This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "AppSensor DetectionPoint RE3"
From OWASP
John Melton (talk | contribs) (Sample code for testing for GET when expecting POST attack) |
John Melton (talk | contribs) (updated method name) |
||
| Line 4: | Line 4: | ||
//the execution of this line will throw an exception if an attack is found | //the execution of this line will throw an exception if an attack is found | ||
| − | boolean | + | boolean isValid = AttackDetectorUtils.verifyValidRequestMethod(myServletRequest, AttackDetectorUtils.POST); |
| − | if ( | + | if (! isValid) { |
notify user ... ??? | notify user ... ??? | ||
} | } | ||
</pre> | </pre> | ||
Revision as of 14:25, 1 June 2010
Here is some sample code that can be used to detect RE3.
//the execution of this line will throw an exception if an attack is found
boolean isValid = AttackDetectorUtils.verifyValidRequestMethod(myServletRequest, AttackDetectorUtils.POST);
if (! isValid) {
notify user ... ???
}
