Add a typo3 security vulnerability scanner

## 🚓  New Scanner implementation request


### Is your feature request related to a problem

As a security analyst i would like to use the secureCodeBox to check my external attack surface. Especially CMS systems like Wordpress or Typo3 are common systems that may introduce new vulnerabilites on a regular basis. 

The BlogPost of @JavanXD https://javan.de/securing-typo3-cms-new-security-scanner/ also motivates this topic.

### Describe the solution you'd like

Since the secureCodeBox already supports the Wordpress scanner WPScan it would be great to also add at least one Typo3 scanner. There are two candidates (referring to the blog post):
- https://github.com/JavanXD/Typo3AccessChecker – Check if Typo3 security guidelines are followed.
- https://github.com/whoot/Typo3Scan – Typo3 Enumerator: Enumerates extensions to gain information about outdated and 

### Describe alternatives you've considered


### Additional context

- https://javan.de/securing-typo3-cms-new-security-scanner/
- https://github.com/JavanXD/Typo3AccessChecker – Check if Typo3 security guidelines are followed.
- https://github.com/whoot/Typo3Scan – Typo3 Enumerator: Enumerates extensions to gain information about outdated and vulnerable extensions.

## Steps to implement a new scanner
Hint: A general guide how to implement a new SCB scanner is documented [here](https://docs.securecodebox.io/docs/contributing/integrating-a-scanner)

- [x] Create a new folder with the name of the [scanner here](https://github.com/secureCodeBox/secureCodeBox/tree/master/scanners)
- [x] Add a `README.gotmpl` and give a [brief overview](https://docs.securecodebox.io/docs/contributing/integrating-a-scanner/readme) of the scanner and its configuration options.
- [x] Add a HelmChart and document all configuration options.
- [x] Implement a new scanner specific `scan-type.yaml`
- [x] Implement a new scanner specific `parse-definition.yaml`
- [x] Add (optional) some `cascading-rules.yaml` like documented [here](https://docs.securecodebox.io/docs/api/crds/cascading-rule)
- [x] Add (optional) a `Dockerfile` for the scanner if there is no existing one publicly available on dockerHub
- [x] Use the [parser-SDK](https://github.com/secureCodeBox/secureCodeBox/tree/master/parser-sdk) to implement a new findings parser (currently based on NodeJS)
- [x] Add unit tests with at minimum 80% test coverage
- [x] Add some example `scan.yaml` and `finding.yaml` files in the [example folder](https://docs.securecodebox.io/docs/contributing/integrating-a-scanner/examples-dir)
- [x] Implement a [new integration or E2E test](https://docs.securecodebox.io/docs/contributing/integrating-a-scanner/integration-tests) for the hook [here](https://github.com/secureCodeBox/secureCodeBox/tree/master/tests/integration)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add a typo3 security vulnerability scanner #568

🚓 New Scanner implementation request

Is your feature request related to a problem

Describe the solution you'd like

Describe alternatives you've considered

Additional context

Steps to implement a new scanner

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Add a typo3 security vulnerability scanner #568

Description

🚓 New Scanner implementation request

Is your feature request related to a problem

Describe the solution you'd like

Describe alternatives you've considered

Additional context

Steps to implement a new scanner

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions