public class RuleConfigParam extends AbstractParam
It also exposes the names of the (core) rules that can be accessed by the scanners (through
the Configuration
set/used by the passive/active scans).
Modifier and Type | Field and Description |
---|---|
static String |
RULE_COMMON_SLEEP_TIME
The name of the rule to obtain the time, in seconds, for time-based attacks.
|
static String |
RULE_COOKIE_IGNORE_LIST
The name of the rule to obtain the string containing a comma separated list of cookies that
should be ignored when checking for issues.
|
static String |
RULE_CSRF_IGNORE_ATT_NAME
The name of an HTML attribute that can be used to indicate that a form does not need an Anti
CSRF Token.
|
static String |
RULE_CSRF_IGNORE_ATT_VALUE
The value of an HTML attribute named by 'rules.csrf.ignore.attname' that can be used to
indicate that a form does not need an Anti CSRF Token.
|
static String |
RULE_CSRF_IGNORE_LIST
The name of the rule to obtain the string containing a comma separated list of names/IDs of
forms that should be ignored when checking for CSRF issues.
|
static int |
RULE_DEFAULT_COMMON_SLEEP_TIME
The default time, in seconds, to use for time-based attacks
|
static String |
RULE_DOMAINS_TRUSTED
The name of the rule to obtain the string containing a comma separated list of URL regex
patterns.
|
static String |
RULE_DOMXSS_BROWSER_ID
The name of the rule to obtain the ID of the browser to use in DOM XSS scans.
|
Constructor and Description |
---|
RuleConfigParam() |
Modifier and Type | Method and Description |
---|---|
void |
addRuleConfig(RuleConfig rc) |
void |
addRuleConfig(String key,
String defaultValue,
String value) |
List<RuleConfig> |
getAllRuleConfigs() |
RuleConfig |
getRuleConfig(String key) |
String |
getRuleConfigDefaultValue(String key) |
String |
getRuleConfigValue(String key) |
protected void |
parse()
Parses the configurations.
|
void |
resetAllRuleConfigValues() |
void |
resetRuleConfigValue(String key) |
void |
setRuleConfigValue(String key,
String value) |
clone, getBoolean, getConfig, getInt, getInteger, getString, load, load, load, logConversionException, reset
public static final String RULE_COMMON_SLEEP_TIME
public static final String RULE_CSRF_IGNORE_LIST
public static final String RULE_CSRF_IGNORE_ATT_NAME
public static final String RULE_CSRF_IGNORE_ATT_VALUE
public static final String RULE_COOKIE_IGNORE_LIST
public static final String RULE_DOMAINS_TRUSTED
public static final String RULE_DOMXSS_BROWSER_ID
public static final int RULE_DEFAULT_COMMON_SLEEP_TIME
RULE_COMMON_SLEEP_TIME
,
Constant Field Valuesprotected void parse()
AbstractParam
Called each time the configurations are loaded.
parse
in class AbstractParam
AbstractParam.getConfig()
public void addRuleConfig(RuleConfig rc)
public RuleConfig getRuleConfig(String key)
public List<RuleConfig> getAllRuleConfigs()
public void resetRuleConfigValue(String key)
public void resetAllRuleConfigValues()