All modules within PWN::SAST namespace - update NIST 800-53 URI values for nist_800_53_uri key in #security_references method

ninp0 · ninp0 · commit f75da21119ea · 2025-05-06T11:48:08.000-06:00
diff --git a/README.md b/README.md
@@ -37,7 +37,7 @@ $ cd /opt/pwn
 $ ./install.sh
 $ ./install.sh ruby-gem
 $ pwn
-pwn[v0.5.271]:001 >>> PWN.help
+pwn[v0.5.272]:001 >>> PWN.help
 ```
 
 [![Installing the pwn Security Automation Framework](https://raw.githubusercontent.com/0dayInc/pwn/master/documentation/pwn_install.png)](https://youtu.be/G7iLUY4FzsI)
@@ -52,7 +52,7 @@ $ rvm use ruby-3.4.1@pwn
 $ gem uninstall --all --executables pwn
 $ gem install --verbose pwn
 $ pwn
-pwn[v0.5.271]:001 >>> PWN.help
+pwn[v0.5.272]:001 >>> PWN.help
 ```
 
 If you're using a multi-user install of RVM do:
@@ -62,7 +62,7 @@ $ rvm use ruby-3.4.1@pwn
 $ rvmsudo gem uninstall --all --executables pwn
 $ rvmsudo gem install --verbose pwn
 $ pwn
-pwn[v0.5.271]:001 >>> PWN.help
+pwn[v0.5.272]:001 >>> PWN.help
 ```
 
 PWN periodically upgrades to the latest version of Ruby which is reflected in `/opt/pwn/.ruby-version`.  The easiest way to upgrade to the latest version of Ruby from a previous PWN installation is to run the following script:
diff --git a/lib/pwn/sast/amqp_connect_as_guest.rb b/lib/pwn/sast/amqp_connect_as_guest.rb
@@ -110,7 +110,7 @@ module AMQPConnectAsGuest
         {
           sast_module: self,
           section: 'ACCOUNT MANAGEMENT',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=AC-2',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=AC-02',
           cwe_id: '285',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/285.html'
         }
diff --git a/lib/pwn/sast/apache_file_system_util_api.rb b/lib/pwn/sast/apache_file_system_util_api.rb
@@ -111,7 +111,7 @@ module ApacheFileSystemUtilAPI
         {
           sast_module: self,
           section: 'INFORMATION INPUT VALIDATION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-10',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-10',
           cwe_id: '78',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/78.html'
         }
diff --git a/lib/pwn/sast/aws.rb b/lib/pwn/sast/aws.rb
@@ -112,7 +112,7 @@ module AWS
         {
           sast_module: self,
           section: 'TRANSMISSION CONFIDENTIALITY AND INTEGRITY',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SC-8',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SC-08',
           cwe_id: '256',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/256.html'
         }
diff --git a/lib/pwn/sast/banned_function_calls_c.rb b/lib/pwn/sast/banned_function_calls_c.rb
@@ -239,7 +239,7 @@ module BannedFunctionCallsC
         {
           sast_module: self,
           section: 'INFORMATION INPUT VALIDATION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-10',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-10',
           cwe_id: '676',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/676.html'
         }
diff --git a/lib/pwn/sast/base64.rb b/lib/pwn/sast/base64.rb
@@ -108,7 +108,7 @@ module Base64
         {
           sast_module: self,
           section: 'PROTECTION OF INFORMATION AT REST',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SC-28',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SC-28',
           cwe_id: '95',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/95.html'
         }
diff --git a/lib/pwn/sast/beef_hook.rb b/lib/pwn/sast/beef_hook.rb
@@ -110,7 +110,7 @@ module BeefHook
         {
           sast_module: self,
           section: 'MALICIOUS CODE PROTECTION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-3',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-03',
           cwe_id: '506',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/506.html'
         }
diff --git a/lib/pwn/sast/cmd_execution_java.rb b/lib/pwn/sast/cmd_execution_java.rb
@@ -112,7 +112,7 @@ module CmdExecutionJava
         {
           sast_module: self,
           section: 'INFORMATION INPUT VALIDATION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-10',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-10',
           cwe_id: '78',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/78.html'
         }
diff --git a/lib/pwn/sast/cmd_execution_python.rb b/lib/pwn/sast/cmd_execution_python.rb
@@ -114,7 +114,7 @@ module CmdExecutionPython
         {
           sast_module: self,
           section: 'INFORMATION INPUT VALIDATION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-10',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-10',
           cwe_id: '78',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/78.html'
         }
diff --git a/lib/pwn/sast/cmd_execution_ruby.rb b/lib/pwn/sast/cmd_execution_ruby.rb
@@ -122,7 +122,7 @@ module CmdExecutionRuby
         {
           sast_module: self,
           section: 'INFORMATION INPUT VALIDATION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-10',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-10',
           cwe_id: '78',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/78.html'
         }
diff --git a/lib/pwn/sast/cmd_execution_scala.rb b/lib/pwn/sast/cmd_execution_scala.rb
@@ -112,7 +112,7 @@ module CmdExecutionScala
         {
           sast_module: self,
           section: 'INFORMATION INPUT VALIDATION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-10',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-10',
           cwe_id: '78',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/78.html'
         }
diff --git a/lib/pwn/sast/csrf.rb b/lib/pwn/sast/csrf.rb
@@ -109,7 +109,7 @@ module CSRF
         {
           sast_module: self,
           section: 'MALICIOUS CODE PROTECTION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-3',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-3',
           cwe_id: '352',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/352.html'
         }
diff --git a/lib/pwn/sast/deserial_java.rb b/lib/pwn/sast/deserial_java.rb
@@ -117,7 +117,7 @@ module DeserialJava
         {
           sast_module: self,
           section: 'INFORMATION INPUT VALIDATION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-10',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-10',
           cwe_id: '502',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/502.html'
         }
diff --git a/lib/pwn/sast/emoticon.rb b/lib/pwn/sast/emoticon.rb
@@ -118,7 +118,7 @@ module Emoticon
         {
           sast_module: self,
           section: 'LEAST PRIVILEGE',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=AC-6',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=AC-6',
           cwe_id: '546',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/546.html'
         }
diff --git a/lib/pwn/sast/eval.rb b/lib/pwn/sast/eval.rb
@@ -111,7 +111,7 @@ module Eval
         {
           sast_module: self,
           section: 'MALICIOUS CODE PROTECTION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-3',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-3',
           cwe_id: '95',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/95.html'
         }
diff --git a/lib/pwn/sast/factory.rb b/lib/pwn/sast/factory.rb
@@ -112,7 +112,7 @@ module Factory
         {
           sast_module: self,
           section: 'DEVELOPER CONFIGURATION MANAGEMENT',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SA-10',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SA-10',
           cwe_id: '611',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/611.html'
         }
diff --git a/lib/pwn/sast/http_authorization_header.rb b/lib/pwn/sast/http_authorization_header.rb
@@ -117,7 +117,7 @@ module HTTPAuthorizationHeader
         {
           sast_module: self,
           section: 'PROTECTION OF INFORMATION AT REST',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SC-28',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SC-28',
           cwe_id: '285',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/285.html'
         }
diff --git a/lib/pwn/sast/inner_html.rb b/lib/pwn/sast/inner_html.rb
@@ -111,7 +111,7 @@ module InnerHTML
         {
           sast_module: self,
           section: 'MALICIOUS CODE PROTECTION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-3',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-3',
           cwe_id: '79',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/79.html'
         }
diff --git a/lib/pwn/sast/keystore.rb b/lib/pwn/sast/keystore.rb
@@ -110,7 +110,7 @@ module Keystore
         {
           sast_module: self,
           section: 'CRYPTOGRAPHIC KEY ESTABLISHMENT AND MANAGEMENT',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SC-12',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SC-12',
           cwe_id: '522',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/522.html'
         }
diff --git a/lib/pwn/sast/local_storage.rb b/lib/pwn/sast/local_storage.rb
@@ -112,7 +112,7 @@ module LocalStorage
         {
           sast_module: self,
           section: 'MALICIOUS CODE PROTECTION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-3',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-3',
           cwe_id: '79',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/79.html'
         }
diff --git a/lib/pwn/sast/location_hash.rb b/lib/pwn/sast/location_hash.rb
@@ -111,7 +111,7 @@ module LocationHash
         {
           sast_module: self,
           section: 'MALICIOUS CODE PROTECTION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-3',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-3',
           cwe_id: '79',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/79.html'
         }
diff --git a/lib/pwn/sast/log4j.rb b/lib/pwn/sast/log4j.rb
@@ -110,7 +110,7 @@ module Log4J
         {
           sast_module: self,
           section: 'DEVELOPER SECURITY AND PRIVACY ARCHITECTURE AND DESIGN',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SA-17',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SA-17',
           cwe_id: '502',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/502.html'
         }
diff --git a/lib/pwn/sast/logger.rb b/lib/pwn/sast/logger.rb
@@ -125,7 +125,7 @@ module Logger
         {
           sast_module: self,
           section: 'PROTECTION OF INFORMATION AT REST',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SC-28',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SC-28',
           cwe_id: '779',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/779.html'
         }
diff --git a/lib/pwn/sast/md5.rb b/lib/pwn/sast/md5.rb
@@ -110,7 +110,7 @@ module MD5
         {
           sast_module: self,
           section: 'MALICIOUS CODE PROTECTION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control?version=5.1&number=SC-28',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SC-28',
           cwe_id: '328',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/328.html'
         }
diff --git a/lib/pwn/sast/outer_html.rb b/lib/pwn/sast/outer_html.rb
@@ -111,7 +111,7 @@ module OuterHTML
         {
           sast_module: self,
           section: 'MALICIOUS CODE PROTECTION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-3',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-3',
           cwe_id: '79',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/79.html'
         }
diff --git a/lib/pwn/sast/padding_oracle.rb b/lib/pwn/sast/padding_oracle.rb
@@ -107,7 +107,7 @@ module PaddingOracle
         {
           sast_module: self,
           section: 'PUBLIC KEY INFRASTRUCTURE CERTIFICATES',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SC-17',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SC-17',
           cwe_id: '310',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/310.html'
         }
diff --git a/lib/pwn/sast/password.rb b/lib/pwn/sast/password.rb
@@ -112,7 +112,7 @@ module Password
         {
           sast_module: self,
           section: 'PROTECTION OF INFORMATION AT REST',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SC-28',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SC-28',
           cwe_id: '540',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/540.html'
         }
diff --git a/lib/pwn/sast/php_input_mechanisms.rb b/lib/pwn/sast/php_input_mechanisms.rb
@@ -116,7 +116,7 @@ module PHPInputMechanisms
         {
           sast_module: self,
           section: 'DEVELOPER SECURITY AND PRIVACY ARCHITECTURE AND DESIGN',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SA-17',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SA-17',
           cwe_id: '661',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/661.html'
         }
diff --git a/lib/pwn/sast/php_type_juggling.rb b/lib/pwn/sast/php_type_juggling.rb
@@ -114,7 +114,7 @@ module PHPTypeJuggling
         {
           sast_module: self,
           section: 'DEVELOPER SECURITY AND PRIVACY ARCHITECTURE AND DESIGN',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SA-17',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SA-17',
           cwe_id: '661',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/661.html'
         }
diff --git a/lib/pwn/sast/pom_version.rb b/lib/pwn/sast/pom_version.rb
@@ -119,7 +119,7 @@ module PomVersion
         {
           sast_module: self,
           section: 'VULNERABILITY SCANNING',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=RA-5',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=RA-5',
           cwe_id: '.0',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/1104.html'
         }
diff --git a/lib/pwn/sast/port.rb b/lib/pwn/sast/port.rb
@@ -117,7 +117,7 @@ module Port
         {
           sast_module: self,
           section: 'TRANSMISSION CONFIDENTIALITY AND INTEGRITY',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SC-8',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SC-8',
           cwe_id: '319',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/319.html'
         }
diff --git a/lib/pwn/sast/post_message.rb b/lib/pwn/sast/post_message.rb
@@ -111,7 +111,7 @@ module PostMessage
         {
           sast_module: self,
           section: 'MALICIOUS CODE PROTECTION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-3',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-3',
           cwe_id: '79',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/79.html'
         }
diff --git a/lib/pwn/sast/private_key.rb b/lib/pwn/sast/private_key.rb
@@ -110,7 +110,7 @@ module PrivateKey
         {
           sast_module: self,
           section: 'CRYPTOGRAPHIC MODULE AUTHENTICATION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=IA-7',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=IA-7',
           cwe_id: '321',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/321.html'
         }
diff --git a/lib/pwn/sast/redirect.rb b/lib/pwn/sast/redirect.rb
@@ -112,7 +112,7 @@ module Redirect
         {
           sast_module: self,
           section: 'LEAST PRIVILEGE',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=AC-6',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=AC-6',
           cwe_id: '601',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/601.html'
         }
diff --git a/lib/pwn/sast/redos.rb b/lib/pwn/sast/redos.rb
@@ -117,7 +117,7 @@ module ReDOS
         {
           sast_module: self,
           section: 'PROTECTION OF INFORMATION AT REST',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SC-28',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SC-28',
           cwe_id: '1333',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/1333.html'
         }
diff --git a/lib/pwn/sast/shell.rb b/lib/pwn/sast/shell.rb
@@ -118,7 +118,7 @@ module Shell
         {
           sast_module: self,
           section: 'DEVELOPER SECURITY AND PRIVACY ARCHITECTURE AND DESIGN',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SA-17',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SA-17',
           cwe_id: '553',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/553.html'
         }
diff --git a/lib/pwn/sast/signature.rb b/lib/pwn/sast/signature.rb
@@ -110,7 +110,7 @@ module Signature
         {
           sast_module: self,
           section: 'CRYPTOGRAPHIC MODULE AUTHENTICATION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=IA-7',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=IA-17',
           cwe_id: '347',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/347.html'
         }
diff --git a/lib/pwn/sast/sql.rb b/lib/pwn/sast/sql.rb
@@ -114,7 +114,7 @@ module SQL
         {
           sast_module: self,
           section: 'INFORMATION INPUT VALIDATION',
-          nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-10',
+          nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-10',
           cwe_id: '89',
           cwe_uri: 'https://cwe.mitre.org/data/definitions/89.html'
         }
diff --git a/lib/pwn/sast/ssl.rb b/lib/pwn/sast/ssl.rb
diff --git a/lib/pwn/sast/sudo.rb b/lib/pwn/sast/sudo.rb
diff --git a/lib/pwn/sast/task_tag.rb b/lib/pwn/sast/task_tag.rb
diff --git a/lib/pwn/sast/throw_errors.rb b/lib/pwn/sast/throw_errors.rb
diff --git a/lib/pwn/sast/token.rb b/lib/pwn/sast/token.rb
diff --git a/lib/pwn/sast/type_script_type_juggling.rb b/lib/pwn/sast/type_script_type_juggling.rb
diff --git a/lib/pwn/sast/version.rb b/lib/pwn/sast/version.rb
diff --git a/lib/pwn/sast/window_location_hash.rb b/lib/pwn/sast/window_location_hash.rb
diff --git a/lib/pwn/version.rb b/lib/pwn/version.rb

Original file line number	Diff line number	Diff line change
`@@ -110,7 +110,7 @@ module AMQPConnectAsGuest`
`110`	`110`	`{`
`111`	`111`	`sast_module: self,`
`112`	`112`	`section: 'ACCOUNT MANAGEMENT',`
`113`		`- nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=AC-2',`
	`113`	`+ nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=AC-02',`
`114`	`114`	`cwe_id: '285',`
`115`	`115`	`cwe_uri: 'https://cwe.mitre.org/data/definitions/285.html'`
`116`	`116`	`}`
Original file line number	Diff line number	Diff line change
`@@ -111,7 +111,7 @@ module ApacheFileSystemUtilAPI`
`111`	`111`	`{`
`112`	`112`	`sast_module: self,`
`113`	`113`	`section: 'INFORMATION INPUT VALIDATION',`
`114`		`- nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-10',`
	`114`	`+ nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-10',`
`115`	`115`	`cwe_id: '78',`
`116`	`116`	`cwe_uri: 'https://cwe.mitre.org/data/definitions/78.html'`
`117`	`117`	`}`
Original file line number	Diff line number	Diff line change
`@@ -112,7 +112,7 @@ module AWS`
`112`	`112`	`{`
`113`	`113`	`sast_module: self,`
`114`	`114`	`section: 'TRANSMISSION CONFIDENTIALITY AND INTEGRITY',`
`115`		`- nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SC-8',`
	`115`	`+ nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SC-08',`
`116`	`116`	`cwe_id: '256',`
`117`	`117`	`cwe_uri: 'https://cwe.mitre.org/data/definitions/256.html'`
`118`	`118`	`}`
Original file line number	Diff line number	Diff line change
`@@ -239,7 +239,7 @@ module BannedFunctionCallsC`
`239`	`239`	`{`
`240`	`240`	`sast_module: self,`
`241`	`241`	`section: 'INFORMATION INPUT VALIDATION',`
`242`		`- nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-10',`
	`242`	`+ nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-10',`
`243`	`243`	`cwe_id: '676',`
`244`	`244`	`cwe_uri: 'https://cwe.mitre.org/data/definitions/676.html'`
`245`	`245`	`}`
Original file line number	Diff line number	Diff line change
`@@ -108,7 +108,7 @@ module Base64`
`108`	`108`	`{`
`109`	`109`	`sast_module: self,`
`110`	`110`	`section: 'PROTECTION OF INFORMATION AT REST',`
`111`		`- nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SC-28',`
	`111`	`+ nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SC-28',`
`112`	`112`	`cwe_id: '95',`
`113`	`113`	`cwe_uri: 'https://cwe.mitre.org/data/definitions/95.html'`
`114`	`114`	`}`
Original file line number	Diff line number	Diff line change
`@@ -110,7 +110,7 @@ module BeefHook`
`110`	`110`	`{`
`111`	`111`	`sast_module: self,`
`112`	`112`	`section: 'MALICIOUS CODE PROTECTION',`
`113`		`- nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-3',`
	`113`	`+ nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-03',`
`114`	`114`	`cwe_id: '506',`
`115`	`115`	`cwe_uri: 'https://cwe.mitre.org/data/definitions/506.html'`
`116`	`116`	`}`
Original file line number	Diff line number	Diff line change
`@@ -112,7 +112,7 @@ module CmdExecutionJava`
`112`	`112`	`{`
`113`	`113`	`sast_module: self,`
`114`	`114`	`section: 'INFORMATION INPUT VALIDATION',`
`115`		`- nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-10',`
	`115`	`+ nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-10',`
`116`	`116`	`cwe_id: '78',`
`117`	`117`	`cwe_uri: 'https://cwe.mitre.org/data/definitions/78.html'`
`118`	`118`	`}`
Original file line number	Diff line number	Diff line change
`@@ -114,7 +114,7 @@ module CmdExecutionPython`
`114`	`114`	`{`
`115`	`115`	`sast_module: self,`
`116`	`116`	`section: 'INFORMATION INPUT VALIDATION',`
`117`		`- nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-10',`
	`117`	`+ nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-10',`
`118`	`118`	`cwe_id: '78',`
`119`	`119`	`cwe_uri: 'https://cwe.mitre.org/data/definitions/78.html'`
`120`	`120`	`}`
Original file line number	Diff line number	Diff line change
`@@ -122,7 +122,7 @@ module CmdExecutionRuby`
`122`	`122`	`{`
`123`	`123`	`sast_module: self,`
`124`	`124`	`section: 'INFORMATION INPUT VALIDATION',`
`125`		`- nist_800_53_uri: 'https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search#/control/?version=5.1&number=SI-10',`
	`125`	`+ nist_800_53_uri: 'https://csrc.nist.gov/projects/cprt/catalog#/cprt/framework/version/SP_800_53_5_1_1/home?element=SI-10',`
`126`	`126`	`cwe_id: '78',`
`127`	`127`	`cwe_uri: 'https://cwe.mitre.org/data/definitions/78.html'`
`128`	`128`	`}`