Databases

Graudit uses extended regular expressions (POSIX) as it’s signatures and comes
with several databases ready for use. You can extend the existing databases or
make your own if you require additional signatures. Graudit does not accept the
.db extension when using the -d unless using the full path.
The following databases are distributed with graudit:

• All is a combined database of all the databases listed below

• Asp offers basic auditing support for the Active Server Pages languages

• C offers support for the C programming language

• Default is aimed at finding low hanging fruit. It cointains generic rules that
  should match common vulnerabilites in several languages. However, in order to
  find additional vulnerabilities for a specific language you should use the
  language specific databases.

• Dotnet offers basic dot net support

• Jsp basic JSP support.

• Other looks for source comments that could indicate problems

• Perl basic support for perl

• PHP tracks user input and function calls

• Python basic python support

Paths
Graudit will search for a matching database name in this order:
- STDIN is not a file and has highest priority
- $GRDIR/.db The GRDIR environment variable defines the “override” directory
- /usr/share/graudit/.db
- ~/.graudit/.db is the common place to place files with non conflicting file names
- $basename/signatures/.db for when you keep graudit in a directory rather than installing it
- /full/path/to/file.db