module SecTester

Defined in:

sec_tester.cr
sec_tester/errors.cr
sec_tester/issue.cr
sec_tester/options.cr
sec_tester/repeater.cr
sec_tester/scan.cr
sec_tester/severity.cr
sec_tester/target.cr
sec_tester/test.cr
sec_tester/tests.cr

Constant Summary

Log = ::Log.for("SecTester")

SUPPORTED_TESTS = {"amazon_s3_takeover", "bola", "broken_saml_auth", "brute_force_login", "business_constraint_bypass", "common_files", "cookie_security", "csrf", "css_injection", "cve_test", "date_manipulation", "default_login_location", "directory_listing", "email_injection", "excessive_data_exposure", "file_upload", "full_path_disclosure", "graphql_introspection", "header_security", "html_injection", "http_method_fuzzing", "id_enumeration", "iframe_injection", "improper_asset_management", "insecure_tls_configuration", "jwt", "ldapi", "lfi", "lrrl", "mass_assignment", "nosql", "open_cloud_storage", "open_database", "osi", "password_reset_poisoning", "prompt_injection", "proto_pollution", "retire_js", "rfi", "secret_tokens", "server_side_js_injection", "sqli", "ssrf", "ssti", "stored_xss", "unvalidated_redirect", "version_control_systems", "wordpress", "xpathi", "xss", "xxe"}

VERSION = "1.6.14"