C# (CSharp) SecurityThreatDiagnostics.ChallengeAgainstSecurityThreats示例

编程语言: C# (CSharp)

类/类型: SecurityThreatDiagnostics

方法/功能: ChallengeAgainstSecurityThreats

hotexamples.com的示例: 5

C# (CSharp) SecurityThreatDiagnostics.ChallengeAgainstSecurityThreats - 已找到5个示例。这些是从开源项目中提取的最受好评的SecurityThreatDiagnostics.ChallengeAgainstSecurityThreats现实C# (CSharp)示例。您可以评价示例，以帮助我们提高示例质量。

常用方法

显示隐藏

ChallengeAgainstSecurityThreats(5)

ChallengeAttributesAgainstSecurityThreats(3)

ChallengeSecurityHeaders(2)

ChallengeCharacterSetEncoding(1)

ChallengeIPAddresses(1)

ChallengeUrlEncoding(1)

示例#1

0

显示文件

文件： Frends.Community.SecurityThreatDiagnostics.Tests.cs 项目： CommunityHiQ/Frends.Community.SecurityThreatDiagnostics

        public void GivenUrlInjectionInURIFormatWhenChallengingValidationThenSecurityThreatDiagnosticsMustRaiseExceptionDueToFoundSQLInjection()
        {
            string unsecureUrl = "select * from Customers;`insert into";

            validation.Payload    = unsecureUrl;
            options.MaxIterations = 2;
            Assert.Throws <ApplicationException>(() => SecurityThreatDiagnostics.ChallengeAgainstSecurityThreats(validation, options, CancellationToken.None));
        }

示例#2

0

显示文件

文件： Frends.Community.SecurityThreatDiagnostics.Tests.cs 项目： CommunityHiQ/Frends.Community.SecurityThreatDiagnostics

        public void GivenXSScriptAttackScriptAsAnAttributeWhenChallengingValidationThenSecurityThreatDiagnosticsMustRaiseExceptionDueToInjectedValue()
        {
            string invalidXml = "function xss() { alert('injection'); } xss();";

            validation.Payload    = invalidXml;
            options.MaxIterations = 2;
            Assert.Throws <ApplicationException>(() => SecurityThreatDiagnostics.ChallengeAgainstSecurityThreats(validation, options, CancellationToken.None));
        }

示例#3

0

显示文件

文件： Frends.Community.SecurityThreatDiagnostics.Tests.cs 项目： CommunityHiQ/Frends.Community.SecurityThreatDiagnostics

        public void GivenXXEInjectedXMLWhenChallengingValidationOfTheXMLThenSecurityThreatDiagnosticsMustNotRaiseException()
        {
            string validXml = "<?xml version=\"1.0\" encoding=\"ISO-8859-1\"?><!DOCTYPE foo [<!ELEMENT foo ANY ><!ENTITY xxe SYSTEM \"file:///etc/passwd\" >]><foo>&xxe;</foo>";

            validation.Payload    = validXml;
            options.MaxIterations = 2;
            Assert.Throws <ApplicationException>(() => SecurityThreatDiagnostics.ChallengeAgainstSecurityThreats(validation, options, CancellationToken.None));
        }

示例#4

0

显示文件

文件： Frends.Community.SecurityThreatDiagnostics.Tests.cs 项目： CommunityHiQ/Frends.Community.SecurityThreatDiagnostics

        public void GivenScriptInjectedXMLWithDoubleQuatesWhenChallengingValidationThenSecurityThreatDiagnosticsMustRaiseExceptionDueToInjectedXML()
        {
            string invalidXml = "<xml><entity><script>function xss() { alert(\"injection\"); } xss();</script></entity></xml>";

            validation.Payload    = invalidXml;
            options.MaxIterations = 2;
            Assert.Throws <ApplicationException>(() => SecurityThreatDiagnostics.ChallengeAgainstSecurityThreats(validation, options, CancellationToken.None));
        }

示例#5

0

显示文件

文件： Frends.Community.SecurityThreatDiagnostics.Tests.cs 项目： CommunityHiQ/Frends.Community.SecurityThreatDiagnostics

        public void GivenValidTextWhenChallengingValidationThenSecurityThreatDiagnosticsMustRaiseExceptionDueToFoundInjection()
        {
            string validXml = "This is a valid content.";

            validation.Payload    = validXml;
            options.MaxIterations = 2;
            SecurityThreatDiagnosticsResult result = SecurityThreatDiagnostics.ChallengeAgainstSecurityThreats(validation, options, CancellationToken.None);

            Assert.IsTrue(result.IsValid);
        }