zeek/testing/btest/scripts/base/protocols/websocket/key-accept-wrong.zeek at 42ba2fcca01d15b1122ab56d841c6adc96663910 - Mirror/zeek - git.uphillsecurity.com: We code.

Mirror/zeek

mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00

Arne Welzel e17655be61 websocket: Verify Sec-WebSocket-Key/Accept headers and review feedback

Don't log them, they are random and arbitrary in the normal case. Users
can do the following to log them if wanted.

    redef += WebSocket::Info$client_key += { &log };
    redef += WebSocket::Info$server_accept += { &log };

2024-01-22 18:54:38 +01:00

7 lines

274 B

Text

Raw Blame History

 # @TEST-DOC: Test weird generation when the Sec-WebSocket-Accept socket isn't as expected.
 #
 # @TEST-EXEC: zeek -b -r $TRACES/websocket/wrong-accept-header.pcap %INPUT
 # @TEST-EXEC: btest-diff websocket.log
 # @TEST-EXEC: btest-diff weird.log
 @load base/protocols/websocket