello_world_3.1.0/vendor/plugins/.gitkeep +0 -0
- data/spec/support/hello_world_3.2.13/Gemfile +0 -38
- data/spec/support/hello_world_3.2.13/README.rdoc +0 -261
- data/spec/support/hello_world_3.2.13/Rakefile +0 -7
- data/spec/support/hello_world_3.2.13/app/assets/images/rails.png +0 -0
- data/spec/support/hello_world_3.2.13/app/assets/javascripts/application.js +0 -15
- data/spec/support/hello_world_3.2.13/app/assets/stylesheets/application.css +0 -13
- data/spec/support/hello_world_3.2.13/app/controllers/application_controller.rb +0 -3
- data/spec/support/hello_world_3.2.13/app/helpers/application_helper.rb +0 -10
- data/spec/support/hello_world_3.2.13/app/mailers/.gitkeep +0 -0
- data/spec/support/hello_world_3.2.13/app/models/.gitkeep +0 -0
- data/spec/support/hello_world_3.2.13/app/models/test.rb +0 -3
- data/spec/support/hello_world_3.2.13/app/views/layouts/application.html.erb +0 -14
- data/spec/support/hello_world_3.2.13/config.ru +0 -4
- data/spec/support/hello_world_3.2.13/config/application.rb +0 -62
- data/spec/support/hello_world_3.2.13/config/boot.rb +0 -6
- data/spec/support/hello_world_3.2.13/config/database.yml +0 -25
- data/spec/support/hello_world_3.2.13/config/environment.rb +0 -5
- data/spec/support/hello_world_3.2.13/config/environments/development.rb +0 -37
- data/spec/support/hello_world_3.2.13/config/environments/production.rb +0 -67
- data/spec/support/hello_world_3.2.13/config/environments/test.rb +0 -37
- data/spec/support/hello_world_3.2.13/config/initializers/backtrace_silencers.rb +0 -7
- data/spec/support/hello_world_3.2.13/config/initializers/inflections.rb +0 -15
- data/spec/support/hello_world_3.2.13/config/initializers/mime_types.rb +0 -5
- data/spec/support/hello_world_3.2.13/config/initializers/secret_token.rb +0 -7
- data/spec/support/hello_world_3.2.13/config/initializers/session_store.rb +0 -8
- data/spec/support/hello_world_3.2.13/config/initializers/wrap_parameters.rb +0 -14
- data/spec/support/hello_world_3.2.13/config/locales/en.yml +0 -5
- data/spec/support/hello_world_3.2.13/config/routes.rb +0 -58
- data/spec/support/hello_world_3.2.13/db/seeds.rb +0 -7
- data/spec/support/hello_world_3.2.13/lib/assets/.gitkeep +0 -0
- data/spec/support/hello_world_3.2.13/lib/tasks/.gitkeep +0 -0
- data/spec/support/hello_world_3.2.13/log/.gitkeep +0 -0
- data/spec/support/hello_world_3.2.13/public/404.html +0 -26
- data/spec/support/hello_world_3.2.13/public/422.html +0 -26
- data/spec/support/hello_world_3.2.13/public/500.html +0 -25
- data/spec/support/hello_world_3.2.13/public/favicon.ico +0 -0
- data/spec/support/hello_world_3.2.13/public/index.html +0 -241
- data/spec/support/hello_world_3.2.13/public/robots.txt +0 -5
- data/spec/support/hello_world_3.2.13/script/rails +0 -6
- data/spec/support/hello_world_3.2.13/test/fixtures/.gitkeep +0 -0
- data/spec/support/hello_world_3.2.13/test/functional/.gitkeep +0 -0
- data/spec/support/hello_world_3.2.13/test/integration/.gitkeep +0 -0
- data/spec/support/hello_world_3.2.13/test/performance/browsing_test.rb +0 -12
- data/spec/support/hello_world_3.2.13/test/test_helper.rb +0 -13
- data/spec/support/hello_world_3.2.13/test/unit/.gitkeep +0 -0
- data/spec/support/hello_world_3.2.13/vendor/assets/javascripts/.gitkeep +0 -0
- data/spec/support/hello_world_3.2.13/vendor/assets/stylesheets/.gitkeep +0 -0
- data/spec/support/hello_world_3.2.13/vendor/plugins/.gitkeep +0 -0
- data/spec/support/hello_world_padrino/.components +0 -9
- data/spec/support/hello_world_padrino/.gitignore +0 -8
- data/spec/support/hello_world_padrino/Gemfile +0 -42
- data/spec/support/hello_world_padrino/Rakefile +0 -6
- data/spec/support/hello_world_padrino/app/app.rb +0 -61
- data/spec/support/hello_world_padrino/config.ru +0 -9
- data/spec/support/hello_world_padrino/config/apps.rb +0 -39
- data/spec/support/hello_world_padrino/config/boot.rb +0 -46
- data/spec/support/hello_world_padrino/config/database.rb +0 -19
- data/spec/support/hello_world_padrino/cucumber.yml +0 -2
- data/spec/support/hello_world_padrino/db/migrate/001_create_users.rb +0 -16
- data/spec/support/hello_world_padrino/dispatcher/app.rb +0 -61
- data/spec/support/hello_world_padrino/features/add.feature +0 -11
- data/spec/support/hello_world_padrino/features/step_definitions/add_steps.rb +0 -15
- data/spec/support/hello_world_padrino/features/support/env.rb +0 -10
- data/spec/support/hello_world_padrino/features/support/url.rb +0 -17
- data/spec/support/hello_world_padrino/models/user.rb +0 -11
- data/spec/support/hello_world_padrino/public/favicon.ico +0 -0
- data/spec/support/hello_world_padrino/public/javascripts/application.js +0 -1
- data/spec/support/hello_world_padrino/public/javascripts/jquery-ujs.js +0 -95
- data/spec/support/hello_world_padrino/public/javascripts/jquery.js +0 -4
- data/spec/support/lorem.txt +0 -23
- data/spec/support/sinatra-safe/.gems +0 -4
- data/spec/support/sinatra-safe/Gemfile +0 -18
- data/spec/support/sinatra-safe/MIT-LICENSE +0 -20
- data/spec/support/sinatra-safe/README.rdoc +0 -35
- data/spec/support/sinatra-safe/Rakefile +0 -32
- data/spec/support/sinatra-safe/application.rb +0 -23
- data/spec/support/sinatra-safe/config.ru +0 -11
- data/spec/support/sinatra-safe/environment.rb +0 -25
- data/spec/support/sinatra-safe/lib/profile.rb +0 -11
- data/spec/support/sinatra-safe/public/main.css +0 -52
- data/spec/support/sinatra-safe/script/console +0 -16
- data/spec/support/sinatra-safe/views/layout.haml +0 -14
- data/spec/support/sinatra-safe/views/root.haml +0 -4
- data/spec/support/sinatra-vulnerable/.gems +0 -4
- data/spec/support/sinatra-vulnerable/Gemfile +0 -17
- data/spec/support/sinatra-vulnerable/MIT-LICENSE +0 -20
- data/spec/support/sinatra-vulnerable/README.rdoc +0 -35
- data/spec/support/sinatra-vulnerable/Rakefile +0 -32
- data/spec/support/sinatra-vulnerable/application.rb +0 -34
- data/spec/support/sinatra-vulnerable/config.ru +0 -11
- data/spec/support/sinatra-vulnerable/disabled.png +0 -0
- data/spec/support/sinatra-vulnerable/environment.rb +0 -25
- data/spec/support/sinatra-vulnerable/lib/profile.rb +0 -11
- data/spec/support/sinatra-vulnerable/public/main.css +0 -52
- data/spec/support/sinatra-vulnerable/script/console +0 -16
- data/spec/support/sinatra-vulnerable/views/layout.haml +0 -14
- data/spec/support/sinatra-vulnerable/views/root.haml +0 -4
- data/spec/support/sinatra-vulnerable/views/xss.haml +0 -3
@@ -35,7 +35,7 @@ module Codesake
|
|
35
35
|
def different_family?
|
36
36
|
ret = false
|
37
37
|
@safe_os.each do |sos|
|
38
|
-
ret = true if ! ret
|
38
|
+
ret = true if ! ret && sos[:family] == @target_os[:family]
|
39
39
|
end
|
40
40
|
ret
|
41
41
|
end
|
@@ -43,7 +43,7 @@ module Codesake
|
|
43
43
|
def different_vendor?
|
44
44
|
ret = false
|
45
45
|
@safe_os.each do |sos|
|
46
|
-
ret = true if ! ret
|
46
|
+
ret = true if ! ret && sos[:vendor] == @target_os[:vendor]
|
47
47
|
end
|
48
48
|
ret
|
49
49
|
end
|
@@ -51,7 +51,8 @@ module Codesake
|
|
51
51
|
def vulnerable_os?
|
52
52
|
ret = false
|
53
53
|
@safe_os.each do |sos|
|
54
|
-
ret = true if ! ret
|
54
|
+
ret = true if ! ret && sos[:version] = 'none'
|
55
|
+
ret = true if ! ret && is_vulnerable_version?(@target_os[:family], sos[:version])
|
55
56
|
end
|
56
57
|
ret
|
57
58
|
end
|
@@ -27,7 +27,7 @@ module Codesake
|
|
27
27
|
ve = false
|
28
28
|
|
29
29
|
ve = self.is_same_version?(detected_ruby[:version], vv_a)
|
30
|
-
vp = is_vulnerable_patchlevel?(detected_ruby[:
|
30
|
+
vp = is_vulnerable_patchlevel?(detected_ruby[:version], detected_ruby[:patchlevel])
|
31
31
|
|
32
32
|
debug_me("D:#{self.name}, VENGINE=#{vengine}, VV=#{vv}, VE=#{ve}, VP=#{vp}->#{vv && vengine}, #{(ve && vp && vengine )}")
|
33
33
|
debug_me("S:#{@safe_rubies}")
|
@@ -66,14 +66,20 @@ module Codesake
|
|
66
66
|
false
|
67
67
|
end
|
68
68
|
|
69
|
-
def is_vulnerable_patchlevel?(
|
69
|
+
def is_vulnerable_patchlevel?(version, patchlevel)
|
70
70
|
fixes = []
|
71
|
+
debug_me "is_vulnerable_patchlevel? called with VERSION=#{version} and PLEVEL=#{patchlevel}"
|
72
|
+
debug_me "SAFE_RUBIES=#{@safe_rubies}"
|
71
73
|
@safe_rubies.each do |ss|
|
72
74
|
fixes << ss[:patchlevel].split("p")[1].to_i if ss[:version] == version
|
73
75
|
end
|
74
76
|
|
75
|
-
|
77
|
+
debug_me "FIXES IS EMPTY" if fixes.empty?
|
78
|
+
return true if fixes.empty?
|
79
|
+
|
80
|
+
t = patchlevel.split("p")[1].to_i
|
76
81
|
fixes.each do |f|
|
82
|
+
debug_me "PATCHLEVEL FIXES = #{f}, PATCHLEVEL TARGET = #{t}"
|
77
83
|
return true if f > t
|
78
84
|
end
|
79
85
|
false
|
@@ -25,18 +25,80 @@ require "codesake/dawn/kb/simpleform_xss_20131129"
|
|
25
25
|
require "codesake/dawn/kb/nokogiri_dos_20131217"
|
26
26
|
require "codesake/dawn/kb/nokogiri_entityexpansion_dos_20131217"
|
27
27
|
|
28
|
+
# CVE - 2004
|
29
|
+
require "codesake/dawn/kb/cve_2004_0755"
|
30
|
+
require "codesake/dawn/kb/cve_2004_0983"
|
31
|
+
|
32
|
+
# CVE - 2005
|
33
|
+
require "codesake/dawn/kb/cve_2005_1992"
|
34
|
+
require "codesake/dawn/kb/cve_2005_2337"
|
35
|
+
|
36
|
+
# CVE - 2006
|
37
|
+
require "codesake/dawn/kb/cve_2006_1931"
|
38
|
+
require "codesake/dawn/kb/cve_2006_2582"
|
39
|
+
require "codesake/dawn/kb/cve_2006_3694"
|
40
|
+
require "codesake/dawn/kb/cve_2006_4112"
|
41
|
+
require "codesake/dawn/kb/cve_2006_5467"
|
42
|
+
require "codesake/dawn/kb/cve_2006_6303"
|
43
|
+
require "codesake/dawn/kb/cve_2006_6852"
|
44
|
+
require "codesake/dawn/kb/cve_2006_6979"
|
45
|
+
|
46
|
+
# CVE - 2007
|
47
|
+
require "codesake/dawn/kb/cve_2007_0469"
|
48
|
+
require "codesake/dawn/kb/cve_2007_5162"
|
49
|
+
require "codesake/dawn/kb/cve_2007_5379"
|
50
|
+
require "codesake/dawn/kb/cve_2007_5380"
|
51
|
+
require "codesake/dawn/kb/cve_2007_5770"
|
52
|
+
require "codesake/dawn/kb/cve_2007_6077"
|
53
|
+
require "codesake/dawn/kb/cve_2007_6612"
|
54
|
+
|
55
|
+
# CVE - 2008
|
56
|
+
|
57
|
+
require "codesake/dawn/kb/cve_2008_1145"
|
58
|
+
require "codesake/dawn/kb/cve_2008_1891"
|
59
|
+
require "codesake/dawn/kb/cve_2008_2376"
|
60
|
+
require "codesake/dawn/kb/cve_2008_2662"
|
61
|
+
require "codesake/dawn/kb/cve_2008_2663"
|
62
|
+
require "codesake/dawn/kb/cve_2008_2664"
|
63
|
+
require "codesake/dawn/kb/cve_2008_2725"
|
64
|
+
require "codesake/dawn/kb/cve_2008_3655"
|
65
|
+
require "codesake/dawn/kb/cve_2008_3657"
|
66
|
+
require "codesake/dawn/kb/cve_2008_3790"
|
67
|
+
require "codesake/dawn/kb/cve_2008_3905"
|
68
|
+
require "codesake/dawn/kb/cve_2008_4094"
|
69
|
+
require "codesake/dawn/kb/cve_2008_4310"
|
70
|
+
require "codesake/dawn/kb/cve_2008_5189"
|
71
|
+
require "codesake/dawn/kb/cve_2008_7248"
|
72
|
+
|
73
|
+
# CVE - 2009
|
74
|
+
require "codesake/dawn/kb/cve_2009_4078"
|
75
|
+
require "codesake/dawn/kb/cve_2009_4124"
|
76
|
+
require "codesake/dawn/kb/cve_2009_4214"
|
77
|
+
|
28
78
|
# CVE - 2010
|
29
79
|
require "codesake/dawn/kb/cve_2010_1330"
|
80
|
+
require "codesake/dawn/kb/cve_2010_2489"
|
81
|
+
require "codesake/dawn/kb/cve_2010_3933"
|
30
82
|
|
31
83
|
# CVE - 2011
|
84
|
+
require "codesake/dawn/kb/cve_2011_0188"
|
32
85
|
require "codesake/dawn/kb/cve_2011_0446"
|
33
86
|
require "codesake/dawn/kb/cve_2011_0447"
|
87
|
+
require "codesake/dawn/kb/cve_2011_0739"
|
34
88
|
require "codesake/dawn/kb/cve_2011_0995"
|
89
|
+
require "codesake/dawn/kb/cve_2011_1004"
|
90
|
+
require "codesake/dawn/kb/cve_2011_1005"
|
35
91
|
require "codesake/dawn/kb/cve_2011_2197"
|
92
|
+
require "codesake/dawn/kb/cve_2011_2686"
|
93
|
+
require "codesake/dawn/kb/cve_2011_2705"
|
36
94
|
require "codesake/dawn/kb/cve_2011_2929"
|
95
|
+
require "codesake/dawn/kb/cve_2011_2930"
|
37
96
|
require "codesake/dawn/kb/cve_2011_2931"
|
38
97
|
require "codesake/dawn/kb/cve_2011_2932"
|
98
|
+
require "codesake/dawn/kb/cve_2011_3009"
|
39
99
|
require "codesake/dawn/kb/cve_2011_3186"
|
100
|
+
require "codesake/dawn/kb/cve_2011_3187"
|
101
|
+
require "codesake/dawn/kb/cve_2011_4319"
|
40
102
|
require "codesake/dawn/kb/cve_2011_4815"
|
41
103
|
|
42
104
|
# CVE - 2012
|
@@ -91,6 +153,7 @@ require "codesake/dawn/kb/cve_2013_1933"
|
|
91
153
|
require "codesake/dawn/kb/cve_2013_1947"
|
92
154
|
require "codesake/dawn/kb/cve_2013_1948"
|
93
155
|
require "codesake/dawn/kb/cve_2013_2065"
|
156
|
+
require "codesake/dawn/kb/cve_2013_2090"
|
94
157
|
require "codesake/dawn/kb/cve_2013_2615"
|
95
158
|
require "codesake/dawn/kb/cve_2013_2616"
|
96
159
|
require "codesake/dawn/kb/cve_2013_2617"
|
@@ -176,15 +239,64 @@ module Codesake
|
|
176
239
|
Codesake::Dawn::Kb::SimpleForm_Xss_20131129.new,
|
177
240
|
Codesake::Dawn::Kb::NokogiriDos20131217.new,
|
178
241
|
Codesake::Dawn::Kb::Nokogiri_EntityExpansion_Dos_20131217.new,
|
242
|
+
Codesake::Dawn::Kb::CVE_2004_0755.new,
|
243
|
+
Codesake::Dawn::Kb::CVE_2004_0983.new,
|
244
|
+
Codesake::Dawn::Kb::CVE_2005_1992.new,
|
245
|
+
Codesake::Dawn::Kb::CVE_2005_2337.new,
|
246
|
+
Codesake::Dawn::Kb::CVE_2006_1931.new,
|
247
|
+
Codesake::Dawn::Kb::CVE_2006_2582.new,
|
248
|
+
Codesake::Dawn::Kb::CVE_2006_3694.new,
|
249
|
+
Codesake::Dawn::Kb::CVE_2006_4112.new,
|
250
|
+
Codesake::Dawn::Kb::CVE_2006_5467.new,
|
251
|
+
Codesake::Dawn::Kb::CVE_2006_6303.new,
|
252
|
+
Codesake::Dawn::Kb::CVE_2006_6852.new,
|
253
|
+
Codesake::Dawn::Kb::CVE_2006_6979.new,
|
254
|
+
Codesake::Dawn::Kb::CVE_2007_0469.new,
|
255
|
+
Codesake::Dawn::Kb::CVE_2007_5162.new,
|
256
|
+
Codesake::Dawn::Kb::CVE_2007_5379.new,
|
257
|
+
Codesake::Dawn::Kb::CVE_2007_5380.new,
|
258
|
+
Codesake::Dawn::Kb::CVE_2007_5770.new,
|
259
|
+
Codesake::Dawn::Kb::CVE_2007_6077.new,
|
260
|
+
Codesake::Dawn::Kb::CVE_2007_6612.new,
|
261
|
+
Codesake::Dawn::Kb::CVE_2008_1145.new,
|
262
|
+
Codesake::Dawn::Kb::CVE_2008_1891.new,
|
263
|
+
Codesake::Dawn::Kb::CVE_2008_2376.new,
|
264
|
+
Codesake::Dawn::Kb::CVE_2008_2662.new,
|
265
|
+
Codesake::Dawn::Kb::CVE_2008_2663.new,
|
266
|
+
Codesake::Dawn::Kb::CVE_2008_2664.new,
|
267
|
+
Codesake::Dawn::Kb::CVE_2008_2725.new,
|
268
|
+
Codesake::Dawn::Kb::CVE_2008_3655.new,
|
269
|
+
Codesake::Dawn::Kb::CVE_2008_3657.new,
|
270
|
+
Codesake::Dawn::Kb::CVE_2008_3790.new,
|
271
|
+
Codesake::Dawn::Kb::CVE_2008_3905.new,
|
272
|
+
Codesake::Dawn::Kb::CVE_2008_4094.new,
|
273
|
+
Codesake::Dawn::Kb::CVE_2008_4310.new,
|
274
|
+
Codesake::Dawn::Kb::CVE_2008_5189.new,
|
275
|
+
Codesake::Dawn::Kb::CVE_2008_7248.new,
|
276
|
+
Codesake::Dawn::Kb::CVE_2009_4078.new,
|
277
|
+
Codesake::Dawn::Kb::CVE_2009_4124.new,
|
278
|
+
Codesake::Dawn::Kb::CVE_2009_4214.new,
|
179
279
|
Codesake::Dawn::Kb::CVE_2010_1330.new,
|
280
|
+
Codesake::Dawn::Kb::CVE_2010_2489.new,
|
281
|
+
Codesake::Dawn::Kb::CVE_2010_3933.new,
|
282
|
+
Codesake::Dawn::Kb::CVE_2011_0188.new,
|
180
283
|
Codesake::Dawn::Kb::CVE_2011_0446.new,
|
181
284
|
Codesake::Dawn::Kb::CVE_2011_0447.new,
|
285
|
+
Codesake::Dawn::Kb::CVE_2011_0739.new,
|
182
286
|
Codesake::Dawn::Kb::CVE_2011_0995.new,
|
287
|
+
Codesake::Dawn::Kb::CVE_2011_1004.new,
|
288
|
+
Codesake::Dawn::Kb::CVE_2011_1005.new,
|
183
289
|
Codesake::Dawn::Kb::CVE_2011_2197.new,
|
290
|
+
Codesake::Dawn::Kb::CVE_2011_2686.new,
|
291
|
+
Codesake::Dawn::Kb::CVE_2011_2705.new,
|
184
292
|
Codesake::Dawn::Kb::CVE_2011_2929.new,
|
293
|
+
Codesake::Dawn::Kb::CVE_2011_2930.new,
|
185
294
|
Codesake::Dawn::Kb::CVE_2011_2931.new,
|
186
295
|
Codesake::Dawn::Kb::CVE_2011_2932.new,
|
296
|
+
Codesake::Dawn::Kb::CVE_2011_3009.new,
|
187
297
|
Codesake::Dawn::Kb::CVE_2011_3186.new,
|
298
|
+
Codesake::Dawn::Kb::CVE_2011_3187.new,
|
299
|
+
Codesake::Dawn::Kb::CVE_2011_4319.new,
|
188
300
|
Codesake::Dawn::Kb::CVE_2011_4815.new,
|
189
301
|
Codesake::Dawn::Kb::CVE_2012_1099.new,
|
190
302
|
Codesake::Dawn::Kb::CVE_2012_1241.new,
|
@@ -235,6 +347,7 @@ module Codesake
|
|
235
347
|
Codesake::Dawn::Kb::CVE_2013_1947.new,
|
236
348
|
Codesake::Dawn::Kb::CVE_2013_1948.new,
|
237
349
|
Codesake::Dawn::Kb::CVE_2013_2065.new,
|
350
|
+
Codesake::Dawn::Kb::CVE_2013_2090.new,
|
238
351
|
Codesake::Dawn::Kb::CVE_2013_2615.new,
|
239
352
|
Codesake::Dawn::Kb::CVE_2013_2616.new,
|
240
353
|
Codesake::Dawn::Kb::CVE_2013_2617.new,
|
@@ -1,6 +1,18 @@
|
|
1
1
|
module Codesake
|
2
2
|
module Dawn
|
3
|
-
|
4
|
-
|
3
|
+
# codesake-dawn v 1.x.y release codename will be Disney Pixar Cars / Cars2
|
4
|
+
# characters. My son Daniele loves those films and since I love him too,
|
5
|
+
# this is a kinda sort of tribute of my son's passion.
|
6
|
+
#
|
7
|
+
# Future releases
|
8
|
+
#
|
9
|
+
# "Tow Mater" - v 1.2.0
|
10
|
+
# "Finn McMissile" - v 1.3.0
|
11
|
+
# "Fillmore" - v 1.4.0
|
12
|
+
|
13
|
+
VERSION = "1.0.0.rc1"
|
14
|
+
CODENAME = "Lightning McQueen"
|
15
|
+
RELEASE = "20140110"
|
16
|
+
|
5
17
|
end
|
6
18
|
end
|
data/lib/tasks/dawn.rake
ADDED
@@ -457,4 +457,260 @@ describe "The Codesake Dawn knowledge base" do
|
|
457
457
|
sc.should_not be_nil
|
458
458
|
sc.class.should == Codesake::Dawn::Kb::CVE_2013_6421
|
459
459
|
end
|
460
|
+
|
461
|
+
it "must have test for CVE-2004-0755" do
|
462
|
+
sc = kb.find("CVE-2004-0755")
|
463
|
+
sc.should_not be_nil
|
464
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2004_0755
|
465
|
+
end
|
466
|
+
it "must have test for CVE-2004-0983" do
|
467
|
+
sc = kb.find("CVE-2004-0983")
|
468
|
+
sc.should_not be_nil
|
469
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2004_0983
|
470
|
+
end
|
471
|
+
it "must have test for CVE-2005-1992" do
|
472
|
+
sc = kb.find("CVE-2005-1992")
|
473
|
+
sc.should_not be_nil
|
474
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2005_1992
|
475
|
+
end
|
476
|
+
it "must have test for CVE-2005-2337" do
|
477
|
+
sc = kb.find("CVE-2005-2337")
|
478
|
+
sc.should_not be_nil
|
479
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2005_2337
|
480
|
+
end
|
481
|
+
it "must have test for CVE-2006-1931" do
|
482
|
+
sc = kb.find("CVE-2006-1931")
|
483
|
+
sc.should_not be_nil
|
484
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2006_1931
|
485
|
+
end
|
486
|
+
it "must have test for CVE-2006-2582" do
|
487
|
+
sc = kb.find("CVE-2006-2582")
|
488
|
+
sc.should_not be_nil
|
489
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2006_2582
|
490
|
+
end
|
491
|
+
it "must have test for CVE-2006-3694" do
|
492
|
+
sc = kb.find("CVE-2006-3694")
|
493
|
+
sc.should_not be_nil
|
494
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2006_3694
|
495
|
+
end
|
496
|
+
|
497
|
+
it "must have test for CVE-2006-4112" do
|
498
|
+
sc = kb.find("CVE-2006-4112")
|
499
|
+
sc.should_not be_nil
|
500
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2006_4112
|
501
|
+
end
|
502
|
+
|
503
|
+
it "must have test for CVE-2006-5467" do
|
504
|
+
sc = kb.find("CVE-2006-5467")
|
505
|
+
sc.should_not be_nil
|
506
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2006_5467
|
507
|
+
end
|
508
|
+
|
509
|
+
it "must have test for CVE-2006-6303" do
|
510
|
+
sc = kb.find("CVE-2006-6303")
|
511
|
+
sc.should_not be_nil
|
512
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2006_6303
|
513
|
+
end
|
514
|
+
it "must have test for CVE-2006-6852" do
|
515
|
+
sc = kb.find("CVE-2006-6852")
|
516
|
+
sc.should_not be_nil
|
517
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2006_6852
|
518
|
+
end
|
519
|
+
it "must have test for CVE-2006-6979" do
|
520
|
+
sc = kb.find("CVE-2006-6979")
|
521
|
+
sc.should_not be_nil
|
522
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2006_6979
|
523
|
+
end
|
524
|
+
it "must have test for CVE-2007-0469" do
|
525
|
+
sc = kb.find("CVE-2007-0469")
|
526
|
+
sc.should_not be_nil
|
527
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2007_0469
|
528
|
+
end
|
529
|
+
it "must have test for CVE-2013-2090" do
|
530
|
+
sc = kb.find("CVE-2013-2090")
|
531
|
+
sc.should_not be_nil
|
532
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2013_2090
|
533
|
+
end
|
534
|
+
it "must have test for CVE-2011-4319" do
|
535
|
+
sc = kb.find("CVE-2011-4319")
|
536
|
+
sc.should_not be_nil
|
537
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2011_4319
|
538
|
+
end
|
539
|
+
it "must have test for CVE-2011-3187" do
|
540
|
+
sc = kb.find("CVE-2011-3187")
|
541
|
+
sc.should_not be_nil
|
542
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2011_3187
|
543
|
+
end
|
544
|
+
it "must have test for CVE-2011-3009" do
|
545
|
+
sc = kb.find("CVE-2011-3009")
|
546
|
+
sc.should_not be_nil
|
547
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2011_3009
|
548
|
+
end
|
549
|
+
|
550
|
+
it "must have test for CVE-2011-2930" do
|
551
|
+
sc = kb.find("CVE-2011-2930")
|
552
|
+
sc.should_not be_nil
|
553
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2011_2930
|
554
|
+
end
|
555
|
+
|
556
|
+
it "must have test for CVE-2011-2705" do
|
557
|
+
sc = kb.find("CVE-2011-2705")
|
558
|
+
sc.should_not be_nil
|
559
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2011_2705
|
560
|
+
end
|
561
|
+
it "must have test for CVE-2011-2686" do
|
562
|
+
sc = kb.find("CVE-2011-2686")
|
563
|
+
sc.should_not be_nil
|
564
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2011_2686
|
565
|
+
end
|
566
|
+
it "must have test for CVE-2011-1005" do
|
567
|
+
sc = kb.find("CVE-2011-1005")
|
568
|
+
sc.should_not be_nil
|
569
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2011_1005
|
570
|
+
end
|
571
|
+
it "must have test for CVE-2011-1004" do
|
572
|
+
sc = kb.find("CVE-2011-1004")
|
573
|
+
sc.should_not be_nil
|
574
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2011_1004
|
575
|
+
end
|
576
|
+
it "must have test for CVE-2011-0739" do
|
577
|
+
sc = kb.find("CVE-2011-0739")
|
578
|
+
sc.should_not be_nil
|
579
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2011_0739
|
580
|
+
end
|
581
|
+
it "must have test for CVE-2011-0188" do
|
582
|
+
sc = kb.find("CVE-2011-0188")
|
583
|
+
sc.should_not be_nil
|
584
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2011_0188
|
585
|
+
end
|
586
|
+
it "must have test for CVE-2010-3933" do
|
587
|
+
sc = kb.find("CVE-2010-3933")
|
588
|
+
sc.should_not be_nil
|
589
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2010_3933
|
590
|
+
end
|
591
|
+
it "must have test for CVE-2010-2489" do
|
592
|
+
sc = kb.find("CVE-2010-2489")
|
593
|
+
sc.should_not be_nil
|
594
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2010_2489
|
595
|
+
end
|
596
|
+
it "must have test for CVE-2009-4214" do
|
597
|
+
sc = kb.find("CVE-2009-4214")
|
598
|
+
sc.should_not be_nil
|
599
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2009_4214
|
600
|
+
end
|
601
|
+
it "must have test for CVE-2009-4124" do
|
602
|
+
sc = kb.find("CVE-2009-4124")
|
603
|
+
sc.should_not be_nil
|
604
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2009_4124
|
605
|
+
end
|
606
|
+
it "must have test for CVE-2009-4078" do
|
607
|
+
sc = kb.find("CVE-2009-4078")
|
608
|
+
sc.should_not be_nil
|
609
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2009_4078
|
610
|
+
end
|
611
|
+
it "must have test for CVE-2008-7248" do
|
612
|
+
sc = kb.find("CVE-2008-7248")
|
613
|
+
sc.should_not be_nil
|
614
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_7248
|
615
|
+
end
|
616
|
+
it "must have test for CVE-2008-5189" do
|
617
|
+
sc = kb.find("CVE-2008-5189")
|
618
|
+
sc.should_not be_nil
|
619
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_5189
|
620
|
+
end
|
621
|
+
it "must have test for CVE-2008-4310" do
|
622
|
+
sc = kb.find("CVE-2008-4310")
|
623
|
+
sc.should_not be_nil
|
624
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_4310
|
625
|
+
end
|
626
|
+
it "must have test for CVE-2008-4094" do
|
627
|
+
sc = kb.find("CVE-2008-4094")
|
628
|
+
sc.should_not be_nil
|
629
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_4094
|
630
|
+
end
|
631
|
+
it "must have test for CVE-2008-3905" do
|
632
|
+
sc = kb.find("CVE-2008-3905")
|
633
|
+
sc.should_not be_nil
|
634
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_3905
|
635
|
+
end
|
636
|
+
it "must have test for CVE-2008-3790" do
|
637
|
+
sc = kb.find("CVE-2008-3790")
|
638
|
+
sc.should_not be_nil
|
639
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_3790
|
640
|
+
end
|
641
|
+
it "must have test for CVE-2008-3657" do
|
642
|
+
sc = kb.find("CVE-2008-3657")
|
643
|
+
sc.should_not be_nil
|
644
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_3657
|
645
|
+
end
|
646
|
+
it "must have test for CVE-2008-3655" do
|
647
|
+
sc = kb.find("CVE-2008-3655")
|
648
|
+
sc.should_not be_nil
|
649
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_3655
|
650
|
+
end
|
651
|
+
it "must have test for CVE-2008-2725" do
|
652
|
+
sc = kb.find("CVE-2008-2725")
|
653
|
+
sc.should_not be_nil
|
654
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_2725
|
655
|
+
end
|
656
|
+
it "must have test for CVE-2008-2663" do
|
657
|
+
sc = kb.find("CVE-2008-2663")
|
658
|
+
sc.should_not be_nil
|
659
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_2663
|
660
|
+
end
|
661
|
+
it "must have test for CVE-2008-2664" do
|
662
|
+
sc = kb.find("CVE-2008-2664")
|
663
|
+
sc.should_not be_nil
|
664
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_2664
|
665
|
+
end
|
666
|
+
it "must have test for CVE-2008-2662" do
|
667
|
+
sc = kb.find("CVE-2008-2662")
|
668
|
+
sc.should_not be_nil
|
669
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_2662
|
670
|
+
end
|
671
|
+
it "must have test for CVE-2008-2376" do
|
672
|
+
sc = kb.find("CVE-2008-2376")
|
673
|
+
sc.should_not be_nil
|
674
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_2376
|
675
|
+
end
|
676
|
+
it "must have test for CVE-2008-1891" do
|
677
|
+
sc = kb.find("CVE-2008-1891")
|
678
|
+
sc.should_not be_nil
|
679
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_1891
|
680
|
+
end
|
681
|
+
it "must have test for CVE-2008-1145" do
|
682
|
+
sc = kb.find("CVE-2008-1145")
|
683
|
+
sc.should_not be_nil
|
684
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2008_1145
|
685
|
+
end
|
686
|
+
it "must have test for CVE-2007-6612" do
|
687
|
+
sc = kb.find("CVE-2007-6612")
|
688
|
+
sc.should_not be_nil
|
689
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2007_6612
|
690
|
+
end
|
691
|
+
it "must have test for CVE-2007-6077" do
|
692
|
+
sc = kb.find("CVE-2007-6077")
|
693
|
+
sc.should_not be_nil
|
694
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2007_6077
|
695
|
+
end
|
696
|
+
it "must have test for CVE-2007-5770" do
|
697
|
+
sc = kb.find("CVE-2007-5770")
|
698
|
+
sc.should_not be_nil
|
699
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2007_5770
|
700
|
+
end
|
701
|
+
it "must have test for CVE-2007-5380" do
|
702
|
+
sc = kb.find("CVE-2007-5380")
|
703
|
+
sc.should_not be_nil
|
704
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2007_5380
|
705
|
+
end
|
706
|
+
it "must have test for CVE-2007-5379" do
|
707
|
+
sc = kb.find("CVE-2007-5379")
|
708
|
+
sc.should_not be_nil
|
709
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2007_5379
|
710
|
+
end
|
711
|
+
it "must have test for CVE-2007-5162" do
|
712
|
+
sc = kb.find("CVE-2007-5162")
|
713
|
+
sc.should_not be_nil
|
714
|
+
sc.class.should == Codesake::Dawn::Kb::CVE_2007_5162
|
715
|
+
end
|
460
716
|
end
|