AppSensor DetectionPoint RE4

Revision as of 07:38, 6 April 2010 by John Melton (talk | contribs) (Sample code for testing for POST when expecting GET attack)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Here is some sample code that can be used to detect RE4.

//the execution of this line will throw an exception if an attack is found 
boolean isAttack = AttackDetectorUtils.verifyRequestMethod(myServletRequest, AttackDetectorUtils.GET); 
if (isAttack) {
    notify user ... ???