diff --git a/config_tests/CONF_006_TARGET_ARGS_NAMES_A-GET.yaml b/config_tests/CONF_006_TARGET_ARGS_NAMES_A-GET.yaml new file mode 100644 index 0000000..2b8f8ba --- /dev/null +++ b/config_tests/CONF_006_TARGET_ARGS_NAMES_A-GET.yaml @@ -0,0 +1,43 @@ +target: ARGS_NAMES +rulefile: MRTS_006_ARGS_NAMES_A-GET.conf +testfile: MRTS_006_ARGS_NAMES_A-GET.yaml +templates: + - SecRule for TARGETS +colkey: + - - '' + - - attack1 + - - attack1 + - attack2 + - - /^attack_.*$/ +operator: + - '@contains' +oparg: + - attack +phase: + - 1 + - 2 + - 3 + - 4 +testdata: + phase_methods: + 1: get + 2: get + 3: get + 4: get + targets: + - target: '' + test: + data: + attack: test + - target: attack1 + test: + data: + attack1: test + - target: attack2 + test: + data: + attack2: test + - target: /^attack_.*$/ + test: + data: + attack_foo: test diff --git a/config_tests/CONF_006_TARGET_ARGS_NAMES_B-POST.yaml b/config_tests/CONF_006_TARGET_ARGS_NAMES_B-POST.yaml new file mode 100644 index 0000000..03787bf --- /dev/null +++ b/config_tests/CONF_006_TARGET_ARGS_NAMES_B-POST.yaml @@ -0,0 +1,41 @@ +target: ARGS_NAMES +rulefile: MRTS_006_ARGS_NAMES_B-POST.conf +testfile: MRTS_006_ARGS_NAMES_B-POST.yaml +templates: + - SecRule for TARGETS +colkey: + - - '' + - - attack1 + - - attack1 + - attack2 + - - /^attack_.*$/ +operator: + - '@contains' +oparg: + - attack +phase: + - 2 + - 3 + - 4 +testdata: + phase_methods: + 2: post + 3: post + 4: post + targets: + - target: '' + test: + data: + attack: test + - target: attack1 + test: + data: + attack1: test + - target: attack2 + test: + data: + attack2: test + - target: /^attack_.*$/ + test: + data: + attack_foo: test diff --git a/generated/rules/MRTS_006_ARGS_NAMES_A-GET.conf b/generated/rules/MRTS_006_ARGS_NAMES_A-GET.conf new file mode 100644 index 0000000..721d42e --- /dev/null +++ b/generated/rules/MRTS_006_ARGS_NAMES_A-GET.conf @@ -0,0 +1,144 @@ +SecRule ARGS_NAMES "@contains attack" \ + "id:100064,\ + phase:1,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:1',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES "@contains attack" \ + "id:100065,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES "@contains attack" \ + "id:100066,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES "@contains attack" \ + "id:100067,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:attack1 "@contains attack" \ + "id:100068,\ + phase:1,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:1',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:attack1 "@contains attack" \ + "id:100069,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:attack1 "@contains attack" \ + "id:100070,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:attack1 "@contains attack" \ + "id:100071,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:attack1|ARGS_NAMES:attack2 "@contains attack" \ + "id:100072,\ + phase:1,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:1',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:attack1|ARGS_NAMES:attack2 "@contains attack" \ + "id:100073,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:attack1|ARGS_NAMES:attack2 "@contains attack" \ + "id:100074,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:attack1|ARGS_NAMES:attack2 "@contains attack" \ + "id:100075,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100076,\ + phase:1,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:1',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100077,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100078,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100079,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + diff --git a/generated/rules/MRTS_006_ARGS_NAMES_B-POST.conf b/generated/rules/MRTS_006_ARGS_NAMES_B-POST.conf new file mode 100644 index 0000000..34746c9 --- /dev/null +++ b/generated/rules/MRTS_006_ARGS_NAMES_B-POST.conf @@ -0,0 +1,108 @@ +SecRule ARGS_NAMES "@contains attack" \ + "id:100080,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES "@contains attack" \ + "id:100081,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES "@contains attack" \ + "id:100082,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:attack1 "@contains attack" \ + "id:100083,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:attack1 "@contains attack" \ + "id:100084,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:attack1 "@contains attack" \ + "id:100085,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:attack1|ARGS_NAMES:attack2 "@contains attack" \ + "id:100086,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:attack1|ARGS_NAMES:attack2 "@contains attack" \ + "id:100087,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:attack1|ARGS_NAMES:attack2 "@contains attack" \ + "id:100088,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100089,\ + phase:2,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:2',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100090,\ + phase:3,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:3',\ + ver:'MRTS/0.1'" + +SecRule ARGS_NAMES:/^attack_.*$/ "@contains attack" \ + "id:100091,\ + phase:4,\ + deny,\ + t:none,\ + log,\ + msg:'%{MATCHED_VAR_NAME} was caught in phase:4',\ + ver:'MRTS/0.1'" + diff --git a/generated/rules/MRTS_110_XML.conf b/generated/rules/MRTS_110_XML.conf index 5747e6e..87fb4ce 100644 --- a/generated/rules/MRTS_110_XML.conf +++ b/generated/rules/MRTS_110_XML.conf @@ -1,5 +1,5 @@ SecRule XML:/* "@beginsWith foo" \ - "id:100064,\ + "id:100092,\ phase:2,\ deny,\ t:none,\ @@ -8,7 +8,7 @@ SecRule XML:/* "@beginsWith foo" \ ver:'MRTS/0.1'" SecRule XML:/* "@beginsWith foo" \ - "id:100065,\ + "id:100093,\ phase:3,\ deny,\ t:none,\ @@ -17,7 +17,7 @@ SecRule XML:/* "@beginsWith foo" \ ver:'MRTS/0.1'" SecRule XML:/* "@beginsWith foo" \ - "id:100066,\ + "id:100094,\ phase:4,\ deny,\ t:none,\ diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100064.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100064.yaml new file mode 100644 index 0000000..418486b --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100064.yaml @@ -0,0 +1,91 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100064-1 + ruleid: 100064 + test_id: 1 + desc: 'Test case for rule 100064, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100064 +- test_title: 100064-2 + ruleid: 100064 + test_id: 2 + desc: 'Test case for rule 100064, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack1=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100064 +- test_title: 100064-3 + ruleid: 100064 + test_id: 3 + desc: 'Test case for rule 100064, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack2=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100064 +- test_title: 100064-4 + ruleid: 100064 + test_id: 4 + desc: 'Test case for rule 100064, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack_foo=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100064 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100065.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100065.yaml new file mode 100644 index 0000000..fa73840 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100065.yaml @@ -0,0 +1,91 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100065-1 + ruleid: 100065 + test_id: 1 + desc: 'Test case for rule 100065, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100065 +- test_title: 100065-2 + ruleid: 100065 + test_id: 2 + desc: 'Test case for rule 100065, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack1=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100065 +- test_title: 100065-3 + ruleid: 100065 + test_id: 3 + desc: 'Test case for rule 100065, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack2=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100065 +- test_title: 100065-4 + ruleid: 100065 + test_id: 4 + desc: 'Test case for rule 100065, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack_foo=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100065 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100066.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100066.yaml new file mode 100644 index 0000000..480e6cc --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100066.yaml @@ -0,0 +1,91 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100066-1 + ruleid: 100066 + test_id: 1 + desc: 'Test case for rule 100066, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100066 +- test_title: 100066-2 + ruleid: 100066 + test_id: 2 + desc: 'Test case for rule 100066, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack1=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100066 +- test_title: 100066-3 + ruleid: 100066 + test_id: 3 + desc: 'Test case for rule 100066, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack2=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100066 +- test_title: 100066-4 + ruleid: 100066 + test_id: 4 + desc: 'Test case for rule 100066, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack_foo=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100066 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100067.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100067.yaml new file mode 100644 index 0000000..5464812 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100067.yaml @@ -0,0 +1,91 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100067-1 + ruleid: 100067 + test_id: 1 + desc: 'Test case for rule 100067, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100067 +- test_title: 100067-2 + ruleid: 100067 + test_id: 2 + desc: 'Test case for rule 100067, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack1=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100067 +- test_title: 100067-3 + ruleid: 100067 + test_id: 3 + desc: 'Test case for rule 100067, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack2=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100067 +- test_title: 100067-4 + ruleid: 100067 + test_id: 4 + desc: 'Test case for rule 100067, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack_foo=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100067 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100068.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100068.yaml new file mode 100644 index 0000000..60fa01b --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100068.yaml @@ -0,0 +1,28 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100068-1 + ruleid: 100068 + test_id: 1 + desc: 'Test case for rule 100068, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack1=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100068 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100069.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100069.yaml new file mode 100644 index 0000000..8ec316a --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100069.yaml @@ -0,0 +1,28 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100069-1 + ruleid: 100069 + test_id: 1 + desc: 'Test case for rule 100069, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack1=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100069 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100070.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100070.yaml new file mode 100644 index 0000000..ed3580b --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100070.yaml @@ -0,0 +1,28 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100070-1 + ruleid: 100070 + test_id: 1 + desc: 'Test case for rule 100070, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack1=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100070 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100071.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100071.yaml new file mode 100644 index 0000000..5d63f32 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100071.yaml @@ -0,0 +1,28 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100071-1 + ruleid: 100071 + test_id: 1 + desc: 'Test case for rule 100071, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack1=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100071 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100072.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100072.yaml new file mode 100644 index 0000000..7376628 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100072.yaml @@ -0,0 +1,49 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100072-1 + ruleid: 100072 + test_id: 1 + desc: 'Test case for rule 100072, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack1=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100072 +- test_title: 100072-2 + ruleid: 100072 + test_id: 2 + desc: 'Test case for rule 100072, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack2=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100072 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100073.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100073.yaml new file mode 100644 index 0000000..16b972e --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100073.yaml @@ -0,0 +1,49 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100073-1 + ruleid: 100073 + test_id: 1 + desc: 'Test case for rule 100073, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack1=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100073 +- test_title: 100073-2 + ruleid: 100073 + test_id: 2 + desc: 'Test case for rule 100073, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack2=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100073 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100074.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100074.yaml new file mode 100644 index 0000000..ef08677 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100074.yaml @@ -0,0 +1,49 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100074-1 + ruleid: 100074 + test_id: 1 + desc: 'Test case for rule 100074, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack1=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100074 +- test_title: 100074-2 + ruleid: 100074 + test_id: 2 + desc: 'Test case for rule 100074, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack2=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100074 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100075.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100075.yaml new file mode 100644 index 0000000..96015ae --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100075.yaml @@ -0,0 +1,49 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100075-1 + ruleid: 100075 + test_id: 1 + desc: 'Test case for rule 100075, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack1=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100075 +- test_title: 100075-2 + ruleid: 100075 + test_id: 2 + desc: 'Test case for rule 100075, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack2=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100075 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100076.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100076.yaml new file mode 100644 index 0000000..196193e --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100076.yaml @@ -0,0 +1,28 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100076-1 + ruleid: 100076 + test_id: 1 + desc: 'Test case for rule 100076, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: GET + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack_foo=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100076 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100077.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100077.yaml new file mode 100644 index 0000000..ea72810 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100077.yaml @@ -0,0 +1,28 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100077-1 + ruleid: 100077 + test_id: 1 + desc: 'Test case for rule 100077, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack_foo=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100077 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100078.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100078.yaml new file mode 100644 index 0000000..ffae9db --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100078.yaml @@ -0,0 +1,28 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100078-1 + ruleid: 100078 + test_id: 1 + desc: 'Test case for rule 100078, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack_foo=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100078 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100079.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100079.yaml new file mode 100644 index 0000000..89c7cae --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_A-GET_100079.yaml @@ -0,0 +1,28 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_A-GET.yaml + description: Desc +tests: +- test_title: 100079-1 + ruleid: 100079 + test_id: 1 + desc: 'Test case for rule 100079, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /?attack_foo=test + version: HTTP/1.1 + output: + log: + expect_ids: + - 100079 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100080.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100080.yaml new file mode 100644 index 0000000..79e5da4 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100080.yaml @@ -0,0 +1,95 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_B-POST.yaml + description: Desc +tests: +- test_title: 100080-1 + ruleid: 100080 + test_id: 1 + desc: 'Test case for rule 100080, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack=test + output: + log: + expect_ids: + - 100080 +- test_title: 100080-2 + ruleid: 100080 + test_id: 2 + desc: 'Test case for rule 100080, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack1=test + output: + log: + expect_ids: + - 100080 +- test_title: 100080-3 + ruleid: 100080 + test_id: 3 + desc: 'Test case for rule 100080, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack2=test + output: + log: + expect_ids: + - 100080 +- test_title: 100080-4 + ruleid: 100080 + test_id: 4 + desc: 'Test case for rule 100080, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack_foo=test + output: + log: + expect_ids: + - 100080 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100081.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100081.yaml new file mode 100644 index 0000000..0f6d1e9 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100081.yaml @@ -0,0 +1,95 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_B-POST.yaml + description: Desc +tests: +- test_title: 100081-1 + ruleid: 100081 + test_id: 1 + desc: 'Test case for rule 100081, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack=test + output: + log: + expect_ids: + - 100081 +- test_title: 100081-2 + ruleid: 100081 + test_id: 2 + desc: 'Test case for rule 100081, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack1=test + output: + log: + expect_ids: + - 100081 +- test_title: 100081-3 + ruleid: 100081 + test_id: 3 + desc: 'Test case for rule 100081, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack2=test + output: + log: + expect_ids: + - 100081 +- test_title: 100081-4 + ruleid: 100081 + test_id: 4 + desc: 'Test case for rule 100081, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack_foo=test + output: + log: + expect_ids: + - 100081 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100082.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100082.yaml new file mode 100644 index 0000000..25e8088 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100082.yaml @@ -0,0 +1,95 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_B-POST.yaml + description: Desc +tests: +- test_title: 100082-1 + ruleid: 100082 + test_id: 1 + desc: 'Test case for rule 100082, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack=test + output: + log: + expect_ids: + - 100082 +- test_title: 100082-2 + ruleid: 100082 + test_id: 2 + desc: 'Test case for rule 100082, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack1=test + output: + log: + expect_ids: + - 100082 +- test_title: 100082-3 + ruleid: 100082 + test_id: 3 + desc: 'Test case for rule 100082, #3' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack2=test + output: + log: + expect_ids: + - 100082 +- test_title: 100082-4 + ruleid: 100082 + test_id: 4 + desc: 'Test case for rule 100082, #4' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack_foo=test + output: + log: + expect_ids: + - 100082 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100083.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100083.yaml new file mode 100644 index 0000000..61448fb --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100083.yaml @@ -0,0 +1,29 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_B-POST.yaml + description: Desc +tests: +- test_title: 100083-1 + ruleid: 100083 + test_id: 1 + desc: 'Test case for rule 100083, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack1=test + output: + log: + expect_ids: + - 100083 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100084.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100084.yaml new file mode 100644 index 0000000..18b7923 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100084.yaml @@ -0,0 +1,29 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_B-POST.yaml + description: Desc +tests: +- test_title: 100084-1 + ruleid: 100084 + test_id: 1 + desc: 'Test case for rule 100084, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack1=test + output: + log: + expect_ids: + - 100084 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100085.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100085.yaml new file mode 100644 index 0000000..3da6655 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100085.yaml @@ -0,0 +1,29 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_B-POST.yaml + description: Desc +tests: +- test_title: 100085-1 + ruleid: 100085 + test_id: 1 + desc: 'Test case for rule 100085, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack1=test + output: + log: + expect_ids: + - 100085 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100086.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100086.yaml new file mode 100644 index 0000000..a8f825c --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100086.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_B-POST.yaml + description: Desc +tests: +- test_title: 100086-1 + ruleid: 100086 + test_id: 1 + desc: 'Test case for rule 100086, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack1=test + output: + log: + expect_ids: + - 100086 +- test_title: 100086-2 + ruleid: 100086 + test_id: 2 + desc: 'Test case for rule 100086, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack2=test + output: + log: + expect_ids: + - 100086 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100087.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100087.yaml new file mode 100644 index 0000000..9e6f79a --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100087.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_B-POST.yaml + description: Desc +tests: +- test_title: 100087-1 + ruleid: 100087 + test_id: 1 + desc: 'Test case for rule 100087, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack1=test + output: + log: + expect_ids: + - 100087 +- test_title: 100087-2 + ruleid: 100087 + test_id: 2 + desc: 'Test case for rule 100087, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack2=test + output: + log: + expect_ids: + - 100087 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100088.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100088.yaml new file mode 100644 index 0000000..ee60dfc --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100088.yaml @@ -0,0 +1,51 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_B-POST.yaml + description: Desc +tests: +- test_title: 100088-1 + ruleid: 100088 + test_id: 1 + desc: 'Test case for rule 100088, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack1=test + output: + log: + expect_ids: + - 100088 +- test_title: 100088-2 + ruleid: 100088 + test_id: 2 + desc: 'Test case for rule 100088, #2' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack2=test + output: + log: + expect_ids: + - 100088 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100089.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100089.yaml new file mode 100644 index 0000000..ce8be7b --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100089.yaml @@ -0,0 +1,29 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_B-POST.yaml + description: Desc +tests: +- test_title: 100089-1 + ruleid: 100089 + test_id: 1 + desc: 'Test case for rule 100089, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack_foo=test + output: + log: + expect_ids: + - 100089 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100090.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100090.yaml new file mode 100644 index 0000000..99c2511 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100090.yaml @@ -0,0 +1,29 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_B-POST.yaml + description: Desc +tests: +- test_title: 100090-1 + ruleid: 100090 + test_id: 1 + desc: 'Test case for rule 100090, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack_foo=test + output: + log: + expect_ids: + - 100090 diff --git a/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100091.yaml b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100091.yaml new file mode 100644 index 0000000..d461417 --- /dev/null +++ b/generated/tests/regression/tests/MRTS_006_ARGS_NAMES_B-POST_100091.yaml @@ -0,0 +1,29 @@ +--- +meta: + author: MRTS generate-rules.py + enabled: true + name: MRTS_006_ARGS_NAMES_B-POST.yaml + description: Desc +tests: +- test_title: 100091-1 + ruleid: 100091 + test_id: 1 + desc: 'Test case for rule 100091, #1' + stages: + - description: Send request + input: + dest_addr: 127.0.0.1 + port: 80 + protocol: http + method: POST + headers: + User-Agent: OWASP MRTS test agent + Host: localhost + Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5 + uri: /post + version: HTTP/1.1 + data: attack_foo=test + output: + log: + expect_ids: + - 100091 diff --git a/generated/tests/regression/tests/MRTS_110_XML_100064.yaml b/generated/tests/regression/tests/MRTS_110_XML_100092.yaml similarity index 86% rename from generated/tests/regression/tests/MRTS_110_XML_100064.yaml rename to generated/tests/regression/tests/MRTS_110_XML_100092.yaml index 46dfd1f..c6892ce 100644 --- a/generated/tests/regression/tests/MRTS_110_XML_100064.yaml +++ b/generated/tests/regression/tests/MRTS_110_XML_100092.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_110_XML.yaml description: Desc tests: -- test_title: 100064-1 - ruleid: 100064 +- test_title: 100092-1 + ruleid: 100092 test_id: 1 - desc: 'Test case for rule 100064, #1' + desc: 'Test case for rule 100092, #1' stages: - description: Send request input: @@ -27,4 +27,4 @@ tests: output: log: expect_ids: - - 100064 + - 100092 diff --git a/generated/tests/regression/tests/MRTS_110_XML_100065.yaml b/generated/tests/regression/tests/MRTS_110_XML_100093.yaml similarity index 86% rename from generated/tests/regression/tests/MRTS_110_XML_100065.yaml rename to generated/tests/regression/tests/MRTS_110_XML_100093.yaml index c314a44..3d376d6 100644 --- a/generated/tests/regression/tests/MRTS_110_XML_100065.yaml +++ b/generated/tests/regression/tests/MRTS_110_XML_100093.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_110_XML.yaml description: Desc tests: -- test_title: 100065-1 - ruleid: 100065 +- test_title: 100093-1 + ruleid: 100093 test_id: 1 - desc: 'Test case for rule 100065, #1' + desc: 'Test case for rule 100093, #1' stages: - description: Send request input: @@ -27,4 +27,4 @@ tests: output: log: expect_ids: - - 100065 + - 100093 diff --git a/generated/tests/regression/tests/MRTS_110_XML_100066.yaml b/generated/tests/regression/tests/MRTS_110_XML_100094.yaml similarity index 86% rename from generated/tests/regression/tests/MRTS_110_XML_100066.yaml rename to generated/tests/regression/tests/MRTS_110_XML_100094.yaml index 570bb99..5ef6b32 100644 --- a/generated/tests/regression/tests/MRTS_110_XML_100066.yaml +++ b/generated/tests/regression/tests/MRTS_110_XML_100094.yaml @@ -5,10 +5,10 @@ meta: name: MRTS_110_XML.yaml description: Desc tests: -- test_title: 100066-1 - ruleid: 100066 +- test_title: 100094-1 + ruleid: 100094 test_id: 1 - desc: 'Test case for rule 100066, #1' + desc: 'Test case for rule 100094, #1' stages: - description: Send request input: @@ -27,4 +27,4 @@ tests: output: log: expect_ids: - - 100066 + - 100094