JacksonBruce/web-security
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

web 安全技术首次发布

Browse Source 
跨站脚本攻击防御
This commit is contained in:
JacksonBruce
2015-02-20 13:02:57 +08:00
parent 0d07c40ddd
commit 868088c104
1639 changed files with 342527 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

39
XSSAttachs/TestXSSAttacksFilterSite/Test.aspx.cs Normal file
View File

@@ -0,0 +1,39 @@
//using org.owasp.validator.html;
using StyleSheetsParser;
using System;
using System.Collections.Generic;
using System.Linq;
using System.Runtime.CompilerServices;
using System.Text;
using System.Web;
using System.Web.UI;
using System.Web.UI.WebControls;
using XSSAttacksFilter;
namespace TestXSSAttacksFilterSite
{
public partial class Test : System.Web.UI.Page
{
//HtmlFilter antisamy;
//Policy policy = null;
//string filename = @"/resources/antisamy.xml";
public StringBuilder html;
protected void Page_Load(object sender, EventArgs e)
{
}
void FilterAttacks(string str, Func<string, bool> fn=null,[CallerMemberName] string propertyName = null)
{
html.Append("\n== in == "+propertyName+" ==================================================\n原文:\n" + str + "\n");
//html.Append("====================================================================================================");
html.Append("JavaScript\n" + ((RichText)str).JavascriptEncode);
html.Append("\n过滤:\n" + ((RichText)str));
html.Append((fn == null ? null : "\n状态" + (fn(str) ? "成功!" : "失败")));
}
protected void btn_Click(object sender, EventArgs e)
{
html = new StringBuilder();
FilterAttacks(txt.Text);
}
}
}