Fortify SCA支持Android 源码安全漏洞检测类别
1.Access Control: Android Provider
2.Access Control: Database
3.Android Bad Practices: Missing Broadcaster Permission
4.Android Bad Practices: Missing Receiver Permission
5.Android Bad Practices: Sticky Broadcast
6.Cross Site Scripting: Persistent
7.Cross Site Scripting: Poor Validation
8.Cross Site Scripting: Reflected
9.Header Manipulation: Cookies
10.Insecure Storage: Android External Storage
11.Log Forging
12.Password Management
13.Password Management: Empty Password
14.Password Management: Hardcoded Password
15.Password Management: Null Password
16.Password Management: Weak Cryptography
17.Path Manipulation
18.Privacy Violation
19.Privilege Management: Android Location
20.Privilege Management: Android Messaging
21.Privilege Management: Android Telephony
22.Privilege Management: Missing API Permission
23.Privilege Management: Missing Intent Permission
24.Query String Injection: Android Provider
25.Resource Injection
26.SQL Injection
27.System Information Leak
HP Fortify SCA支持iPhone 源码安全漏洞检测类别
1.Access Control: Database
2.Code Correctness: Regular Expressions Denial of Service
3.Format String
4.Key Management: Hardcoded Encryption Key
5.Log Forging
6.Memory Leak
7.Often Misused: Encoding
8.Often Misused: File System
9.Often Misused: SMS
10.Often Misused: Weak SSL Certificate
11.Password Management: Empty Password
12.Password Management: Hardcoded Password
13.Password Management: Null Password
14.Path Manipulation
15.Privacy Violation
16.Privacy Violation: Keyboard Caching
17.Privacy Violation: Screen Caching
18.Resource Injection
19.SQL Injection
20.Unreleased Resource: Streams
21.Unsafe Mobile Code: Insecure Transport
22.Unsafe Reflection
23.Weak Cryptographic Hash
24.Weak Encryption
25.Weak Encryption: Insufficient Key Size
本文档为【Fortify SCA支持 AndroidiPhone 源码安全漏洞检测类别】,请使用软件OFFICE或WPS软件打开。作品中的文字与图均可以修改和编辑,
图片更改请在作品中右键图片并更换,文字修改请直接点击文字进行修改,也可以新增和删除文档中的内容。
该文档来自用户分享,如有侵权行为请发邮件ishare@vip.sina.com联系网站客服,我们会及时删除。
[版权声明] 本站所有资料为用户分享产生,若发现您的权利被侵害,请联系客服邮件isharekefu@iask.cn,我们尽快处理。
本作品所展示的图片、画像、字体、音乐的版权可能需版权方额外授权,请谨慎使用。
网站提供的党政主题相关内容(国旗、国徽、党徽..)目的在于配合国家政策宣传,仅限个人学习分享使用,禁止用于任何广告和商用目的。