This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "AppSensor DetectionPoint RE4"
From OWASP
John Melton (talk | contribs) (Sample code for testing for POST when expecting GET attack) |
John Melton (talk | contribs) (updated method name) |
||
Line 1: | Line 1: | ||
− | Here is some sample code that can be used to detect | + | Here is some sample code that can be used to detect RE3. |
<pre> | <pre> | ||
//the execution of this line will throw an exception if an attack is found | //the execution of this line will throw an exception if an attack is found | ||
− | boolean | + | boolean isValid = AttackDetectorUtils.verifyValidRequestMethod(myServletRequest, AttackDetectorUtils.GET); |
− | if ( | + | if (! isValid) { |
notify user ... ??? | notify user ... ??? | ||
} | } | ||
</pre> | </pre> |
Revision as of 14:26, 1 June 2010
Here is some sample code that can be used to detect RE3.
//the execution of this line will throw an exception if an attack is found boolean isValid = AttackDetectorUtils.verifyValidRequestMethod(myServletRequest, AttackDetectorUtils.GET); if (! isValid) { notify user ... ??? }