This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "AppSensor DetectionPoint RE3"
From OWASP
John Melton (talk | contribs) (Sample code for testing for GET when expecting POST attack) |
John Melton (talk | contribs) m (wording) |
||
| (One intermediate revision by the same user not shown) | |||
| Line 3: | Line 3: | ||
<pre> | <pre> | ||
| − | //the execution of this line will | + | //the execution of this line will create an exception if an attack is found |
| − | boolean | + | boolean isValid = AttackDetectorUtils.verifyValidRequestMethod(myServletRequest, AttackDetectorUtils.POST); |
| − | if ( | + | if (! isValid) { |
notify user ... ??? | notify user ... ??? | ||
} | } | ||
</pre> | </pre> | ||
Latest revision as of 14:28, 1 June 2010
Here is some sample code that can be used to detect RE3.
//the execution of this line will create an exception if an attack is found
boolean isValid = AttackDetectorUtils.verifyValidRequestMethod(myServletRequest, AttackDetectorUtils.POST);
if (! isValid) {
notify user ... ???
}
