Skip to content

Commit

Permalink
Added addresses for SSRF and LFI exploits (#7189)
Browse files Browse the repository at this point in the history 
Co-authored-by: Manuel Álvarez Álvarez <[email protected]>
  • Loading branch information
@ValentinZakharov @manuel-alvarez-alvarez
ValentinZakharov and manuel-alvarez-alvarez committed Jun 14, 2024
1 parent ca01312 commit fba0450
Show file tree
Hide file tree
Showing 2 changed files with 11 additions and 1 deletion.
10 changes: 10 additions & 0 deletions dd-java-agent/appsec/src/main/java/com/datadog/appsec/event/data/KnownAddresses.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -111,6 +111,12 @@ public interface KnownAddresses {

Address<String> USER_ID = new Address<>("usr.id");

/** The URL of a network resource being requested (outgoing request) */
Address<String> IO_NET_URL = new Address<>("server.io.net.url");

/** The representation of opened file on the filesystem */
Address<String> IO_FS_FILE = new Address<>("server.io.fs.file");

/** The database type (ex: mysql, postgresql, sqlite) */
Address<String> DB_TYPE = new Address<>("server.db.system");

Expand Down Expand Up @@ -175,6 +181,10 @@ static Address<?> forName(String name) {
return SERVER_GRAPHQL_ALL_RESOLVERS;
case "usr.id":
return USER_ID;
case "server.io.net.url":
return IO_NET_URL;
case "server.io.fs.file":
return IO_FS_FILE;
case "server.db.system":
return DB_TYPE;
case "server.db.statement":
Expand Down
2 changes: 1 addition & 1 deletion ...t/appsec/src/test/groovy/com/datadog/appsec/event/data/KnownAddressesSpecification.groovy
View file
Original file line number Diff line number Diff line change
Expand Up @@ -42,7 +42,7 @@ class KnownAddressesSpecification extends Specification {

void 'number of known addresses is expected number'() {
expect:
Address.instanceCount() == 30
Address.instanceCount() == 32
KnownAddresses.WAF_CONTEXT_PROCESSOR.serial == Address.instanceCount() - 1
}
}

0 comments on commit fba0450

Please sign in to comment.