ntyndall/detectR

Package index
Search the ntyndall/detectR package
Vignettes
Functions
52
Source code
38
Man pages
26
Home
/
GitHub
/
ntyndall/detectR
/
tests/testthat/test-attack_counts.R

tests/testthat/test-attack_counts.R
In ntyndall/detectR: 

# Initialise the attack words
attackWords <- detectR::attack_keywords()

# Define a simple matching object
matching <- list(
  wordList = c("this", "is", "a", "test"),
  indexes = c(1, 3, 5, 7),
  tokenList = c("w", "s", "w", "s", "w", "s", "w")
) %>%
  list


# Begin tests
test_that("Make sure a normal string returns 0 for all attack counts", {

  # There should be no attack words
  results <- matching %>%
    detectR::attack_counts(
      attackWords = attackWords
    )

  expect_is( results$counts, "matrix" )
  expect_equal( results$counts %>% nrow, 1 )
  expect_equal( results$counts %>% ncol, 3 )
  expect_equal( results$counts %>% as.double, 0 %>% rep(3) )
  expect_equal( results$matched[[1]]$tokenList, matching[[1]]$tokenList )

  # Can multiple items be passed?
  results <- c(matching, matching) %>%
    detectR::attack_counts(
      attackWords = attackWords
    )

  expect_is( results$counts, "matrix" )
  expect_equal( results$counts %>% nrow, 2 )
  expect_equal( results$counts %>% ncol, 3 )
  expect_equal( results$counts %>% as.double, 0 %>% rep(6) )
  for (i in 1:2) expect_equal( results$matched[[1]]$tokenList, matching[[1]]$tokenList )

})

test_that("Can attacks such as sqli/xss/bash be detected?", {

  # Set up vector and paste attack token either end
  basevec <- c("s", "w", "s", "w", "s")

  # Check for sqli
  matching[[1]]$wordList <- c('ornot', 'is', 'a', 'select')
  results <- matching %>%
    detectR::attack_counts(
      attackWords = attackWords
    )

  expect_is( results$counts, "matrix" )
  expect_equal( results$counts %>% nrow, 1 )
  expect_equal( results$counts %>% ncol, 3 )
  expect_equal( results$counts[1, 1], 2 )
  expect_equal( results$matched[[1]]$tokenList, c("x", basevec, "x") )

  # Check for xss
  matching[[1]]$wordList <- c('alert', 'is', 'a', 'alert')
  results <- matching %>%
    detectR::attack_counts(
      attackWords = attackWords
    )

  expect_is( results$counts, "matrix" )
  expect_equal( results$counts %>% nrow, 1 )
  expect_equal( results$counts %>% ncol, 3 )
  expect_equal( results$counts[1, 2], 2 )
  expect_equal( results$matched[[1]]$tokenList, c("y", basevec, "y") )

  # Check for xss
  matching[[1]]$wordList <- c('pwd', 'is', 'a', 'pwd')
  results <- matching %>%
    detectR::attack_counts(
      attackWords = attackWords
    )

  expect_is( results$counts, "matrix" )
  expect_equal( results$counts %>% nrow, 1 )
  expect_equal( results$counts %>% ncol, 3 )
  expect_equal( results$counts[1, 3], 2 )
  expect_equal( results$matched[[1]]$tokenList, c("z", basevec, "z") )

})
ntyndall/detectR documentation built on May 27, 2019, 3:32 p.m.

R Package Documentation

rdrr.io home R language documentation Run R code online

Browse R Packages

CRAN packages Bioconductor packages R-Forge packages GitHub packages

We want your feedback!

Note that we can't provide technical support on individual packages. You should contact the package authors for that.
GitHub issue tracker
ian@mutexlabs.com
Personal blog

 
Embedding an R snippet on your website

Add the following code to your website.

For more information on customizing the embed code, read Embedding Snippets.

Close