CWE-287

Automated static analysis is useful for detecting certain types of authentication. A tool may be able to analyze related configuration files, such as .htaccess in Apache web servers, or detect the usage of commonly-used authentication libraries.

Generally, automated static analysis tools have difficulty detecting custom authentication schemes. In addition, the software's design may include some functionality that is accessible to any user and does not require an established identity; an automat...

This weakness can be detected using tools and techniques that require manual (human) analysis, such as penetration testing, threat modeling, and interactive tools that allow the tester to record and modify an active session.

Manual static analysis is useful for evaluating the correctness of custom authentication mechanisms.

According to SOAR [REF-1479], the following detection techniques may be useful:

• Binary / Bytecode disassembler - then use manual analysis for vulnerabilities & anomalies

According to SOAR [REF-1479], the following detection techniques may be useful:

• Web Application Scanner
• Web Services Scanner
• Database Scanners

According to SOAR [REF-1479], the following detection techniques may be useful:

• Fuzz Tester
• Framework-based Fuzzer

According to SOAR [REF-1479], the following detection techniques may be useful:

• Manual Source Code Review (not inspections)

According to SOAR [REF-1479], the following detection techniques may be useful:

• Source code Weakness Analyzer
• Context-configured Source Code Weakness Analyzer

According to SOAR [REF-1479], the following detection techniques may be useful:

• Configuration Checker

According to SOAR [REF-1479], the following detection techniques may be useful:

• Inspection (IEEE 1028 standard) (can apply to requirements, design, source code, etc.)
• Formal Methods / Correct-By-Construction