Граф коммитов

54 Коммитов

Автор SHA1 Сообщение Дата
Suvam Mukherjee 54d9f18432
prep for v1.8.0 release (#98) 2024-09-16 09:41:44 -07:00
Michael C. Fanning 98eece40a4
Byte array corrections (#96)
* Decode secrets as base64.

* Comprehensive unit tests for new API overloads to mint keys.

* Release notes and generated rules metadata updates.
2024-09-16 07:12:14 -07:00
Michael C. Fanning 92295f95c3 Ensure that CASK secrets round-trip through base64 without changing. 2024-09-12 14:40:10 -07:00
Michael C. Fanning fcac25e618 Update release notes. 2024-09-12 08:33:59 -07:00
Michael C. Fanning 5b4689297c Update release notes. 2024-09-12 08:07:01 -07:00
Ross Wollman c6efb2a098
chore: prep for v1.7.0 release 2024-09-10 16:21:01 -07:00
Michael C. Fanning 63691cef60
Api updates to unify all key creation through a common helper. (#92)
* Api updates to unify all key creation through a common helper.

* All tests passing/

* Update release notes.
2024-09-10 12:58:44 -07:00
Suvam Mukherjee d097d5cf79
Merge v1.6.0 back to main (#87)
* Generate annotated hash (#84) (#85)

* Add ComputeCommonAnnotatedHash

* Update return value for annotated hash helper that favors byte[].

* Update tests.

Co-authored-by: Michael C. Fanning <mikefan@microsoft.com>

* updating release history (#86)

---------

Co-authored-by: Michael C. Fanning <mikefan@microsoft.com>
2024-08-12 12:34:41 -07:00
Michael C. Fanning 5a39a40479
Generate annotated hash (#84)
* Add ComputeCommonAnnotatedHash

* Update return value for annotated hash helper that favors byte[].

* Update tests.
2024-08-08 10:17:29 -07:00
Michael C. Fanning b2034062e0 1.6.0 release. 2024-08-06 09:24:33 -07:00
Michael C. Fanning d79129bbf2
Propose low, medium and high confidence levels. (#80)
* Proposed confidence levels.

* Update release history.
2024-08-06 09:21:30 -07:00
Michael C. Fanning cea91fee7e
New API to make it more convenient to use byte[] args. (#83)
* New API to make it more convenient to use byte[] args.

* Update release notes.

* PR feedback.

* Update release history.

* Fix release notes.
2024-08-06 09:15:05 -07:00
jdraaijer-microsoft 891523240b
Rust/Marvin: add slice-only functions (#73)
* Rust/Marvin: add functions operating solely on slices.

Instead of relying the offset and length field in the checksum
calculation implementation, we can use that information to construct
a slice directly after validating the relevant invariants and use
the slice to perform our calculations. This makes the code simpler,
faster, and more idiomatic.

* Rust/Marvin tests: make test cases easier to modify, and test offsets and different lengths

* Rust: add release note for marvin functions
2024-08-05 19:46:10 +05:30
Suvam Mukherjee dd3e534be7
updating Rust crate versions (#78) 2024-07-26 23:16:11 +05:30
jdraaijer-microsoft d7c4e8bcf0
Rust/His: Make `ScanEngine` `Send` and `Sync` (#77)
* fix(Rust/His): add tests/compile time constructs to
validate concurrency

* feat!(Rust/His): tighten bounds on validator

This allows `ScanEngine` to be Send + Sync, allowing
for proper concurrent usage

* Rust: update changelog
2024-07-25 14:51:14 -07:00
Suvam Mukherjee 6d553be63c
Adding release notes for Rust crates (#75)
* adding release notes for Rust cargo packages

* fixes

* updating rust entry

* updating rust release note based on PR feedback
2024-07-24 23:54:00 +05:30
Beau Belgrave 4bd32585af
Rust/His: Introduce ScanEngine struct (#72)
* Rust/His: Introduce ScanEngine struct

Previously the Scan struct would track it's own state as well as allow
external state operations. To do this though, it required a RefCell
instance for the non-external state. This prevented the Scan struct
from being fully used in scoped thread contexts without a Mutex or Arc.

Introduce the ScanEngine struct which contains all the same code as the
Scan struct (rename) as before except for the internal state tracking.

Re-write the Scan struct to simply host the ScanEngine and a ScanState.
This ensures the logic is the same as before, however, now we can
completely drop the RefCell and make it much clearer for callers what we
expect them to do.

Signed-off-by: Beau Belgrave <beaub@linux.microsoft.com>

* updating release notes

---------

Signed-off-by: Beau Belgrave <beaub@linux.microsoft.com>
Co-authored-by: Beau Belgrave <beaub@linux.microsoft.com>
Co-authored-by: Suvam Mukherjee <sumukherjee@microsoft.com>
2024-07-23 17:16:09 +05:30
dependabot[bot] e05ae49f4c
Bump System.Text.Json from 8.0.3 to 8.0.4 in /src/Tests.Microsoft.Security.Utilities.Core (#63)
* Bump System.Text.Json in /src/Tests.Microsoft.Security.Utilities.Core

Bumps System.Text.Json from 8.0.3 to 8.0.4.

---
updated-dependencies:
- dependency-name: System.Text.Json
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>

* resolve dependabot alert

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Suvam Mukherjee (from Dev Box) <sumukherjee@microsoft.com>
2024-07-21 22:41:24 +05:30
Suvam Mukherjee 4bd43da7b5
Adding an initial secret masking capability (#61)
* adding initial secret redacter

* completing secret masker with tests

* incorporating PR feedback

* adjusting upper bounds

* updating release notes

* PR feedback

* minor fix
2024-07-05 13:57:05 -04:00
Suvam Mukherjee 3ac14c065c
adding support for spectre mitigated libs (#58) 2024-06-28 00:06:41 -04:00
Michael C. Fanning 7c2ec1d4db
Regex fixes (#53)
* Resolve threading issue in base62 encoding helper.

* Lower stress case threshold.

* Publish all regex patterns.

* Review updates.
2024-06-17 23:24:44 -04:00
Michael C. Fanning 7b0b979a41
Base62 threading issue (#50)
* Resolve threading issue in base62 encoding helper.

* Lower stress case threshold.
2024-06-17 14:26:20 -07:00
Suvam Mukherjee 9bc2a0b9e4
Fixing SEC101/200 GenerateTruePositiveExamples test case (#46)
* Fixing SEC101/200 GenerateTruePositiveExamples test case

* updating release notes

* updating test based on PR feedback

* New test>

* Add new test.

* updating well known regexes

* updating tests

* adding comments

---------

Co-authored-by: Michael C. Fanning <mikefan@microsoft.com>
2024-06-17 14:03:59 -07:00
Michael C. Fanning 7342b4e0e2
Add SEC101_061_LooseOAuth2BearerToken and notion of confidence in metadata. (#45) 2024-06-17 16:42:23 -04:00
Suvam Mukherjee c23c964f11
Adding support for .NET 451 for backwards compatibility (#47)
* Adding support for .net 451

* updating package test to support .net 451

* updating release notes

* reducing new byte array allocations
2024-06-17 15:12:18 -04:00
Michael C. Fanning 832e9b8d4d
Fix identifiable scan behaviors and add hybrid scan capability. (#42)
* Fix identifiable scan behaviors and add hybrid scan capability.

* Review feedback.

* Add back deleted pattern

* bringing up net462 support for test

---------

Co-authored-by: Suvam Mukherjee <sumukherjee@microsoft.com>
2024-06-04 16:46:51 -04:00
Suvam Mukherjee 4afb3c536e
making core rust module public (#41)
* making core rust module public

* update release notes
2024-06-04 13:02:23 -04:00
Michael C. Fanning 629620b376
Add detections for loose sas secret and generic JWT exposures. (#38)
* Add detections for loose sas secret and generic JWT exposures.

* Updated rule defs

* PR feedback>

* PR feedback and update rule category names.

* Update release history.
2024-06-03 12:02:28 -07:00
Michael C. Fanning 57a9ada6a6 Add long form option to request the full HIS v2 key. Expand reporting for negative cases. 2024-05-31 07:44:35 -07:00
Michael C. Fanning e68282b515 Harden TryValidateCommonAnnotatedKey for invalid inputs. 2024-05-30 14:31:24 -07:00
Michael C. Fanning 8822379af4 Add discrete correlating id property. 2024-05-29 15:14:43 -07:00
Michael C. Fanning 9aba77c4f0 Update release history. 2024-05-28 08:46:55 -07:00
Michael C. Fanning 8090bc871d PR review.: 2024-05-23 13:15:11 -07:00
Michael C. Fanning ce33a6b439 Review feedback. 2024-05-23 08:41:20 -07:00
Michael C. Fanning 3de80d90ff Fix bug in derived key computation. 2024-05-21 17:06:42 -07:00
Michael C. Fanning c9985aef75 Update release notes. 2024-05-21 15:13:03 -07:00
Michael C. Fanning d688f67079 Review feedback 2024-05-21 15:09:51 -07:00
Michael C. Fanning dc9d47988c CASK derived keys. Fix HIS v1 derived keys. 2024-05-21 14:58:01 -07:00
Michael C. Fanning cb40ca78e5 Update release notes. 2024-05-16 12:42:04 -07:00
Michael C. Fanning b8da992c54 Update release notes. 2024-05-16 10:04:37 -07:00
Michael C. Fanning 5997117605 Update release notes. 2024-05-16 09:36:51 -07:00
Michael C. Fanning f9f3fe5afe Update FFI binaries copy. Needs to be put in targets file. 2024-05-16 08:42:46 -07:00
Michael C. Fanning 8397d2347f Update API conformance for marvin across frameworks. 2024-05-15 14:12:45 -07:00
Michael C. Fanning 3b9a4bf857 Review feedback. Release notes. 2024-05-15 09:59:01 -07:00
Michael C. Fanning 23c4daa848 Add checks to updated API model. 2024-05-15 09:35:03 -07:00
Michael C. Fanning dd89a2cb3a Update release history and version. 2024-05-10 14:55:51 -07:00
Michael C. Fanning b2a2c820cc Update release notes. 2024-05-10 14:41:45 -07:00
Michael C. Fanning dd46112db3 Fix bux in detecting search keys. Refactor identifiable key logic to shared class. 2024-05-10 14:41:25 -07:00
Michael C. Fanning a606f433db Fix release notes. 2024-05-10 07:36:16 -07:00
Michael C. Fanning f84359d00a Add 'IdentifiableSecrets.ComputeChecksumSeed 2024-05-09 13:26:36 -07:00