summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2018-05-15Refactor the encryption process to extract encrypt/decrypt functions (#176)kkadosh
Refactor the encryption process to extract encrypt/decrypt functions
2018-05-03Uniformise some logssimon MAGNIN-FEYSOT
This commit will make certain logs easier to parse.
2018-03-29Clarify the documentation wrt. configuration filesjvoisin
This should close #172
2018-03-19The filename filter is now matching on callsite instead of implemsite (#167)kkadosh
* Add match on the file where the function is called * Add the test * Constify some params * Fix potentiel null deref * Return more before if execute_data is NULL
2018-03-19Add a failing test for callback function as parameterkkadosh
2018-03-19Increase random number max for testkka
2018-03-17Use php7.2 for coverity, since we don't support nightly anymorejvoisin
2018-03-15Change a test to expected failedkkadosh
Apparently, we're not supporting hooking on `ret` for user-defined functions.
2018-03-14Improve the previous commitjvoisin
2018-03-14Fix the travis file to get coverage inteljvoisin
2018-03-14Bump a bit the coveragejvoisin
2018-03-13Fix a warning in the docjvoisin
2018-03-13Fix the documentation wrt. misc examples of rulesjvoisin
2018-03-12Bump the changelogv0.2.2jvoisin
2018-03-09Add an unit test for an edge-casejvoisin
2018-03-09Improve the performances of our default rulesjvoisin
2018-03-09Vastly improve our typo3 rulesjvoisin
2018-03-08Make travis happy.jvoisin
2018-03-08Minor code simplificationjvoisin
2018-03-08Remove some duplicate codejvoisin
2018-03-08Marginally improve the performances when dealing with evaljvoisin
2018-03-06Bump a bit the coveragejvoisin
2018-03-06Fix a variadic-functions-related crashjvoisin
Currently, we're not supporting virtual-patching on variadic functions. The commit makes it clear, and fix the related crash. This should close #157
2018-03-05Improve performances by a significant factorjvoisin
Only check if a function should be disabled when we're after a `*CALL` opcode, end not on every single opcode. Based on @blotus ideas ♥
2018-03-05Improve a bit the performances (+10%)jvoisin
2018-03-05Bump the `Standards-Version` of our Debian metajvoisin
2018-03-02Add .dump() for eval whitelist/blacklist + simulation mode for whitelistkkadosh
2018-03-02Implement dump() for execution of writable PHP fileskkadosh
2018-03-02Fix a warning due to an unexported symboljvoisin
2018-03-02Add some rules for Typo3, courtesy of @kjojojvoisin
2018-02-27Implements .dump() for unserialize and fix some related testskkadosh
2018-02-27Fix the logo's pathjvoisin
2018-02-27Add a file for linguistjvoisin
This should stop github from marking our project as a PHP one.
2018-02-27Improve the Readme filejvoisin
2018-02-26Improve the previous commitjvoisin
2018-02-26Add a rule to prevent various sandbox escapesjvoisin
This used to be private, but since it apparently isn't anymore, we should forbid it ;)
2018-02-22Fix the debian dependenciesjvoisin
This should close #149
2018-02-22php-nightly is now allowed to failjvoisin
PHP is breaking too many things on nightly, we'll only support releases from now on. This should also make our vld-based file-upload checker more resilient: no more random warnings on stderr.
2018-02-22Refactor a bit our rulesjvoisin
2018-02-12Provide a script for upload validationjvoisin
The Python script is using vld (https://derickrethans.nl/projects.html#vld) to check for malicious opcodes.
2018-02-12Mention the script in the documentationjvoisin
2018-02-09Add a broken test :'(jvoisin
2018-02-09Clarify a bit the documentationjvoisin
2018-02-07Tested two more rules for Abantecart 1.2.8 from the RIPS calendarkjojo
2018-02-07Add an example rule from the rips calendar for abantecart's XSSkjojo
2018-02-07Use assertions for things that should never happenjvoisin
2018-02-07Update the release process and bump the debian requirementsjvoisin
2018-02-07Bump the changelogv0.2.1jvoisin
2018-02-06Increase a bit the coveragejvoisin
2018-02-06Add a test to make sure that arrays are correctly handledjvoisin