diff --git a/config_tests/CONF_060_TARGET_REQUEST_COOKIES_NAMES.yaml b/config_tests/CONF_060_TARGET_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..073144c --- /dev/null +++ b/config_tests/CONF_060_TARGET_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,76 @@ +target: REQUEST_COOKIES_NAMES +rulefile: MRTS_059_REQUEST_COOKIES_NAMES.conf +testfile: MRTS_060_REQUEST_COOKIES_NAMES.yaml +templates: + - SecRule for TARGETS +colkey: + - - '' + - - attack1 + - - attack1 + - attack2 + - - /^attack_.*$/ +operator: + - '@contains' +oparg: + - attack +phase: + - 1 + - 2 + - 3 + - 4 +testdata: + phase_methods: + 1: get + 2: post + 3: post + 4: post + targets: + - target: '' + test: + data: null + input: + headers: + - name: Cookie + value: attack=test + - target: attack1 + test: + data: null + input: + headers: + - name: Cookie + value: attack1=test + - target: attack1 + test: + data: null + input: + headers: + - name: Cookie + value: attack1=test;hello=test + - target: attack2 + test: + data: null + input: + headers: + - name: Cookie + value: attack2=test + - target: attack2 + test: + data: null + input: + headers: + - name: Cookie + value: hello=test;attack2=test + - target: /^attack_.*$/ + test: + data: null + input: + headers: + - name: Cookie + value: attack_foo=test + - target: /^attack_.*$/ + test: + data: null + input: + headers: + - name: Cookie + value: hello=test;attack_foo=text;world=test diff --git a/generated/rules/MRTS_059_REQUEST_COOKIES_NAMES.conf b/generated/rules/MRTS_059_REQUEST_COOKIES_NAMES.conf new file mode 100644 index 0000000..a7fe1d9 --- /dev/null +++ b/generated/rules/MRTS_059_REQUEST_COOKIES_NAMES.conf @@ -0,0 +1,144 @@ +SecRule REQUEST_COOKIES_NAMES "@contains attack" \ + "id:100092,\ + phase:1,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:1',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES "@contains attack" \ + "id:100093,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES "@contains attack" \ + "id:100094,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES "@contains attack" \ + "id:100095,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ + "id:100096,\ + phase:1,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:1',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ + "id:100097,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ + "id:100098,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ + "id:100099,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains attack" \ + "id:100100,\ + phase:1,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:1',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains attack" \ + "id:100101,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains attack" \ + "id:100102,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains attack" \ + "id:100103,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100104,\ + phase:1,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:1',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100105,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100106,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100107,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + diff --git a/generated/rules/MRTS_110_XML.conf b/generated/rules/MRTS_110_XML.conf index 87fb4ce..e5573bd 100644 --- a/generated/rules/MRTS_110_XML.conf +++ b/generated/rules/MRTS_110_XML.conf @@ -1,5 +1,5 @@ SecRule XML:/* "@beginsWith foo" \ - "id:100092,\ + "id:100108,\ phase:2,\ deny,\ t:none,\ @@ -8,7 +8,7 @@ SecRule XML:/* "@beginsWith foo" \ ver:'MRTS/0.1'" SecRule XML:/* "@beginsWith foo" \ - "id:100093,\ + "id:100109,\ phase:3,\ deny,\ t:none,\ @@ -17,7 +17,7 @@ SecRule XML:/* "@beginsWith foo" \ ver:'MRTS/0.1'" SecRule XML:/* "@beginsWith foo" \ - "id:100094,\ + "id:100110,\ phase:4,\ deny,\ t:none,\ diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100092.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100092.yaml new file mode 100644 index 0000000..dddd7ee --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100092.yaml @@ -0,0 +1,161 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100092-1 + ruleid: 100092 + test_id: 1 + desc: 'Test case for rule 100092, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100092 +- test_title: 100092-2 + ruleid: 100092 + test_id: 2 + desc: 'Test case for rule 100092, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100092 +- test_title: 100092-3 + ruleid: 100092 + test_id: 3 + desc: 'Test case for rule 100092, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100092 +- test_title: 100092-4 + ruleid: 100092 + test_id: 4 + desc: 'Test case for rule 100092, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100092 +- test_title: 100092-5 + ruleid: 100092 + test_id: 5 + desc: 'Test case for rule 100092, #5' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100092 +- test_title: 100092-6 + ruleid: 100092 + test_id: 6 + desc: 'Test case for rule 100092, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100092 +- test_title: 100092-7 + ruleid: 100092 + test_id: 7 + desc: 'Test case for rule 100092, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100092 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100093.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100093.yaml new file mode 100644 index 0000000..7cbbf5f --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100093.yaml @@ -0,0 +1,161 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100093-1 + ruleid: 100093 + test_id: 1 + desc: 'Test case for rule 100093, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100093 +- test_title: 100093-2 + ruleid: 100093 + test_id: 2 + desc: 'Test case for rule 100093, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100093 +- test_title: 100093-3 + ruleid: 100093 + test_id: 3 + desc: 'Test case for rule 100093, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100093 +- test_title: 100093-4 + ruleid: 100093 + test_id: 4 + desc: 'Test case for rule 100093, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100093 +- test_title: 100093-5 + ruleid: 100093 + test_id: 5 + desc: 'Test case for rule 100093, #5' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100093 +- test_title: 100093-6 + ruleid: 100093 + test_id: 6 + desc: 'Test case for rule 100093, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100093 +- test_title: 100093-7 + ruleid: 100093 + test_id: 7 + desc: 'Test case for rule 100093, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100093 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100094.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100094.yaml new file mode 100644 index 0000000..2ad9389 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100094.yaml @@ -0,0 +1,161 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100094-1 + ruleid: 100094 + test_id: 1 + desc: 'Test case for rule 100094, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100094 +- test_title: 100094-2 + ruleid: 100094 + test_id: 2 + desc: 'Test case for rule 100094, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100094 +- test_title: 100094-3 + ruleid: 100094 + test_id: 3 + desc: 'Test case for rule 100094, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100094 +- test_title: 100094-4 + ruleid: 100094 + test_id: 4 + desc: 'Test case for rule 100094, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100094 +- test_title: 100094-5 + ruleid: 100094 + test_id: 5 + desc: 'Test case for rule 100094, #5' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100094 +- test_title: 100094-6 + ruleid: 100094 + test_id: 6 + desc: 'Test case for rule 100094, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100094 +- test_title: 100094-7 + ruleid: 100094 + test_id: 7 + desc: 'Test case for rule 100094, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100094 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100095.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100095.yaml new file mode 100644 index 0000000..de0f5da --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100095.yaml @@ -0,0 +1,161 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100095-1 + ruleid: 100095 + test_id: 1 + desc: 'Test case for rule 100095, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100095 +- test_title: 100095-2 + ruleid: 100095 + test_id: 2 + desc: 'Test case for rule 100095, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100095 +- test_title: 100095-3 + ruleid: 100095 + test_id: 3 + desc: 'Test case for rule 100095, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100095 +- test_title: 100095-4 + ruleid: 100095 + test_id: 4 + desc: 'Test case for rule 100095, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100095 +- test_title: 100095-5 + ruleid: 100095 + test_id: 5 + desc: 'Test case for rule 100095, #5' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100095 +- test_title: 100095-6 + ruleid: 100095 + test_id: 6 + desc: 'Test case for rule 100095, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100095 +- test_title: 100095-7 + ruleid: 100095 + test_id: 7 + desc: 'Test case for rule 100095, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100095 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100096.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100096.yaml new file mode 100644 index 0000000..1844ffc --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100096.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100096-1 + ruleid: 100096 + test_id: 1 + desc: 'Test case for rule 100096, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100096 +- test_title: 100096-2 + ruleid: 100096 + test_id: 2 + desc: 'Test case for rule 100096, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100096 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100097.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100097.yaml new file mode 100644 index 0000000..0b316da --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100097.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100097-1 + ruleid: 100097 + test_id: 1 + desc: 'Test case for rule 100097, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100097 +- test_title: 100097-2 + ruleid: 100097 + test_id: 2 + desc: 'Test case for rule 100097, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100097 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100098.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100098.yaml new file mode 100644 index 0000000..d1856b4 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100098.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100098-1 + ruleid: 100098 + test_id: 1 + desc: 'Test case for rule 100098, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100098 +- test_title: 100098-2 + ruleid: 100098 + test_id: 2 + desc: 'Test case for rule 100098, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100098 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100099.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100099.yaml new file mode 100644 index 0000000..d4c1e71 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100099.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100099-1 + ruleid: 100099 + test_id: 1 + desc: 'Test case for rule 100099, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100099 +- test_title: 100099-2 + ruleid: 100099 + test_id: 2 + desc: 'Test case for rule 100099, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100099 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100100.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100100.yaml new file mode 100644 index 0000000..3ff1da7 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100100.yaml @@ -0,0 +1,95 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100100-1 + ruleid: 100100 + test_id: 1 + desc: 'Test case for rule 100100, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100100 +- test_title: 100100-2 + ruleid: 100100 + test_id: 2 + desc: 'Test case for rule 100100, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100100 +- test_title: 100100-3 + ruleid: 100100 + test_id: 3 + desc: 'Test case for rule 100100, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100100 +- test_title: 100100-4 + ruleid: 100100 + test_id: 4 + desc: 'Test case for rule 100100, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100100 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100101.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100101.yaml new file mode 100644 index 0000000..2297e06 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100101.yaml @@ -0,0 +1,95 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100101-1 + ruleid: 100101 + test_id: 1 + desc: 'Test case for rule 100101, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100101 +- test_title: 100101-2 + ruleid: 100101 + test_id: 2 + desc: 'Test case for rule 100101, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100101 +- test_title: 100101-3 + ruleid: 100101 + test_id: 3 + desc: 'Test case for rule 100101, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100101 +- test_title: 100101-4 + ruleid: 100101 + test_id: 4 + desc: 'Test case for rule 100101, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100101 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100102.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100102.yaml new file mode 100644 index 0000000..52b08c4 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100102.yaml @@ -0,0 +1,95 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100102-1 + ruleid: 100102 + test_id: 1 + desc: 'Test case for rule 100102, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100102 +- test_title: 100102-2 + ruleid: 100102 + test_id: 2 + desc: 'Test case for rule 100102, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100102 +- test_title: 100102-3 + ruleid: 100102 + test_id: 3 + desc: 'Test case for rule 100102, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100102 +- test_title: 100102-4 + ruleid: 100102 + test_id: 4 + desc: 'Test case for rule 100102, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100102 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100103.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100103.yaml new file mode 100644 index 0000000..a088d2c --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100103.yaml @@ -0,0 +1,95 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100103-1 + ruleid: 100103 + test_id: 1 + desc: 'Test case for rule 100103, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100103 +- test_title: 100103-2 + ruleid: 100103 + test_id: 2 + desc: 'Test case for rule 100103, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100103 +- test_title: 100103-3 + ruleid: 100103 + test_id: 3 + desc: 'Test case for rule 100103, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100103 +- test_title: 100103-4 + ruleid: 100103 + test_id: 4 + desc: 'Test case for rule 100103, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100103 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100104.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100104.yaml new file mode 100644 index 0000000..4e49363 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100104.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100104-1 + ruleid: 100104 + test_id: 1 + desc: 'Test case for rule 100104, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100104 +- test_title: 100104-2 + ruleid: 100104 + test_id: 2 + desc: 'Test case for rule 100104, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100104 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100105.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100105.yaml new file mode 100644 index 0000000..32851b2 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100105.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100105-1 + ruleid: 100105 + test_id: 1 + desc: 'Test case for rule 100105, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100105 +- test_title: 100105-2 + ruleid: 100105 + test_id: 2 + desc: 'Test case for rule 100105, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100105 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100106.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100106.yaml new file mode 100644 index 0000000..3019c23 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100106.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100106-1 + ruleid: 100106 + test_id: 1 + desc: 'Test case for rule 100106, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100106 +- test_title: 100106-2 + ruleid: 100106 + test_id: 2 + desc: 'Test case for rule 100106, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100106 diff --git a/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100107.yaml b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100107.yaml new file mode 100644 index 0000000..73ebc09 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_060_REQUEST_COOKIES_NAMES_100107.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100107-1 + ruleid: 100107 + test_id: 1 + desc: 'Test case for rule 100107, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100107 +- test_title: 100107-2 + ruleid: 100107 + test_id: 2 + desc: 'Test case for rule 100107, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100107 diff --git a/generated/tests/regression/tests/MRTS_110_XML_100092.yaml b/generated/tests/regression/tests/MRTS_110_XML_100108.yaml similarity index 86% rename from generated/tests/regression/tests/MRTS_110_XML_100092.yaml rename to generated/tests/regression/tests/MRTS_110_XML_100108.yaml index c6892ce..8351085 100644 --- a/generated/tests/regression/tests/MRTS_110_XML_100092.yaml +++ b/generated/tests/regression/tests/MRTS_110_XML_100108.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_110_XML.yaml description: Desc tests: -- test_title: 100092-1 - ruleid: 100092 +- test_title: 100108-1 + ruleid: 100108 test_id: 1 - desc: 'Test case for rule 100092, #1' + desc: 'Test case for rule 100108, #1' stages: - description: Send request input: @@ -27,4 +27,4 @@ tests: output: log: expect_ids: - - 100092 + - 100108 diff --git a/generated/tests/regression/tests/MRTS_110_XML_100093.yaml b/generated/tests/regression/tests/MRTS_110_XML_100109.yaml similarity index 86% rename from generated/tests/regression/tests/MRTS_110_XML_100093.yaml rename to generated/tests/regression/tests/MRTS_110_XML_100109.yaml index 3d376d6..c7e6f75 100644 --- a/generated/tests/regression/tests/MRTS_110_XML_100093.yaml +++ b/generated/tests/regression/tests/MRTS_110_XML_100109.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_110_XML.yaml description: Desc tests: -- test_title: 100093-1 - ruleid: 100093 +- test_title: 100109-1 + ruleid: 100109 test_id: 1 - desc: 'Test case for rule 100093, #1' + desc: 'Test case for rule 100109, #1' stages: - description: Send request input: @@ -27,4 +27,4 @@ tests: output: log: expect_ids: - - 100093 + - 100109 diff --git a/generated/tests/regression/tests/MRTS_110_XML_100094.yaml b/generated/tests/regression/tests/MRTS_110_XML_100110.yaml similarity index 86% rename from generated/tests/regression/tests/MRTS_110_XML_100094.yaml rename to generated/tests/regression/tests/MRTS_110_XML_100110.yaml index 5ef6b32..b405d35 100644 --- a/generated/tests/regression/tests/MRTS_110_XML_100094.yaml +++ b/generated/tests/regression/tests/MRTS_110_XML_100110.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_110_XML.yaml description: Desc tests: -- test_title: 100094-1 - ruleid: 100094 +- test_title: 100110-1 + ruleid: 100110 test_id: 1 - desc: 'Test case for rule 100094, #1' + desc: 'Test case for rule 100110, #1' stages: - description: Send request input: @@ -27,4 +27,4 @@ tests: output: log: expect_ids: - - 100094 + - 100110