compermisos/Java.rc.sh

## Java.rc.sh
# Java static analysis (very simple) functions
# by Enrique Alfonso Sanchez Montellano
# http://security-dojo.com/programming-bits/static-source-code-audit-on-terminal-aka-glorified-greps-part-2/

auditjava ()
{
	if [ -z "$1" ]; then
		echo "Missing directory to audit!"
		echo "Usage: auditjava <directory>"
	else
		if [ -d "security_logs" ]; then
			mkdir security_logs
			echo "[ + ] Directory security_logs created, all logs will go into it"
		fi
		echo "[ + ] Be warned logs WILL BE OVERWRITTEN!"
		echo -n "[ - ] Verifying for possible command injection calls ... "
		grep -r -b 'system(' $1 | grep -v "Binary file" | grep -v 'lib/ruby' | grep -v '.git' | grep -v buildfile | awk -F : '{print "Filename: "$1"\nline: "$2"\nmatch: "$3\n\n"}' > security_logs/command_injection.log
		grep -r -b '`' $1 | grep -v "Binary file" | grep -v 'lib/ruby' | grep -v '.git' | grep -v buildfile | awk -F : '{print "Filename: "$1"\nline: "$2"\nmatch: "$3\n\n"}' >> security_logs/command_injection.log
		grep -r -b 'getRuntime(\|Runtime\|.exec(' $1 | grep -v "Binary file" | grep -v 'lib/ruby' | grep -v '.git' | grep -v buildfile | awk -F : '{print "Filename: "$1"\nline: "$2"\nmatch: "$3\n\n"}' >> security_logs/command_injection.log
		echo "DONE"
		echo -n "[ - ] Verifying for SQL Java Dangerous Functions ... "
		grep -r -b 'preparedStatement(\|executeQuery(\|execute(\|addBatch(\|executeBatch(' $1 | grep -v "Binary file" | grep -v 'lib/ruby' | grep -v '.git' | grep -v buildfile | awk -F : '{print "Filename: "$1"\nline: "$2"\nmatch: "$3\n\n"}' > security_logs/sql_functions.log
		echo "DONE"
		echo -n "[ - ] Verifying for user input ... "
		grep -r -b 'getParameter\|getQueryString\|getHeader\|getRequestURL\|getCookies\|getInputStream\|getReader\|getMethod\|getProtocol\|getServerName\|getRemoteUser\|getUserPrincipal' $1 | grep -v "Binary file" | grep -v 'lib/ruby' | grep -v '.git' | grep -v buildfile | awk -F : '{print "Filename: "$1"\nline: "$2"\nmatch: "$3\n\n"}' > security_logs/user_input.log
		echo "DONE"
	fi
}
	# Java static analysis (very simple) functions
	# by Enrique Alfonso Sanchez Montellano
	# http://security-dojo.com/programming-bits/static-source-code-audit-on-terminal-aka-glorified-greps-part-2/

	auditjava ()
	{
	if [ -z "$1" ]; then
	echo "Missing directory to audit!"
	echo "Usage: auditjava <directory>"
	else
	if [ -d "security_logs" ]; then
	mkdir security_logs
	echo "[ + ] Directory security_logs created, all logs will go into it"
	fi
	echo "[ + ] Be warned logs WILL BE OVERWRITTEN!"
	echo -n "[ - ] Verifying for possible command injection calls ... "
	grep -r -b 'system(' $1 \| grep -v "Binary file" \| grep -v 'lib/ruby' \| grep -v '.git' \| grep -v buildfile \| awk -F : '{print "Filename: "$1"\nline: "$2"\nmatch: "$3\n\n"}' > security_logs/command_injection.log
	grep -r -b '`' $1 \| grep -v "Binary file" \| grep -v 'lib/ruby' \| grep -v '.git' \| grep -v buildfile \| awk -F : '{print "Filename: "$1"\nline: "$2"\nmatch: "$3\n\n"}' >> security_logs/command_injection.log
	grep -r -b 'getRuntime(\\|Runtime\\|.exec(' $1 \| grep -v "Binary file" \| grep -v 'lib/ruby' \| grep -v '.git' \| grep -v buildfile \| awk -F : '{print "Filename: "$1"\nline: "$2"\nmatch: "$3\n\n"}' >> security_logs/command_injection.log
	echo "DONE"
	echo -n "[ - ] Verifying for SQL Java Dangerous Functions ... "
	grep -r -b 'preparedStatement(\\|executeQuery(\\|execute(\\|addBatch(\\|executeBatch(' $1 \| grep -v "Binary file" \| grep -v 'lib/ruby' \| grep -v '.git' \| grep -v buildfile \| awk -F : '{print "Filename: "$1"\nline: "$2"\nmatch: "$3\n\n"}' > security_logs/sql_functions.log
	echo "DONE"
	echo -n "[ - ] Verifying for user input ... "
	grep -r -b 'getParameter\\|getQueryString\\|getHeader\\|getRequestURL\\|getCookies\\|getInputStream\\|getReader\\|getMethod\\|getProtocol\\|getServerName\\|getRemoteUser\\|getUserPrincipal' $1 \| grep -v "Binary file" \| grep -v 'lib/ruby' \| grep -v '.git' \| grep -v buildfile \| awk -F : '{print "Filename: "$1"\nline: "$2"\nmatch: "$3\n\n"}' > security_logs/user_input.log
	echo "DONE"
	fi
	}