Hi auditors,
recently when my main workstation broke down and I was restoring backups
toa another machine, I found some old code written to parse output of
the splint(1) source checker.
Thankfully all data is restored now, and I had enough time to wrap the
code into Perl modules, hack on it some more, and add two modules for
parsing the output of flawfinder and rats. The result is version 0.8,
which you can find here:
http://hinterhof.net/~max/audit-perl/audit-perl-0.08.tar.gz
These modules provide an interface to parsing the output of supported
vulnerability scanners into a format that's common to all modules. This
is so that you can take the results from different scanners, merge them
and then do some cross-checking on the result.
Currently there are three modules [1]:
Audit::Splint
Audit::Flawfinder
Audit::Rats
There is more information in the attached README and the example code
included in the tarball. Let me know if you find any bugs, write modules
for other scanners or something else.
Cheers,
Max
--
308E81E7B97963BCA0E6ED889D5BD511B7CDA2DC
README
Description: Text document
|
