RubyGems - dawnscanner - Versions diffs - 1.6.8 → 2.0.0.rc4 - Mend

dawnscanner 1.6.8 → 2.0.0.rc4

Files changed (387) hide show

checksums.yaml +5 -5
data/.gitignore +1 -0
data/.ruby-version +1 -1
data/Changelog.md +27 -1
data/LICENSE.txt +1 -1
data/README.md +59 -57
data/Rakefile +10 -242
data/Roadmap.md +15 -23
data/VERSION +1 -1
data/bin/dawn +17 -273
data/checksum/dawnscanner-1.6.8.gem.sha1 +1 -0
data/checksum/dawnscanner-2.0.0.rc1.gem.sha1 +1 -0
data/checksum/dawnscanner-2.0.0.rc2.gem.sha1 +1 -0
data/checksum/dawnscanner-2.0.0.rc3.gem.sha1 +1 -0
data/dawnscanner.gemspec +10 -9
data/doc/change.sh +13 -0
data/doc/kickstart_kb.tar.gz +0 -0
data/doc/knowledge_base.rb +650 -0
data/docs/.placeholder +0 -0
data/docs/CNAME +1 -0
data/docs/_config.yml +1 -0
data/lib/dawn/cli/dawn_cli.rb +139 -0
data/lib/dawn/core.rb +8 -7
data/lib/dawn/engine.rb +93 -34
data/lib/dawn/gemfile_lock.rb +2 -2
data/lib/dawn/kb/basic_check.rb +1 -2
data/lib/dawn/kb/combo_check.rb +1 -1
data/lib/dawn/kb/dependency_check.rb +1 -1
data/lib/dawn/kb/operating_system_check.rb +1 -1
data/lib/dawn/kb/pattern_match_check.rb +10 -9
data/lib/dawn/kb/ruby_version_check.rb +11 -10
data/lib/dawn/kb/{gem_check.rb → rubygem_check.rb} +1 -1
data/lib/dawn/kb/unsafe_depedency_check.rb +44 -0
data/lib/dawn/kb/version_check.rb +41 -24
data/lib/dawn/knowledge_base.rb +259 -595
data/lib/dawn/reporter.rb +2 -1
data/lib/dawn/utils.rb +5 -2
data/lib/dawn/version.rb +5 -5
data/lib/dawnscanner.rb +7 -6
data/spec/lib/kb/codesake_unsafe_dependency_check_spec.rb +29 -0
data/spec/lib/kb/dependency_check.yml +29 -0
metadata +30 -496
checksums.yaml.gz.sig +0 -0
data.tar.gz.sig +0 -0
data/certs/paolo_at_dawnscanner_dot_org.pem +0 -21
data/lib/dawn/kb/cve_2004_0755.rb +0 -33
data/lib/dawn/kb/cve_2004_0983.rb +0 -31
data/lib/dawn/kb/cve_2005_1992.rb +0 -31
data/lib/dawn/kb/cve_2005_2337.rb +0 -33
data/lib/dawn/kb/cve_2006_1931.rb +0 -30
data/lib/dawn/kb/cve_2006_2582.rb +0 -28
data/lib/dawn/kb/cve_2006_3694.rb +0 -31
data/lib/dawn/kb/cve_2006_4112.rb +0 -27
data/lib/dawn/kb/cve_2006_5467.rb +0 -28
data/lib/dawn/kb/cve_2006_6303.rb +0 -28
data/lib/dawn/kb/cve_2006_6852.rb +0 -27
data/lib/dawn/kb/cve_2006_6979.rb +0 -29
data/lib/dawn/kb/cve_2007_0469.rb +0 -29
data/lib/dawn/kb/cve_2007_5162.rb +0 -28
data/lib/dawn/kb/cve_2007_5379.rb +0 -27
data/lib/dawn/kb/cve_2007_5380.rb +0 -29
data/lib/dawn/kb/cve_2007_5770.rb +0 -30
data/lib/dawn/kb/cve_2007_6077.rb +0 -31
data/lib/dawn/kb/cve_2007_6612.rb +0 -30
data/lib/dawn/kb/cve_2008_1145.rb +0 -38
data/lib/dawn/kb/cve_2008_1891.rb +0 -38
data/lib/dawn/kb/cve_2008_2376.rb +0 -30
data/lib/dawn/kb/cve_2008_2662.rb +0 -33
data/lib/dawn/kb/cve_2008_2663.rb +0 -32
data/lib/dawn/kb/cve_2008_2664.rb +0 -33
data/lib/dawn/kb/cve_2008_2725.rb +0 -31
data/lib/dawn/kb/cve_2008_3655.rb +0 -37
data/lib/dawn/kb/cve_2008_3657.rb +0 -37
data/lib/dawn/kb/cve_2008_3790.rb +0 -30
data/lib/dawn/kb/cve_2008_3905.rb +0 -36
data/lib/dawn/kb/cve_2008_4094.rb +0 -27
data/lib/dawn/kb/cve_2008_4310.rb +0 -100
data/lib/dawn/kb/cve_2008_5189.rb +0 -27
data/lib/dawn/kb/cve_2008_7248.rb +0 -27
data/lib/dawn/kb/cve_2009_4078.rb +0 -29
data/lib/dawn/kb/cve_2009_4124.rb +0 -30
data/lib/dawn/kb/cve_2009_4214.rb +0 -27
data/lib/dawn/kb/cve_2010_1330.rb +0 -28
data/lib/dawn/kb/cve_2010_2489.rb +0 -60
data/lib/dawn/kb/cve_2010_3933.rb +0 -27
data/lib/dawn/kb/cve_2011_0188.rb +0 -67
data/lib/dawn/kb/cve_2011_0446.rb +0 -28
data/lib/dawn/kb/cve_2011_0447.rb +0 -28
data/lib/dawn/kb/cve_2011_0739.rb +0 -28
data/lib/dawn/kb/cve_2011_0995.rb +0 -61
data/lib/dawn/kb/cve_2011_1004.rb +0 -34
data/lib/dawn/kb/cve_2011_1005.rb +0 -31
data/lib/dawn/kb/cve_2011_2197.rb +0 -27
data/lib/dawn/kb/cve_2011_2686.rb +0 -29
data/lib/dawn/kb/cve_2011_2705.rb +0 -32
data/lib/dawn/kb/cve_2011_2929.rb +0 -27
data/lib/dawn/kb/cve_2011_2930.rb +0 -28
data/lib/dawn/kb/cve_2011_2931.rb +0 -30
data/lib/dawn/kb/cve_2011_2932.rb +0 -27
data/lib/dawn/kb/cve_2011_3009.rb +0 -28
data/lib/dawn/kb/cve_2011_3186.rb +0 -29
data/lib/dawn/kb/cve_2011_3187.rb +0 -29
data/lib/dawn/kb/cve_2011_4319.rb +0 -30
data/lib/dawn/kb/cve_2011_4815.rb +0 -28
data/lib/dawn/kb/cve_2011_5036.rb +0 -26
data/lib/dawn/kb/cve_2012_1098.rb +0 -30
data/lib/dawn/kb/cve_2012_1099.rb +0 -27
data/lib/dawn/kb/cve_2012_1241.rb +0 -27
data/lib/dawn/kb/cve_2012_2139.rb +0 -26
data/lib/dawn/kb/cve_2012_2140.rb +0 -27
data/lib/dawn/kb/cve_2012_2660.rb +0 -28
data/lib/dawn/kb/cve_2012_2661.rb +0 -27
data/lib/dawn/kb/cve_2012_2671.rb +0 -28
data/lib/dawn/kb/cve_2012_2694.rb +0 -30
data/lib/dawn/kb/cve_2012_2695.rb +0 -27
data/lib/dawn/kb/cve_2012_3424.rb +0 -29
data/lib/dawn/kb/cve_2012_3463.rb +0 -27
data/lib/dawn/kb/cve_2012_3464.rb +0 -27
data/lib/dawn/kb/cve_2012_3465.rb +0 -26
data/lib/dawn/kb/cve_2012_4464.rb +0 -27
data/lib/dawn/kb/cve_2012_4466.rb +0 -27
data/lib/dawn/kb/cve_2012_4481.rb +0 -26
data/lib/dawn/kb/cve_2012_4522.rb +0 -27
data/lib/dawn/kb/cve_2012_5370.rb +0 -27
data/lib/dawn/kb/cve_2012_5371.rb +0 -27
data/lib/dawn/kb/cve_2012_5380.rb +0 -28
data/lib/dawn/kb/cve_2012_6109.rb +0 -25
data/lib/dawn/kb/cve_2012_6134.rb +0 -27
data/lib/dawn/kb/cve_2012_6496.rb +0 -28
data/lib/dawn/kb/cve_2012_6497.rb +0 -28
data/lib/dawn/kb/cve_2012_6684.rb +0 -28
data/lib/dawn/kb/cve_2013_0155.rb +0 -29
data/lib/dawn/kb/cve_2013_0156.rb +0 -27
data/lib/dawn/kb/cve_2013_0162.rb +0 -28
data/lib/dawn/kb/cve_2013_0175.rb +0 -27
data/lib/dawn/kb/cve_2013_0183.rb +0 -25
data/lib/dawn/kb/cve_2013_0184.rb +0 -25
data/lib/dawn/kb/cve_2013_0233.rb +0 -26
data/lib/dawn/kb/cve_2013_0256.rb +0 -59
data/lib/dawn/kb/cve_2013_0262.rb +0 -26
data/lib/dawn/kb/cve_2013_0263.rb +0 -26
data/lib/dawn/kb/cve_2013_0269.rb +0 -27
data/lib/dawn/kb/cve_2013_0276.rb +0 -28
data/lib/dawn/kb/cve_2013_0277.rb +0 -25
data/lib/dawn/kb/cve_2013_0284.rb +0 -27
data/lib/dawn/kb/cve_2013_0285.rb +0 -27
data/lib/dawn/kb/cve_2013_0333.rb +0 -28
data/lib/dawn/kb/cve_2013_0334.rb +0 -25
data/lib/dawn/kb/cve_2013_1607.rb +0 -25
data/lib/dawn/kb/cve_2013_1655.rb +0 -65
data/lib/dawn/kb/cve_2013_1656.rb +0 -28
data/lib/dawn/kb/cve_2013_1756.rb +0 -26
data/lib/dawn/kb/cve_2013_1800.rb +0 -26
data/lib/dawn/kb/cve_2013_1801.rb +0 -27
data/lib/dawn/kb/cve_2013_1802.rb +0 -27
data/lib/dawn/kb/cve_2013_1812.rb +0 -27
data/lib/dawn/kb/cve_2013_1821.rb +0 -28
data/lib/dawn/kb/cve_2013_1854.rb +0 -26
data/lib/dawn/kb/cve_2013_1855.rb +0 -25
data/lib/dawn/kb/cve_2013_1856.rb +0 -26
data/lib/dawn/kb/cve_2013_1857.rb +0 -27
data/lib/dawn/kb/cve_2013_1875.rb +0 -27
data/lib/dawn/kb/cve_2013_1898.rb +0 -27
data/lib/dawn/kb/cve_2013_1911.rb +0 -28
data/lib/dawn/kb/cve_2013_1933.rb +0 -27
data/lib/dawn/kb/cve_2013_1947.rb +0 -27
data/lib/dawn/kb/cve_2013_1948.rb +0 -27
data/lib/dawn/kb/cve_2013_2065.rb +0 -29
data/lib/dawn/kb/cve_2013_2090.rb +0 -28
data/lib/dawn/kb/cve_2013_2105.rb +0 -26
data/lib/dawn/kb/cve_2013_2119.rb +0 -27
data/lib/dawn/kb/cve_2013_2512.rb +0 -26
data/lib/dawn/kb/cve_2013_2513.rb +0 -25
data/lib/dawn/kb/cve_2013_2516.rb +0 -26
data/lib/dawn/kb/cve_2013_2615.rb +0 -27
data/lib/dawn/kb/cve_2013_2616.rb +0 -27
data/lib/dawn/kb/cve_2013_2617.rb +0 -28
data/lib/dawn/kb/cve_2013_3221.rb +0 -27
data/lib/dawn/kb/cve_2013_4164.rb +0 -30
data/lib/dawn/kb/cve_2013_4203.rb +0 -25
data/lib/dawn/kb/cve_2013_4389.rb +0 -26
data/lib/dawn/kb/cve_2013_4413.rb +0 -27
data/lib/dawn/kb/cve_2013_4457.rb +0 -29
data/lib/dawn/kb/cve_2013_4478.rb +0 -26
data/lib/dawn/kb/cve_2013_4479.rb +0 -26
data/lib/dawn/kb/cve_2013_4489.rb +0 -28
data/lib/dawn/kb/cve_2013_4491.rb +0 -29
data/lib/dawn/kb/cve_2013_4492.rb +0 -29
data/lib/dawn/kb/cve_2013_4562.rb +0 -27
data/lib/dawn/kb/cve_2013_4593.rb +0 -27
data/lib/dawn/kb/cve_2013_5647.rb +0 -29
data/lib/dawn/kb/cve_2013_5671.rb +0 -26
data/lib/dawn/kb/cve_2013_6414.rb +0 -30
data/lib/dawn/kb/cve_2013_6415.rb +0 -29
data/lib/dawn/kb/cve_2013_6416.rb +0 -29
data/lib/dawn/kb/cve_2013_6417.rb +0 -30
data/lib/dawn/kb/cve_2013_6421.rb +0 -28
data/lib/dawn/kb/cve_2013_6459.rb +0 -28
data/lib/dawn/kb/cve_2013_6460.rb +0 -53
data/lib/dawn/kb/cve_2013_6461.rb +0 -57
data/lib/dawn/kb/cve_2013_7086.rb +0 -27
data/lib/dawn/kb/cve_2014_0036.rb +0 -27
data/lib/dawn/kb/cve_2014_0080.rb +0 -29
data/lib/dawn/kb/cve_2014_0081.rb +0 -27
data/lib/dawn/kb/cve_2014_0082.rb +0 -27
data/lib/dawn/kb/cve_2014_0130.rb +0 -27
data/lib/dawn/kb/cve_2014_1233.rb +0 -27
data/lib/dawn/kb/cve_2014_1234.rb +0 -26
data/lib/dawn/kb/cve_2014_2322.rb +0 -28
data/lib/dawn/kb/cve_2014_2525.rb +0 -59
data/lib/dawn/kb/cve_2014_2538.rb +0 -26
data/lib/dawn/kb/cve_2014_3482.rb +0 -28
data/lib/dawn/kb/cve_2014_3483.rb +0 -28
data/lib/dawn/kb/cve_2014_3916.rb +0 -29
data/lib/dawn/kb/cve_2014_4975.rb +0 -28
data/lib/dawn/kb/cve_2014_7818.rb +0 -27
data/lib/dawn/kb/cve_2014_7819.rb +0 -31
data/lib/dawn/kb/cve_2014_7829.rb +0 -30
data/lib/dawn/kb/cve_2014_8090.rb +0 -30
data/lib/dawn/kb/cve_2014_9490.rb +0 -29
data/lib/dawn/kb/cve_2015_1819.rb +0 -34
data/lib/dawn/kb/cve_2015_1840/cve_2015_1840_a.rb +0 -28
data/lib/dawn/kb/cve_2015_1840/cve_2015_1840_b.rb +0 -28
data/lib/dawn/kb/cve_2015_2963.rb +0 -27
data/lib/dawn/kb/cve_2015_3224.rb +0 -26
data/lib/dawn/kb/cve_2015_3225.rb +0 -28
data/lib/dawn/kb/cve_2015_3226.rb +0 -27
data/lib/dawn/kb/cve_2015_3227.rb +0 -28
data/lib/dawn/kb/cve_2015_3448.rb +0 -29
data/lib/dawn/kb/cve_2015_4020.rb +0 -34
data/lib/dawn/kb/cve_2015_5312.rb +0 -30
data/lib/dawn/kb/cve_2015_7497.rb +0 -32
data/lib/dawn/kb/cve_2015_7498.rb +0 -32
data/lib/dawn/kb/cve_2015_7499.rb +0 -32
data/lib/dawn/kb/cve_2015_7500.rb +0 -32
data/lib/dawn/kb/cve_2015_7519.rb +0 -31
data/lib/dawn/kb/cve_2015_7541.rb +0 -31
data/lib/dawn/kb/cve_2015_7576.rb +0 -35
data/lib/dawn/kb/cve_2015_7577.rb +0 -34
data/lib/dawn/kb/cve_2015_7578.rb +0 -30
data/lib/dawn/kb/cve_2015_7579.rb +0 -30
data/lib/dawn/kb/cve_2015_7581.rb +0 -33
data/lib/dawn/kb/cve_2015_8241.rb +0 -32
data/lib/dawn/kb/cve_2015_8242.rb +0 -32
data/lib/dawn/kb/cve_2015_8317.rb +0 -32
data/lib/dawn/kb/cve_2016_0751.rb +0 -32
data/lib/dawn/kb/cve_2016_0752.rb +0 -35
data/lib/dawn/kb/cve_2016_0753.rb +0 -31
data/lib/dawn/kb/cve_2016_2097.rb +0 -35
data/lib/dawn/kb/cve_2016_2098.rb +0 -35
data/lib/dawn/kb/cve_2016_5697.rb +0 -30
data/lib/dawn/kb/cve_2016_6316.rb +0 -33
data/lib/dawn/kb/cve_2016_6317.rb +0 -32
data/lib/dawn/kb/cve_2016_6582.rb +0 -43
data/lib/dawn/kb/not_revised_code.rb +0 -22
data/lib/dawn/kb/osvdb_105971.rb +0 -29
data/lib/dawn/kb/osvdb_108530.rb +0 -27
data/lib/dawn/kb/osvdb_108563.rb +0 -28
data/lib/dawn/kb/osvdb_108569.rb +0 -28
data/lib/dawn/kb/osvdb_108570.rb +0 -27
data/lib/dawn/kb/osvdb_115654.rb +0 -33
data/lib/dawn/kb/osvdb_116010.rb +0 -30
data/lib/dawn/kb/osvdb_117903.rb +0 -30
data/lib/dawn/kb/osvdb_118579.rb +0 -31
data/lib/dawn/kb/osvdb_118830.rb +0 -32
data/lib/dawn/kb/osvdb_118954.rb +0 -33
data/lib/dawn/kb/osvdb_119878.rb +0 -32
data/lib/dawn/kb/osvdb_119927.rb +0 -33
data/lib/dawn/kb/osvdb_120415.rb +0 -31
data/lib/dawn/kb/osvdb_120857.rb +0 -34
data/lib/dawn/kb/osvdb_121701.rb +0 -30
data/lib/dawn/kb/osvdb_132234.rb +0 -34
data/lib/dawn/kb/owasp_ror_cheatsheet.rb +0 -33
data/lib/dawn/kb/owasp_ror_cheatsheet/check_for_backup_files.rb +0 -18
data/lib/dawn/kb/owasp_ror_cheatsheet/check_for_safe_redirect_and_forward.rb +0 -57
data/lib/dawn/kb/owasp_ror_cheatsheet/command_injection.rb +0 -28
data/lib/dawn/kb/owasp_ror_cheatsheet/csrf.rb +0 -29
data/lib/dawn/kb/owasp_ror_cheatsheet/mass_assignment_in_model.rb +0 -33
data/lib/dawn/kb/owasp_ror_cheatsheet/security_related_headers.rb +0 -35
data/lib/dawn/kb/owasp_ror_cheatsheet/sensitive_files.rb +0 -29
data/lib/dawn/kb/owasp_ror_cheatsheet/session_stored_in_database.rb +0 -31
data/lib/dawn/kb/simpleform_xss_20131129.rb +0 -28
data/lib/dawn/knowledge_base_experimental.rb +0 -245
data/spec/lib/kb/cve_2011_2705_spec.rb +0 -35
data/spec/lib/kb/cve_2011_2930_spec.rb +0 -31
data/spec/lib/kb/cve_2011_3009_spec.rb +0 -25
data/spec/lib/kb/cve_2011_3187_spec.rb +0 -24
data/spec/lib/kb/cve_2011_4319_spec.rb +0 -44
data/spec/lib/kb/cve_2011_5036_spec.rb +0 -95
data/spec/lib/kb/cve_2012_1098_spec.rb +0 -36
data/spec/lib/kb/cve_2012_2139_spec.rb +0 -20
data/spec/lib/kb/cve_2012_2671_spec.rb +0 -23
data/spec/lib/kb/cve_2012_6109_spec.rb +0 -112
data/spec/lib/kb/cve_2012_6684_spec.rb +0 -16
data/spec/lib/kb/cve_2013_0162_spec.rb +0 -23
data/spec/lib/kb/cve_2013_0183_spec.rb +0 -54
data/spec/lib/kb/cve_2013_0184_spec.rb +0 -115
data/spec/lib/kb/cve_2013_0256_spec.rb +0 -34
data/spec/lib/kb/cve_2013_0262_spec.rb +0 -44
data/spec/lib/kb/cve_2013_0263_spec.rb +0 -11
data/spec/lib/kb/cve_2013_0334_spec.rb +0 -35
data/spec/lib/kb/cve_2013_1607_spec.rb +0 -15
data/spec/lib/kb/cve_2013_1655_spec.rb +0 -31
data/spec/lib/kb/cve_2013_1756_spec.rb +0 -23
data/spec/lib/kb/cve_2013_2090_spec.rb +0 -15
data/spec/lib/kb/cve_2013_2105_spec.rb +0 -11
data/spec/lib/kb/cve_2013_2119_spec.rb +0 -27
data/spec/lib/kb/cve_2013_2512_spec.rb +0 -15
data/spec/lib/kb/cve_2013_2513_spec.rb +0 -15
data/spec/lib/kb/cve_2013_2516_spec.rb +0 -15
data/spec/lib/kb/cve_2013_4203_spec.rb +0 -15
data/spec/lib/kb/cve_2013_4413_spec.rb +0 -16
data/spec/lib/kb/cve_2013_4489_spec.rb +0 -63
data/spec/lib/kb/cve_2013_4491_spec.rb +0 -16
data/spec/lib/kb/cve_2013_4593_spec.rb +0 -16
data/spec/lib/kb/cve_2013_5647_spec.rb +0 -19
data/spec/lib/kb/cve_2013_5671_spec.rb +0 -27
data/spec/lib/kb/cve_2013_6414_spec.rb +0 -26
data/spec/lib/kb/cve_2013_6416_spec.rb +0 -31
data/spec/lib/kb/cve_2013_6459_spec.rb +0 -15
data/spec/lib/kb/cve_2013_7086_spec.rb +0 -22
data/spec/lib/kb/cve_2014_0036_spec.rb +0 -15
data/spec/lib/kb/cve_2014_0080_spec.rb +0 -33
data/spec/lib/kb/cve_2014_0081_spec.rb +0 -50
data/spec/lib/kb/cve_2014_0082_spec.rb +0 -52
data/spec/lib/kb/cve_2014_0130_spec.rb +0 -19
data/spec/lib/kb/cve_2014_1233_spec.rb +0 -15
data/spec/lib/kb/cve_2014_1234_spec.rb +0 -16
data/spec/lib/kb/cve_2014_2322_spec.rb +0 -15
data/spec/lib/kb/cve_2014_2538_spec.rb +0 -15
data/spec/lib/kb/cve_2014_3482_spec.rb +0 -15
data/spec/lib/kb/cve_2014_3483_spec.rb +0 -27
data/spec/lib/kb/cve_2014_7818_spec.rb +0 -42
data/spec/lib/kb/cve_2014_7819_spec.rb +0 -139
data/spec/lib/kb/cve_2014_7829_spec.rb +0 -50
data/spec/lib/kb/cve_2014_9490_spec.rb +0 -17
data/spec/lib/kb/cve_2015_1819_spec.rb +0 -16
data/spec/lib/kb/cve_2015_1840_spec.rb +0 -39
data/spec/lib/kb/cve_2015_2963_spec.rb +0 -17
data/spec/lib/kb/cve_2015_3224_spec.rb +0 -16
data/spec/lib/kb/cve_2015_3225_spec.rb +0 -27
data/spec/lib/kb/cve_2015_3226_spec.rb +0 -35
data/spec/lib/kb/cve_2015_3227_spec.rb +0 -31
data/spec/lib/kb/cve_2015_3448_spec.rb +0 -16
data/spec/lib/kb/cve_2015_4020_spec.rb +0 -24
data/spec/lib/kb/cve_2015_5312_spec.rb +0 -31
data/spec/lib/kb/cve_2015_7497_spec.rb +0 -31
data/spec/lib/kb/cve_2015_7498_spec.rb +0 -31
data/spec/lib/kb/cve_2015_7499_spec.rb +0 -31
data/spec/lib/kb/cve_2015_7500_spec.rb +0 -31
data/spec/lib/kb/cve_2015_7519_spec.rb +0 -23
data/spec/lib/kb/cve_2015_7541_spec.rb +0 -15
data/spec/lib/kb/cve_2015_7576_spec.rb +0 -51
data/spec/lib/kb/cve_2015_7577_spec.rb +0 -63
data/spec/lib/kb/cve_2015_7578_spec.rb +0 -15
data/spec/lib/kb/cve_2015_7579_spec.rb +0 -23
data/spec/lib/kb/cve_2015_7581_spec.rb +0 -51
data/spec/lib/kb/cve_2015_8241_spec.rb +0 -31
data/spec/lib/kb/cve_2015_8242_spec.rb +0 -31
data/spec/lib/kb/cve_2015_8317_spec.rb +0 -31
data/spec/lib/kb/cve_2016_0751_spec.rb +0 -55
data/spec/lib/kb/cve_2016_0752_spec.rb +0 -51
data/spec/lib/kb/cve_2016_0753_spec.rb +0 -51
data/spec/lib/kb/cve_2016_2097_spec.rb +0 -35
data/spec/lib/kb/cve_2016_2098_spec.rb +0 -55
data/spec/lib/kb/cve_2016_5697_spec.rb +0 -15
data/spec/lib/kb/cve_2016_6316_spec.rb +0 -44
data/spec/lib/kb/cve_2016_6317_spec.rb +0 -35
data/spec/lib/kb/cve_2016_6582_spec.rb +0 -29
data/spec/lib/kb/osvdb_105971_spec.rb +0 -15
data/spec/lib/kb/osvdb_108530_spec.rb +0 -22
data/spec/lib/kb/osvdb_108563_spec.rb +0 -18
data/spec/lib/kb/osvdb_108569_spec.rb +0 -17
data/spec/lib/kb/osvdb_108570_spec.rb +0 -17
data/spec/lib/kb/osvdb_115654_spec.rb +0 -15
data/spec/lib/kb/osvdb_116010_spec.rb +0 -15
data/spec/lib/kb/osvdb_117903_spec.rb +0 -23
data/spec/lib/kb/osvdb_118579_spec.rb +0 -8
data/spec/lib/kb/osvdb_118830_spec.rb +0 -16
data/spec/lib/kb/osvdb_118954_spec.rb +0 -20
data/spec/lib/kb/osvdb_119878_spec.rb +0 -92
data/spec/lib/kb/osvdb_119927_spec.rb +0 -16
data/spec/lib/kb/osvdb_120415_spec.rb +0 -16
data/spec/lib/kb/osvdb_120857_spec.rb +0 -32
data/spec/lib/kb/osvdb_121701_spec.rb +0 -15
data/spec/lib/kb/osvdb_132234_spec.rb +0 -15
metadata.gz.sig +0 -0

data/doc/kickstart_kb.tar.gz ADDED Viewed

Binary file

data/doc/knowledge_base.rb ADDED Viewed

@@ -0,0 +1,650 @@
+require 'date'
+# Core KB
+require "dawn/kb/basic_check"
+require "dawn/kb/pattern_match_check"
+require "dawn/kb/dependency_check"
+require "dawn/kb/ruby_version_check"
+require "dawn/kb/operating_system_check"
+require "dawn/kb/combo_check"
+require "dawn/kb/version_check"
+require "dawn/kb/deprecation_check"
+require "dawn/kb/gem_check"
+# Q&A related checks
+## Not revised code
+require "dawn/kb/not_revised_code"
+## Owasp ROR Cheatsheet
+require 'dawn/kb/owasp_ror_cheatsheet/command_injection'
+require 'dawn/kb/owasp_ror_cheatsheet/csrf'
+require 'dawn/kb/owasp_ror_cheatsheet/session_stored_in_database'
+require 'dawn/kb/owasp_ror_cheatsheet/mass_assignment_in_model'
+require 'dawn/kb/owasp_ror_cheatsheet/security_related_headers'
+require 'dawn/kb/owasp_ror_cheatsheet/check_for_safe_redirect_and_forward'
+require 'dawn/kb/owasp_ror_cheatsheet/sensitive_files'
+# Security checks with no or pending CVE
+# A XSS issue on Simple Form gem reported by Rafael Mendonça França on
+# November, 29 2013
+#
+# https://groups.google.com/forum/#!topic/ruby-security-ann/flHbLMb07tE
+require "dawn/kb/simpleform_xss_20131129"
+# CVE - 2004
+require "dawn/kb/cve_2004_0755"
+require "dawn/kb/cve_2004_0983"
+# CVE - 2005
+require "dawn/kb/cve_2005_1992"
+require "dawn/kb/cve_2005_2337"
+# CVE - 2006
+require "dawn/kb/cve_2006_1931"
+require "dawn/kb/cve_2006_2582"
+require "dawn/kb/cve_2006_3694"
+require "dawn/kb/cve_2006_4112"
+require "dawn/kb/cve_2006_5467"
+require "dawn/kb/cve_2006_6303"
+require "dawn/kb/cve_2006_6852"
+require "dawn/kb/cve_2006_6979"
+# CVE - 2007
+require "dawn/kb/cve_2007_0469"
+require "dawn/kb/cve_2007_5162"
+require "dawn/kb/cve_2007_5379"
+require "dawn/kb/cve_2007_5380"
+require "dawn/kb/cve_2007_5770"
+require "dawn/kb/cve_2007_6077"
+require "dawn/kb/cve_2007_6612"
+# CVE - 2008
+require "dawn/kb/cve_2008_1145"
+require "dawn/kb/cve_2008_1891"
+require "dawn/kb/cve_2008_2376"
+require "dawn/kb/cve_2008_2662"
+require "dawn/kb/cve_2008_2663"
+require "dawn/kb/cve_2008_2664"
+require "dawn/kb/cve_2008_2725"
+require "dawn/kb/cve_2008_3655"
+require "dawn/kb/cve_2008_3657"
+require "dawn/kb/cve_2008_3790"
+require "dawn/kb/cve_2008_3905"
+require "dawn/kb/cve_2008_4094"
+require "dawn/kb/cve_2008_4310"
+require "dawn/kb/cve_2008_5189"
+require "dawn/kb/cve_2008_7248"
+# CVE - 2009
+require "dawn/kb/cve_2009_4078"
+require "dawn/kb/cve_2009_4124"
+require "dawn/kb/cve_2009_4214"
+# CVE - 2010
+require "dawn/kb/cve_2010_1330"
+require "dawn/kb/cve_2010_2489"
+require "dawn/kb/cve_2010_3933"
+# CVE - 2011
+require "dawn/kb/cve_2011_0188"
+require "dawn/kb/cve_2011_0446"
+require "dawn/kb/cve_2011_0447"
+require "dawn/kb/cve_2011_0739"
+require "dawn/kb/cve_2011_0995"
+require "dawn/kb/cve_2011_1004"
+require "dawn/kb/cve_2011_1005"
+require "dawn/kb/cve_2011_2197"
+require "dawn/kb/cve_2011_2686"
+require "dawn/kb/cve_2011_2705"
+require "dawn/kb/cve_2011_2929"
+require "dawn/kb/cve_2011_2930"
+require "dawn/kb/cve_2011_2931"
+require "dawn/kb/cve_2011_2932"
+require "dawn/kb/cve_2011_3009"
+require "dawn/kb/cve_2011_3186"
+require "dawn/kb/cve_2011_3187"
+require "dawn/kb/cve_2011_4319"
+require "dawn/kb/cve_2011_4815"
+require "dawn/kb/cve_2011_5036"
+# CVE - 2012
+require "dawn/kb/cve_2012_1098"
+require "dawn/kb/cve_2012_1099"
+require "dawn/kb/cve_2012_1241"
+require "dawn/kb/cve_2012_2139"
+require "dawn/kb/cve_2012_2140"
+require "dawn/kb/cve_2012_2660"
+require "dawn/kb/cve_2012_2661"
+require "dawn/kb/cve_2012_2671"
+require "dawn/kb/cve_2012_2694"
+require "dawn/kb/cve_2012_2695"
+require "dawn/kb/cve_2012_3424"
+require "dawn/kb/cve_2012_3463"
+require "dawn/kb/cve_2012_3464"
+require "dawn/kb/cve_2012_3465"
+require "dawn/kb/cve_2012_4464"
+require "dawn/kb/cve_2012_4466"
+require "dawn/kb/cve_2012_4481"
+require "dawn/kb/cve_2012_4522"
+require "dawn/kb/cve_2012_5370"
+require "dawn/kb/cve_2012_5371"
+require "dawn/kb/cve_2012_5380"
+require "dawn/kb/cve_2012_6109"
+require "dawn/kb/cve_2012_6134"
+require "dawn/kb/cve_2012_6496"
+require "dawn/kb/cve_2012_6497"
+require "dawn/kb/cve_2012_6684"
+# CVE - 2013
+require "dawn/kb/cve_2013_0155"
+require "dawn/kb/cve_2013_0156"
+require "dawn/kb/cve_2013_0162"
+require "dawn/kb/cve_2013_0175"
+require "dawn/kb/cve_2013_0183"
+require "dawn/kb/cve_2013_0184"
+require "dawn/kb/cve_2013_0233"
+require "dawn/kb/cve_2013_0256"
+require "dawn/kb/cve_2013_0262"
+require "dawn/kb/cve_2013_0263"
+require "dawn/kb/cve_2013_0269"
+require "dawn/kb/cve_2013_0276"
+require "dawn/kb/cve_2013_0277"
+require "dawn/kb/cve_2013_0284"
+require "dawn/kb/cve_2013_0285"
+require "dawn/kb/cve_2013_0333"
+require "dawn/kb/cve_2013_0334"
+require "dawn/kb/cve_2013_1607"
+require "dawn/kb/cve_2013_1655"
+require "dawn/kb/cve_2013_1656"
+require "dawn/kb/cve_2013_1756"
+require "dawn/kb/cve_2013_1800"
+require "dawn/kb/cve_2013_1801"
+require "dawn/kb/cve_2013_1802"
+require "dawn/kb/cve_2013_1812"
+require "dawn/kb/cve_2013_1821"
+require "dawn/kb/cve_2013_1854"
+require "dawn/kb/cve_2013_1855"
+require "dawn/kb/cve_2013_1856"
+require "dawn/kb/cve_2013_1857"
+require "dawn/kb/cve_2013_1875"
+require "dawn/kb/cve_2013_1898"
+require "dawn/kb/cve_2013_1911"
+require "dawn/kb/cve_2013_1933"
+require "dawn/kb/cve_2013_1947"
+require "dawn/kb/cve_2013_1948"
+require "dawn/kb/cve_2013_2065"
+require "dawn/kb/cve_2013_2090"
+require "dawn/kb/cve_2013_2105"
+require "dawn/kb/cve_2013_2119"
+require "dawn/kb/cve_2013_2512"
+require "dawn/kb/cve_2013_2513"
+require "dawn/kb/cve_2013_2516"
+require "dawn/kb/cve_2013_2615"
+require "dawn/kb/cve_2013_2616"
+require "dawn/kb/cve_2013_2617"
+require "dawn/kb/cve_2013_3221"
+require "dawn/kb/cve_2013_4164"
+require "dawn/kb/cve_2013_4203"
+require "dawn/kb/cve_2013_4389"
+require "dawn/kb/cve_2013_4413"
+require "dawn/kb/cve_2013_4457"
+require "dawn/kb/cve_2013_4478"
+require "dawn/kb/cve_2013_4479"
+require "dawn/kb/cve_2013_4489"
+require "dawn/kb/cve_2013_4491"
+require "dawn/kb/cve_2013_4492"
+require "dawn/kb/cve_2013_4562"
+require "dawn/kb/cve_2013_4593"
+require "dawn/kb/cve_2013_5647"
+require "dawn/kb/cve_2013_5671"
+require "dawn/kb/cve_2013_6414"
+require "dawn/kb/cve_2013_6415"
+require "dawn/kb/cve_2013_6416"
+require "dawn/kb/cve_2013_6417"
+require "dawn/kb/cve_2013_6421"
+require "dawn/kb/cve_2013_6459"
+require "dawn/kb/cve_2013_6460"
+require "dawn/kb/cve_2013_6461"
+require "dawn/kb/cve_2013_7086"
+# CVE - 2014
+require "dawn/kb/cve_2014_0036"
+require "dawn/kb/cve_2014_0080"
+require "dawn/kb/cve_2014_0081"
+require "dawn/kb/cve_2014_0082"
+require "dawn/kb/cve_2014_0130"
+require "dawn/kb/cve_2014_1233"
+require "dawn/kb/cve_2014_1234"
+require "dawn/kb/cve_2014_2322"
+require "dawn/kb/cve_2014_2525"
+require "dawn/kb/cve_2014_2538"
+require "dawn/kb/cve_2014_3482"
+require "dawn/kb/cve_2014_3483"
+require "dawn/kb/cve_2014_3916"
+require "dawn/kb/cve_2014_4975"
+require "dawn/kb/cve_2014_7818"
+require "dawn/kb/cve_2014_7819"
+require "dawn/kb/cve_2014_7829"
+require "dawn/kb/cve_2014_8090"
+require "dawn/kb/cve_2014_9490"
+# CVE - 2015
+require "dawn/kb/cve_2015_1819"
+# CVE-2015-1840 is spread in two classes because a single CVE is assigned to a
+# vulnerability affecting two differents but related gems.
+require "dawn/kb/cve_2015_1840/cve_2015_1840_a"
+require "dawn/kb/cve_2015_1840/cve_2015_1840_b"
+require "dawn/kb/cve_2015_2963"
+require "dawn/kb/cve_2015_3224"
+require "dawn/kb/cve_2015_3225"
+require "dawn/kb/cve_2015_3226"
+require "dawn/kb/cve_2015_3227"
+require "dawn/kb/cve_2015_3448"
+require "dawn/kb/cve_2015_4020"
+require "dawn/kb/cve_2015_5312"
+require "dawn/kb/cve_2015_7497"
+require "dawn/kb/cve_2015_7498"
+require "dawn/kb/cve_2015_7499"
+require "dawn/kb/cve_2015_7500"
+require "dawn/kb/cve_2015_7519"
+require "dawn/kb/cve_2015_7541"
+require "dawn/kb/cve_2015_7576"
+require "dawn/kb/cve_2015_7577"
+require "dawn/kb/cve_2015_7578"
+require "dawn/kb/cve_2015_7579"
+require "dawn/kb/cve_2015_7581"
+require "dawn/kb/cve_2015_8241"
+require "dawn/kb/cve_2015_8242"
+require "dawn/kb/cve_2015_8317"
+# CVE - 2016
+require "dawn/kb/cve_2016_0751"
+require "dawn/kb/cve_2016_0752"
+require "dawn/kb/cve_2016_0753"
+require "dawn/kb/cve_2016_2097"
+require "dawn/kb/cve_2016_2098"
+require "dawn/kb/cve_2016_5697"
+require "dawn/kb/cve_2016_6316"
+require "dawn/kb/cve_2016_6317"
+require "dawn/kb/cve_2016_6582"
+# OSVDB
+require "dawn/kb/osvdb_105971"
+require "dawn/kb/osvdb_108569"
+require "dawn/kb/osvdb_108570"
+require "dawn/kb/osvdb_108530"
+require "dawn/kb/osvdb_108563"
+require "dawn/kb/osvdb_115654"
+require "dawn/kb/osvdb_116010"
+require "dawn/kb/osvdb_117903"
+require "dawn/kb/osvdb_118579"
+require "dawn/kb/osvdb_118830"
+require "dawn/kb/osvdb_118954"
+require "dawn/kb/osvdb_119878"
+require "dawn/kb/osvdb_119927"
+require "dawn/kb/osvdb_120415"
+require "dawn/kb/osvdb_120857"
+require "dawn/kb/osvdb_121701"
+require "dawn/kb/osvdb_132234"
+module Dawn
+  # XXX: Check if it best using a singleton here
+  class KnowledgeBase
+    include Dawn::Utils
+    GEM_CHECK           = :rubygem_check
+    DEPENDENCY_CHECK    = :dependency_check
+    PATTERN_MATCH_CHECK = :pattern_match_check
+    RUBY_VERSION_CHECK  = :ruby_version_check
+    OS_CHECK            = :os_check
+    COMBO_CHECK         = :combo_check
+    CUSTOM_CHECK        = :custom_check
+    def initialize(options={})
+      @enabled_checks = Dawn::Kb::BasicCheck::ALLOWED_FAMILIES
+      @enabled_checks = options[:enabled_checks] unless options[:enabled_checks].nil?
+      @security_checks = load_security_checks
+    end
+    def self.find(checks=nil, name)
+      return nil if name.nil? or name.empty?
+      checks = Dawn::KnowledgeBase.new.load_security_checks if checks.nil?
+      checks.each do |sc|
+        return sc if sc.name == name
+      end
+      nil
+    end
+    def find(name)
+      Dawn::KnowledgeBase.find(@security_checks, name)
+    end
+    def all
+      @security_checks
+    end
+    # TODO - next big refactoring will include also a change in this API.
+    #
+    # So to match Semantic Version, it must bring to a major version bump.
+    # MVC name should be passed as constructor option, so the all_by_mvc can
+    #
+    # be called without parameter, having a nice-to-read code.
+    # @checks = Dawn::KnowledgeBase.new({:enabled_checks=>@enabled_checks}).all_by_mvc(@name)
+    def all_by_mvc(mvc)
+      ret = []
+      @security_checks.each do |sc|
+        ret << sc if sc.applies_to?(mvc)
+      end
+      ret
+    end
+    def all_sinatra_checks
+      self.all_by_mvc("sinatra")
+    end
+    def all_rails_checks
+      self.all_by_mvc("rails")
+    end
+    def all_padrino_checks
+      self.all_by_mvc("padrino")
+    end
+    def all_rack_checks
+      self.all_by_mvc("rack")
+    end
+    def load_security_checks
+      # START @cve_security_checks array
+      @cve_security_checks =
+        [
+          Dawn::Kb::CVE_2004_0755.new,
+          Dawn::Kb::CVE_2004_0983.new,
+          Dawn::Kb::CVE_2005_1992.new,
+          Dawn::Kb::CVE_2005_2337.new,
+          Dawn::Kb::CVE_2006_1931.new,
+          Dawn::Kb::CVE_2006_2582.new,
+          Dawn::Kb::CVE_2006_3694.new,
+          Dawn::Kb::CVE_2006_4112.new,
+          Dawn::Kb::CVE_2006_5467.new,
+          Dawn::Kb::CVE_2006_6303.new,
+          Dawn::Kb::CVE_2006_6852.new,
+          Dawn::Kb::CVE_2006_6979.new,
+          Dawn::Kb::CVE_2007_0469.new,
+          Dawn::Kb::CVE_2007_5162.new,
+          Dawn::Kb::CVE_2007_5379.new,
+          Dawn::Kb::CVE_2007_5380.new,
+          Dawn::Kb::CVE_2007_5770.new,
+          Dawn::Kb::CVE_2007_6077.new,
+          Dawn::Kb::CVE_2007_6612.new,
+          Dawn::Kb::CVE_2008_1145.new,
+          Dawn::Kb::CVE_2008_1891.new,
+          Dawn::Kb::CVE_2008_2376.new,
+          Dawn::Kb::CVE_2008_2662.new,
+          Dawn::Kb::CVE_2008_2663.new,
+          Dawn::Kb::CVE_2008_2664.new,
+          Dawn::Kb::CVE_2008_2725.new,
+          Dawn::Kb::CVE_2008_3655.new,
+          Dawn::Kb::CVE_2008_3657.new,
+          Dawn::Kb::CVE_2008_3790.new,
+          Dawn::Kb::CVE_2008_3905.new,
+          Dawn::Kb::CVE_2008_4094.new,
+          Dawn::Kb::CVE_2008_4310.new,
+          Dawn::Kb::CVE_2008_5189.new,
+          Dawn::Kb::CVE_2008_7248.new,
+          Dawn::Kb::CVE_2009_4078.new,
+          Dawn::Kb::CVE_2009_4124.new,
+          Dawn::Kb::CVE_2009_4214.new,
+          Dawn::Kb::CVE_2010_1330.new,
+          Dawn::Kb::CVE_2010_2489.new,
+          Dawn::Kb::CVE_2010_3933.new,
+          Dawn::Kb::CVE_2011_0188.new,
+          Dawn::Kb::CVE_2011_0446.new,
+          Dawn::Kb::CVE_2011_0447.new,
+          Dawn::Kb::CVE_2011_0739.new,
+          Dawn::Kb::CVE_2011_0995.new,
+          Dawn::Kb::CVE_2011_1004.new,
+          Dawn::Kb::CVE_2011_1005.new,
+          Dawn::Kb::CVE_2011_2197.new,
+          Dawn::Kb::CVE_2011_2686.new,
+          Dawn::Kb::CVE_2011_2705.new,
+          Dawn::Kb::CVE_2011_2929.new,
+          Dawn::Kb::CVE_2011_2930.new,
+          Dawn::Kb::CVE_2011_2931.new,
+          Dawn::Kb::CVE_2011_2932.new,
+          Dawn::Kb::CVE_2011_3009.new,
+          Dawn::Kb::CVE_2011_3186.new,
+          Dawn::Kb::CVE_2011_3187.new,
+          Dawn::Kb::CVE_2011_4319.new,
+          Dawn::Kb::CVE_2011_4815.new,
+          Dawn::Kb::CVE_2011_5036.new,
+          Dawn::Kb::CVE_2012_1098.new,
+          Dawn::Kb::CVE_2012_1099.new,
+          Dawn::Kb::CVE_2012_1241.new,
+          Dawn::Kb::CVE_2012_2139.new,
+          Dawn::Kb::CVE_2012_2140.new,
+          Dawn::Kb::CVE_2012_2660.new,
+          Dawn::Kb::CVE_2012_2661.new,
+          Dawn::Kb::CVE_2012_2671.new,
+          Dawn::Kb::CVE_2012_2694.new,
+          Dawn::Kb::CVE_2012_2695.new,
+          Dawn::Kb::CVE_2012_3424.new,
+          Dawn::Kb::CVE_2012_3463.new,
+          Dawn::Kb::CVE_2012_3464.new,
+          Dawn::Kb::CVE_2012_3465.new,
+          Dawn::Kb::CVE_2012_4464.new,
+          Dawn::Kb::CVE_2012_4466.new,
+          Dawn::Kb::CVE_2012_4481.new,
+          Dawn::Kb::CVE_2012_4522.new,
+          Dawn::Kb::CVE_2012_5370.new,
+          Dawn::Kb::CVE_2012_5371.new,
+          Dawn::Kb::CVE_2012_5380.new,
+          Dawn::Kb::CVE_2012_6109.new,
+          Dawn::Kb::CVE_2012_6134.new,
+          Dawn::Kb::CVE_2012_6496.new,
+          Dawn::Kb::CVE_2012_6497.new,
+          Dawn::Kb::CVE_2012_6684.new,
+          Dawn::Kb::CVE_2013_0155.new,
+          Dawn::Kb::CVE_2013_0156.new,
+          Dawn::Kb::CVE_2013_0162.new,
+          Dawn::Kb::CVE_2013_0175.new,
+          Dawn::Kb::CVE_2013_0183.new,
+          Dawn::Kb::CVE_2013_0184.new,
+          Dawn::Kb::CVE_2013_0233.new,
+          Dawn::Kb::CVE_2013_0256.new,
+          Dawn::Kb::CVE_2013_0262.new,
+          Dawn::Kb::CVE_2013_0263.new,
+          Dawn::Kb::CVE_2013_0269.new,
+          Dawn::Kb::CVE_2013_0276.new,
+          Dawn::Kb::CVE_2013_0277.new,
+          Dawn::Kb::CVE_2013_0284.new,
+          Dawn::Kb::CVE_2013_0285.new,
+          Dawn::Kb::CVE_2013_0333.new,
+          Dawn::Kb::CVE_2013_0334.new,
+          Dawn::Kb::CVE_2013_1607.new,
+          Dawn::Kb::CVE_2013_1655.new,
+          Dawn::Kb::CVE_2013_1656.new,
+          Dawn::Kb::CVE_2013_1756.new,
+          Dawn::Kb::CVE_2013_1800.new,
+          Dawn::Kb::CVE_2013_1801.new,
+          Dawn::Kb::CVE_2013_1802.new,
+          Dawn::Kb::CVE_2013_1812.new,
+          Dawn::Kb::CVE_2013_1821.new,
+          Dawn::Kb::CVE_2013_1854.new,
+          Dawn::Kb::CVE_2013_1855.new,
+          Dawn::Kb::CVE_2013_1856.new,
+          Dawn::Kb::CVE_2013_1857.new,
+          Dawn::Kb::CVE_2013_1875.new,
+          Dawn::Kb::CVE_2013_1898.new,
+          Dawn::Kb::CVE_2013_1911.new,
+          Dawn::Kb::CVE_2013_1933.new,
+          Dawn::Kb::CVE_2013_1947.new,
+          Dawn::Kb::CVE_2013_1948.new,
+          Dawn::Kb::CVE_2013_2065.new,
+          Dawn::Kb::CVE_2013_2090.new,
+          Dawn::Kb::CVE_2013_2105.new,
+          Dawn::Kb::CVE_2013_2119.new,
+          Dawn::Kb::CVE_2013_2512.new,
+          Dawn::Kb::CVE_2013_2513.new,
+          Dawn::Kb::CVE_2013_2516.new,
+          Dawn::Kb::CVE_2013_2615.new,
+          Dawn::Kb::CVE_2013_2616.new,
+          Dawn::Kb::CVE_2013_2617.new,
+          Dawn::Kb::CVE_2013_3221.new,
+          Dawn::Kb::CVE_2013_4164.new,
+          Dawn::Kb::CVE_2013_4203.new,
+          Dawn::Kb::CVE_2013_4389.new,
+          Dawn::Kb::CVE_2013_4413.new,
+          Dawn::Kb::CVE_2013_4457.new,
+          Dawn::Kb::CVE_2013_4478.new,
+          Dawn::Kb::CVE_2013_4479.new,
+          Dawn::Kb::CVE_2013_4489.new,
+          Dawn::Kb::CVE_2013_4491.new,
+          Dawn::Kb::CVE_2013_4492.new,
+          Dawn::Kb::CVE_2013_4562.new,
+          Dawn::Kb::CVE_2013_4593.new,
+          Dawn::Kb::CVE_2013_5647.new,
+          Dawn::Kb::CVE_2013_5671.new,
+          Dawn::Kb::CVE_2013_6414.new,
+          Dawn::Kb::CVE_2013_6415.new,
+          Dawn::Kb::CVE_2013_6416.new,
+          Dawn::Kb::CVE_2013_6417.new,
+          Dawn::Kb::CVE_2013_6421.new,
+          Dawn::Kb::CVE_2013_6459.new,
+          Dawn::Kb::CVE_2013_6460.new,
+          Dawn::Kb::CVE_2013_6461.new,
+          Dawn::Kb::CVE_2013_7086.new,
+          Dawn::Kb::CVE_2014_0036.new,
+          Dawn::Kb::CVE_2014_0080.new,
+          Dawn::Kb::CVE_2014_0081.new,
+          Dawn::Kb::CVE_2014_0082.new,
+          Dawn::Kb::CVE_2014_0130.new,
+          Dawn::Kb::CVE_2014_1233.new,
+          Dawn::Kb::CVE_2014_1234.new,
+          Dawn::Kb::CVE_2014_2322.new,
+          Dawn::Kb::CVE_2014_2525.new,
+          Dawn::Kb::CVE_2014_2538.new,
+          Dawn::Kb::CVE_2014_3482.new,
+          Dawn::Kb::CVE_2014_3483.new,
+          Dawn::Kb::CVE_2014_3916.new,
+          Dawn::Kb::CVE_2014_4975.new,
+          Dawn::Kb::CVE_2014_7818.new,
+          Dawn::Kb::CVE_2014_7819.new,
+          Dawn::Kb::CVE_2014_7829.new,
+          Dawn::Kb::CVE_2014_8090.new,
+          Dawn::Kb::CVE_2014_9490.new,
+          Dawn::Kb::CVE_2015_1819.new,
+          Dawn::Kb::CVE_2015_1840_a.new,
+          Dawn::Kb::CVE_2015_1840_b.new,
+          Dawn::Kb::CVE_2015_2963.new,
+          Dawn::Kb::CVE_2015_3224.new,
+          Dawn::Kb::CVE_2015_3225.new,
+          Dawn::Kb::CVE_2015_3226.new,
+          Dawn::Kb::CVE_2015_3227.new,
+          Dawn::Kb::CVE_2015_3448.new,
+          Dawn::Kb::CVE_2015_4020.new,
+          Dawn::Kb::CVE_2015_5312.new,
+          Dawn::Kb::CVE_2015_7497.new,
+          Dawn::Kb::CVE_2015_7498.new,
+          Dawn::Kb::CVE_2015_7499.new,
+          Dawn::Kb::CVE_2015_7500.new,
+          Dawn::Kb::CVE_2015_7519.new,
+          Dawn::Kb::CVE_2015_7541.new,
+          Dawn::Kb::CVE_2015_7576.new,
+          Dawn::Kb::CVE_2015_7577.new,
+          Dawn::Kb::CVE_2015_7578.new,
+          Dawn::Kb::CVE_2015_7579.new,
+          Dawn::Kb::CVE_2015_7581.new,
+          Dawn::Kb::CVE_2015_8241.new,
+          Dawn::Kb::CVE_2015_8242.new,
+          Dawn::Kb::CVE_2015_8317.new,
+          Dawn::Kb::CVE_2016_0751.new,
+          Dawn::Kb::CVE_2016_0752.new,
+          Dawn::Kb::CVE_2016_0753.new,
+          Dawn::Kb::CVE_2016_2097.new,
+          Dawn::Kb::CVE_2016_2098.new,
+          Dawn::Kb::CVE_2016_5697.new,
+          Dawn::Kb::CVE_2016_6316.new,
+          Dawn::Kb::CVE_2016_6317.new,
+          Dawn::Kb::CVE_2016_6582.new,
+          # OSVDB Checks are still here since are all about dependencies
+          Dawn::Kb::OSVDB_105971.new,
+          Dawn::Kb::OSVDB_108569.new,
+          Dawn::Kb::OSVDB_108570.new,
+          Dawn::Kb::OSVDB_108530.new,
+          Dawn::Kb::OSVDB_108563.new,
+          Dawn::Kb::OSVDB_115654.new,
+          Dawn::Kb::OSVDB_116010.new,
+          Dawn::Kb::OSVDB_117903.new,
+          Dawn::Kb::OSVDB_118579.new,
+          Dawn::Kb::OSVDB_118830.new,
+          Dawn::Kb::OSVDB_118954.new,
+          Dawn::Kb::OSVDB_119878.new,
+          Dawn::Kb::OSVDB_119927.new,
+          Dawn::Kb::OSVDB_120415.new,
+          Dawn::Kb::OSVDB_120857.new,
+          Dawn::Kb::OSVDB_121701.new,
+          Dawn::Kb::OSVDB_132234.new,
+      ]
+        # END @cve_security_checks array
+        # START @owasp_ror_cheatsheet_checks array
+        @owasp_ror_cheatsheet_checks = [
+          Dawn::Kb::OwaspRorCheatSheet::CommandInjection.new,
+          Dawn::Kb::OwaspRorCheatSheet::Csrf.new,
+          Dawn::Kb::OwaspRorCheatSheet::SessionStoredInDatabase.new,
+          Dawn::Kb::OwaspRorCheatSheet::MassAssignmentInModel.new,
+          Dawn::Kb::OwaspRorCheatSheet::SecurityRelatedHeaders.new,
+          Dawn::Kb::OwaspRorCheatSheet::CheckForSafeRedirectAndForward.new,
+          Dawn::Kb::OwaspRorCheatSheet::SensitiveFiles.new,
+        ]
+        # END @owasp_ror_cheatsheet_checks array
+        @code_quality_checks = [
+          Dawn::Kb::NotRevisedCode.new,
+        ]
+        @aux_checks =
+          [
+            Dawn::Kb::SimpleForm_Xss_20131129.new,
+        ]
+          ret = []
+          ret += @aux_checks
+          ret += @cve_security_checks         if @enabled_checks.include?(:bulletin)
+          ret += @owasp_ror_cheatsheet_checks if @enabled_checks.include?(:owasp_ror_cheatsheet)
+          ret += @code_quality_checks         if @enabled_checks.include?(:code_quality)
+          ret
+    end
+    def self.dump(verbose=false)
+      puts "Security checks currently supported:"
+      i=0
+      self.new.all.each do |check|
+        i+=1
+        if verbose
+          puts "Name: #{check.name}\tCVSS: #{check.cvss_score}\tReleased: #{check.release_date}"
+          puts "Description\n#{check.message}"
+          puts "Remediation\n#{check.remediation}\n\n"
+        else
+          puts "#{check.name}"
+        end
+      end
+      puts "-----\nTotal: #{i}"
+    end
+  end
+end