Python ESAPI.executorの例

プログラミング言語: Python

名前空間/パッケージ名: esapi.core

クラス/型: ESAPI

メソッド/関数: executor

hotexamples.comのコード掲載数: 2

Python ESAPI.executor - 2件のコード例が見つかりました。すべてオープンソースプロジェクトから抽出されたPythonのesapi.core.ESAPI.executorの実例で、最も評価が高いものを厳選しています。コード例の評価を行っていただくことで、より質の高いコード例が表示されるようになります。

よく使われるメソッド

表示非表示

authenticator(30)

encoder(26)

validator(23)

security_configuration(22)

http_utilities(19)

randomizer(15)

encryptor(13)

logger(13)

access_controller(6)

intrusion_detector(4)

executor(2)

current_request(1)

コード例 #1

ファイルを表示

ファイル: test_executor.py プロジェクト: webvul/owasp-esapi-python

 def test_execute_on_windows(self):
     if os.name != 'nt':
         print "Not executing test_execute_on_windows because os.name != 'nt'"
         return
         
     codec = WindowsCodec()
     instance = ESAPI.executor()
     orig_executable = "C:\\Windows\System32\cmd.exe"
     parent_dir = 'C:\\'
     params = ['/C', 'dir']
     result = instance.execute_system_command(orig_executable, params, parent_dir, codec=codec)
     print "result:", result
     
     executable = orig_executable + ";inject.exe"
     self.assertRaises(ExecutorException, instance.execute_system_command, executable, params, parent_dir, codec=codec)
     
     executable = orig_executable + "\\..\\cmd.exe"
     self.assertRaises(ExecutorException, instance.execute_system_command, executable, params, parent_dir, codec=codec)
     
     work_dir = "C:\\ridiculous"
     self.assertRaises(ExecutorException, instance.execute_system_command, orig_executable, params, parent_dir, work_dir, codec=codec)
     
     params.append("&dir")
     result = instance.execute_system_command(orig_executable, params, parent_dir, codec=codec)
     print "result:", result
     
     params = params[:-1] + ['c:\\autoexec.bat']
     result = instance.execute_system_command(orig_executable, params, parent_dir, codec=codec)
     print "result:", result
     
     params = params[:-1] + ['c:\\autoexec.bat c:\\config.sys']
     result = instance.execute_system_command(orig_executable, params, parent_dir, codec=codec)
     print "result:", result

コード例 #2

ファイルを表示

ファイル: test_executor.py プロジェクト: webvul/owasp-esapi-python

    def test_execute_on_linux(self):
        if os.name == 'nt':
            print "Not executing test_execute_on_linux because os.name == 'nt'"
            return
            
        codec = UnixCodec()
        instance = ESAPI.executor()
        executable = "/bin/sh"
        params = ['-c', 'ls', '/']
        parent_dir = '/'
        result = instance.execute_system_command(executable, params, parent_dir, codec=codec)
        print "result:", result

        # Don't log the params
        result = instance.execute_system_command(executable, params, parent_dir, log_params=False)

        # Test default codec
        result = instance.execute_system_command(executable, params, parent_dir)
        print "result:", result
        
        # Test bad executable
        self.assertRaises( ExecutorException, instance.execute_system_command, "/usr/bin/passwd", [], parent_dir)
        
        # Test bad working directory
        self.assertRaises( ExecutorException, instance.execute_system_command, executable, params, parent_dir, "/rediculous")
        
        executable = '/bin/sh;.inject'
        self.assertRaises( ExecutorException, instance.execute_system_command, executable, params, parent_dir, codec=codec)
        
        executable = '/../bin/sh'
        self.assertRaises( ExecutorException, instance.execute_system_command, executable, params, parent_dir, codec=codec)        

        executable = '/bin/sh'
        params.append(';ls')
        result = instance.execute_system_command(executable, params, parent_dir, codec=codec)
        print "result:", result    
        
        # Exceed the runtime
        executable = '/bin/sleep'
        params = ['30']
        self.assertRaises( ExecutorException, instance.execute_system_command, executable, params, parent_dir)