RubyGems - dawnscanner - Versions diffs - 1.2.99 - Mend

dawnscanner 1.2.99

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (306) hide show

checksums.yaml +7 -0
checksums.yaml.gz.sig +4 -0
data.tar.gz.sig +0 -0
data/.gitignore +19 -0
data/.ruby-gemset +1 -0
data/.ruby-version +1 -0
data/.travis.yml +8 -0
data/Changelog.md +412 -0
data/Gemfile +4 -0
data/KnowledgeBase.md +213 -0
data/LICENSE.txt +22 -0
data/README.md +354 -0
data/Rakefile +250 -0
data/Roadmap.md +59 -0
data/bin/dawn +210 -0
data/certs/paolo_at_codesake_dot_com.pem +21 -0
data/checksum/.placeholder +0 -0
data/checksum/codesake-dawn-1.1.0.gem.sha512 +1 -0
data/checksum/codesake-dawn-1.1.0.rc1.gem.sha512 +1 -0
data/checksum/codesake-dawn-1.1.1.gem.sha512 +1 -0
data/checksum/codesake-dawn-1.1.2.gem.sha512 +1 -0
data/checksum/codesake-dawn-1.1.3.gem.sha512 +1 -0
data/checksum/codesake-dawn-1.2.0.gem.sha512 +1 -0
data/checksum/codesake-dawn-1.2.99.gem.sha512 +1 -0
data/dawnscanner.gemspec +43 -0
data/doc/codesake-dawn.yaml.sample +26 -0
data/doc/dawn_1_0_announcement.md +139 -0
data/doc/dawn_1_1_announcement.md +67 -0
data/doc/dawn_1_2_announcement.md +69 -0
data/features/dawn_complains_about_an_incorrect_command_line.feature.disabled +21 -0
data/features/dawn_scan_a_secure_sinatra_app.feature.disabled +31 -0
data/features/dawn_scan_a_vulnerable_sinatra_app.feature.disabled +36 -0
data/features/step_definition/dawn_steps.rb +19 -0
data/features/support/env.rb +1 -0
data/lib/codesake-dawn.rb +12 -0
data/lib/codesake/dawn/core.rb +175 -0
data/lib/codesake/dawn/engine.rb +380 -0
data/lib/codesake/dawn/gemfile_lock.rb +12 -0
data/lib/codesake/dawn/kb/basic_check.rb +228 -0
data/lib/codesake/dawn/kb/combo_check.rb +64 -0
data/lib/codesake/dawn/kb/cve_2004_0755.rb +32 -0
data/lib/codesake/dawn/kb/cve_2004_0983.rb +30 -0
data/lib/codesake/dawn/kb/cve_2005_1992.rb +30 -0
data/lib/codesake/dawn/kb/cve_2005_2337.rb +32 -0
data/lib/codesake/dawn/kb/cve_2006_1931.rb +32 -0
data/lib/codesake/dawn/kb/cve_2006_2582.rb +30 -0
data/lib/codesake/dawn/kb/cve_2006_3694.rb +31 -0
data/lib/codesake/dawn/kb/cve_2006_4112.rb +29 -0
data/lib/codesake/dawn/kb/cve_2006_5467.rb +30 -0
data/lib/codesake/dawn/kb/cve_2006_6303.rb +30 -0
data/lib/codesake/dawn/kb/cve_2006_6852.rb +29 -0
data/lib/codesake/dawn/kb/cve_2006_6979.rb +31 -0
data/lib/codesake/dawn/kb/cve_2007_0469.rb +29 -0
data/lib/codesake/dawn/kb/cve_2007_5162.rb +30 -0
data/lib/codesake/dawn/kb/cve_2007_5379.rb +29 -0
data/lib/codesake/dawn/kb/cve_2007_5380.rb +29 -0
data/lib/codesake/dawn/kb/cve_2007_5770.rb +32 -0
data/lib/codesake/dawn/kb/cve_2007_6077.rb +31 -0
data/lib/codesake/dawn/kb/cve_2007_6612.rb +30 -0
data/lib/codesake/dawn/kb/cve_2008_1145.rb +40 -0
data/lib/codesake/dawn/kb/cve_2008_1891.rb +40 -0
data/lib/codesake/dawn/kb/cve_2008_2376.rb +32 -0
data/lib/codesake/dawn/kb/cve_2008_2662.rb +35 -0
data/lib/codesake/dawn/kb/cve_2008_2663.rb +34 -0
data/lib/codesake/dawn/kb/cve_2008_2664.rb +35 -0
data/lib/codesake/dawn/kb/cve_2008_2725.rb +33 -0
data/lib/codesake/dawn/kb/cve_2008_3655.rb +39 -0
data/lib/codesake/dawn/kb/cve_2008_3657.rb +39 -0
data/lib/codesake/dawn/kb/cve_2008_3790.rb +32 -0
data/lib/codesake/dawn/kb/cve_2008_3905.rb +38 -0
data/lib/codesake/dawn/kb/cve_2008_4094.rb +29 -0
data/lib/codesake/dawn/kb/cve_2008_4310.rb +103 -0
data/lib/codesake/dawn/kb/cve_2008_5189.rb +29 -0
data/lib/codesake/dawn/kb/cve_2008_7248.rb +29 -0
data/lib/codesake/dawn/kb/cve_2009_4078.rb +31 -0
data/lib/codesake/dawn/kb/cve_2009_4124.rb +32 -0
data/lib/codesake/dawn/kb/cve_2009_4214.rb +29 -0
data/lib/codesake/dawn/kb/cve_2010_1330.rb +30 -0
data/lib/codesake/dawn/kb/cve_2010_2489.rb +62 -0
data/lib/codesake/dawn/kb/cve_2010_3933.rb +29 -0
data/lib/codesake/dawn/kb/cve_2011_0188.rb +69 -0
data/lib/codesake/dawn/kb/cve_2011_0446.rb +30 -0
data/lib/codesake/dawn/kb/cve_2011_0447.rb +30 -0
data/lib/codesake/dawn/kb/cve_2011_0739.rb +30 -0
data/lib/codesake/dawn/kb/cve_2011_0995.rb +63 -0
data/lib/codesake/dawn/kb/cve_2011_1004.rb +36 -0
data/lib/codesake/dawn/kb/cve_2011_1005.rb +33 -0
data/lib/codesake/dawn/kb/cve_2011_2197.rb +29 -0
data/lib/codesake/dawn/kb/cve_2011_2686.rb +31 -0
data/lib/codesake/dawn/kb/cve_2011_2705.rb +34 -0
data/lib/codesake/dawn/kb/cve_2011_2929.rb +29 -0
data/lib/codesake/dawn/kb/cve_2011_2930.rb +30 -0
data/lib/codesake/dawn/kb/cve_2011_2931.rb +32 -0
data/lib/codesake/dawn/kb/cve_2011_2932.rb +29 -0
data/lib/codesake/dawn/kb/cve_2011_3009.rb +30 -0
data/lib/codesake/dawn/kb/cve_2011_3186.rb +31 -0
data/lib/codesake/dawn/kb/cve_2011_3187.rb +31 -0
data/lib/codesake/dawn/kb/cve_2011_4319.rb +31 -0
data/lib/codesake/dawn/kb/cve_2011_4815.rb +30 -0
data/lib/codesake/dawn/kb/cve_2011_5036.rb +28 -0
data/lib/codesake/dawn/kb/cve_2012_1098.rb +32 -0
data/lib/codesake/dawn/kb/cve_2012_1099.rb +29 -0
data/lib/codesake/dawn/kb/cve_2012_1241.rb +29 -0
data/lib/codesake/dawn/kb/cve_2012_2139.rb +28 -0
data/lib/codesake/dawn/kb/cve_2012_2140.rb +29 -0
data/lib/codesake/dawn/kb/cve_2012_2660.rb +30 -0
data/lib/codesake/dawn/kb/cve_2012_2661.rb +29 -0
data/lib/codesake/dawn/kb/cve_2012_2671.rb +30 -0
data/lib/codesake/dawn/kb/cve_2012_2694.rb +32 -0
data/lib/codesake/dawn/kb/cve_2012_2695.rb +29 -0
data/lib/codesake/dawn/kb/cve_2012_3424.rb +31 -0
data/lib/codesake/dawn/kb/cve_2012_3463.rb +29 -0
data/lib/codesake/dawn/kb/cve_2012_3464.rb +29 -0
data/lib/codesake/dawn/kb/cve_2012_3465.rb +28 -0
data/lib/codesake/dawn/kb/cve_2012_4464.rb +29 -0
data/lib/codesake/dawn/kb/cve_2012_4466.rb +29 -0
data/lib/codesake/dawn/kb/cve_2012_4481.rb +28 -0
data/lib/codesake/dawn/kb/cve_2012_4522.rb +29 -0
data/lib/codesake/dawn/kb/cve_2012_5370.rb +29 -0
data/lib/codesake/dawn/kb/cve_2012_5371.rb +29 -0
data/lib/codesake/dawn/kb/cve_2012_5380.rb +30 -0
data/lib/codesake/dawn/kb/cve_2012_6109.rb +27 -0
data/lib/codesake/dawn/kb/cve_2012_6134.rb +29 -0
data/lib/codesake/dawn/kb/cve_2012_6496.rb +30 -0
data/lib/codesake/dawn/kb/cve_2012_6497.rb +30 -0
data/lib/codesake/dawn/kb/cve_2013_0155.rb +31 -0
data/lib/codesake/dawn/kb/cve_2013_0156.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_0162.rb +30 -0
data/lib/codesake/dawn/kb/cve_2013_0175.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_0183.rb +27 -0
data/lib/codesake/dawn/kb/cve_2013_0184.rb +27 -0
data/lib/codesake/dawn/kb/cve_2013_0233.rb +28 -0
data/lib/codesake/dawn/kb/cve_2013_0256.rb +61 -0
data/lib/codesake/dawn/kb/cve_2013_0262.rb +28 -0
data/lib/codesake/dawn/kb/cve_2013_0263.rb +28 -0
data/lib/codesake/dawn/kb/cve_2013_0269.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_0276.rb +30 -0
data/lib/codesake/dawn/kb/cve_2013_0277.rb +27 -0
data/lib/codesake/dawn/kb/cve_2013_0284.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_0285.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_0333.rb +30 -0
data/lib/codesake/dawn/kb/cve_2013_1607.rb +27 -0
data/lib/codesake/dawn/kb/cve_2013_1655.rb +67 -0
data/lib/codesake/dawn/kb/cve_2013_1656.rb +30 -0
data/lib/codesake/dawn/kb/cve_2013_1756.rb +28 -0
data/lib/codesake/dawn/kb/cve_2013_1800.rb +28 -0
data/lib/codesake/dawn/kb/cve_2013_1801.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_1802.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_1812.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_1821.rb +30 -0
data/lib/codesake/dawn/kb/cve_2013_1854.rb +28 -0
data/lib/codesake/dawn/kb/cve_2013_1855.rb +27 -0
data/lib/codesake/dawn/kb/cve_2013_1856.rb +28 -0
data/lib/codesake/dawn/kb/cve_2013_1857.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_1875.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_1898.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_1911.rb +30 -0
data/lib/codesake/dawn/kb/cve_2013_1933.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_1947.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_1948.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_2065.rb +31 -0
data/lib/codesake/dawn/kb/cve_2013_2090.rb +30 -0
data/lib/codesake/dawn/kb/cve_2013_2105.rb +28 -0
data/lib/codesake/dawn/kb/cve_2013_2119.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_2512.rb +28 -0
data/lib/codesake/dawn/kb/cve_2013_2513.rb +27 -0
data/lib/codesake/dawn/kb/cve_2013_2516.rb +28 -0
data/lib/codesake/dawn/kb/cve_2013_2615.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_2616.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_2617.rb +30 -0
data/lib/codesake/dawn/kb/cve_2013_3221.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_4164.rb +32 -0
data/lib/codesake/dawn/kb/cve_2013_4203.rb +27 -0
data/lib/codesake/dawn/kb/cve_2013_4389.rb +28 -0
data/lib/codesake/dawn/kb/cve_2013_4413.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_4457.rb +31 -0
data/lib/codesake/dawn/kb/cve_2013_4478.rb +28 -0
data/lib/codesake/dawn/kb/cve_2013_4479.rb +28 -0
data/lib/codesake/dawn/kb/cve_2013_4489.rb +30 -0
data/lib/codesake/dawn/kb/cve_2013_4491.rb +30 -0
data/lib/codesake/dawn/kb/cve_2013_4492.rb +31 -0
data/lib/codesake/dawn/kb/cve_2013_4562.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_4593.rb +29 -0
data/lib/codesake/dawn/kb/cve_2013_5647.rb +31 -0
data/lib/codesake/dawn/kb/cve_2013_5671.rb +28 -0
data/lib/codesake/dawn/kb/cve_2013_6414.rb +31 -0
data/lib/codesake/dawn/kb/cve_2013_6415.rb +30 -0
data/lib/codesake/dawn/kb/cve_2013_6416.rb +31 -0
data/lib/codesake/dawn/kb/cve_2013_6417.rb +31 -0
data/lib/codesake/dawn/kb/cve_2013_6421.rb +30 -0
data/lib/codesake/dawn/kb/cve_2013_6459.rb +30 -0
data/lib/codesake/dawn/kb/cve_2013_6460.rb +55 -0
data/lib/codesake/dawn/kb/cve_2013_6461.rb +59 -0
data/lib/codesake/dawn/kb/cve_2013_7086.rb +29 -0
data/lib/codesake/dawn/kb/cve_2014_0036.rb +29 -0
data/lib/codesake/dawn/kb/cve_2014_0080.rb +30 -0
data/lib/codesake/dawn/kb/cve_2014_0081.rb +28 -0
data/lib/codesake/dawn/kb/cve_2014_0082.rb +29 -0
data/lib/codesake/dawn/kb/cve_2014_0130.rb +28 -0
data/lib/codesake/dawn/kb/cve_2014_1233.rb +29 -0
data/lib/codesake/dawn/kb/cve_2014_1234.rb +28 -0
data/lib/codesake/dawn/kb/cve_2014_2322.rb +30 -0
data/lib/codesake/dawn/kb/cve_2014_2525.rb +61 -0
data/lib/codesake/dawn/kb/cve_2014_2538.rb +28 -0
data/lib/codesake/dawn/kb/cve_2014_3482.rb +30 -0
data/lib/codesake/dawn/kb/cve_2014_3483.rb +29 -0
data/lib/codesake/dawn/kb/dependency_check.rb +86 -0
data/lib/codesake/dawn/kb/deprecation_check.rb +40 -0
data/lib/codesake/dawn/kb/not_revised_code.rb +24 -0
data/lib/codesake/dawn/kb/operating_system_check.rb +98 -0
data/lib/codesake/dawn/kb/osvdb_105971.rb +31 -0
data/lib/codesake/dawn/kb/osvdb_108530.rb +29 -0
data/lib/codesake/dawn/kb/osvdb_108563.rb +30 -0
data/lib/codesake/dawn/kb/osvdb_108569.rb +30 -0
data/lib/codesake/dawn/kb/osvdb_108570.rb +29 -0
data/lib/codesake/dawn/kb/owasp_ror_cheatsheet.rb +41 -0
data/lib/codesake/dawn/kb/owasp_ror_cheatsheet/check_for_backup_files.rb +22 -0
data/lib/codesake/dawn/kb/owasp_ror_cheatsheet/check_for_safe_redirect_and_forward.rb +59 -0
data/lib/codesake/dawn/kb/owasp_ror_cheatsheet/command_injection.rb +30 -0
data/lib/codesake/dawn/kb/owasp_ror_cheatsheet/csrf.rb +31 -0
data/lib/codesake/dawn/kb/owasp_ror_cheatsheet/mass_assignment_in_model.rb +35 -0
data/lib/codesake/dawn/kb/owasp_ror_cheatsheet/security_related_headers.rb +38 -0
data/lib/codesake/dawn/kb/owasp_ror_cheatsheet/sensitive_files.rb +31 -0
data/lib/codesake/dawn/kb/owasp_ror_cheatsheet/session_stored_in_database.rb +33 -0
data/lib/codesake/dawn/kb/pattern_match_check.rb +129 -0
data/lib/codesake/dawn/kb/ruby_version_check.rb +91 -0
data/lib/codesake/dawn/kb/simpleform_xss_20131129.rb +30 -0
data/lib/codesake/dawn/kb/version_check.rb +418 -0
data/lib/codesake/dawn/knowledge_base.rb +513 -0
data/lib/codesake/dawn/padrino.rb +82 -0
data/lib/codesake/dawn/rails.rb +17 -0
data/lib/codesake/dawn/railtie.rb +9 -0
data/lib/codesake/dawn/reporter.rb +280 -0
data/lib/codesake/dawn/sinatra.rb +129 -0
data/lib/codesake/dawn/tasks.rb +27 -0
data/lib/codesake/dawn/utils.rb +21 -0
data/lib/codesake/dawn/version.rb +28 -0
data/lib/tasks/codesake-dawn_tasks.rake +1 -0
data/spec/lib/dawn/codesake_core_spec.rb +9 -0
data/spec/lib/dawn/codesake_knowledgebase_spec.rb +940 -0
data/spec/lib/dawn/codesake_padrino_engine_disabled.rb +45 -0
data/spec/lib/dawn/codesake_rails_engine_disabled.rb +12 -0
data/spec/lib/dawn/codesake_sinatra_engine_disabled.rb +128 -0
data/spec/lib/kb/codesake_cve_2013_0175_spec.rb +35 -0
data/spec/lib/kb/codesake_cve_2013_4457_spec.rb +41 -0
data/spec/lib/kb/codesake_dependency_version_check_spec.rb +76 -0
data/spec/lib/kb/codesake_deprecation_check_spec.rb +56 -0
data/spec/lib/kb/codesake_ruby_version_check_spec.rb +40 -0
data/spec/lib/kb/codesake_version_check_spec.rb +165 -0
data/spec/lib/kb/cve_2011_2705_spec.rb +35 -0
data/spec/lib/kb/cve_2011_2930_spec.rb +31 -0
data/spec/lib/kb/cve_2011_3009_spec.rb +25 -0
data/spec/lib/kb/cve_2011_3187_spec.rb +24 -0
data/spec/lib/kb/cve_2011_4319_spec.rb +44 -0
data/spec/lib/kb/cve_2011_5036_spec.rb +95 -0
data/spec/lib/kb/cve_2012_1098_spec.rb +36 -0
data/spec/lib/kb/cve_2012_2139_spec.rb +20 -0
data/spec/lib/kb/cve_2012_2671_spec.rb +23 -0
data/spec/lib/kb/cve_2012_6109_spec.rb +112 -0
data/spec/lib/kb/cve_2013_0162_spec.rb +23 -0
data/spec/lib/kb/cve_2013_0183_spec.rb +54 -0
data/spec/lib/kb/cve_2013_0184_spec.rb +115 -0
data/spec/lib/kb/cve_2013_0256_spec.rb +34 -0
data/spec/lib/kb/cve_2013_0262_spec.rb +44 -0
data/spec/lib/kb/cve_2013_0263_spec.rb +11 -0
data/spec/lib/kb/cve_2013_1607_spec.rb +15 -0
data/spec/lib/kb/cve_2013_1655_spec.rb +31 -0
data/spec/lib/kb/cve_2013_1756_spec.rb +23 -0
data/spec/lib/kb/cve_2013_2090_spec.rb +15 -0
data/spec/lib/kb/cve_2013_2105_spec.rb +11 -0
data/spec/lib/kb/cve_2013_2119_spec.rb +27 -0
data/spec/lib/kb/cve_2013_2512_spec.rb +15 -0
data/spec/lib/kb/cve_2013_2513_spec.rb +15 -0
data/spec/lib/kb/cve_2013_2516_spec.rb +15 -0
data/spec/lib/kb/cve_2013_4203_spec.rb +15 -0
data/spec/lib/kb/cve_2013_4413_spec.rb +16 -0
data/spec/lib/kb/cve_2013_4489_spec.rb +63 -0
data/spec/lib/kb/cve_2013_4593_spec.rb +16 -0
data/spec/lib/kb/cve_2013_5647_spec.rb +19 -0
data/spec/lib/kb/cve_2013_5671_spec.rb +27 -0
data/spec/lib/kb/cve_2013_6416_spec.rb +31 -0
data/spec/lib/kb/cve_2013_6459_spec.rb +15 -0
data/spec/lib/kb/cve_2013_7086_spec.rb +22 -0
data/spec/lib/kb/cve_2014_0036_spec.rb +15 -0
data/spec/lib/kb/cve_2014_0080_spec.rb +28 -0
data/spec/lib/kb/cve_2014_0081_spec.rb +68 -0
data/spec/lib/kb/cve_2014_0082_spec.rb +52 -0
data/spec/lib/kb/cve_2014_0130_spec.rb +19 -0
data/spec/lib/kb/cve_2014_1233_spec.rb +15 -0
data/spec/lib/kb/cve_2014_1234_spec.rb +16 -0
data/spec/lib/kb/cve_2014_2322_spec.rb +15 -0
data/spec/lib/kb/cve_2014_2538_spec.rb +15 -0
data/spec/lib/kb/cve_2014_3482_spec.rb +15 -0
data/spec/lib/kb/cve_2014_3483_spec.rb +23 -0
data/spec/lib/kb/osvdb_105971_spec.rb +15 -0
data/spec/lib/kb/osvdb_108530_spec.rb +22 -0
data/spec/lib/kb/osvdb_108563_spec.rb +18 -0
data/spec/lib/kb/osvdb_108569_spec.rb +17 -0
data/spec/lib/kb/osvdb_108570_spec.rb +17 -0
data/spec/lib/kb/owasp_ror_cheatsheet_disabled.rb +56 -0
data/spec/spec_helper.rb +11 -0
data/support/bootstrap.js +2027 -0
data/support/bootstrap.min.css +9 -0
data/support/codesake.css +63 -0
metadata +659 -0
metadata.gz.sig +0 -0

data/lib/codesake/dawn/padrino.rb ADDED

@@ -0,0 +1,82 @@
+require 'ruby_parser'
+module Codesake
+  module Dawn
+    class Padrino
+      include Codesake::Dawn::Engine
+      attr_reader :apps
+      def initialize(dir=nil)
+        super(dir, "padrino", {:debug=>false})
+        @apps = detect_apps
+      end
+      def get_sinatra_version
+        self.connected_gems.each do |gem|
+          return gem[:version] if gem[:name] == "sinatra"
+        end
+        return ""
+      end
+      def detect_apps
+        apps_rb = File.join(@target, "config", "apps.rb")
+        return nil unless File.exist?(apps_rb)
+        lines = File.readlines(apps_rb)
+        p = RubyParser.new
+        apps = []
+        lines.each do |line|
+          if /^Padrino\.mount/ =~ line
+            begin
+              tree = p.parse(line)
+              if ! tree.nil? && tree.sexp_type == :call
+                body_a = tree.sexp_body.to_a
+                debug_me("BODY_A=#{body_a[0]} - BODY_A_SIZE=#{body_a[0].size}")
+                debug_me("IS_MOUNT_CALL? #{is_mount_call?(body_a[0])}")
+                mp = body_a[2][1]
+                debug_me("MP = #{mp}")
+                # Padrino.mount('HelloWorldPadrino::App', :app_file => Padrino.root('app/app.rb')).to('/')
+                sinatra_app_rb = body_a[0][4][2][3][1] if body_a[0].size == 5 && is_mount_call?(body_a[0])
+                # Padrino.mount("HelloWorldPadrino:App").to('/')
+                if body_a[0].size == 4
+                  # Defaulting the application name if mount point is /
+                  sinatra_app_rb = "app/app.rb" if mp == "/"
+                  # Take the app name as mountpoint/app.rb
+                  sinatra_app_rb = body_a[0][3][1].downcase+"/app.rb" unless mp == "/"
+                end
+                target = File.dirname(sinatra_app_rb )
+                apps << Codesake::Dawn::Sinatra.new(target, mp)
+              end
+            rescue Racc::ParseError => e
+              debug_me(e.message)
+            end
+          end
+          # if line.start_with?("Padrino.mount")
+        end
+        debug_me("sinatra version is: #{self.get_sinatra_version}")
+        apps.each do |a|
+          debug_me("detected sinatra application at #{a.mount_point} ")
+        end
+        apps
+      end
+      def is_mount_call?(a)
+        return (a[0] == :call && a[1] == [:const, :Padrino] && a[2] == :mount)
+      end
+    end
+  end
+end

data/lib/codesake/dawn/rails.rb ADDED

@@ -0,0 +1,17 @@
+require "codesake/dawn/engine"
+module Codesake
+  module Dawn
+    class Rails
+      include Codesake::Dawn::Engine
+      def initialize(dir=nil)
+        super(dir, "rails")
+      end
+    end
+  end
+end

data/lib/codesake/dawn/railtie.rb ADDED

@@ -0,0 +1,9 @@
+module Codesake
+  module Dawn
+    class Railtie < Rails::Railtie
+      rake_tasks do
+        require File.expand_path('../tasks', __FILE__)
+      end
+    end
+  end
+end

data/lib/codesake/dawn/reporter.rb ADDED

@@ -0,0 +1,280 @@
+module Codesake
+  module Dawn
+    class Reporter
+      def initialize(options={})
+        @engine = nil
+        @ret = false
+        @filename = options[:filename]
+        @ret = options[:apply_all_code] unless options[:apply_all_code].nil?
+        @format = options[:format] unless options[:format].nil?
+        @engine = options[:engine] unless options[:engine].nil?
+        @format = :console unless is_valid_format?(@format)
+      end
+      def report
+        ascii_tabular_report  if @format == :tabular
+        json_report           if @format == :json
+        ascii_plain_report    if @format == :console
+        html_report           if @format == :html
+      end
+      private
+      def write(output)
+        puts output if @filename.nil?
+        unless @filename.nil?
+          $logger.warn "I will use codesake.css, bootstrap.min.css and bootstrap.js stored in ./support/ directory" if @format == :html
+          File.open(@filename, "w") do |f|
+            f.puts output
+          end
+          $logger.ok "#{@filename} created (#{output.length} bytes)"
+        end
+      end
+      def is_valid_format?(format)
+        return false if format.nil?
+        return true if (format == :console) || (format == :tabular) || (format == :json) || (format == :html) || (format == :csv)
+        return false # otherwise
+      end
+      def html_report
+        html_head = "<!doctype html>\n<html>\n<head>\n<title>Codesake::Dawn report for #{File.basename(@engine.target)}</title>"
+        html_head += "<script src=\"./support/bootstrap.js\"></script>\n"
+        html_head += "<link href=\"./support/codesake.css\" media=\"all\" rel=\"stylesheet\" />\n"
+        html_head += "<link href=\"./support/bootstrap.min.css\" media=\"all\" rel=\"stylesheet\" />\n"
+        html_head += "</head>\n"
+        html_body =  "<body>\n"
+        html_body +=  ""
+        html_body += "<div id=\"wrap\">\n"
+        html_body += "<div class=\"container-narrow\">\n"
+        html_body += "<div class=\"masthead\">\n"
+        html_body += "<ul class=\"nav nav-pills pull-right\">\n"
+        html_body += "<li class=\"\"><a href=\"https://dawn.codesake.com\">Home</a></li>\n"
+        html_body += "<li class=\"active\"><a href=\"https://github.com/codesake/codesake-dawn\">Github repo</a></li>\n"
+        html_body += "</ul>\n"
+        html_body += "<h3 class=\"muted\">Codesake::Dawn</h3>\n"
+        html_body += "</div>\n"
+        html_body += "<h1>Security code review results for \"#{File.basename(@engine.target)}\"</h1>\n"
+        html_body += "<hr />\n"
+        html_body += "<h2>Scan detail</h2>\n"
+        html_body += "<div class=\"row\">\n"
+        html_body += "<p>The scan was last executed #{@engine.scan_start.strftime("%d %b %Y - %T")} and Codesake::Dawn founds #{@engine.count_vulnerabilities} vulnerabilities</p>\n"
+        html_body += "</div>\n"
+        html_body += "<hr />\n"
+        html_body += "<h2>Scan details</h2>\n"
+        html_body += "<table class=\"table-striped table-bordered table\">\n"
+        html_body += "<thead><tr><td>Key</td><td>Value</td></tr></thead>\n"
+        html_body += "<tbody>\n"
+        html_body += "<tr><td>Dawn version</td><td>#{Codesake::Dawn::VERSION}</td></tr>" unless Codesake::Dawn::RELEASE == "(development)\n"
+        html_body += "<tr><td>Dawn development version</td><td>#{Codesake::Dawn::VERSION}</td></tr>" if Codesake::Dawn::RELEASE == "(development)\n"
+        html_body += "<tr><td>Scan duration</td><td>#{@engine.scan_time.round(3)} sec</td></tr>\n"
+        html_body += "<tr><td>Target</td><td>#{@engine.target}</td></tr>\n"
+        html_body += "<tr><td>MVC detected framework</td><td>#{@engine.name} v#{@engine.get_mvc_version}</td></tr>" unless @engine.name == "Gemfile.lock\n"
+        html_body += "<tr><td>MVC detected framework</td><td>#{@engine.force} v#{@engine.get_mvc_version}</td></tr>" if @engine.name == "Gemfile.lock\n"
+        if @ret
+          html_body += "<tr><td>Applied checks</td><td>#{@engine.applied_checks} security checks</td></tr>\n"
+          html_body += "<tr><td>Skipped checks</td><td>#{@engine.skipped_checks} security checks</td></tr>\n"
+        else
+          html_body += "<tr><td>Applied checks</td><td>No security checks in the knowledge base</td></tr>\n"
+        end
+        html_body+="<tr><td>Vulnerabilities found</td><td>#{@engine.count_vulnerabilities}</td></tr>\n"
+        html_body+="<tr><td>Mitigated issues found</td><td>#{@engine.mitigated_issues.count}</td></tr>\n"
+        html_body+="<tr><td>Reflected XSS</td><td>#{@engine.reflected_xss.count}</td></tr>\n"
+        html_body += "</tbody>\n"
+        html_body += "</table>\n"
+        if @engine.count_vulnerabilities > 0
+          html_body += "<hr />\n"
+          html_body += "<h2>Vulnerabilities found</h2>\n"
+          html_body += "<table class=\"table-striped table-bordered table\">\n"
+          html_body += "<thead><tr><td>Name</td><td>Severity</td><td>Priority</td><td>CVSS score</td><td>Description</td><td>Remediation</td></tr></thead>\n"
+          @engine.vulnerabilities.each do |vuln|
+            html_body += "<tr><td><a href=\"#{vuln[:cve_link]}\">#{vuln[:name]}</a></td><td>#{vuln[:severity]}</td><td>#{vuln[:priority]}</td><td>#{vuln[:cvss_score]}</td><td>#{vuln[:message]}</td><td>#{vuln[:remediation]}</td></tr>\n"
+          end
+          html_body += "</tbody>\n"
+          html_body += "</table>\n"
+        end
+        html_body += "<div id=\"push\"></div>\n"
+        html_body += "<div id=\"footer\">\n"
+        html_body += "<div class=\"container\">\n"
+        html_body += "<p class=\"muted credit\">&copy; <a href=\"http://dawn.codesake.com\">Codesake::Dawn</a> &mdash; #{Time.now.strftime("%Y")} &mdash; engine v#{Codesake::Dawn::VERSION} (#{Codesake::Dawn::RELEASE})</p>\n"
+        html_body += "</div>\n"
+        html_body += "</div>\n"
+        html_body += "</div>\n"
+        html_body += "</div>\n"
+        html_body += "</body>\n"
+        html_body += "</html>"
+        html = html_head + html_body
+        write(html)
+        true
+      end
+      def ascii_tabular_report
+        # 0_First table: executive summary
+        rows = []
+        rows << ['Dawn version', Codesake::Dawn::VERSION] unless Codesake::Dawn::RELEASE == "(development)"
+        rows << ['Dawn development version', Codesake::Dawn::VERSION] if Codesake::Dawn::RELEASE == "(development)"
+        rows << ['Scan started', @engine.scan_start]
+        rows << ['Scan duration', "#{@engine.scan_time.round(3)} sec"]
+        rows << ['Target', @engine.target]
+        rows << ['MVC detected framework', "#{@engine.name} v#{@engine.get_mvc_version}" ] unless @engine.name == "Gemfile.lock"
+        rows << ['MVC detected framework', "#{@engine.force} v#{@engine.get_mvc_version}" ] if @engine.name == "Gemfile.lock"
+        if @ret
+          rows << ['Applied checks', "#{@engine.applied_checks} security checks"]
+          rows << ['Skipped checks', "#{@engine.skipped_checks} security checks"]
+        else
+          rows << ['Applied checks', "No security checks in the knowledge base"]
+        end
+        rows << ['Vulnerabilities found', @engine.count_vulnerabilities]
+        rows << ['Mitigated issues found', @engine.mitigated_issues.count]
+        rows << ['Reflected XSS', @engine.reflected_xss.count]
+        table = Terminal::Table.new :title=>'Scan summary', :rows => rows
+        puts table
+        if @engine.count_vulnerabilities > 0
+          # 1_Vulnerabilities
+          rows = []
+          @engine.vulnerabilities.each do |vuln|
+            rows << [vuln[:name].justify(10), vuln[:severity], vuln[:priority], vuln[:message].justify(50), vuln[:remediation].justify(15), vuln[:evidences].join.justify(15)]
+            rows << :separator
+          end
+          table = Terminal::Table.new :title=>"Vulnerabilities", :headings=>['Issue', 'Severity', 'Priority', 'Description', 'Solution', 'Evidences'], :rows=>rows
+          puts table
+          rows = []
+          if @engine.has_reflected_xss?
+            @engine.reflected_xss.each do |vuln|
+              rows << [vuln[:sink_source], vuln[:sink_view], "#{vuln[:sink_file]}@#{vuln[:sink_line]}",vuln[:sink_evidence]]
+              rows << :separator
+            end
+            table = Terminal::Table.new :title=>"Reflected Cross Site Scripting", :headings=>['Sink name', 'View', 'Location the sink was read', 'Evidences'], :rows=>rows
+            puts table
+          end
+        end
+        if @engine.mitigated_issues.count > 0
+          # 2_Mitigated issues
+          rows = []
+          @engine.mitigated_issues.each do |vuln|
+            rows << [vuln[:name].justify(10), vuln[:message].justify(50), vuln[:evidences].join.justify(15)]
+            rows << :separator
+          end
+          table = Terminal::Table.new :title=>"Mitigated issues", :headings=>['Issue', 'Description', 'Evidences'], :rows=>rows
+          puts table
+        end
+        true
+      end
+      def json_report
+        result = {}
+        return {:status=>"KO", :message=>"BUG at #{__FILE__}@#{__LINE__}: target is empty or engine is nil."}.to_json if @engine.target.empty? or @engine.nil?
+        return {:status=>"KO", :message=>"#{target} doesn't exist"}.to_json if ! Dir.exist?(@engine.target)
+        return {:status=>"KO", :message=>"no security checks applied"}.to_json unless @ret
+        result[:status]="OK"
+        result[:dawn_version] = Codesake::Dawn::VERSION
+        result[:dawn_status] = "Develoment version" if Codesake::Dawn::RELEASE == "(development)"
+        result[:scan_started] = @engine.scan_start
+        result[:scan_duration] = "#{@engine.scan_time.round(3)} sec"
+        result[:target]=@engine.target
+        result[:mvc]=@engine.name unless @engine.name == "Gemfile.lock"
+        result[:mvc]=@engine.force if @engine.name == "Gemfile.lock"
+        result[:mvc_version]=@engine.get_mvc_version
+        result[:applied_checks_count] = @engine.applied_checks
+        result[:skipped_checks_count] = @engine.skipped_checks
+        result[:vulnerabilities_count]=@engine.count_vulnerabilities
+        result[:mitigated_issues_count] = @engine.mitigated_issues.count
+        result[:reflected_xss_count] = @engine.reflected_xss.count
+        result[:vulnerabilities]=[]
+        @engine.vulnerabilities.each do |v|
+          result[:vulnerabilities] << {
+            :name => v[:name],
+            :cve_link => v[:cve_link],
+            :severity => v[:severity],
+            :priority => v[:priority],
+            :cvss_score => v[:cvss_score],
+            :message => v[:message],
+            :remediation => v[:remediation]
+          }
+        end
+        result[:mitigated_vuln] = @engine.mitigated_issues
+        result[:reflected_xss] = []
+        @engine.reflected_xss.each do |r|
+          result[:reflected_xss] << "request parameter \"#{r[:sink_source]}\""
+        end
+        write(result.to_json)
+        true
+      end
+      def ascii_plain_report
+        $logger.log "scanning #{@engine.target}"
+        $logger.log "#{@engine.name} v#{@engine.get_mvc_version} detected" unless @engine.name == "Gemfile.lock"
+        $logger.log "#{@engine.force} v#{@engine.get_mvc_version} detected" if @engine.name == "Gemfile.lock"
+        $logger.log "applying all security checks"
+        if @ret
+          $logger.log "#{@engine.applied_checks} security checks applied - #{@engine.skipped_checks} security checks skipped"
+        else
+          $logger.err "no security checks in the knowledge base"
+        end
+        if @engine.count_vulnerabilities != 0
+          $logger.log "#{@engine.count_vulnerabilities} vulnerabilities found"
+          @engine.vulnerabilities.each do |vuln|
+            $logger.err "#{vuln[:name]} check failed"
+            $logger.log "Severity: #{vuln[:severity]}"
+            $logger.log "Priority: #{vuln[:priority]}"
+            $logger.log "Description: #{vuln[:message]}"
+            $logger.log "Solution: #{vuln[:remediation]}"
+            $logger.log "Evidence:"
+            vuln[:evidences].each do |evidence|
+              $logger.log "\t#{evidence}"
+            end
+          end
+          if @engine.has_reflected_xss?
+            $logger.log "#{@engine.reflected_xss.count} reflected XSS found"
+            @engine.reflected_xss.each do |vuln|
+              $logger.log "request parameter \"#{vuln[:sink_source]}\" is used without escaping in #{vuln[:sink_view]}. It was read here: #{vuln[:sink_file]}@#{vuln[:sink_line]}"
+              $logger.err "evidence: #{vuln[:sink_evidence]}"
+            end
+          end
+        else
+          $logger.ok "no vulnerabilities found."
+        end
+        if @engine.mitigated_issues.count != 0
+          $logger.log "#{@engine.mitigated_issues.count} mitigated vulnerabilities found"
+          @engine.mitigated_issues.each do |vuln|
+            $logger.ok "#{vuln[:name]} mitigated"
+            vuln[:evidences].each do |evidence|
+              $logger.err evidence
+            end
+          end
+        end
+        true
+      end
+    end
+  end
+end

data/lib/codesake/dawn/sinatra.rb ADDED

@@ -0,0 +1,129 @@
+require "codesake/dawn/engine"
+require 'ruby_parser'
+module Codesake
+  module Dawn
+    class Sinatra
+      include Codesake::Dawn::Engine
+      attr_reader :sinks
+      attr_reader :appname
+      # mount_point is the mounting point for this Sinatra application. It's
+      # filled up only in padrino engines
+      attr_reader :mount_point
+      def initialize(dir=nil, mp=nil)
+        super(dir, "sinatra")
+        @appname = detect_appname(self.target)
+        error! if self.appname == ""
+        @views = detect_views
+        @sinks = detect_sinks(self.appname) unless self.appname == ""
+        @reflected_xss = detect_reflected_xss unless self.appname == "" || !@views
+        @mount_point = (mp.nil?)? "" : mp
+      end
+      # TODO: appname should be hopefully autodetect from config.ru
+      def detect_appname(target)
+        return "app.rb" if File.exist?(File.join(self.target, "app.rb"))
+        return "application.rb" if File.exist?(File.join(self.target, "application.rb"))
+        file_array = Dir.glob(File.join("#{target}", "*.rb"))
+        return file_array[0] if ! file_array.nil? and file_array.count == 1
+        return "" # gracefully failure
+      end
+      def detect_reflected_xss
+        ret = []
+        @views.each do |v|
+          view_content = File.read(v[:filename])
+          @sinks.each do |sink|
+            if view_content.match(sink[:sink_name])
+              sink[:sink_view] = v[:filename]
+              ret << sink
+            end
+          end
+        end
+        ret
+      end
+      def detect_sinks(appname=nil)
+        ret = []
+        appname = "app.rb" if appname.nil? and self.appname == ""
+        app_rb = File.readlines(File.join(self.target, appname)) if File.exist?(File.join(self.target, appname))
+        return [] if app_rb.nil?
+        parser = RubyParser.new
+        app_rb.each_with_index do |line, i|
+          line = line.chomp
+          unless line.match(/params/).nil?
+            begin
+              t = parser.parse(line)
+              # a[1] = params["foo"]
+              #
+              if (! t.nil? and t.sexp_type == :attrasgn)
+                body = t.sexp_body.to_a
+                if is_assignement_from_params?(body, :attrasgn)
+                  if body[0][0] == :call
+                    sink_name=body[0][2].to_s unless body[1].to_s == "[]="
+                    sink_name="#{body[2].to_a[1].to_s}" if body[1].to_s == "[]=" # the sink is assigned to an Array
+                    sink_source = "#{body[3].to_a[1][2].to_s}[#{body[3].to_a[3][1].to_s}]"
+                    ret << {:sink_name=>sink_name, :sink_kind=>:params, :sink_line=>i+1, :sink_source=>sink_source, :sink_file=>appname, :sink_evidence=>line}
+                  end
+                  if body[0][0] == :ivar
+                    sink_name=body[0][1].to_s
+                    sink_pos=body[2][1].to_i
+                    sink_source=body[3][3][1]
+                    ret << {:sink_name=>sink_name, :sink_kind=>:params, :sink_line=>i+1, :sink_source=>sink_source, :sink_file=>appname, :sink_evidence=>line}
+                  end
+                end
+              end
+              # a = params["foo"]
+              if (! t.nil? and t.sexp_type == :iasgn)
+                body = t.sexp_body.to_a
+                if is_assignement_from_params?(body, :iasgn)
+                  sink_name = body[0].to_s
+                  sink_source = "#{body[1][3][1].to_s}"
+                  ret << {:sink_name=>sink_name, :sink_kind=>:params, :sink_line=>i+1, :sink_source=>sink_source, :sink_file=>appname, :sink_evidence=>line}
+                end
+              end
+            rescue Racc::ParseError => e
+              # TODO: we must pass logger instance to engines if we want some error message
+              # For now... silently discard parse errors
+              return []
+            end
+          end
+        end
+        ret
+      end
+      def is_assignement_from_params?(body, kind)
+        return ( ! body[3].nil? and body[3].to_a[1][2].to_s == "params") if kind == :attrasgn
+        return ( ! body[1].nil? and ! body[1][1].nil? and body[1][1][2].to_s == "params") if kind == :iasgn
+      end
+      def detect_views
+        return build_view_array(File.join(self.target, "views")) if File.exist?(File.join(self.target, "views"))
+        []
+      end
+      # e = Haml::Engine.new(File.read(template))
+      # e.precompiled  and grep for format_script
+    end
+  end
+end