/// <summary>
/// Find any exposed personal information
/// </summary>
/// <param name="oSession"></param>
/// <param name="bodyAsString"></param>
/// <returns>List<PersonalInformation> List of PersonalInformation</returns>
private static List <PersonalInformation> FindExposedPersonalInformation(Session oSession, string bodyAsString)
{
List <PersonalInformation> personalInformationList = new List <PersonalInformation>();
// check if contains personal information P.I
if (bodyAsString != "")
{
MatchCollection mc = Regex.Matches(bodyAsString, "password\":\"([^\"]+)");
foreach (Match m in mc)
{
Console.WriteLine(m);
string passwordValue = m.Groups[1].Value;
bool isEncrypted = PasswordAdvisor.IsEncrypted(passwordValue);
// if not encrypted, password may be plain text so that we highlight the session
if (!isEncrypted)
{
PersonalInformation personalInformation = new PersonalInformation("password", passwordValue);
personalInformationList.Add(personalInformation);
}
}
}
return(personalInformationList);
}
