Skip to content

wrong test stirng #30

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
Gandalf098 wants to merge 1 commit into
base: master
Choose a base branch
from
Open

wrong test stirng #30

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion ...t/resources/fixtures/arcsight-f5-asm-certified-cef-onfiguration-guide_page8_example1.json
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
{
"testString": "Sep 3 16:06:16 172.30.0.20 ASM:CEF:0|F5|ASM|11.0.0|200000098|XSS script tag (Parameter)|5|dvchost=3600.lab.asm.f5net.com dvc=172.30.0.20 cs1=maui_app_default cs1Label=policy_name cs2=maui_app cs2Label=web_application_name deviceCustomDate1=Sep 03 2010 15:56:49 deviceCustomDate1Label=policy_apply_date externalId=2922246059721752663 act=alerted cn1=200 cn1Label=response_code src=192.168.74.216 spt=52793 dst=172.30.0.30 dpt=80 requestMethod=GET app=HTTP request=/xss/xss.php?param\\=<script cs5=N/A cs5Label=x_forwarded_for_header_value rt=Sep 03 2010 16:06:15 deviceExternalId=0 cs4=Cross Site Scripting (XSS) cs4Label=attack_type cs6=N/A cs6Label=geo_location cs3Label=full_request cs3=GET /xss/xss.php?param\\=<script HTTP/1.1\\r\\nAccept: */*\\r\\nAccept-Language: en-US\\r\\nUser-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; InfoPath.2; MS-RTC LM 8)\\r\\nAccept-Encoding: gzip, deflate\\r\\nHost: 172.30.0.30\\r\\nConnection: Keep-Alive\\r\\nCookie: Super_Secret_Session_Cookie\\=123456789;TS49b723\\=5dc5319219c48503ae788c666bc08a1fbf81f2c754f2bc3b4c817eec",
"testString": "Sep 10 15:19:01 172.30.0.20 ASM:CEF:0|F5|ASM|11.0.0|DoS Attack|URL-Based Rate Limiting|8|dvchost=3600.lab.asm.f5net.com dvc=172.30.0.20 cs1=maui_app_default cs1Label=policy_name cs2=maui_app cs2Label=web_application_name deviceCustomDate1=Sep 10 2010 15:00:40 deviceCustomDate1Label=policy_apply_date act=Blocked cn3=3263585817 cn3Label=attack_id cs4=Ongoing cs4Label=attack_status request=/dos/dos3.php src= cs6=N/A cs6Label=geo_location cs5=Latency Increased cs5Label=detection_mode rt=Sep 10 2010 15:19:00 cn1=21 cn1Label=detection_average cn2=20665 cn2Label=dropped_requests",
"description": "DoS Attack message sample - https://www.f5.com/images/solution-center/arcsight-f5-asm-certified-cef-onfiguration-guide.pdf#page=8",
"remoteAddress": "127.0.0.1",
"expectedSource": "172.30.0.20",
Expand Down