curiouswebster
asked on
Searching my .NET Solution for spots which need a returnURL vulnerability check
Need to find Redirects throughout multiple solutions so I can check for evil domains.
I have designed the code to parse through a URL to find if a domain is not on a white list. But I need to check more than just the LogOn() function.
How do I scan an entire C#.NET MVC solution to find the places where redirects take place and which could create the need to examine the URL for malicious domains...
I will search for "redirect" and "window.location," in all Javascript files. But I see the following...
What do you suggest about how to find which calls need to have this malicious domain check?
Thanks
I have designed the code to parse through a URL to find if a domain is not on a white list. But I need to check more than just the LogOn() function.
How do I scan an entire C#.NET MVC solution to find the places where redirects take place and which could create the need to examine the URL for malicious domains...
I will search for "redirect" and "window.location," in all Javascript files. But I see the following...
What do you suggest about how to find which calls need to have this malicious domain check?
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
thanks
ASKER
You used "etc" and I am trying to unearth additional words I can search for.
For example, I just found the following I can search for to get a URL that needs to be sanitized...
var returnUrl = context.HttpContext.Reques