diff --git a/config_tests/CONF_060_TARGET_REQUEST_COOKIES_NAMES.yaml b/config_tests/CONF_060_TARGET_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..44c6b80 --- /dev/null +++ b/config_tests/CONF_060_TARGET_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,76 @@ +target: REQUEST_COOKIES_NAMES +rulefile: MRTS_060_REQUEST_COOKIES_NAMES.conf +testfile: MRTS_060_REQUEST_COOKIES_NAMES.yaml +templates: + - SecRule for TARGETS +colkey: + - - '' + - - attack1 + - - attack1 + - attack2 + - - /^attack_.*$/ +operator: + - '@contains' +oparg: + - attack +phase: + - 1 + - 2 + - 3 + - 4 +testdata: + phase_methods: + 1: get + 2: post + 3: post + 4: post + targets: + - target: '' + test: + data: null + input: + headers: + - name: Cookie + value: attack=test + - target: attack1 + test: + data: null + input: + headers: + - name: Cookie + value: attack1=test + - target: attack1 + test: + data: null + input: + headers: + - name: Cookie + value: attack1=test;hello=test + - target: attack2 + test: + data: null + input: + headers: + - name: Cookie + value: attack2=test + - target: attack2 + test: + data: null + input: + headers: + - name: Cookie + value: hello=test;attack2=test + - target: /^attack_.*$/ + test: + data: null + input: + headers: + - name: Cookie + value: attack_foo=test + - target: /^attack_.*$/ + test: + data: null + input: + headers: + - name: Cookie + value: hello=test;attack_foo=text;world=test diff --git a/generated/rules/MRTS_060_REQUEST_COOKIES_NAMES.conf b/generated/rules/MRTS_060_REQUEST_COOKIES_NAMES.conf new file mode 100644 index 0000000..893f82c --- /dev/null +++ b/generated/rules/MRTS_060_REQUEST_COOKIES_NAMES.conf @@ -0,0 +1,144 @@ +SecRule REQUEST_COOKIES_NAMES "@contains attack" \ + "id:100132,\ + phase:1,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:1',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES "@contains attack" \ + "id:100133,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES "@contains attack" \ + "id:100134,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES "@contains attack" \ + "id:100135,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ + "id:100136,\ + phase:1,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:1',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ + "id:100137,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ + "id:100138,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1 "@contains attack" \ + "id:100139,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains attack" \ + "id:100140,\ + phase:1,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:1',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains attack" \ + "id:100141,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains attack" \ + "id:100142,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:attack1|REQUEST_COOKIES_NAMES:attack2 "@contains attack" \ + "id:100143,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100144,\ + phase:1,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:1',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100145,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100146,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule REQUEST_COOKIES_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100147,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + diff --git a/generated/rules/MRTS_110_XML.conf b/generated/rules/MRTS_110_XML.conf index 68af016..f511a8b 100644 --- a/generated/rules/MRTS_110_XML.conf +++ b/generated/rules/MRTS_110_XML.conf @@ -1,5 +1,5 @@ SecRule XML:/* "@beginsWith foo" \ - "id:100132,\ + "id:100148,\ phase:2,\ deny,\ t:none,\ @@ -8,7 +8,7 @@ SecRule XML:/* "@beginsWith foo" \ ver:'MRTS/0.1'" SecRule XML:/* "@beginsWith foo" \ - "id:100133,\ + "id:100149,\ phase:3,\ deny,\ t:none,\ @@ -17,7 +17,7 @@ SecRule XML:/* "@beginsWith foo" \ ver:'MRTS/0.1'" SecRule XML:/* "@beginsWith foo" \ - "id:100134,\ + "id:100150,\ phase:4,\ deny,\ t:none,\ diff --git a/generated/tests/regression/tests/100132_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100132_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..6c8ee12 --- /dev/null +++ b/generated/tests/regression/tests/100132_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,161 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100132-1 + ruleid: 100132 + test_id: 1 + desc: 'Test case for rule 100132, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100132 +- test_title: 100132-2 + ruleid: 100132 + test_id: 2 + desc: 'Test case for rule 100132, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100132 +- test_title: 100132-3 + ruleid: 100132 + test_id: 3 + desc: 'Test case for rule 100132, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100132 +- test_title: 100132-4 + ruleid: 100132 + test_id: 4 + desc: 'Test case for rule 100132, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100132 +- test_title: 100132-5 + ruleid: 100132 + test_id: 5 + desc: 'Test case for rule 100132, #5' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100132 +- test_title: 100132-6 + ruleid: 100132 + test_id: 6 + desc: 'Test case for rule 100132, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100132 +- test_title: 100132-7 + ruleid: 100132 + test_id: 7 + desc: 'Test case for rule 100132, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100132 diff --git a/generated/tests/regression/tests/100133_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100133_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..c37d033 --- /dev/null +++ b/generated/tests/regression/tests/100133_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,161 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100133-1 + ruleid: 100133 + test_id: 1 + desc: 'Test case for rule 100133, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100133 +- test_title: 100133-2 + ruleid: 100133 + test_id: 2 + desc: 'Test case for rule 100133, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100133 +- test_title: 100133-3 + ruleid: 100133 + test_id: 3 + desc: 'Test case for rule 100133, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100133 +- test_title: 100133-4 + ruleid: 100133 + test_id: 4 + desc: 'Test case for rule 100133, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100133 +- test_title: 100133-5 + ruleid: 100133 + test_id: 5 + desc: 'Test case for rule 100133, #5' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100133 +- test_title: 100133-6 + ruleid: 100133 + test_id: 6 + desc: 'Test case for rule 100133, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100133 +- test_title: 100133-7 + ruleid: 100133 + test_id: 7 + desc: 'Test case for rule 100133, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100133 diff --git a/generated/tests/regression/tests/100134_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100134_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..d8c610f --- /dev/null +++ b/generated/tests/regression/tests/100134_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,161 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100134-1 + ruleid: 100134 + test_id: 1 + desc: 'Test case for rule 100134, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100134 +- test_title: 100134-2 + ruleid: 100134 + test_id: 2 + desc: 'Test case for rule 100134, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100134 +- test_title: 100134-3 + ruleid: 100134 + test_id: 3 + desc: 'Test case for rule 100134, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100134 +- test_title: 100134-4 + ruleid: 100134 + test_id: 4 + desc: 'Test case for rule 100134, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100134 +- test_title: 100134-5 + ruleid: 100134 + test_id: 5 + desc: 'Test case for rule 100134, #5' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100134 +- test_title: 100134-6 + ruleid: 100134 + test_id: 6 + desc: 'Test case for rule 100134, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100134 +- test_title: 100134-7 + ruleid: 100134 + test_id: 7 + desc: 'Test case for rule 100134, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100134 diff --git a/generated/tests/regression/tests/100135_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100135_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..30c810c --- /dev/null +++ b/generated/tests/regression/tests/100135_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,161 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100135-1 + ruleid: 100135 + test_id: 1 + desc: 'Test case for rule 100135, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100135 +- test_title: 100135-2 + ruleid: 100135 + test_id: 2 + desc: 'Test case for rule 100135, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100135 +- test_title: 100135-3 + ruleid: 100135 + test_id: 3 + desc: 'Test case for rule 100135, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100135 +- test_title: 100135-4 + ruleid: 100135 + test_id: 4 + desc: 'Test case for rule 100135, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100135 +- test_title: 100135-5 + ruleid: 100135 + test_id: 5 + desc: 'Test case for rule 100135, #5' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100135 +- test_title: 100135-6 + ruleid: 100135 + test_id: 6 + desc: 'Test case for rule 100135, #6' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100135 +- test_title: 100135-7 + ruleid: 100135 + test_id: 7 + desc: 'Test case for rule 100135, #7' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100135 diff --git a/generated/tests/regression/tests/100136_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100136_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..2768f4e --- /dev/null +++ b/generated/tests/regression/tests/100136_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100136-1 + ruleid: 100136 + test_id: 1 + desc: 'Test case for rule 100136, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100136 +- test_title: 100136-2 + ruleid: 100136 + test_id: 2 + desc: 'Test case for rule 100136, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100136 diff --git a/generated/tests/regression/tests/100137_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100137_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..f6df3ea --- /dev/null +++ b/generated/tests/regression/tests/100137_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100137-1 + ruleid: 100137 + test_id: 1 + desc: 'Test case for rule 100137, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100137 +- test_title: 100137-2 + ruleid: 100137 + test_id: 2 + desc: 'Test case for rule 100137, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100137 diff --git a/generated/tests/regression/tests/100138_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100138_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..0597875 --- /dev/null +++ b/generated/tests/regression/tests/100138_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100138-1 + ruleid: 100138 + test_id: 1 + desc: 'Test case for rule 100138, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100138 +- test_title: 100138-2 + ruleid: 100138 + test_id: 2 + desc: 'Test case for rule 100138, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100138 diff --git a/generated/tests/regression/tests/100139_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100139_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..82d8e4e --- /dev/null +++ b/generated/tests/regression/tests/100139_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100139-1 + ruleid: 100139 + test_id: 1 + desc: 'Test case for rule 100139, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100139 +- test_title: 100139-2 + ruleid: 100139 + test_id: 2 + desc: 'Test case for rule 100139, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100139 diff --git a/generated/tests/regression/tests/100140_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100140_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..075029f --- /dev/null +++ b/generated/tests/regression/tests/100140_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,95 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100140-1 + ruleid: 100140 + test_id: 1 + desc: 'Test case for rule 100140, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100140 +- test_title: 100140-2 + ruleid: 100140 + test_id: 2 + desc: 'Test case for rule 100140, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100140 +- test_title: 100140-3 + ruleid: 100140 + test_id: 3 + desc: 'Test case for rule 100140, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100140 +- test_title: 100140-4 + ruleid: 100140 + test_id: 4 + desc: 'Test case for rule 100140, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100140 diff --git a/generated/tests/regression/tests/100141_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100141_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..9ba3944 --- /dev/null +++ b/generated/tests/regression/tests/100141_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,95 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100141-1 + ruleid: 100141 + test_id: 1 + desc: 'Test case for rule 100141, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100141 +- test_title: 100141-2 + ruleid: 100141 + test_id: 2 + desc: 'Test case for rule 100141, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100141 +- test_title: 100141-3 + ruleid: 100141 + test_id: 3 + desc: 'Test case for rule 100141, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100141 +- test_title: 100141-4 + ruleid: 100141 + test_id: 4 + desc: 'Test case for rule 100141, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100141 diff --git a/generated/tests/regression/tests/100142_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100142_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..afefe7b --- /dev/null +++ b/generated/tests/regression/tests/100142_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,95 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100142-1 + ruleid: 100142 + test_id: 1 + desc: 'Test case for rule 100142, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100142 +- test_title: 100142-2 + ruleid: 100142 + test_id: 2 + desc: 'Test case for rule 100142, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100142 +- test_title: 100142-3 + ruleid: 100142 + test_id: 3 + desc: 'Test case for rule 100142, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100142 +- test_title: 100142-4 + ruleid: 100142 + test_id: 4 + desc: 'Test case for rule 100142, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100142 diff --git a/generated/tests/regression/tests/100143_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100143_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..063b9ba --- /dev/null +++ b/generated/tests/regression/tests/100143_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,95 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100143-1 + ruleid: 100143 + test_id: 1 + desc: 'Test case for rule 100143, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100143 +- test_title: 100143-2 + ruleid: 100143 + test_id: 2 + desc: 'Test case for rule 100143, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack1=test;hello=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100143 +- test_title: 100143-3 + ruleid: 100143 + test_id: 3 + desc: 'Test case for rule 100143, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100143 +- test_title: 100143-4 + ruleid: 100143 + test_id: 4 + desc: 'Test case for rule 100143, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack2=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100143 diff --git a/generated/tests/regression/tests/100144_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100144_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..9e3f9d7 --- /dev/null +++ b/generated/tests/regression/tests/100144_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100144-1 + ruleid: 100144 + test_id: 1 + desc: 'Test case for rule 100144, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100144 +- test_title: 100144-2 + ruleid: 100144 + test_id: 2 + desc: 'Test case for rule 100144, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: / + version: HTTP/1.1 + output: + log: + expect_ids: + - 100144 diff --git a/generated/tests/regression/tests/100145_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100145_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..65a9a86 --- /dev/null +++ b/generated/tests/regression/tests/100145_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100145-1 + ruleid: 100145 + test_id: 1 + desc: 'Test case for rule 100145, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100145 +- test_title: 100145-2 + ruleid: 100145 + test_id: 2 + desc: 'Test case for rule 100145, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100145 diff --git a/generated/tests/regression/tests/100146_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100146_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..a03e1fe --- /dev/null +++ b/generated/tests/regression/tests/100146_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100146-1 + ruleid: 100146 + test_id: 1 + desc: 'Test case for rule 100146, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100146 +- test_title: 100146-2 + ruleid: 100146 + test_id: 2 + desc: 'Test case for rule 100146, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100146 diff --git a/generated/tests/regression/tests/100147_MRTS_060_REQUEST_COOKIES_NAMES.yaml b/generated/tests/regression/tests/100147_MRTS_060_REQUEST_COOKIES_NAMES.yaml new file mode 100644 index 0000000..b9508d7 --- /dev/null +++ b/generated/tests/regression/tests/100147_MRTS_060_REQUEST_COOKIES_NAMES.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_060_REQUEST_COOKIES_NAMES.yaml + description: Desc +tests: +- test_title: 100147-1 + ruleid: 100147 + test_id: 1 + desc: 'Test case for rule 100147, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: attack_foo=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100147 +- test_title: 100147-2 + ruleid: 100147 + test_id: 2 + desc: 'Test case for rule 100147, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + Cookie: hello=test;attack_foo=text;world=test + uri: /post + version: HTTP/1.1 + output: + log: + expect_ids: + - 100147 diff --git a/generated/tests/regression/tests/100132_MRTS_110_XML.yaml b/generated/tests/regression/tests/100148_MRTS_110_XML.yaml similarity index 86% rename from generated/tests/regression/tests/100132_MRTS_110_XML.yaml rename to generated/tests/regression/tests/100148_MRTS_110_XML.yaml index 408247a..cf33a8a 100644 --- a/generated/tests/regression/tests/100132_MRTS_110_XML.yaml +++ b/generated/tests/regression/tests/100148_MRTS_110_XML.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_110_XML.yaml description: Desc tests: -- test_title: 100132-1 - ruleid: 100132 +- test_title: 100148-1 + ruleid: 100148 test_id: 1 - desc: 'Test case for rule 100132, #1' + desc: 'Test case for rule 100148, #1' stages: - description: Send request input: @@ -27,4 +27,4 @@ tests: output: log: expect_ids: - - 100132 + - 100148 diff --git a/generated/tests/regression/tests/100133_MRTS_110_XML.yaml b/generated/tests/regression/tests/100149_MRTS_110_XML.yaml similarity index 86% rename from generated/tests/regression/tests/100133_MRTS_110_XML.yaml rename to generated/tests/regression/tests/100149_MRTS_110_XML.yaml index afa31ca..f9a9bd9 100644 --- a/generated/tests/regression/tests/100133_MRTS_110_XML.yaml +++ b/generated/tests/regression/tests/100149_MRTS_110_XML.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_110_XML.yaml description: Desc tests: -- test_title: 100133-1 - ruleid: 100133 +- test_title: 100149-1 + ruleid: 100149 test_id: 1 - desc: 'Test case for rule 100133, #1' + desc: 'Test case for rule 100149, #1' stages: - description: Send request input: @@ -27,4 +27,4 @@ tests: output: log: expect_ids: - - 100133 + - 100149 diff --git a/generated/tests/regression/tests/100134_MRTS_110_XML.yaml b/generated/tests/regression/tests/100150_MRTS_110_XML.yaml similarity index 86% rename from generated/tests/regression/tests/100134_MRTS_110_XML.yaml rename to generated/tests/regression/tests/100150_MRTS_110_XML.yaml index 2a37639..fb4bd20 100644 --- a/generated/tests/regression/tests/100134_MRTS_110_XML.yaml +++ b/generated/tests/regression/tests/100150_MRTS_110_XML.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_110_XML.yaml description: Desc tests: -- test_title: 100134-1 - ruleid: 100134 +- test_title: 100150-1 + ruleid: 100150 test_id: 1 - desc: 'Test case for rule 100134, #1' + desc: 'Test case for rule 100150, #1' stages: - description: Send request input: @@ -27,4 +27,4 @@ tests: output: log: expect_ids: - - 100134 + - 100150