From f8e001ab2caf571a4cf8949bed08769acfb5bfda Mon Sep 17 00:00:00 2001 From: PiranhaSa Date: Fri, 13 Oct 2023 16:55:38 +0100 Subject: [PATCH] fix/ removing the pci standard from secure and info classes --- .../ANDROID/_INFO/APK_ANALYZE_JNI_ELF/meta.json | 7 +------ .../ANDROID/_INFO/APK_DYNAMIC_CODE_LOAD/meta.json | 3 --- .../ANDROID/_INFO/APK_DYNAMIC_COMMAND_EXEC/meta.json | 3 --- .../BROADCAST_RECEIVER_DYNAMIC_REGISTRATION/meta.json | 10 +--------- .../_INFO/DANGEROUS_API_ANDROIDSECURITY/meta.json | 7 ------- .../ANDROID/_INFO/DANGEROUS_API_BLUETOOTH/meta.json | 7 +------ .../ANDROID/_INFO/DANGEROUS_API_CRYPTO/meta.json | 9 +-------- .../ANDROID/_INFO/DANGEROUS_API_DELETE_FILE/meta.json | 7 +------ .../_INFO/DANGEROUS_API_DYNAMIC_CODE_LOADING/meta.json | 9 +-------- .../ANDROID/_INFO/DANGEROUS_API_EXEC/meta.json | 7 +------ .../_INFO/DANGEROUS_API_EXTERNAL_STORAGE/meta.json | 7 ------- .../ANDROID/_INFO/DANGEROUS_API_IPC/meta.json | 3 --- .../ANDROID/_INFO/DANGEROUS_API_LOG/meta.json | 7 ------- .../ANDROID/_INFO/DANGEROUS_API_RANDOM/meta.json | 4 ---- .../ANDROID/_INFO/DANGEROUS_API_SQL/meta.json | 7 ------- .../ANDROID/_INFO/DANGEROUS_API_SSLTLS/meta.json | 9 +-------- .../ANDROID/_INFO/DANGEROUS_API_WEBVIEW/meta.json | 4 ---- .../ANDROID/_INFO/DANGEROUS_API_XML/meta.json | 6 ------ MOBILE_CLIENT/ANDROID/_SECURE/APK_CHECK_ROOT/meta.json | 3 --- .../COMMON/_INFO/DANGEROUS_MEMORY_CORRUPTION/meta.json | 5 ----- .../meta.json | 6 ------ .../FIREBASE_SECURE_DATABASE_PERMISSIONS/meta.json | 8 +------- .../WEB/_SECURE/SECURE_AUTHENTICATION/meta.json | 2 -- 23 files changed, 9 insertions(+), 131 deletions(-) diff --git a/MOBILE_CLIENT/ANDROID/_INFO/APK_ANALYZE_JNI_ELF/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/APK_ANALYZE_JNI_ELF/meta.json index 3bdd47bb..bf6a4d54 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/APK_ANALYZE_JNI_ELF/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/APK_ANALYZE_JNI_ELF/meta.json @@ -7,10 +7,5 @@ }, "title": "List of JNI methods", "privacy_issue": false, - "security_issue": false, - "categories": { - "PCI_STANDARDS":[ - "REQ_6_2" - ] - } + "security_issue": false } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/APK_DYNAMIC_CODE_LOAD/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/APK_DYNAMIC_CODE_LOAD/meta.json index fe65095a..ed4b4029 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/APK_DYNAMIC_CODE_LOAD/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/APK_DYNAMIC_CODE_LOAD/meta.json @@ -15,9 +15,6 @@ "OWASP_MASVS_L2": [ "MSTG_CODE_5", "MSTG_CODE_7" - ], - "PCI_STANDARDS":[ - "REQ_6_2" ] } } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/APK_DYNAMIC_COMMAND_EXEC/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/APK_DYNAMIC_COMMAND_EXEC/meta.json index b8d409bd..2218d766 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/APK_DYNAMIC_COMMAND_EXEC/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/APK_DYNAMIC_COMMAND_EXEC/meta.json @@ -14,9 +14,6 @@ ], "OWASP_MASVS_L2": [ "MSTG_CODE_6" - ], - "PCI_STANDARDS":[ - "REQ_6_2" ] } } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/BROADCAST_RECEIVER_DYNAMIC_REGISTRATION/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/BROADCAST_RECEIVER_DYNAMIC_REGISTRATION/meta.json index 96858cf9..39c0bba1 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/BROADCAST_RECEIVER_DYNAMIC_REGISTRATION/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/BROADCAST_RECEIVER_DYNAMIC_REGISTRATION/meta.json @@ -6,13 +6,5 @@ }, "title": "Broadcast receiver dynamic registration", "privacy_issue": false, - "security_issue": true, - "categories": { - "PCI_STANDARDS": [ - "REQ_2_2", - "REQ_6_2", - "REQ_6_3", - "REQ_11_3" - ] - } + "security_issue": true } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_ANDROIDSECURITY/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_ANDROIDSECURITY/meta.json index 278e27b8..a7986a67 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_ANDROIDSECURITY/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_ANDROIDSECURITY/meta.json @@ -22,13 +22,6 @@ "MSTG_CRYPTO_1", "MSTG_CRYPTO_2", "MSTG_CRYPTO_3" - ], - "PCI_STANDARDS":[ - "REQ_2_2", - "REQ_3_6", - "REQ_3_7", - "REQ_4_2", - "REQ_6_2" ] } } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_BLUETOOTH/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_BLUETOOTH/meta.json index 1d64c5a8..32552ac2 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_BLUETOOTH/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_BLUETOOTH/meta.json @@ -6,10 +6,5 @@ }, "title": "Call to Bluetooth and BLE API", "privacy_issue": false, - "security_issue": true, - "categories": { - "PCI_STANDARDS":[ - "REQ_6_2" - ] - } + "security_issue": true } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_CRYPTO/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_CRYPTO/meta.json index cab1777e..9bb8775e 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_CRYPTO/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_CRYPTO/meta.json @@ -24,13 +24,6 @@ "MSTG_CRYPTO_4", "MSTG_CRYPTO_5", "MSTG_CRYPTO_6" - ], - "PCI_STANDARDS":[ - "REQ_2_2", - "REQ_3_6", - "REQ_3_7", - "REQ_4_2", - "REQ_6_2" - ] + ] } } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_DELETE_FILE/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_DELETE_FILE/meta.json index eac33666..09f48fea 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_DELETE_FILE/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_DELETE_FILE/meta.json @@ -7,10 +7,5 @@ }, "title": "Call to delete file API", "privacy_issue": false, - "security_issue": true, - "categories": { - "PCI_STANDARDS":[ - "REQ_6_2" - ] - } + "security_issue": true } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_DYNAMIC_CODE_LOADING/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_DYNAMIC_CODE_LOADING/meta.json index 3b884608..8d5c3d2b 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_DYNAMIC_CODE_LOADING/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_DYNAMIC_CODE_LOADING/meta.json @@ -6,12 +6,5 @@ }, "title": "Call to dynamic code loading API", "privacy_issue": false, - "security_issue": true, - "categories": { - "PCI_STANDARDS":[ - "REQ_6_2", - "REQ_6_3", - "REQ_11_3" - ] - } + "security_issue": true } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_EXEC/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_EXEC/meta.json index 0f1cdc41..98122b26 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_EXEC/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_EXEC/meta.json @@ -7,10 +7,5 @@ }, "title": "Call to command execution API", "privacy_issue": false, - "security_issue": true, - "categories": { - "PCI_STANDARDS":[ - "REQ_6_2" - ] - } + "security_issue": true } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_EXTERNAL_STORAGE/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_EXTERNAL_STORAGE/meta.json index 0e870ddd..f5035a6c 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_EXTERNAL_STORAGE/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_EXTERNAL_STORAGE/meta.json @@ -16,13 +16,6 @@ ], "OWASP_MASVS_L2": [ "MSTG_STORAGE_2" - ], - "PCI_STANDARDS":[ - "REQ_2_2", - "REQ_3_5", - "REQ_4_2", - "REQ_6_2", - "REQ_7_3" ] } } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_IPC/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_IPC/meta.json index 30422042..b9886097 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_IPC/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_IPC/meta.json @@ -20,9 +20,6 @@ "MSTG_PLATFORM_1", "MSTG_PLATFORM_2", "MSTG_PLATFORM_3" - ], - "PCI_STANDARDS":[ - "REQ_6_2" ] } } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_LOG/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_LOG/meta.json index c4318830..2c3a5013 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_LOG/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_LOG/meta.json @@ -15,13 +15,6 @@ ], "OWASP_MASVS_L2": [ "MSTG_CODE_9" - ], - "PCI_STANDARDS":[ - "REQ_2_2", - "REQ_6_2", - "REQ_6_3", - "REQ_10_3", - "REQ_11_3" ] } } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_RANDOM/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_RANDOM/meta.json index 9eba0fb6..0221087a 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_RANDOM/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_RANDOM/meta.json @@ -14,10 +14,6 @@ ], "OWASP_MASVS_L2": [ "MSTG_CRYPTO_1" - ], - "PCI_STANDARDS":[ - "REQ_2_2", - "REQ_6_2" ] } } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_SQL/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_SQL/meta.json index f325c5b9..09b5298d 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_SQL/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_SQL/meta.json @@ -18,13 +18,6 @@ ], "OWASP_MASVS_L2": [ "MSTG_STORAGE_1" - ], - "PCI_STANDARDS":[ - "REQ_2_2", - "REQ_3_5", - "REQ_6_2", - "REQ_6_3", - "REQ_11_3" ] } } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_SSLTLS/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_SSLTLS/meta.json index b664933b..848475fe 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_SSLTLS/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_SSLTLS/meta.json @@ -5,12 +5,5 @@ }, "title": "Call to TLS API", "privacy_issue": false, - "security_issue": true, - "categories": { - "PCI_STANDARDS":[ - "REQ_3_6", - "REQ_3_7", - "REQ_4_2" - ] - } + "security_issue": true } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_WEBVIEW/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_WEBVIEW/meta.json index 2ed340e0..508048df 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_WEBVIEW/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_WEBVIEW/meta.json @@ -16,10 +16,6 @@ "OWASP_MASVS_L2": [ "MSTG_PLATFORM_3", "MSTG_PLATFORM_5" - ], - "PCI_STANDARDS":[ - "REQ_2_2", - "REQ_6_2" ] } } diff --git a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_XML/meta.json b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_XML/meta.json index afcb3bcf..fc6d9576 100644 --- a/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_XML/meta.json +++ b/MOBILE_CLIENT/ANDROID/_INFO/DANGEROUS_API_XML/meta.json @@ -15,12 +15,6 @@ ], "OWASP_MASVS_L2": [ "MSTG_PLATFORM_2" - ], - "PCI_STANDARDS":[ - "REQ_2_2", - "REQ_6_2", - "REQ_6_3", - "REQ_11_3" ] } } diff --git a/MOBILE_CLIENT/ANDROID/_SECURE/APK_CHECK_ROOT/meta.json b/MOBILE_CLIENT/ANDROID/_SECURE/APK_CHECK_ROOT/meta.json index 4967e5ea..972eb124 100644 --- a/MOBILE_CLIENT/ANDROID/_SECURE/APK_CHECK_ROOT/meta.json +++ b/MOBILE_CLIENT/ANDROID/_SECURE/APK_CHECK_ROOT/meta.json @@ -11,9 +11,6 @@ "categories": { "OWASP_RESILIENCE": [ "MSTG_RESILIENCE_1" - ], - "PCI_STANDARDS":[ - "REQ_6_2" ] } } diff --git a/MOBILE_CLIENT/COMMON/_INFO/DANGEROUS_MEMORY_CORRUPTION/meta.json b/MOBILE_CLIENT/COMMON/_INFO/DANGEROUS_MEMORY_CORRUPTION/meta.json index 01db2a3c..aac50c2b 100644 --- a/MOBILE_CLIENT/COMMON/_INFO/DANGEROUS_MEMORY_CORRUPTION/meta.json +++ b/MOBILE_CLIENT/COMMON/_INFO/DANGEROUS_MEMORY_CORRUPTION/meta.json @@ -16,11 +16,6 @@ "CWE_190", "CWE_190", "CWE_400" - ], - "PCI_STANDARDS":[ - "REQ_6_2", - "REQ_6_3", - "REQ_11_3" ] } } diff --git a/MOBILE_CLIENT/IOS/_SECURE/PRIVACY_NO_SENSITIVE_DATA_OUTSIDE_APP_CONTAINER/meta.json b/MOBILE_CLIENT/IOS/_SECURE/PRIVACY_NO_SENSITIVE_DATA_OUTSIDE_APP_CONTAINER/meta.json index a16fce39..0ac05082 100644 --- a/MOBILE_CLIENT/IOS/_SECURE/PRIVACY_NO_SENSITIVE_DATA_OUTSIDE_APP_CONTAINER/meta.json +++ b/MOBILE_CLIENT/IOS/_SECURE/PRIVACY_NO_SENSITIVE_DATA_OUTSIDE_APP_CONTAINER/meta.json @@ -13,12 +13,6 @@ ], "OWASP_MASVS_L2": [ "MSTG_STORAGE_2" - ], - "PCI_STANDARDS":[ - "REQ_3_5", - "REQ_6_2", - "REQ_6_3", - "REQ_11_3" ] } } diff --git a/WEB_SERVICE/CLOUD/_SECURE/FIREBASE_SECURE_DATABASE_PERMISSIONS/meta.json b/WEB_SERVICE/CLOUD/_SECURE/FIREBASE_SECURE_DATABASE_PERMISSIONS/meta.json index cd4aac51..20747bd4 100644 --- a/WEB_SERVICE/CLOUD/_SECURE/FIREBASE_SECURE_DATABASE_PERMISSIONS/meta.json +++ b/WEB_SERVICE/CLOUD/_SECURE/FIREBASE_SECURE_DATABASE_PERMISSIONS/meta.json @@ -7,11 +7,5 @@ }, "title": "Secure Firebase Database Permissions", "privacy_issue": false, - "security_issue": true, - "categories": { - "PCI_STANDARDS":[ - "REQ_2_2", - "REQ_7_3" - ] - } + "security_issue": true } diff --git a/WEB_SERVICE/WEB/_SECURE/SECURE_AUTHENTICATION/meta.json b/WEB_SERVICE/WEB/_SECURE/SECURE_AUTHENTICATION/meta.json index 08e9ca95..d3a9c2b1 100644 --- a/WEB_SERVICE/WEB/_SECURE/SECURE_AUTHENTICATION/meta.json +++ b/WEB_SERVICE/WEB/_SECURE/SECURE_AUTHENTICATION/meta.json @@ -14,8 +14,6 @@ ], "OWASP_MASVS_L2": [ "MSTG_ARCH_2" - ], "PCI_STANDARDS":[ - "REQ_8_3" ] } }