We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
There was an error while loading. Please reload this page.
1 parent 9933d40 commit e600cf2Copy full SHA for e600cf2
1 file changed
src/qwed_new/guards/code_guard.py
@@ -73,8 +73,12 @@ def _verify_bash(self, code: str) -> Dict[str, Any]:
73
(r"wget\s+.*\|\s*bash", "Pipe to Bash detected (RCE Risk)"),
74
(r"rm\s+-rf", "Destructive command (rm -rf)"),
75
(r":\(\)\{\s*:\|:\&\s*\}\;", "Fork Bomb detected"),
76
- (r"nc\s+.*-e\s+/bin/sh", "Netcat Reverse Shell"),
+ (r"nc\s+", "Netcat usage detected (Data Exfiltration/Reverse Shell Risk)"),
77
+ (r"netcat\s+", "Netcat usage detected"),
78
(r"/dev/tcp/", "Direct TCP connection (Reverse Shell Risk)"),
79
+ (r"/etc/passwd", "Sensitive file access (/etc/passwd)"),
80
+ (r"/etc/shadow", "Sensitive file access (/etc/shadow)"),
81
+ (r"id_rsa", "SSH Private Key access detected"),
82
(r"base64\s+-d", "Base64 Decoding (Obfuscation Risk)"),
83
(r"chmod\s+777", "Insecure permissions (chmod 777)"),
84
(r"sudo\s+", "Privilege Escalation attempt (sudo)"),
0 commit comments