Crypto Rules - Githubissues

pumasecurity / puma-scan

Puma Scan is a software security Visual Studio extension that provides real time, continuous source code analysis as development teams write code. Vulnerabilities are immediately displayed in the development environment as spell check and compiler warnings, preventing security bugs from entering your applications.

https://www.pumascan.com

Mozilla Public License 2.0

446 stars 79 forks source link

Crypto Rules #7

Closed curea closed 7 years ago

curea commented 8 years ago

Weak Hash Algorithms: MD2, MD4 and MD5, SHA1

Weak Crypto Algorithm: DES

Static IV's

Hard-coded Keys

Weak Key Length: Blowfish (< 128), RSA (< 2048)

ECB Mode on a block cipher

ejohn20 commented 7 years ago

MD5, SHA1, DES, and ECB are covered in this release. Opening separate tickets for the remaining items.