C# Class Kentico.KInspector.Modules.VulnerabilityAnalyzerModule

When adding support for new Kentico version, .txt file with default instance files must be added and the version recognition has to be slightly improved to work with minor versions.
Inheritance: IModule
Mostrar archivo Open project: Kentico/KInspector

Public Methods

Method Description
GetModuleMetadata ( ) : Kentico.KInspector.Core.ModuleMetadata
GetResults ( IInstanceInfo instanceInfo ) : ModuleResults

Private Methods

Method Description
AnalyzeSqlInjection ( string line, string &sqlInjectionResult, string &potentialSqlInjectionResult ) : void

Analyses string for presence of SQL injection or potential SQL injection.
AnalyzeVulnerabilities ( DirectoryInfo pathToKenticoInstance, IEnumerable filesWithinInstance, VulnerabilityAnalysisResults &results ) : void

Analyses code files for presence of security vulnerabilities.
AnalyzeVulnerabilities ( DirectoryInfo pathToKenticoInstance, string fileWithinInstance, VulnerabilityAnalysisResults &results ) : void

Analyses code file for presence of security vulnerabilities.
AnalyzeXss ( string line, string &xssResult ) : void

Analyses string for presence of XSS vulnerability.
ContainsSqlSyntax ( string str ) : bool

Tells you whether str contains SQL syntax by performing a simple analysis.
HighlightPatterns ( string result ) : string

Highlights vulnerability patters in result.
PrintHighlightedResults ( IEnumerable results ) : string

Prints results, vulnerabilities are highlighted using HTML formatting.
PrintResults ( VulnerabilityAnalysisResults results ) : string

Prints analysis result to string with HTML formatting. Vulnerabilities are highlighted.

Method Details

GetModuleMetadata() public method

public GetModuleMetadata ( ) : Kentico.KInspector.Core.ModuleMetadata
return Kentico.KInspector.Core.ModuleMetadata

GetResults() public method

public GetResults ( IInstanceInfo instanceInfo ) : ModuleResults
instanceInfo IInstanceInfo
return Kentico.KInspector.Core.ModuleResults