diff --git a/config_tests/CONF_000_GLOBAL.yaml b/config_tests/CONF_000_GLOBAL.yaml index 03ab3c7..a4887ea 100644 --- a/config_tests/CONF_000_GLOBAL.yaml +++ b/config_tests/CONF_000_GLOBAL.yaml @@ -22,6 +22,16 @@ global: log,\ msg:'%{MATCHED_VAR_NAME} was caught in phase:${PHASE}$',\ ver:'${VERSION}$'" + - name: "SecRule for TARGETS with ACTIONS" + template: | + SecRule ${TARGET}$ "${OPERATOR}$ ${OPARG}$" \ + "id:${CURRID}$,\ + phase:${PHASE}$,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:${PHASE}$ with value %{MATCHED_VAR}',\ + ${ACTIONS}$,\ + ver:'${VERSION}$'" default_tests_phase_methods: - 1: get - 2: post diff --git a/config_tests/CONF_010_TARGET_DURATION.yaml b/config_tests/CONF_010_TARGET_DURATION.yaml new file mode 100644 index 0000000..aeebf3e --- /dev/null +++ b/config_tests/CONF_010_TARGET_DURATION.yaml @@ -0,0 +1,35 @@ +target: DURATION +rulefile: MRTS_010_DURATION.conf +testfile: MRTS_010_DURATION.yaml +templates: +- SecRule for TARGETS with ACTIONS +generation: + before: | + # Set starting duration marker + SecAction "id:${CURRID}$,phase:1, setvar:tx.duration_marker=0" +actions: + - action: + - setvar:tx.duration_marker=%{MATCHED_VAR} # set duration marker at matched value +colkey: +- - '' +operator: +- '@gt' +oparg: +- '%{tx.duration_marker}' # check on previously matched duration as we expect it to increase at each phase +phase: +- 1 +- 2 +- 3 +- 4 +- 5 +testdata: + phase_methods: + 1: get + 2: post + 3: post + 4: post + 5: post + targets: + - target: '' + test: + data: null \ No newline at end of file diff --git a/generated/rules/MRTS_010_DURATION.conf b/generated/rules/MRTS_010_DURATION.conf new file mode 100644 index 0000000..e85a79d --- /dev/null +++ b/generated/rules/MRTS_010_DURATION.conf @@ -0,0 +1,48 @@ +# Set starting duration marker +SecAction "id:100116,phase:1, setvar:tx.duration_marker=0" + +SecRule DURATION "@gt %{tx.duration_marker}" \ + "id:100117,\ + phase:1,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:1 with value %{MATCHED_VAR}',\ + setvar:tx.duration_marker=%{MATCHED_VAR},\ + ver:'MRTS/0.1'" + +SecRule DURATION "@gt %{tx.duration_marker}" \ + "id:100118,\ + phase:2,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2 with value %{MATCHED_VAR}',\ + setvar:tx.duration_marker=%{MATCHED_VAR},\ + ver:'MRTS/0.1'" + +SecRule DURATION "@gt %{tx.duration_marker}" \ + "id:100119,\ + phase:3,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3 with value %{MATCHED_VAR}',\ + setvar:tx.duration_marker=%{MATCHED_VAR},\ + ver:'MRTS/0.1'" + +SecRule DURATION "@gt %{tx.duration_marker}" \ + "id:100120,\ + phase:4,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4 with value %{MATCHED_VAR}',\ + setvar:tx.duration_marker=%{MATCHED_VAR},\ + ver:'MRTS/0.1'" + +SecRule DURATION "@gt %{tx.duration_marker}" \ + "id:100121,\ + phase:5,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:5 with value %{MATCHED_VAR}',\ + setvar:tx.duration_marker=%{MATCHED_VAR},\ + ver:'MRTS/0.1'" + diff --git a/generated/rules/MRTS_059_REQUEST_COOKIES.conf b/generated/rules/MRTS_059_REQUEST_COOKIES.conf index 4f132b0..1d2b399 100644 --- a/generated/rules/MRTS_059_REQUEST_COOKIES.conf +++ b/generated/rules/MRTS_059_REQUEST_COOKIES.conf @@ -1,5 +1,5 @@ SecRule REQUEST_COOKIES "@contains attack" \ - "id:100116,\ + "id:100122,\ phase:1,\ deny,\ t:none,\ @@ -8,7 +8,7 @@ SecRule REQUEST_COOKIES "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES "@contains attack" \ - "id:100117,\ + "id:100123,\ phase:2,\ deny,\ t:none,\ @@ -17,7 +17,7 @@ SecRule REQUEST_COOKIES "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES "@contains attack" \ - "id:100118,\ + "id:100124,\ phase:3,\ deny,\ t:none,\ @@ -26,7 +26,7 @@ SecRule REQUEST_COOKIES "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES "@contains attack" \ - "id:100119,\ + "id:100125,\ phase:4,\ deny,\ t:none,\ @@ -35,7 +35,7 @@ SecRule REQUEST_COOKIES "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES:cookie1 "@contains attack" \ - "id:100120,\ + "id:100126,\ phase:1,\ deny,\ t:none,\ @@ -44,7 +44,7 @@ SecRule REQUEST_COOKIES:cookie1 "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES:cookie1 "@contains attack" \ - "id:100121,\ + "id:100127,\ phase:2,\ deny,\ t:none,\ @@ -53,7 +53,7 @@ SecRule REQUEST_COOKIES:cookie1 "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES:cookie1 "@contains attack" \ - "id:100122,\ + "id:100128,\ phase:3,\ deny,\ t:none,\ @@ -62,7 +62,7 @@ SecRule REQUEST_COOKIES:cookie1 "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES:cookie1 "@contains attack" \ - "id:100123,\ + "id:100129,\ phase:4,\ deny,\ t:none,\ @@ -71,7 +71,7 @@ SecRule REQUEST_COOKIES:cookie1 "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES:cookie1|REQUEST_COOKIES:cookie2 "@contains attack" \ - "id:100124,\ + "id:100130,\ phase:1,\ deny,\ t:none,\ @@ -80,7 +80,7 @@ SecRule REQUEST_COOKIES:cookie1|REQUEST_COOKIES:cookie2 "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES:cookie1|REQUEST_COOKIES:cookie2 "@contains attack" \ - "id:100125,\ + "id:100131,\ phase:2,\ deny,\ t:none,\ @@ -89,7 +89,7 @@ SecRule REQUEST_COOKIES:cookie1|REQUEST_COOKIES:cookie2 "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES:cookie1|REQUEST_COOKIES:cookie2 "@contains attack" \ - "id:100126,\ + "id:100132,\ phase:3,\ deny,\ t:none,\ @@ -98,7 +98,7 @@ SecRule REQUEST_COOKIES:cookie1|REQUEST_COOKIES:cookie2 "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES:cookie1|REQUEST_COOKIES:cookie2 "@contains attack" \ - "id:100127,\ + "id:100133,\ phase:4,\ deny,\ t:none,\ @@ -107,7 +107,7 @@ SecRule REQUEST_COOKIES:cookie1|REQUEST_COOKIES:cookie2 "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES:/^cookie_.*$/ "@contains attack" \ - "id:100128,\ + "id:100134,\ phase:1,\ deny,\ t:none,\ @@ -116,7 +116,7 @@ SecRule REQUEST_COOKIES:/^cookie_.*$/ "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES:/^cookie_.*$/ "@contains attack" \ - "id:100129,\ + "id:100135,\ phase:2,\ deny,\ t:none,\ @@ -125,7 +125,7 @@ SecRule REQUEST_COOKIES:/^cookie_.*$/ "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES:/^cookie_.*$/ "@contains attack" \ - "id:100130,\ + "id:100136,\ phase:3,\ deny,\ t:none,\ @@ -134,7 +134,7 @@ SecRule REQUEST_COOKIES:/^cookie_.*$/ "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES:/^cookie_.*$/ "@contains attack" \ - "id:100131,\ + "id:100137,\ phase:4,\ deny,\ t:none,\ diff --git a/generated/rules/MRTS_060_REQUEST_COOKIES_NAMES.conf b/generated/rules/MRTS_060_REQUEST_COOKIES_NAMES.conf index 893f82c..6419fe6 100644 --- a/generated/rules/MRTS_060_REQUEST_COOKIES_NAMES.conf +++ b/generated/rules/MRTS_060_REQUEST_COOKIES_NAMES.conf @@ -1,5 +1,5 @@ SecRule REQUEST_COOKIES_NAMES "@contains attack" \ - "id:100132,\ + "id:100138,\ phase:1,\ deny,\ t:none,\ @@ -8,7 +8,7 @@ SecRule REQUEST_COOKIES_NAMES "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES "@contains attack" \ - "id:100133,\ + "id:100139,\ phase:2,\ deny,\ t:none,\ @@ -17,7 +17,7 @@ SecRule REQUEST_COOKIES_NAMES "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES "@contains attack" \ - "id:100134,\ + "id:100140,\ phase:3,\ deny,\ t:none,\ @@ -26,7 +26,7 @@ SecRule REQUEST_COOKIES_NAMES "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES "@contains attack" \ - "id:100135,\ + "id:100141,\ phase:4,\ deny,\ t:none,\ @@ -35,7 +35,7 @@ SecRule REQUEST_COOKIES_NAMES "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ - "id:100136,\ + "id:100142,\ phase:1,\ deny,\ t:none,\ @@ -44,7 +44,7 @@ SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ - "id:100137,\ + "id:100143,\ phase:2,\ deny,\ t:none,\ @@ -53,7 +53,7 @@ SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ - "id:100138,\ + "id:100144,\ phase:3,\ deny,\ t:none,\ @@ -62,7 +62,7 @@ SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ - "id:100139,\ + "id:100145,\ phase:4,\ deny,\ t:none,\ @@ -71,7 +71,7 @@ SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains attack" \ - "id:100140,\ + "id:100146,\ phase:1,\ deny,\ t:none,\ @@ -80,7 +80,7 @@ SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains a ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains attack" \ - "id:100141,\ + "id:100147,\ phase:2,\ deny,\ t:none,\ @@ -89,7 +89,7 @@ SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains a ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains attack" \ - "id:100142,\ + "id:100148,\ phase:3,\ deny,\ t:none,\ @@ -98,7 +98,7 @@ SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains a ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains attack" \ - "id:100143,\ + "id:100149,\ phase:4,\ deny,\ t:none,\ @@ -107,7 +107,7 @@ SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains a ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ - "id:100144,\ + "id:100150,\ phase:1,\ deny,\ t:none,\ @@ -116,7 +116,7 @@ SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ - "id:100145,\ + "id:100151,\ phase:2,\ deny,\ t:none,\ @@ -125,7 +125,7 @@ SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ - "id:100146,\ + "id:100152,\ phase:3,\ deny,\ t:none,\ @@ -134,7 +134,7 @@ SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ - "id:100147,\ + "id:100153,\ phase:4,\ deny,\ t:none,\ diff --git a/generated/rules/MRTS_061_REQUEST_FILENAME.conf b/generated/rules/MRTS_061_REQUEST_FILENAME.conf index a6d938c..975f778 100644 --- a/generated/rules/MRTS_061_REQUEST_FILENAME.conf +++ b/generated/rules/MRTS_061_REQUEST_FILENAME.conf @@ -1,5 +1,5 @@ SecRule REQUEST_FILENAME "@contains attack" \ - "id:100148,\ + "id:100154,\ phase:1,\ deny,\ t:none,\ @@ -8,7 +8,7 @@ SecRule REQUEST_FILENAME "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_FILENAME "@contains attack" \ - "id:100149,\ + "id:100155,\ phase:2,\ deny,\ t:none,\ @@ -17,7 +17,7 @@ SecRule REQUEST_FILENAME "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_FILENAME "@contains attack" \ - "id:100150,\ + "id:100156,\ phase:3,\ deny,\ t:none,\ @@ -26,7 +26,7 @@ SecRule REQUEST_FILENAME "@contains attack" \ ver:'MRTS/0.1'" SecRule REQUEST_FILENAME "@contains attack" \ - "id:100151,\ + "id:100157,\ phase:4,\ deny,\ t:none,\ diff --git a/generated/rules/MRTS_069_RESPONSE_BODY.conf b/generated/rules/MRTS_069_RESPONSE_BODY.conf index 8eb8763..7eb4bf6 100644 --- a/generated/rules/MRTS_069_RESPONSE_BODY.conf +++ b/generated/rules/MRTS_069_RESPONSE_BODY.conf @@ -1,5 +1,5 @@ SecRule RESPONSE_BODY "@contains attack" \ - "id:100152,\ + "id:100158,\ phase:4,\ t:none,\ log,\ @@ -7,7 +7,7 @@ SecRule RESPONSE_BODY "@contains attack" \ ver:'MRTS/0.1'" SecRule RESPONSE_BODY "@contains attack" \ - "id:100153,\ + "id:100159,\ phase:5,\ t:none,\ log,\ diff --git a/generated/rules/MRTS_110_XML.conf b/generated/rules/MRTS_110_XML.conf index 19adad0..2ac88b5 100644 --- a/generated/rules/MRTS_110_XML.conf +++ b/generated/rules/MRTS_110_XML.conf @@ -1,5 +1,5 @@ SecRule XML:/* "@beginsWith foo" \ - "id:100154,\ + "id:100160,\ phase:2,\ deny,\ t:none,\ @@ -8,7 +8,7 @@ SecRule XML:/* "@beginsWith foo" \ ver:'MRTS/0.1'" SecRule XML:/* "@beginsWith foo" \ - "id:100155,\ + "id:100161,\ phase:3,\ deny,\ t:none,\ @@ -17,7 +17,7 @@ SecRule XML:/* "@beginsWith foo" \ ver:'MRTS/0.1'" SecRule XML:/* "@beginsWith foo" \ - "id:100156,\ + "id:100162,\ phase:4,\ deny,\ t:none,\ diff --git a/generated/tests/regression/tests/100116_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100116_MRTS_059_REQUEST_COOKIES.yaml deleted file mode 100644 index ed8a0ca..0000000 --- a/generated/tests/regression/tests/100116_MRTS_059_REQUEST_COOKIES.yaml +++ /dev/null @@ -1,161 +0,0 @@ ---- -meta: - author: MRTS generate-rules.py - enabled: true - name: MRTS_059_REQUEST_COOKIES.yaml - description: Desc -tests: -- test_title: 100116-1 - ruleid: 100116 - test_id: 1 - desc: 'Test case for rule 100116, #1' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: GET - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: foo=attack - uri: / - version: HTTP/1.1 - output: - log: - expect_ids: - - 100116 -- test_title: 100116-2 - ruleid: 100116 - test_id: 2 - desc: 'Test case for rule 100116, #2' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: GET - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack - uri: / - version: HTTP/1.1 - output: - log: - expect_ids: - - 100116 -- test_title: 100116-3 - ruleid: 100116 - test_id: 3 - desc: 'Test case for rule 100116, #3' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: GET - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack;cookie2=hello - uri: / - version: HTTP/1.1 - output: - log: - expect_ids: - - 100116 -- test_title: 100116-4 - ruleid: 100116 - test_id: 4 - desc: 'Test case for rule 100116, #4' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: GET - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie2=attack - uri: / - version: HTTP/1.1 - output: - log: - expect_ids: - - 100116 -- test_title: 100116-5 - ruleid: 100116 - test_id: 5 - desc: 'Test case for rule 100116, #5' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: GET - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=hello;cookie2=attack - uri: / - version: HTTP/1.1 - output: - log: - expect_ids: - - 100116 -- test_title: 100116-6 - ruleid: 100116 - test_id: 6 - desc: 'Test case for rule 100116, #6' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: GET - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_foo=attack - uri: / - version: HTTP/1.1 - output: - log: - expect_ids: - - 100116 -- test_title: 100116-7 - ruleid: 100116 - test_id: 7 - desc: 'Test case for rule 100116, #7' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: GET - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world - uri: / - version: HTTP/1.1 - output: - log: - expect_ids: - - 100116 diff --git a/generated/tests/regression/tests/100117_MRTS_010_DURATION.yaml b/generated/tests/regression/tests/100117_MRTS_010_DURATION.yaml new file mode 100644 index 0000000..1b0fa5b --- /dev/null +++ b/generated/tests/regression/tests/100117_MRTS_010_DURATION.yaml @@ -0,0 +1,28 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_010_DURATION.yaml + description: Desc +tests: +- test_title: 100117-1 + ruleid: 100117 + test_id: 1 + desc: 'Test case for rule 100117, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100117 diff --git a/generated/tests/regression/tests/100117_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100117_MRTS_059_REQUEST_COOKIES.yaml deleted file mode 100644 index 9a0121a..0000000 --- a/generated/tests/regression/tests/100117_MRTS_059_REQUEST_COOKIES.yaml +++ /dev/null @@ -1,161 +0,0 @@ ---- -meta: - author: MRTS generate-rules.py - enabled: true - name: MRTS_059_REQUEST_COOKIES.yaml - description: Desc -tests: -- test_title: 100117-1 - ruleid: 100117 - test_id: 1 - desc: 'Test case for rule 100117, #1' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: foo=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100117 -- test_title: 100117-2 - ruleid: 100117 - test_id: 2 - desc: 'Test case for rule 100117, #2' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100117 -- test_title: 100117-3 - ruleid: 100117 - test_id: 3 - desc: 'Test case for rule 100117, #3' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack;cookie2=hello - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100117 -- test_title: 100117-4 - ruleid: 100117 - test_id: 4 - desc: 'Test case for rule 100117, #4' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie2=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100117 -- test_title: 100117-5 - ruleid: 100117 - test_id: 5 - desc: 'Test case for rule 100117, #5' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=hello;cookie2=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100117 -- test_title: 100117-6 - ruleid: 100117 - test_id: 6 - desc: 'Test case for rule 100117, #6' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_foo=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100117 -- test_title: 100117-7 - ruleid: 100117 - test_id: 7 - desc: 'Test case for rule 100117, #7' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100117 diff --git a/generated/tests/regression/tests/100118_MRTS_010_DURATION.yaml b/generated/tests/regression/tests/100118_MRTS_010_DURATION.yaml new file mode 100644 index 0000000..aa703ce --- /dev/null +++ b/generated/tests/regression/tests/100118_MRTS_010_DURATION.yaml @@ -0,0 +1,28 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_010_DURATION.yaml + description: Desc +tests: +- test_title: 100118-1 + ruleid: 100118 + test_id: 1 + desc: 'Test case for rule 100118, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100118 diff --git a/generated/tests/regression/tests/100118_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100118_MRTS_059_REQUEST_COOKIES.yaml deleted file mode 100644 index e175eaa..0000000 --- a/generated/tests/regression/tests/100118_MRTS_059_REQUEST_COOKIES.yaml +++ /dev/null @@ -1,161 +0,0 @@ ---- -meta: - author: MRTS generate-rules.py - enabled: true - name: MRTS_059_REQUEST_COOKIES.yaml - description: Desc -tests: -- test_title: 100118-1 - ruleid: 100118 - test_id: 1 - desc: 'Test case for rule 100118, #1' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: foo=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100118 -- test_title: 100118-2 - ruleid: 100118 - test_id: 2 - desc: 'Test case for rule 100118, #2' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100118 -- test_title: 100118-3 - ruleid: 100118 - test_id: 3 - desc: 'Test case for rule 100118, #3' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack;cookie2=hello - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100118 -- test_title: 100118-4 - ruleid: 100118 - test_id: 4 - desc: 'Test case for rule 100118, #4' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie2=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100118 -- test_title: 100118-5 - ruleid: 100118 - test_id: 5 - desc: 'Test case for rule 100118, #5' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=hello;cookie2=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100118 -- test_title: 100118-6 - ruleid: 100118 - test_id: 6 - desc: 'Test case for rule 100118, #6' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_foo=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100118 -- test_title: 100118-7 - ruleid: 100118 - test_id: 7 - desc: 'Test case for rule 100118, #7' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100118 diff --git a/generated/tests/regression/tests/100119_MRTS_010_DURATION.yaml b/generated/tests/regression/tests/100119_MRTS_010_DURATION.yaml new file mode 100644 index 0000000..fd10b22 --- /dev/null +++ b/generated/tests/regression/tests/100119_MRTS_010_DURATION.yaml @@ -0,0 +1,28 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_010_DURATION.yaml + description: Desc +tests: +- test_title: 100119-1 + ruleid: 100119 + test_id: 1 + desc: 'Test case for rule 100119, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100119 diff --git a/generated/tests/regression/tests/100119_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100119_MRTS_059_REQUEST_COOKIES.yaml deleted file mode 100644 index 106cda1..0000000 --- a/generated/tests/regression/tests/100119_MRTS_059_REQUEST_COOKIES.yaml +++ /dev/null @@ -1,161 +0,0 @@ ---- -meta: - author: MRTS generate-rules.py - enabled: true - name: MRTS_059_REQUEST_COOKIES.yaml - description: Desc -tests: -- test_title: 100119-1 - ruleid: 100119 - test_id: 1 - desc: 'Test case for rule 100119, #1' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: foo=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100119 -- test_title: 100119-2 - ruleid: 100119 - test_id: 2 - desc: 'Test case for rule 100119, #2' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100119 -- test_title: 100119-3 - ruleid: 100119 - test_id: 3 - desc: 'Test case for rule 100119, #3' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack;cookie2=hello - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100119 -- test_title: 100119-4 - ruleid: 100119 - test_id: 4 - desc: 'Test case for rule 100119, #4' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie2=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100119 -- test_title: 100119-5 - ruleid: 100119 - test_id: 5 - desc: 'Test case for rule 100119, #5' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=hello;cookie2=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100119 -- test_title: 100119-6 - ruleid: 100119 - test_id: 6 - desc: 'Test case for rule 100119, #6' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_foo=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100119 -- test_title: 100119-7 - ruleid: 100119 - test_id: 7 - desc: 'Test case for rule 100119, #7' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100119 diff --git a/generated/tests/regression/tests/100120_MRTS_010_DURATION.yaml b/generated/tests/regression/tests/100120_MRTS_010_DURATION.yaml new file mode 100644 index 0000000..43729bd --- /dev/null +++ b/generated/tests/regression/tests/100120_MRTS_010_DURATION.yaml @@ -0,0 +1,28 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_010_DURATION.yaml + description: Desc +tests: +- test_title: 100120-1 + ruleid: 100120 + test_id: 1 + desc: 'Test case for rule 100120, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100120 diff --git a/generated/tests/regression/tests/100121_MRTS_010_DURATION.yaml b/generated/tests/regression/tests/100121_MRTS_010_DURATION.yaml new file mode 100644 index 0000000..74aefb3 --- /dev/null +++ b/generated/tests/regression/tests/100121_MRTS_010_DURATION.yaml @@ -0,0 +1,28 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_010_DURATION.yaml + description: Desc +tests: +- test_title: 100121-1 + ruleid: 100121 + test_id: 1 + desc: 'Test case for rule 100121, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100121 diff --git a/generated/tests/regression/tests/100122_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100122_MRTS_059_REQUEST_COOKIES.yaml index ae956b0..24fb1a2 100644 --- a/generated/tests/regression/tests/100122_MRTS_059_REQUEST_COOKIES.yaml +++ b/generated/tests/regression/tests/100122_MRTS_059_REQUEST_COOKIES.yaml @@ -15,13 +15,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: POST + method: GET headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack - uri: /post + Cookie: foo=attack + uri: / version: HTTP/1.1 output: log: @@ -37,13 +37,123 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: POST + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie1=attack + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100122 +- test_title: 100122-3 + ruleid: 100122 + test_id: 3 + desc: 'Test case for rule 100122, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 Cookie: cookie1=attack;cookie2=hello - uri: /post + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100122 +- test_title: 100122-4 + ruleid: 100122 + test_id: 4 + desc: 'Test case for rule 100122, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie2=attack + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100122 +- test_title: 100122-5 + ruleid: 100122 + test_id: 5 + desc: 'Test case for rule 100122, #5' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie1=hello;cookie2=attack + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100122 +- test_title: 100122-6 + ruleid: 100122 + test_id: 6 + desc: 'Test case for rule 100122, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie_foo=attack + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100122 +- test_title: 100122-7 + ruleid: 100122 + test_id: 7 + desc: 'Test case for rule 100122, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world + uri: / version: HTTP/1.1 output: log: diff --git a/generated/tests/regression/tests/100123_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100123_MRTS_059_REQUEST_COOKIES.yaml index cdc699c..5ad4f11 100644 --- a/generated/tests/regression/tests/100123_MRTS_059_REQUEST_COOKIES.yaml +++ b/generated/tests/regression/tests/100123_MRTS_059_REQUEST_COOKIES.yaml @@ -20,7 +20,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack + Cookie: foo=attack uri: /post version: HTTP/1.1 output: @@ -32,6 +32,28 @@ tests: test_id: 2 desc: 'Test case for rule 100123, #2' stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie1=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100123 +- test_title: 100123-3 + ruleid: 100123 + test_id: 3 + desc: 'Test case for rule 100123, #3' + stages: - description: Send request input: dest_addr: 127.0.0.1 @@ -49,3 +71,91 @@ tests: log: expect_ids: - 100123 +- test_title: 100123-4 + ruleid: 100123 + test_id: 4 + desc: 'Test case for rule 100123, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie2=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100123 +- test_title: 100123-5 + ruleid: 100123 + test_id: 5 + desc: 'Test case for rule 100123, #5' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie1=hello;cookie2=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100123 +- test_title: 100123-6 + ruleid: 100123 + test_id: 6 + desc: 'Test case for rule 100123, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie_foo=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100123 +- test_title: 100123-7 + ruleid: 100123 + test_id: 7 + desc: 'Test case for rule 100123, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100123 diff --git a/generated/tests/regression/tests/100124_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100124_MRTS_059_REQUEST_COOKIES.yaml index 28f5dc9..7e48533 100644 --- a/generated/tests/regression/tests/100124_MRTS_059_REQUEST_COOKIES.yaml +++ b/generated/tests/regression/tests/100124_MRTS_059_REQUEST_COOKIES.yaml @@ -15,13 +15,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack - uri: / + Cookie: foo=attack + uri: /post version: HTTP/1.1 output: log: @@ -37,13 +37,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack;cookie2=hello - uri: / + Cookie: cookie1=attack + uri: /post version: HTTP/1.1 output: log: @@ -59,13 +59,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie2=attack - uri: / + Cookie: cookie1=attack;cookie2=hello + uri: /post version: HTTP/1.1 output: log: @@ -81,13 +81,79 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie2=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100124 +- test_title: 100124-5 + ruleid: 100124 + test_id: 5 + desc: 'Test case for rule 100124, #5' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 Cookie: cookie1=hello;cookie2=attack - uri: / + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100124 +- test_title: 100124-6 + ruleid: 100124 + test_id: 6 + desc: 'Test case for rule 100124, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie_foo=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100124 +- test_title: 100124-7 + ruleid: 100124 + test_id: 7 + desc: 'Test case for rule 100124, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world + uri: /post version: HTTP/1.1 output: log: diff --git a/generated/tests/regression/tests/100125_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100125_MRTS_059_REQUEST_COOKIES.yaml index 37b91e5..54bc1fe 100644 --- a/generated/tests/regression/tests/100125_MRTS_059_REQUEST_COOKIES.yaml +++ b/generated/tests/regression/tests/100125_MRTS_059_REQUEST_COOKIES.yaml @@ -20,7 +20,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack + Cookie: foo=attack uri: /post version: HTTP/1.1 output: @@ -42,7 +42,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack;cookie2=hello + Cookie: cookie1=attack uri: /post version: HTTP/1.1 output: @@ -64,7 +64,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie2=attack + Cookie: cookie1=attack;cookie2=hello uri: /post version: HTTP/1.1 output: @@ -76,6 +76,28 @@ tests: test_id: 4 desc: 'Test case for rule 100125, #4' stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie2=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100125 +- test_title: 100125-5 + ruleid: 100125 + test_id: 5 + desc: 'Test case for rule 100125, #5' + stages: - description: Send request input: dest_addr: 127.0.0.1 @@ -93,3 +115,47 @@ tests: log: expect_ids: - 100125 +- test_title: 100125-6 + ruleid: 100125 + test_id: 6 + desc: 'Test case for rule 100125, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie_foo=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100125 +- test_title: 100125-7 + ruleid: 100125 + test_id: 7 + desc: 'Test case for rule 100125, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100125 diff --git a/generated/tests/regression/tests/100126_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100126_MRTS_059_REQUEST_COOKIES.yaml index f6326a2..2442be7 100644 --- a/generated/tests/regression/tests/100126_MRTS_059_REQUEST_COOKIES.yaml +++ b/generated/tests/regression/tests/100126_MRTS_059_REQUEST_COOKIES.yaml @@ -15,13 +15,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: POST + method: GET headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 Cookie: cookie1=attack - uri: /post + uri: / version: HTTP/1.1 output: log: @@ -37,57 +37,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: POST + method: GET headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 Cookie: cookie1=attack;cookie2=hello - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100126 -- test_title: 100126-3 - ruleid: 100126 - test_id: 3 - desc: 'Test case for rule 100126, #3' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie2=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100126 -- test_title: 100126-4 - ruleid: 100126 - test_id: 4 - desc: 'Test case for rule 100126, #4' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=hello;cookie2=attack - uri: /post + uri: / version: HTTP/1.1 output: log: diff --git a/generated/tests/regression/tests/100127_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100127_MRTS_059_REQUEST_COOKIES.yaml index 05b84c4..b1d9551 100644 --- a/generated/tests/regression/tests/100127_MRTS_059_REQUEST_COOKIES.yaml +++ b/generated/tests/regression/tests/100127_MRTS_059_REQUEST_COOKIES.yaml @@ -49,47 +49,3 @@ tests: log: expect_ids: - 100127 -- test_title: 100127-3 - ruleid: 100127 - test_id: 3 - desc: 'Test case for rule 100127, #3' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie2=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100127 -- test_title: 100127-4 - ruleid: 100127 - test_id: 4 - desc: 'Test case for rule 100127, #4' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=hello;cookie2=attack - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100127 diff --git a/generated/tests/regression/tests/100128_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100128_MRTS_059_REQUEST_COOKIES.yaml index 912e9c1..3f988ec 100644 --- a/generated/tests/regression/tests/100128_MRTS_059_REQUEST_COOKIES.yaml +++ b/generated/tests/regression/tests/100128_MRTS_059_REQUEST_COOKIES.yaml @@ -15,13 +15,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_foo=attack - uri: / + Cookie: cookie1=attack + uri: /post version: HTTP/1.1 output: log: @@ -37,13 +37,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world - uri: / + Cookie: cookie1=attack;cookie2=hello + uri: /post version: HTTP/1.1 output: log: diff --git a/generated/tests/regression/tests/100129_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100129_MRTS_059_REQUEST_COOKIES.yaml index d2fd1af..6273f7f 100644 --- a/generated/tests/regression/tests/100129_MRTS_059_REQUEST_COOKIES.yaml +++ b/generated/tests/regression/tests/100129_MRTS_059_REQUEST_COOKIES.yaml @@ -20,7 +20,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_foo=attack + Cookie: cookie1=attack uri: /post version: HTTP/1.1 output: @@ -42,7 +42,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world + Cookie: cookie1=attack;cookie2=hello uri: /post version: HTTP/1.1 output: diff --git a/generated/tests/regression/tests/100130_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100130_MRTS_059_REQUEST_COOKIES.yaml index e0c1754..7492fc0 100644 --- a/generated/tests/regression/tests/100130_MRTS_059_REQUEST_COOKIES.yaml +++ b/generated/tests/regression/tests/100130_MRTS_059_REQUEST_COOKIES.yaml @@ -15,13 +15,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: POST + method: GET headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_foo=attack - uri: /post + Cookie: cookie1=attack + uri: / version: HTTP/1.1 output: log: @@ -37,13 +37,57 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: POST + method: GET headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world - uri: /post + Cookie: cookie1=attack;cookie2=hello + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100130 +- test_title: 100130-3 + ruleid: 100130 + test_id: 3 + desc: 'Test case for rule 100130, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie2=attack + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100130 +- test_title: 100130-4 + ruleid: 100130 + test_id: 4 + desc: 'Test case for rule 100130, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie1=hello;cookie2=attack + uri: / version: HTTP/1.1 output: log: diff --git a/generated/tests/regression/tests/100131_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100131_MRTS_059_REQUEST_COOKIES.yaml index 871763a..2d67cc3 100644 --- a/generated/tests/regression/tests/100131_MRTS_059_REQUEST_COOKIES.yaml +++ b/generated/tests/regression/tests/100131_MRTS_059_REQUEST_COOKIES.yaml @@ -20,7 +20,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_foo=attack + Cookie: cookie1=attack uri: /post version: HTTP/1.1 output: @@ -42,7 +42,51 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world + Cookie: cookie1=attack;cookie2=hello + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100131 +- test_title: 100131-3 + ruleid: 100131 + test_id: 3 + desc: 'Test case for rule 100131, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie2=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100131 +- test_title: 100131-4 + ruleid: 100131 + test_id: 4 + desc: 'Test case for rule 100131, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie1=hello;cookie2=attack uri: /post version: HTTP/1.1 output: diff --git a/generated/tests/regression/tests/100132_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100132_MRTS_059_REQUEST_COOKIES.yaml new file mode 100644 index 0000000..0778b76 --- /dev/null +++ b/generated/tests/regression/tests/100132_MRTS_059_REQUEST_COOKIES.yaml @@ -0,0 +1,95 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_059_REQUEST_COOKIES.yaml + description: Desc +tests: +- test_title: 100132-1 + ruleid: 100132 + test_id: 1 + desc: 'Test case for rule 100132, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie1=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100132 +- test_title: 100132-2 + ruleid: 100132 + test_id: 2 + desc: 'Test case for rule 100132, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie1=attack;cookie2=hello + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100132 +- test_title: 100132-3 + ruleid: 100132 + test_id: 3 + desc: 'Test case for rule 100132, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie2=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100132 +- test_title: 100132-4 + ruleid: 100132 + test_id: 4 + desc: 'Test case for rule 100132, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie1=hello;cookie2=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100132 diff --git a/generated/tests/regression/tests/100132_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100132_MRTS_060_REQUEST_COOKIES_NAMES.yaml deleted file mode 100644 index 6c8ee12..0000000 --- a/generated/tests/regression/tests/100132_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ /dev/null @@ -1,161 +0,0 @@ ---- -meta: - author: MRTS generate-rules.py - enabled: true - name: MRTS_060_REQUEST_COOKIES_NAMES.yaml - description: Desc -tests: -- test_title: 100132-1 - ruleid: 100132 - test_id: 1 - desc: 'Test case for rule 100132, #1' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: GET - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack=test - uri: / - version: HTTP/1.1 - output: - log: - expect_ids: - - 100132 -- test_title: 100132-2 - ruleid: 100132 - test_id: 2 - desc: 'Test case for rule 100132, #2' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: GET - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test - uri: / - version: HTTP/1.1 - output: - log: - expect_ids: - - 100132 -- test_title: 100132-3 - ruleid: 100132 - test_id: 3 - desc: 'Test case for rule 100132, #3' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: GET - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test;hello=test - uri: / - version: HTTP/1.1 - output: - log: - expect_ids: - - 100132 -- test_title: 100132-4 - ruleid: 100132 - test_id: 4 - desc: 'Test case for rule 100132, #4' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: GET - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack2=test - uri: / - version: HTTP/1.1 - output: - log: - expect_ids: - - 100132 -- test_title: 100132-5 - ruleid: 100132 - test_id: 5 - desc: 'Test case for rule 100132, #5' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: GET - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: hello=test;attack2=test - uri: / - version: HTTP/1.1 - output: - log: - expect_ids: - - 100132 -- test_title: 100132-6 - ruleid: 100132 - test_id: 6 - desc: 'Test case for rule 100132, #6' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: GET - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack_foo=test - uri: / - version: HTTP/1.1 - output: - log: - expect_ids: - - 100132 -- test_title: 100132-7 - ruleid: 100132 - test_id: 7 - desc: 'Test case for rule 100132, #7' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: GET - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: hello=test;attack_foo=text;world=test - uri: / - version: HTTP/1.1 - output: - log: - expect_ids: - - 100132 diff --git a/generated/tests/regression/tests/100133_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100133_MRTS_059_REQUEST_COOKIES.yaml new file mode 100644 index 0000000..99ae918 --- /dev/null +++ b/generated/tests/regression/tests/100133_MRTS_059_REQUEST_COOKIES.yaml @@ -0,0 +1,95 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_059_REQUEST_COOKIES.yaml + description: Desc +tests: +- test_title: 100133-1 + ruleid: 100133 + test_id: 1 + desc: 'Test case for rule 100133, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie1=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100133 +- test_title: 100133-2 + ruleid: 100133 + test_id: 2 + desc: 'Test case for rule 100133, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie1=attack;cookie2=hello + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100133 +- test_title: 100133-3 + ruleid: 100133 + test_id: 3 + desc: 'Test case for rule 100133, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie2=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100133 +- test_title: 100133-4 + ruleid: 100133 + test_id: 4 + desc: 'Test case for rule 100133, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: cookie1=hello;cookie2=attack + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100133 diff --git a/generated/tests/regression/tests/100133_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100133_MRTS_060_REQUEST_COOKIES_NAMES.yaml deleted file mode 100644 index c37d033..0000000 --- a/generated/tests/regression/tests/100133_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ /dev/null @@ -1,161 +0,0 @@ ---- -meta: - author: MRTS generate-rules.py - enabled: true - name: MRTS_060_REQUEST_COOKIES_NAMES.yaml - description: Desc -tests: -- test_title: 100133-1 - ruleid: 100133 - test_id: 1 - desc: 'Test case for rule 100133, #1' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100133 -- test_title: 100133-2 - ruleid: 100133 - test_id: 2 - desc: 'Test case for rule 100133, #2' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100133 -- test_title: 100133-3 - ruleid: 100133 - test_id: 3 - desc: 'Test case for rule 100133, #3' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test;hello=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100133 -- test_title: 100133-4 - ruleid: 100133 - test_id: 4 - desc: 'Test case for rule 100133, #4' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack2=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100133 -- test_title: 100133-5 - ruleid: 100133 - test_id: 5 - desc: 'Test case for rule 100133, #5' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: hello=test;attack2=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100133 -- test_title: 100133-6 - ruleid: 100133 - test_id: 6 - desc: 'Test case for rule 100133, #6' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack_foo=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100133 -- test_title: 100133-7 - ruleid: 100133 - test_id: 7 - desc: 'Test case for rule 100133, #7' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: hello=test;attack_foo=text;world=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100133 diff --git a/generated/tests/regression/tests/100120_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100134_MRTS_059_REQUEST_COOKIES.yaml similarity index 76% rename from generated/tests/regression/tests/100120_MRTS_059_REQUEST_COOKIES.yaml rename to generated/tests/regression/tests/100134_MRTS_059_REQUEST_COOKIES.yaml index dfcea5f..79bc1ea 100644 --- a/generated/tests/regression/tests/100120_MRTS_059_REQUEST_COOKIES.yaml +++ b/generated/tests/regression/tests/100134_MRTS_059_REQUEST_COOKIES.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_059_REQUEST_COOKIES.yaml description: Desc tests: -- test_title: 100120-1 - ruleid: 100120 +- test_title: 100134-1 + ruleid: 100134 test_id: 1 - desc: 'Test case for rule 100120, #1' + desc: 'Test case for rule 100134, #1' stages: - description: Send request input: @@ -20,17 +20,17 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack + Cookie: cookie_foo=attack uri: / version: HTTP/1.1 output: log: expect_ids: - - 100120 -- test_title: 100120-2 - ruleid: 100120 + - 100134 +- test_title: 100134-2 + ruleid: 100134 test_id: 2 - desc: 'Test case for rule 100120, #2' + desc: 'Test case for rule 100134, #2' stages: - description: Send request input: @@ -42,10 +42,10 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack;cookie2=hello + Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world uri: / version: HTTP/1.1 output: log: expect_ids: - - 100120 + - 100134 diff --git a/generated/tests/regression/tests/100134_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100134_MRTS_060_REQUEST_COOKIES_NAMES.yaml deleted file mode 100644 index d8c610f..0000000 --- a/generated/tests/regression/tests/100134_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ /dev/null @@ -1,161 +0,0 @@ ---- -meta: - author: MRTS generate-rules.py - enabled: true - name: MRTS_060_REQUEST_COOKIES_NAMES.yaml - description: Desc -tests: -- test_title: 100134-1 - ruleid: 100134 - test_id: 1 - desc: 'Test case for rule 100134, #1' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100134 -- test_title: 100134-2 - ruleid: 100134 - test_id: 2 - desc: 'Test case for rule 100134, #2' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100134 -- test_title: 100134-3 - ruleid: 100134 - test_id: 3 - desc: 'Test case for rule 100134, #3' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test;hello=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100134 -- test_title: 100134-4 - ruleid: 100134 - test_id: 4 - desc: 'Test case for rule 100134, #4' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack2=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100134 -- test_title: 100134-5 - ruleid: 100134 - test_id: 5 - desc: 'Test case for rule 100134, #5' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: hello=test;attack2=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100134 -- test_title: 100134-6 - ruleid: 100134 - test_id: 6 - desc: 'Test case for rule 100134, #6' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack_foo=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100134 -- test_title: 100134-7 - ruleid: 100134 - test_id: 7 - desc: 'Test case for rule 100134, #7' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: hello=test;attack_foo=text;world=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100134 diff --git a/generated/tests/regression/tests/100121_MRTS_059_REQUEST_COOKIES.yaml b/generated/tests/regression/tests/100135_MRTS_059_REQUEST_COOKIES.yaml similarity index 76% rename from generated/tests/regression/tests/100121_MRTS_059_REQUEST_COOKIES.yaml rename to generated/tests/regression/tests/100135_MRTS_059_REQUEST_COOKIES.yaml index 5c7dcd7..a9ccd6e 100644 --- a/generated/tests/regression/tests/100121_MRTS_059_REQUEST_COOKIES.yaml +++ b/generated/tests/regression/tests/100135_MRTS_059_REQUEST_COOKIES.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_059_REQUEST_COOKIES.yaml description: Desc tests: -- test_title: 100121-1 - ruleid: 100121 +- test_title: 100135-1 + ruleid: 100135 test_id: 1 - desc: 'Test case for rule 100121, #1' + desc: 'Test case for rule 100135, #1' stages: - description: Send request input: @@ -20,17 +20,17 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack + Cookie: cookie_foo=attack uri: /post version: HTTP/1.1 output: log: expect_ids: - - 100121 -- test_title: 100121-2 - ruleid: 100121 + - 100135 +- test_title: 100135-2 + ruleid: 100135 test_id: 2 - desc: 'Test case for rule 100121, #2' + desc: 'Test case for rule 100135, #2' stages: - description: Send request input: @@ -42,10 +42,10 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: cookie1=attack;cookie2=hello + Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world uri: /post version: HTTP/1.1 output: log: expect_ids: - - 100121 + - 100135 diff --git a/generated/tests/regression/tests/100135_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100135_MRTS_060_REQUEST_COOKIES_NAMES.yaml deleted file mode 100644 index 30c810c..0000000 --- a/generated/tests/regression/tests/100135_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ /dev/null @@ -1,161 +0,0 @@ ---- -meta: - author: MRTS generate-rules.py - enabled: true - name: MRTS_060_REQUEST_COOKIES_NAMES.yaml - description: Desc -tests: -- test_title: 100135-1 - ruleid: 100135 - test_id: 1 - desc: 'Test case for rule 100135, #1' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100135 -- test_title: 100135-2 - ruleid: 100135 - test_id: 2 - desc: 'Test case for rule 100135, #2' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100135 -- test_title: 100135-3 - ruleid: 100135 - test_id: 3 - desc: 'Test case for rule 100135, #3' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test;hello=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100135 -- test_title: 100135-4 - ruleid: 100135 - test_id: 4 - desc: 'Test case for rule 100135, #4' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack2=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100135 -- test_title: 100135-5 - ruleid: 100135 - test_id: 5 - desc: 'Test case for rule 100135, #5' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: hello=test;attack2=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100135 -- test_title: 100135-6 - ruleid: 100135 - test_id: 6 - desc: 'Test case for rule 100135, #6' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack_foo=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100135 -- test_title: 100135-7 - ruleid: 100135 - test_id: 7 - desc: 'Test case for rule 100135, #7' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: hello=test;attack_foo=text;world=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100135 diff --git a/generated/tests/regression/tests/100136_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100136_MRTS_059_REQUEST_COOKIES.yaml similarity index 83% rename from generated/tests/regression/tests/100136_MRTS_060_REQUEST_COOKIES_NAMES.yaml rename to generated/tests/regression/tests/100136_MRTS_059_REQUEST_COOKIES.yaml index 2768f4e..a9f1bc2 100644 --- a/generated/tests/regression/tests/100136_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ b/generated/tests/regression/tests/100136_MRTS_059_REQUEST_COOKIES.yaml @@ -2,7 +2,7 @@ meta: author: MRTS generate-rules.py enabled: true - name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + name: MRTS_059_REQUEST_COOKIES.yaml description: Desc tests: - test_title: 100136-1 @@ -15,13 +15,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test - uri: / + Cookie: cookie_foo=attack + uri: /post version: HTTP/1.1 output: log: @@ -37,13 +37,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test;hello=test - uri: / + Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world + uri: /post version: HTTP/1.1 output: log: diff --git a/generated/tests/regression/tests/100137_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100137_MRTS_059_REQUEST_COOKIES.yaml similarity index 88% rename from generated/tests/regression/tests/100137_MRTS_060_REQUEST_COOKIES_NAMES.yaml rename to generated/tests/regression/tests/100137_MRTS_059_REQUEST_COOKIES.yaml index f6df3ea..40d4361 100644 --- a/generated/tests/regression/tests/100137_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ b/generated/tests/regression/tests/100137_MRTS_059_REQUEST_COOKIES.yaml @@ -2,7 +2,7 @@ meta: author: MRTS generate-rules.py enabled: true - name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + name: MRTS_059_REQUEST_COOKIES.yaml description: Desc tests: - test_title: 100137-1 @@ -20,7 +20,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test + Cookie: cookie_foo=attack uri: /post version: HTTP/1.1 output: @@ -42,7 +42,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test;hello=test + Cookie: cookie_bar=hello;cookie_foo=attack;cookie_foobar=world uri: /post version: HTTP/1.1 output: diff --git a/generated/tests/regression/tests/100138_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100138_MRTS_060_REQUEST_COOKIES_NAMES.yaml index 0597875..2a9da22 100644 --- a/generated/tests/regression/tests/100138_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ b/generated/tests/regression/tests/100138_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -15,13 +15,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: POST + method: GET headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test - uri: /post + Cookie: attack=test + uri: / version: HTTP/1.1 output: log: @@ -37,13 +37,123 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: POST + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100138 +- test_title: 100138-3 + ruleid: 100138 + test_id: 3 + desc: 'Test case for rule 100138, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 Cookie: attack1=test;hello=test - uri: /post + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100138 +- test_title: 100138-4 + ruleid: 100138 + test_id: 4 + desc: 'Test case for rule 100138, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100138 +- test_title: 100138-5 + ruleid: 100138 + test_id: 5 + desc: 'Test case for rule 100138, #5' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100138 +- test_title: 100138-6 + ruleid: 100138 + test_id: 6 + desc: 'Test case for rule 100138, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100138 +- test_title: 100138-7 + ruleid: 100138 + test_id: 7 + desc: 'Test case for rule 100138, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: / version: HTTP/1.1 output: log: diff --git a/generated/tests/regression/tests/100139_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100139_MRTS_060_REQUEST_COOKIES_NAMES.yaml index 82d8e4e..bf33ff7 100644 --- a/generated/tests/regression/tests/100139_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ b/generated/tests/regression/tests/100139_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -20,7 +20,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test + Cookie: attack=test uri: /post version: HTTP/1.1 output: @@ -32,6 +32,28 @@ tests: test_id: 2 desc: 'Test case for rule 100139, #2' stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100139 +- test_title: 100139-3 + ruleid: 100139 + test_id: 3 + desc: 'Test case for rule 100139, #3' + stages: - description: Send request input: dest_addr: 127.0.0.1 @@ -49,3 +71,91 @@ tests: log: expect_ids: - 100139 +- test_title: 100139-4 + ruleid: 100139 + test_id: 4 + desc: 'Test case for rule 100139, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100139 +- test_title: 100139-5 + ruleid: 100139 + test_id: 5 + desc: 'Test case for rule 100139, #5' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100139 +- test_title: 100139-6 + ruleid: 100139 + test_id: 6 + desc: 'Test case for rule 100139, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100139 +- test_title: 100139-7 + ruleid: 100139 + test_id: 7 + desc: 'Test case for rule 100139, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100139 diff --git a/generated/tests/regression/tests/100140_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100140_MRTS_060_REQUEST_COOKIES_NAMES.yaml index 075029f..5b1fabf 100644 --- a/generated/tests/regression/tests/100140_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ b/generated/tests/regression/tests/100140_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -15,13 +15,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test - uri: / + Cookie: attack=test + uri: /post version: HTTP/1.1 output: log: @@ -37,13 +37,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test;hello=test - uri: / + Cookie: attack1=test + uri: /post version: HTTP/1.1 output: log: @@ -59,13 +59,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack2=test - uri: / + Cookie: attack1=test;hello=test + uri: /post version: HTTP/1.1 output: log: @@ -81,13 +81,79 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100140 +- test_title: 100140-5 + ruleid: 100140 + test_id: 5 + desc: 'Test case for rule 100140, #5' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 Cookie: hello=test;attack2=test - uri: / + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100140 +- test_title: 100140-6 + ruleid: 100140 + test_id: 6 + desc: 'Test case for rule 100140, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100140 +- test_title: 100140-7 + ruleid: 100140 + test_id: 7 + desc: 'Test case for rule 100140, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post version: HTTP/1.1 output: log: diff --git a/generated/tests/regression/tests/100141_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100141_MRTS_060_REQUEST_COOKIES_NAMES.yaml index 9ba3944..b03a9e7 100644 --- a/generated/tests/regression/tests/100141_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ b/generated/tests/regression/tests/100141_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -20,7 +20,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test + Cookie: attack=test uri: /post version: HTTP/1.1 output: @@ -42,7 +42,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack1=test;hello=test + Cookie: attack1=test uri: /post version: HTTP/1.1 output: @@ -64,7 +64,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack2=test + Cookie: attack1=test;hello=test uri: /post version: HTTP/1.1 output: @@ -76,6 +76,28 @@ tests: test_id: 4 desc: 'Test case for rule 100141, #4' stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100141 +- test_title: 100141-5 + ruleid: 100141 + test_id: 5 + desc: 'Test case for rule 100141, #5' + stages: - description: Send request input: dest_addr: 127.0.0.1 @@ -93,3 +115,47 @@ tests: log: expect_ids: - 100141 +- test_title: 100141-6 + ruleid: 100141 + test_id: 6 + desc: 'Test case for rule 100141, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100141 +- test_title: 100141-7 + ruleid: 100141 + test_id: 7 + desc: 'Test case for rule 100141, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100141 diff --git a/generated/tests/regression/tests/100142_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100142_MRTS_060_REQUEST_COOKIES_NAMES.yaml index afefe7b..9a59344 100644 --- a/generated/tests/regression/tests/100142_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ b/generated/tests/regression/tests/100142_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -15,13 +15,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: POST + method: GET headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 Cookie: attack1=test - uri: /post + uri: / version: HTTP/1.1 output: log: @@ -37,57 +37,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: POST + method: GET headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 Cookie: attack1=test;hello=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100142 -- test_title: 100142-3 - ruleid: 100142 - test_id: 3 - desc: 'Test case for rule 100142, #3' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack2=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100142 -- test_title: 100142-4 - ruleid: 100142 - test_id: 4 - desc: 'Test case for rule 100142, #4' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: hello=test;attack2=test - uri: /post + uri: / version: HTTP/1.1 output: log: diff --git a/generated/tests/regression/tests/100143_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100143_MRTS_060_REQUEST_COOKIES_NAMES.yaml index 063b9ba..023f525 100644 --- a/generated/tests/regression/tests/100143_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ b/generated/tests/regression/tests/100143_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -49,47 +49,3 @@ tests: log: expect_ids: - 100143 -- test_title: 100143-3 - ruleid: 100143 - test_id: 3 - desc: 'Test case for rule 100143, #3' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack2=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100143 -- test_title: 100143-4 - ruleid: 100143 - test_id: 4 - desc: 'Test case for rule 100143, #4' - stages: - - description: Send request - input: - dest_addr: 127.0.0.1 - port: 80 - protocol: http - method: POST - headers: - User-Agent: OWASP MRTS test agent - Host: localhost - Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: hello=test;attack2=test - uri: /post - version: HTTP/1.1 - output: - log: - expect_ids: - - 100143 diff --git a/generated/tests/regression/tests/100144_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100144_MRTS_060_REQUEST_COOKIES_NAMES.yaml index 9e3f9d7..59edcb6 100644 --- a/generated/tests/regression/tests/100144_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ b/generated/tests/regression/tests/100144_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -15,13 +15,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack_foo=test - uri: / + Cookie: attack1=test + uri: /post version: HTTP/1.1 output: log: @@ -37,13 +37,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: hello=test;attack_foo=text;world=test - uri: / + Cookie: attack1=test;hello=test + uri: /post version: HTTP/1.1 output: log: diff --git a/generated/tests/regression/tests/100145_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100145_MRTS_060_REQUEST_COOKIES_NAMES.yaml index 65a9a86..1679f95 100644 --- a/generated/tests/regression/tests/100145_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ b/generated/tests/regression/tests/100145_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -20,7 +20,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack_foo=test + Cookie: attack1=test uri: /post version: HTTP/1.1 output: @@ -42,7 +42,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: hello=test;attack_foo=text;world=test + Cookie: attack1=test;hello=test uri: /post version: HTTP/1.1 output: diff --git a/generated/tests/regression/tests/100146_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100146_MRTS_060_REQUEST_COOKIES_NAMES.yaml index a03e1fe..17e8152 100644 --- a/generated/tests/regression/tests/100146_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ b/generated/tests/regression/tests/100146_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -15,13 +15,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: POST + method: GET headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack_foo=test - uri: /post + Cookie: attack1=test + uri: / version: HTTP/1.1 output: log: @@ -37,13 +37,57 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: POST + method: GET headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: hello=test;attack_foo=text;world=test - uri: /post + Cookie: attack1=test;hello=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100146 +- test_title: 100146-3 + ruleid: 100146 + test_id: 3 + desc: 'Test case for rule 100146, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100146 +- test_title: 100146-4 + ruleid: 100146 + test_id: 4 + desc: 'Test case for rule 100146, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: / version: HTTP/1.1 output: log: diff --git a/generated/tests/regression/tests/100147_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100147_MRTS_060_REQUEST_COOKIES_NAMES.yaml index b9508d7..7eb7b4d 100644 --- a/generated/tests/regression/tests/100147_MRTS_060_REQUEST_COOKIES_NAMES.yaml +++ b/generated/tests/regression/tests/100147_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -20,7 +20,7 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: attack_foo=test + Cookie: attack1=test uri: /post version: HTTP/1.1 output: @@ -42,7 +42,51 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - Cookie: hello=test;attack_foo=text;world=test + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100147 +- test_title: 100147-3 + ruleid: 100147 + test_id: 3 + desc: 'Test case for rule 100147, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100147 +- test_title: 100147-4 + ruleid: 100147 + test_id: 4 + desc: 'Test case for rule 100147, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test uri: /post version: HTTP/1.1 output: diff --git a/generated/tests/regression/tests/100148_MRTS_061_REQUEST_FILENAME.yaml b/generated/tests/regression/tests/100148_MRTS_060_REQUEST_COOKIES_NAMES.yaml similarity index 85% rename from generated/tests/regression/tests/100148_MRTS_061_REQUEST_FILENAME.yaml rename to generated/tests/regression/tests/100148_MRTS_060_REQUEST_COOKIES_NAMES.yaml index 7008f38..e3a8b3d 100644 --- a/generated/tests/regression/tests/100148_MRTS_061_REQUEST_FILENAME.yaml +++ b/generated/tests/regression/tests/100148_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -2,7 +2,7 @@ meta: author: MRTS generate-rules.py enabled: true - name: MRTS_061_REQUEST_FILENAME.yaml + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml description: Desc tests: - test_title: 100148-1 @@ -15,12 +15,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - uri: /in/uri/attack?arg=value + Cookie: attack1=test + uri: /post version: HTTP/1.1 output: log: @@ -36,12 +37,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - uri: /attack/in/uri?arg=value + Cookie: attack1=test;hello=test + uri: /post version: HTTP/1.1 output: log: @@ -57,12 +59,13 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - uri: /in/uri/is%3Fattack?arg=value + Cookie: attack2=test + uri: /post version: HTTP/1.1 output: log: @@ -78,14 +81,15 @@ tests: dest_addr: 127.0.0.1 port: 80 protocol: http - method: GET + method: POST headers: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - uri: /in/uri/is?attack + Cookie: hello=test;attack2=test + uri: /post version: HTTP/1.1 output: log: - no_expect_ids: + expect_ids: - 100148 diff --git a/generated/tests/regression/tests/100149_MRTS_061_REQUEST_FILENAME.yaml b/generated/tests/regression/tests/100149_MRTS_060_REQUEST_COOKIES_NAMES.yaml similarity index 88% rename from generated/tests/regression/tests/100149_MRTS_061_REQUEST_FILENAME.yaml rename to generated/tests/regression/tests/100149_MRTS_060_REQUEST_COOKIES_NAMES.yaml index d7631c6..aee44de 100644 --- a/generated/tests/regression/tests/100149_MRTS_061_REQUEST_FILENAME.yaml +++ b/generated/tests/regression/tests/100149_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -2,7 +2,7 @@ meta: author: MRTS generate-rules.py enabled: true - name: MRTS_061_REQUEST_FILENAME.yaml + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml description: Desc tests: - test_title: 100149-1 @@ -20,7 +20,8 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - uri: /in/uri/attack?arg=value + Cookie: attack1=test + uri: /post version: HTTP/1.1 output: log: @@ -41,7 +42,8 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - uri: /attack/in/uri?arg=value + Cookie: attack1=test;hello=test + uri: /post version: HTTP/1.1 output: log: @@ -62,7 +64,8 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - uri: /in/uri/is%3Fattack?arg=value + Cookie: attack2=test + uri: /post version: HTTP/1.1 output: log: @@ -83,9 +86,10 @@ tests: User-Agent: OWASP MRTS test agent Host: localhost Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 - uri: /in/uri/is?attack + Cookie: hello=test;attack2=test + uri: /post version: HTTP/1.1 output: log: - no_expect_ids: + expect_ids: - 100149 diff --git a/generated/tests/regression/tests/100150_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100150_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..8203b3c --- /dev/null +++ b/generated/tests/regression/tests/100150_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100150-1 + ruleid: 100150 + test_id: 1 + desc: 'Test case for rule 100150, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100150 +- test_title: 100150-2 + ruleid: 100150 + test_id: 2 + desc: 'Test case for rule 100150, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100150 diff --git a/generated/tests/regression/tests/100151_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100151_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..7df094f --- /dev/null +++ b/generated/tests/regression/tests/100151_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100151-1 + ruleid: 100151 + test_id: 1 + desc: 'Test case for rule 100151, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100151 +- test_title: 100151-2 + ruleid: 100151 + test_id: 2 + desc: 'Test case for rule 100151, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100151 diff --git a/generated/tests/regression/tests/100152_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100152_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..6825b37 --- /dev/null +++ b/generated/tests/regression/tests/100152_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100152-1 + ruleid: 100152 + test_id: 1 + desc: 'Test case for rule 100152, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100152 +- test_title: 100152-2 + ruleid: 100152 + test_id: 2 + desc: 'Test case for rule 100152, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100152 diff --git a/generated/tests/regression/tests/100153_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100153_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..07b32c4 --- /dev/null +++ b/generated/tests/regression/tests/100153_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100153-1 + ruleid: 100153 + test_id: 1 + desc: 'Test case for rule 100153, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100153 +- test_title: 100153-2 + ruleid: 100153 + test_id: 2 + desc: 'Test case for rule 100153, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100153 diff --git a/generated/tests/regression/tests/100154_MRTS_061_REQUEST_FILENAME.yaml b/generated/tests/regression/tests/100154_MRTS_061_REQUEST_FILENAME.yaml new file mode 100644 index 0000000..143730a --- /dev/null +++ b/generated/tests/regression/tests/100154_MRTS_061_REQUEST_FILENAME.yaml @@ -0,0 +1,91 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_061_REQUEST_FILENAME.yaml + description: Desc +tests: +- test_title: 100154-1 + ruleid: 100154 + test_id: 1 + desc: 'Test case for rule 100154, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /in/uri/attack?arg=value + version: HTTP/1.1 + output: + log: + expect_ids: + - 100154 +- test_title: 100154-2 + ruleid: 100154 + test_id: 2 + desc: 'Test case for rule 100154, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /attack/in/uri?arg=value + version: HTTP/1.1 + output: + log: + expect_ids: + - 100154 +- test_title: 100154-3 + ruleid: 100154 + test_id: 3 + desc: 'Test case for rule 100154, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /in/uri/is%3Fattack?arg=value + version: HTTP/1.1 + output: + log: + expect_ids: + - 100154 +- test_title: 100154-4 + ruleid: 100154 + test_id: 4 + desc: 'Test case for rule 100154, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /in/uri/is?attack + version: HTTP/1.1 + output: + log: + no_expect_ids: + - 100154 diff --git a/generated/tests/regression/tests/100150_MRTS_061_REQUEST_FILENAME.yaml b/generated/tests/regression/tests/100155_MRTS_061_REQUEST_FILENAME.yaml similarity index 83% rename from generated/tests/regression/tests/100150_MRTS_061_REQUEST_FILENAME.yaml rename to generated/tests/regression/tests/100155_MRTS_061_REQUEST_FILENAME.yaml index 95c5835..5c9ae49 100644 --- a/generated/tests/regression/tests/100150_MRTS_061_REQUEST_FILENAME.yaml +++ b/generated/tests/regression/tests/100155_MRTS_061_REQUEST_FILENAME.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_061_REQUEST_FILENAME.yaml description: Desc tests: -- test_title: 100150-1 - ruleid: 100150 +- test_title: 100155-1 + ruleid: 100155 test_id: 1 - desc: 'Test case for rule 100150, #1' + desc: 'Test case for rule 100155, #1' stages: - description: Send request input: @@ -25,11 +25,11 @@ tests: output: log: expect_ids: - - 100150 -- test_title: 100150-2 - ruleid: 100150 + - 100155 +- test_title: 100155-2 + ruleid: 100155 test_id: 2 - desc: 'Test case for rule 100150, #2' + desc: 'Test case for rule 100155, #2' stages: - description: Send request input: @@ -46,11 +46,11 @@ tests: output: log: expect_ids: - - 100150 -- test_title: 100150-3 - ruleid: 100150 + - 100155 +- test_title: 100155-3 + ruleid: 100155 test_id: 3 - desc: 'Test case for rule 100150, #3' + desc: 'Test case for rule 100155, #3' stages: - description: Send request input: @@ -67,11 +67,11 @@ tests: output: log: expect_ids: - - 100150 -- test_title: 100150-4 - ruleid: 100150 + - 100155 +- test_title: 100155-4 + ruleid: 100155 test_id: 4 - desc: 'Test case for rule 100150, #4' + desc: 'Test case for rule 100155, #4' stages: - description: Send request input: @@ -88,4 +88,4 @@ tests: output: log: no_expect_ids: - - 100150 + - 100155 diff --git a/generated/tests/regression/tests/100151_MRTS_061_REQUEST_FILENAME.yaml b/generated/tests/regression/tests/100156_MRTS_061_REQUEST_FILENAME.yaml similarity index 83% rename from generated/tests/regression/tests/100151_MRTS_061_REQUEST_FILENAME.yaml rename to generated/tests/regression/tests/100156_MRTS_061_REQUEST_FILENAME.yaml index cd4e84c..1b292be 100644 --- a/generated/tests/regression/tests/100151_MRTS_061_REQUEST_FILENAME.yaml +++ b/generated/tests/regression/tests/100156_MRTS_061_REQUEST_FILENAME.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_061_REQUEST_FILENAME.yaml description: Desc tests: -- test_title: 100151-1 - ruleid: 100151 +- test_title: 100156-1 + ruleid: 100156 test_id: 1 - desc: 'Test case for rule 100151, #1' + desc: 'Test case for rule 100156, #1' stages: - description: Send request input: @@ -25,11 +25,11 @@ tests: output: log: expect_ids: - - 100151 -- test_title: 100151-2 - ruleid: 100151 + - 100156 +- test_title: 100156-2 + ruleid: 100156 test_id: 2 - desc: 'Test case for rule 100151, #2' + desc: 'Test case for rule 100156, #2' stages: - description: Send request input: @@ -46,11 +46,11 @@ tests: output: log: expect_ids: - - 100151 -- test_title: 100151-3 - ruleid: 100151 + - 100156 +- test_title: 100156-3 + ruleid: 100156 test_id: 3 - desc: 'Test case for rule 100151, #3' + desc: 'Test case for rule 100156, #3' stages: - description: Send request input: @@ -67,11 +67,11 @@ tests: output: log: expect_ids: - - 100151 -- test_title: 100151-4 - ruleid: 100151 + - 100156 +- test_title: 100156-4 + ruleid: 100156 test_id: 4 - desc: 'Test case for rule 100151, #4' + desc: 'Test case for rule 100156, #4' stages: - description: Send request input: @@ -88,4 +88,4 @@ tests: output: log: no_expect_ids: - - 100151 + - 100156 diff --git a/generated/tests/regression/tests/100157_MRTS_061_REQUEST_FILENAME.yaml b/generated/tests/regression/tests/100157_MRTS_061_REQUEST_FILENAME.yaml new file mode 100644 index 0000000..293f124 --- /dev/null +++ b/generated/tests/regression/tests/100157_MRTS_061_REQUEST_FILENAME.yaml @@ -0,0 +1,91 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_061_REQUEST_FILENAME.yaml + description: Desc +tests: +- test_title: 100157-1 + ruleid: 100157 + test_id: 1 + desc: 'Test case for rule 100157, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /in/uri/attack?arg=value + version: HTTP/1.1 + output: + log: + expect_ids: + - 100157 +- test_title: 100157-2 + ruleid: 100157 + test_id: 2 + desc: 'Test case for rule 100157, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /attack/in/uri?arg=value + version: HTTP/1.1 + output: + log: + expect_ids: + - 100157 +- test_title: 100157-3 + ruleid: 100157 + test_id: 3 + desc: 'Test case for rule 100157, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /in/uri/is%3Fattack?arg=value + version: HTTP/1.1 + output: + log: + expect_ids: + - 100157 +- test_title: 100157-4 + ruleid: 100157 + test_id: 4 + desc: 'Test case for rule 100157, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /in/uri/is?attack + version: HTTP/1.1 + output: + log: + no_expect_ids: + - 100157 diff --git a/generated/tests/regression/tests/100153_MRTS_069_RESPONSE_BODY.yaml b/generated/tests/regression/tests/100158_MRTS_069_RESPONSE_BODY.yaml similarity index 86% rename from generated/tests/regression/tests/100153_MRTS_069_RESPONSE_BODY.yaml rename to generated/tests/regression/tests/100158_MRTS_069_RESPONSE_BODY.yaml index a17a700..5c9dd80 100644 --- a/generated/tests/regression/tests/100153_MRTS_069_RESPONSE_BODY.yaml +++ b/generated/tests/regression/tests/100158_MRTS_069_RESPONSE_BODY.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_069_RESPONSE_BODY.yaml description: Desc tests: -- test_title: 100153-1 - ruleid: 100153 +- test_title: 100158-1 + ruleid: 100158 test_id: 1 - desc: 'Test case for rule 100153, #1' + desc: 'Test case for rule 100158, #1' stages: - description: Send request input: @@ -27,11 +27,11 @@ tests: output: log: expect_ids: - - 100153 -- test_title: 100153-2 - ruleid: 100153 + - 100158 +- test_title: 100158-2 + ruleid: 100158 test_id: 2 - desc: 'Test case for rule 100153, #2' + desc: 'Test case for rule 100158, #2' stages: - description: Send request input: @@ -50,11 +50,11 @@ tests: output: log: expect_ids: - - 100153 -- test_title: 100153-3 - ruleid: 100153 + - 100158 +- test_title: 100158-3 + ruleid: 100158 test_id: 3 - desc: 'Test case for rule 100153, #3' + desc: 'Test case for rule 100158, #3' stages: - description: Send request input: @@ -73,11 +73,11 @@ tests: output: log: expect_ids: - - 100153 -- test_title: 100153-4 - ruleid: 100153 + - 100158 +- test_title: 100158-4 + ruleid: 100158 test_id: 4 - desc: 'Test case for rule 100153, #4' + desc: 'Test case for rule 100158, #4' stages: - description: Send request input: @@ -97,4 +97,4 @@ tests: output: log: expect_ids: - - 100153 + - 100158 diff --git a/generated/tests/regression/tests/100152_MRTS_069_RESPONSE_BODY.yaml b/generated/tests/regression/tests/100159_MRTS_069_RESPONSE_BODY.yaml similarity index 86% rename from generated/tests/regression/tests/100152_MRTS_069_RESPONSE_BODY.yaml rename to generated/tests/regression/tests/100159_MRTS_069_RESPONSE_BODY.yaml index 6b9c50d..d063e59 100644 --- a/generated/tests/regression/tests/100152_MRTS_069_RESPONSE_BODY.yaml +++ b/generated/tests/regression/tests/100159_MRTS_069_RESPONSE_BODY.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_069_RESPONSE_BODY.yaml description: Desc tests: -- test_title: 100152-1 - ruleid: 100152 +- test_title: 100159-1 + ruleid: 100159 test_id: 1 - desc: 'Test case for rule 100152, #1' + desc: 'Test case for rule 100159, #1' stages: - description: Send request input: @@ -27,11 +27,11 @@ tests: output: log: expect_ids: - - 100152 -- test_title: 100152-2 - ruleid: 100152 + - 100159 +- test_title: 100159-2 + ruleid: 100159 test_id: 2 - desc: 'Test case for rule 100152, #2' + desc: 'Test case for rule 100159, #2' stages: - description: Send request input: @@ -50,11 +50,11 @@ tests: output: log: expect_ids: - - 100152 -- test_title: 100152-3 - ruleid: 100152 + - 100159 +- test_title: 100159-3 + ruleid: 100159 test_id: 3 - desc: 'Test case for rule 100152, #3' + desc: 'Test case for rule 100159, #3' stages: - description: Send request input: @@ -73,11 +73,11 @@ tests: output: log: expect_ids: - - 100152 -- test_title: 100152-4 - ruleid: 100152 + - 100159 +- test_title: 100159-4 + ruleid: 100159 test_id: 4 - desc: 'Test case for rule 100152, #4' + desc: 'Test case for rule 100159, #4' stages: - description: Send request input: @@ -97,4 +97,4 @@ tests: output: log: expect_ids: - - 100152 + - 100159 diff --git a/generated/tests/regression/tests/100154_MRTS_110_XML.yaml b/generated/tests/regression/tests/100160_MRTS_110_XML.yaml similarity index 86% rename from generated/tests/regression/tests/100154_MRTS_110_XML.yaml rename to generated/tests/regression/tests/100160_MRTS_110_XML.yaml index a390d0c..dcc1fd7 100644 --- a/generated/tests/regression/tests/100154_MRTS_110_XML.yaml +++ b/generated/tests/regression/tests/100160_MRTS_110_XML.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_110_XML.yaml description: Desc tests: -- test_title: 100154-1 - ruleid: 100154 +- test_title: 100160-1 + ruleid: 100160 test_id: 1 - desc: 'Test case for rule 100154, #1' + desc: 'Test case for rule 100160, #1' stages: - description: Send request input: @@ -27,4 +27,4 @@ tests: output: log: expect_ids: - - 100154 + - 100160 diff --git a/generated/tests/regression/tests/100156_MRTS_110_XML.yaml b/generated/tests/regression/tests/100161_MRTS_110_XML.yaml similarity index 86% rename from generated/tests/regression/tests/100156_MRTS_110_XML.yaml rename to generated/tests/regression/tests/100161_MRTS_110_XML.yaml index 261117d..7f75394 100644 --- a/generated/tests/regression/tests/100156_MRTS_110_XML.yaml +++ b/generated/tests/regression/tests/100161_MRTS_110_XML.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_110_XML.yaml description: Desc tests: -- test_title: 100156-1 - ruleid: 100156 +- test_title: 100161-1 + ruleid: 100161 test_id: 1 - desc: 'Test case for rule 100156, #1' + desc: 'Test case for rule 100161, #1' stages: - description: Send request input: @@ -27,4 +27,4 @@ tests: output: log: expect_ids: - - 100156 + - 100161 diff --git a/generated/tests/regression/tests/100155_MRTS_110_XML.yaml b/generated/tests/regression/tests/100162_MRTS_110_XML.yaml similarity index 86% rename from generated/tests/regression/tests/100155_MRTS_110_XML.yaml rename to generated/tests/regression/tests/100162_MRTS_110_XML.yaml index 1707477..544bb01 100644 --- a/generated/tests/regression/tests/100155_MRTS_110_XML.yaml +++ b/generated/tests/regression/tests/100162_MRTS_110_XML.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_110_XML.yaml description: Desc tests: -- test_title: 100155-1 - ruleid: 100155 +- test_title: 100162-1 + ruleid: 100162 test_id: 1 - desc: 'Test case for rule 100155, #1' + desc: 'Test case for rule 100162, #1' stages: - description: Send request input: @@ -27,4 +27,4 @@ tests: output: log: expect_ids: - - 100155 + - 100162