This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "AppSensor DetectionPoint RE3"
From OWASP
John Melton (talk | contribs) (Sample code for testing for GET when expecting POST attack) |
John Melton (talk | contribs) m (wording) |
||
(One intermediate revision by the same user not shown) | |||
Line 3: | Line 3: | ||
<pre> | <pre> | ||
− | //the execution of this line will | + | //the execution of this line will create an exception if an attack is found |
− | boolean | + | boolean isValid = AttackDetectorUtils.verifyValidRequestMethod(myServletRequest, AttackDetectorUtils.POST); |
− | if ( | + | if (! isValid) { |
notify user ... ??? | notify user ... ??? | ||
} | } | ||
</pre> | </pre> |
Latest revision as of 14:28, 1 June 2010
Here is some sample code that can be used to detect RE3.
//the execution of this line will create an exception if an attack is found boolean isValid = AttackDetectorUtils.verifyValidRequestMethod(myServletRequest, AttackDetectorUtils.POST); if (! isValid) { notify user ... ??? }