UNPKG

node-soc-lite

Version:

A security middleware for NodeJs(express) app to Detect OWASP Top Basic and generate report in your ThreatEquation dashboard.

www.threatequation.com

threatequation/node-soc-lite

32 lines (28 loc) 1.04 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
'use strict'; // intitial the module // var sanitizeHtml = require('sanitize-html'); // var p = require('../lib/patterns'); var ruleChecker = require('../lib/rule_checker'); var purifier = require('../lib/rules_v2'); var loggGenerator=require('../lib/log_generator').logGenerator; //var url_coder=require('../lib/url_coder'); // get the all request,response module.exports = function (req, res) { // catch the all get method if (req.method === "GET") { for (var key in req.query) { var detect = ruleChecker.xssFilter(decodeURI(req.query[key])); if (detect) { loggGenerator(req, 'XSS', detect, { key: req.body[key]}); } } } if (req.method === "POST" || req.method === "PUT" || req.method === "PATCH"){ for (var key in req.body) { var detect = ruleChecker.xssFilter(decodeURI(req.body[key])); if (detect) { loggGenerator(req, 'XSS', detect, { key: req.body[key]}); } } } };