intesar
commented
3 years ago Message : This issue is manually closed from FX control plane.
Title: DDOS Vulnerability on GET:/api/v1/primary-transaction Project: NetBanking API Description:
Assertion Name: DDoS ( 1 )( 2 )Overview: In computing, a Denial-of-Service attack (DoS attack) is a cyber-attack in which the perpetrator seeks to make a machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a host connected to the Internet. Denial of service is typically accomplished by flooding the targeted machine or resource with superfluous requests in an attempt to overload systems and prevent some or all legitimate requests from being fulfilled.
In a Distributed Denial-of-Service attack (DDoS attack), the incoming traffic flooding the victim originates from many different sources. This effectively makes it impossible to stop the attack simply by blocking a single source.
DDoS or Distributed Denial of service is flooding the targeted API endpoints with superfluous requests in an attempt to overload systems and prevent some or all legitimate requests from being fulfilled.
An advanced DDoS attack can be created with a very few tailored requests. e.g. if the API endpoints have a vulnerability which allows requesting 10,000 items or records by setting page-size=10000 or large date range on the vulnerable API endpoint, then by sending a few of these requests regularly can put the entire system unresponsive leading towards revenue and brand loss.
e.g. values pageSize=101 page_size=101 /api/v1/dashboard/count-bugs-between?fromDate={{@PastDate | dd/MM/yyyy}}&toDate={{@Date | dd/MM/yyyy}} /api/v1/dashboard/count-tests-between?fromDate={{@PastDate | dd/MM/yyyy}}&toDate={{@Date | dd/MM/yyyy}}.
Quite often, APIs do not impose any restrictions on the size or number of resources that can be requested by the client/user. Not only can this impact the API server performance, leading to Denial of Service (DoS), but also leaves the door open to authentication flaws such as brute force.
Severity: DDoS is a form of Cyber Attack. The DDoS attacks are increasing on Year-on-Year basis and is consistently reported in Akamai State of Internet / Security Reports( 3 ).
Vulnerability Impact: A successful DDoS attacks can
- have an operational disruption of your service
- make your services unavailable for an indefinite period
- have financial and legal consequence if application fails to live up to service level agreements
- Can have irreparable damage to company’s brand reputation
Exploitation: DoS / DDoS attackers attempt to overwhelm web applications and APIs with a flood of HTTP/HTTPS requests. In order to obtain a high enough level of traffic, attackers typically need to leverage a large number of attacking hosts to achieve the desired effect. One way to do this is by purchasing access to a "booter service" - which is a marketing term for "DDoS for Hire" ( 5 ).
Remediation: While it may not be completely possible to avoid DoS or DDoS attack, but it is possible to identify and take remediation steps. Different protections that can be leveraged are
- Network Controls – Allowing for blacklisting of IP Addresses and CIDR Ranges
- Rate Controls – Different threshold criterion can be defined to avoid volumetric flooding
- Site Defenders – to identify Slow Posts that open HTTP connections and then slowing sending data very slowly.
- Web Application Firewalls – Many DoS tools have tell-tale fingerprints and can be easily identified and blocked.
References:
- Understanding Denial-of-Service Attacks - https://www.us-cert.gov/ncas/tips/ST04-015
- DoS and DDoS - https://en.wikipedia.org/wiki/Denial-of-service_attack
- Akamai 2018 State of Internet / Security Report - https://www.akamai.com/us/en/about/our-thinking/state-of-the-internet-report/global-state-of-the-internet-security-ddos-attack-reports.jsp
- Akamai 2018 Attack Stats - https://www.akamai.com/us/en/multimedia/documents/infographic/ddos-web-application-attack-stats-asia-pacific-ponemon-web-security-infographic-2018.pdf
- The Dark Side of APIs – Denial of Service Attacks - https://blogs.akamai.com/sitr/2018/08/the-dark-side-of-apis-denial-of-service-attacks.html
Risk: DDOS Severity: Medium API Endpoint: http://95.217.118.53:8080/api/v1/primary-transaction?pageSize=101 Environment: Master Playbook: ApiV1PrimaryTransactionGetQueryParamPagesizeDdos Researcher: Default QUICK TIPS Suggestion: Effort Estimate: Wire Logs: 07:10:14 [D] [AVPTGQPPDdos] : URL [http://95.217.118.53:8080/api/v1/primary-transaction?pageSize=101] 07:10:14 [D] [AVPTGQPPDdos] : Method [GET] 07:10:14 [D] [AVPTGQPPDdos] : Auth [Default] 07:10:14 [D] [AVPTGQPPDdos] : Request [] 07:10:14 [D] [AVPTGQPPDdos] : Request-Headers [{Accept=[application/json], Content-Type=[application/json], Authorization=[**********]}] 07:10:14 [D] [AVPTGQPPDdos] : Response [{ "requestId" : "None", "requestTime" : "2020-08-13T19:10:14.146+0000", "errors" : false, "messages" : [ ], "data" : [ { "id" : "119-23-5986", "createdBy" : "12", "createdDate" : "2020-06-30T09:11:37.687+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T19:43:53.581+0000", "version" : null, "inactive" : false, "description" : "Metafiction", "type" : "Primary", "status" : "false", "amount" : 286954.0, "availableBalance" : 333136.0, "user" : null }, { "id" : "504-14-6066", "createdBy" : "10", "createdDate" : "2020-06-30T04:09:44.671+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T10:11:29.625+0000", "version" : null, "inactive" : false, "description" : "Mystery", "type" : "Primary", "status" : "false", "amount" : 527477.0, "availableBalance" : 499037.0, "user" : null }, { "id" : "616-40-2606", "createdBy" : "11", "createdDate" : "2020-06-30T23:27:40.177+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T23:40:06.588+0000", "version" : null, "inactive" : false, "description" : "Classic", "type" : "Primary", "status" : "true", "amount" : 285042.0, "availableBalance" : 554757.0, "user" : null }, { "id" : "631-41-7645", "createdBy" : "13", "createdDate" : "2020-06-30T10:47:40.428+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T03:49:59.784+0000", "version" : null, "inactive" : false, "description" : "Mythopoeia", "type" : "Primary", "status" : "true", "amount" : 212228.0, "availableBalance" : 432292.0, "user" : null }, { "id" : "816-85-0231", "createdBy" : "13", "createdDate" : "2020-06-30T15:08:35.674+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T06:42:18.409+0000", "version" : null, "inactive" : false, "description" : "Science fiction", "type" : "Primary", "status" : "true", "amount" : 303255.0, "availableBalance" : 457929.0, "user" : null }, { "id" : "030-96-1941", "createdBy" : "14", "createdDate" : "2020-06-30T05:28:48.802+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T15:32:15.723+0000", "version" : null, "inactive" : false, "description" : "Short story", "type" : "Primary", "status" : "false", "amount" : 186480.0, "availableBalance" : 410717.0, "user" : null }, { "id" : "110-23-6199", "createdBy" : "11", "createdDate" : "2020-06-30T15:35:15.692+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T08:36:32.029+0000", "version" : null, "inactive" : false, "description" : "Western", "type" : "Primary", "status" : "false", "amount" : 413791.0, "availableBalance" : 366878.0, "user" : null }, { "id" : "565-93-2691", "createdBy" : "10", "createdDate" : "2020-06-30T07:24:26.220+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T18:53:46.608+0000", "version" : null, "inactive" : false, "description" : "Essay", "type" : "Primary", "status" : "false", "amount" : 144406.0, "availableBalance" : 510522.0, "user" : null }, { "id" : "478-47-3886", "createdBy" : "12", "createdDate" : "2020-06-30T12:57:52.247+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T14:44:53.802+0000", "version" : null, "inactive" : false, "description" : "Comic/Graphic Novel", "type" : "Primary", "status" : "true", "amount" : 349161.0, "availableBalance" : 488134.0, "user" : null }, { "id" : "734-23-7316", "createdBy" : "13", "createdDate" : "2020-06-30T17:24:49.750+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T01:15:54.911+0000", "version" : null, "inactive" : false, "description" : "Realistic fiction", "type" : "Primary", "status" : "true", "amount" : 270271.0, "availableBalance" : 454377.0, "user" : null }, { "id" : "378-82-5555", "createdBy" : "11", "createdDate" : "2020-06-30T14:17:08.310+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T20:58:47.239+0000", "version" : null, "inactive" : false, "description" : "Realistic fiction", "type" : "Primary", "status" : "false", "amount" : 24555.0, "availableBalance" : 185786.0, "user" : null }, { "id" : "510-41-6198", "createdBy" : "11", "createdDate" : "2020-06-30T05:30:24.860+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T03:42:46.730+0000", "version" : null, "inactive" : false, "description" : "Horror", "type" : "Primary", "status" : "false", "amount" : 441412.0, "availableBalance" : 129401.0, "user" : null }, { "id" : "178-08-6839", "createdBy" : "12", "createdDate" : "2020-06-30T22:39:46.221+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T02:58:51.114+0000", "version" : null, "inactive" : false, "description" : "Fantasy", "type" : "Primary", "status" : "false", "amount" : 580226.0, "availableBalance" : 411092.0, "user" : null }, { "id" : "119-28-1312", "createdBy" : "13", "createdDate" : "2020-06-30T00:07:33.416+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T21:31:51.323+0000", "version" : null, "inactive" : false, "description" : "Fiction narrative", "type" : "Primary", "status" : "false", "amount" : 468641.0, "availableBalance" : 310811.0, "user" : null }, { "id" : "211-33-4616", "createdBy" : "12", "createdDate" : "2020-06-30T03:55:07.529+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T06:01:56.571+0000", "version" : null, "inactive" : false, "description" : "Biography/Autobiography", "type" : "Primary", "status" : "false", "amount" : 486888.0, "availableBalance" : 233455.0, "user" : null }, { "id" : "089-18-6474", "createdBy" : "12", "createdDate" : "2020-06-30T07:54:13.551+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T20:02:16.181+0000", "version" : null, "inactive" : false, "description" : "Speech", "type" : "Primary", "status" : "false", "amount" : 63191.0, "availableBalance" : 265522.0, "user" : null }, { "id" : "118-38-7891", "createdBy" : "10", "createdDate" : "2020-06-30T03:58:19.548+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T06:46:36.727+0000", "version" : null, "inactive" : false, "description" : "Biography/Autobiography", "type" : "Primary", "status" : "false", "amount" : 154836.0, "availableBalance" : 385815.0, "user" : null }, { "id" : "253-14-2660", "createdBy" : "12", "createdDate" : "2020-06-30T02:10:00.578+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T10:53:27.215+0000", "version" : null, "inactive" : false, "description" : "Realistic fiction", "type" : "Primary", "status" : "true", "amount" : 534740.0, "availableBalance" : 237719.0, "user" : null }, { "id" : "659-13-0879", "createdBy" : "11", "createdDate" : "2020-06-30T11:15:29.194+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T00:10:36.602+0000", "version" : null, "inactive" : false, "description" : "Folklore", "type" : "Primary", "status" : "true", "amount" : 323570.0, "availableBalance" : 275158.0, "user" : null }, { "id" : "797-85-5973", "createdBy" : "11", "createdDate" : "2020-06-30T05:27:31.666+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T14:48:20.918+0000", "version" : null, "inactive" : false, "description" : "Science fiction", "type" : "Primary", "status" : "true", "amount" : 542965.0, "availableBalance" : 66525.0, "user" : null }, { "id" : "419-84-4067", "createdBy" : "13", "createdDate" : "2020-06-30T19:15:11.820+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T22:45:03.169+0000", "version" : null, "inactive" : false, "description" : "Fantasy", "type" : "Primary", "status" : "true", "amount" : 543753.0, "availableBalance" : 81342.0, "user" : null }, { "id" : "186-06-0745", "createdBy" : "13", "createdDate" : "2020-06-30T05:26:44.764+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T21:28:01.691+0000", "version" : null, "inactive" : false, "description" : "Western", "type" : "Primary", "status" : "false", "amount" : 247506.0, "availableBalance" : 213316.0, "user" : null }, { "id" : "369-75-4477", "createdBy" : "10", "createdDate" : "2020-06-30T04:09:21.956+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T19:03:13.857+0000", "version" : null, "inactive" : false, "description" : "Historical fiction", "type" : "Primary", "status" : "false", "amount" : 310813.0, "availableBalance" : 212679.0, "user" : null }, { "id" : "885-13-2357", "createdBy" : "13", "createdDate" : "2020-06-30T08:07:56.759+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T11:42:16.441+0000", "version" : null, "inactive" : false, "description" : "Biography/Autobiography", "type" : "Primary", "status" : "false", "amount" : 227976.0, "availableBalance" : 44037.0, "user" : null }, { "id" : "711-37-0582", "createdBy" : "12", "createdDate" : "2020-06-30T17:43:47.718+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T00:45:52.919+0000", "version" : null, "inactive" : false, "description" : "Fable", "type" : "Primary", "status" : "true", "amount" : 187459.0, "availableBalance" : 467701.0, "user" : null }, { "id" : "173-51-9703", "createdBy" : "12", "createdDate" : "2020-06-30T06:26:39.456+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T21:16:16.814+0000", "version" : null, "inactive" : false, "description" : "Metafiction", "type" : "Primary", "status" : "false", "amount" : 336149.0, "availableBalance" : 26563.0, "user" : null }, { "id" : "772-53-6003", "createdBy" : "12", "createdDate" : "2020-06-30T03:19:32.896+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T00:44:38.763+0000", "version" : null, "inactive" : false, "description" : "Folklore", "type" : "Primary", "status" : "false", "amount" : 373255.0, "availableBalance" : 556934.0, "user" : null }, { "id" : "320-43-4912", "createdBy" : "13", "createdDate" : "2020-06-30T09:20:44.619+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T01:49:24.154+0000", "version" : null, "inactive" : false, "description" : "Essay", "type" : "Primary", "status" : "false", "amount" : 479985.0, "availableBalance" : 228574.0, "user" : null }, { "id" : "141-51-6709", "createdBy" : "11", "createdDate" : "2020-06-30T14:41:08.708+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T12:11:07.243+0000", "version" : null, "inactive" : false, "description" : "Horror", "type" : "Primary", "status" : "false", "amount" : 169250.0, "availableBalance" : 491548.0, "user" : null }, { "id" : "761-35-4775", "createdBy" : "14", "createdDate" : "2020-06-30T19:00:33.944+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T23:14:49.954+0000", "version" : null, "inactive" : false, "description" : "Speech", "type" : "Primary", "status" : "true", "amount" : 119535.0, "availableBalance" : 436253.0, "user" : null }, { "id" : "325-62-4721", "createdBy" : "11", "createdDate" : "2020-06-30T13:15:53.554+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T13:18:46.745+0000", "version" : null, "inactive" : false, "description" : "Essay", "type" : "Primary", "status" : "false", "amount" : 357684.0, "availableBalance" : 406600.0, "user" : null }, { "id" : "243-73-6984", "createdBy" : "14", "createdDate" : "2020-06-30T21:30:48.406+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T06:56:38.480+0000", "version" : null, "inactive" : false, "description" : "Fiction narrative", "type" : "Primary", "status" : "true", "amount" : 74103.0, "availableBalance" : 315269.0, "user" : null }, { "id" : "802-11-5998", "createdBy" : "13", "createdDate" : "2020-06-30T20:29:07.895+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T13:19:30.137+0000", "version" : null, "inactive" : false, "description" : "Tall tale", "type" : "Primary", "status" : "true", "amount" : 587452.0, "availableBalance" : 108124.0, "user" : null }, { "id" : "362-03-9822", "createdBy" : "12", "createdDate" : "2020-06-30T03:20:57.210+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T02:35:45.524+0000", "version" : null, "inactive" : false, "description" : "Suspense/Thriller", "type" : "Primary", "status" : "false", "amount" : 190815.0, "availableBalance" : 533540.0, "user" : null }, { "id" : "473-19-7886", "createdBy" : "10", "createdDate" : "2020-06-30T15:32:23.600+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T11:44:35.857+0000", "version" : null, "inactive" : false, "description" : "Suspense/Thriller", "type" : "Primary", "status" : "false", "amount" : 217029.0, "availableBalance" : 535904.0, "user" : null }, { "id" : "350-10-4685", "createdBy" : "12", "createdDate" : "2020-06-30T03:23:11.256+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T19:42:28.457+0000", "version" : null, "inactive" : false, "description" : "Realistic fiction", "type" : "Primary", "status" : "false", "amount" : 437869.0, "availableBalance" : 103445.0, "user" : null }, { "id" : "150-18-9203", "createdBy" : "13", "createdDate" : "2020-06-30T20:21:14.656+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T03:26:38.925+0000", "version" : null, "inactive" : false, "description" : "Fable", "type" : "Primary", "status" : "false", "amount" : 278421.0, "availableBalance" : 9049.0, "user" : null }, { "id" : "573-59-5084", "createdBy" : "13", "createdDate" : "2020-06-30T14:37:47.961+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T21:31:45.350+0000", "version" : null, "inactive" : false, "description" : "Tall tale", "type" : "Primary", "status" : "true", "amount" : 117453.0, "availableBalance" : 42757.0, "user" : null }, { "id" : "894-73-7988", "createdBy" : "13", "createdDate" : "2020-06-30T14:28:01.701+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T01:15:37.025+0000", "version" : null, "inactive" : false, "description" : "Fantasy", "type" : "Primary", "status" : "false", "amount" : 31617.0, "availableBalance" : 105228.0, "user" : null }, { "id" : "252-17-7078", "createdBy" : "12", "createdDate" : "2020-06-30T21:05:14.423+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T01:55:29.032+0000", "version" : null, "inactive" : false, "description" : "Mystery", "type" : "Primary", "status" : "false", "amount" : 525873.0, "availableBalance" : 338158.0, "user" : null }, { "id" : "648-30-1053", "createdBy" : "11", "createdDate" : "2020-06-30T13:14:56.083+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T08:04:44.899+0000", "version" : null, "inactive" : false, "description" : "Reference book", "type" : "Primary", "status" : "false", "amount" : 533206.0, "availableBalance" : 243109.0, "user" : null }, { "id" : "683-48-3471", "createdBy" : "12", "createdDate" : "2020-06-30T15:08:33.807+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T05:59:24.324+0000", "version" : null, "inactive" : false, "description" : "Fable", "type" : "Primary", "status" : "true", "amount" : 202690.0, "availableBalance" : 205924.0, "user" : null }, { "id" : "158-13-3801", "createdBy" : "14", "createdDate" : "2020-06-30T14:31:41.294+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T05:13:01.507+0000", "version" : null, "inactive" : false, "description" : "Legend", "type" : "Primary", "status" : "false", "amount" : 509343.0, "availableBalance" : 154850.0, "user" : null }, { "id" : "279-04-3874", "createdBy" : "11", "createdDate" : "2020-06-30T14:33:40.091+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T15:15:44.921+0000", "version" : null, "inactive" : false, "description" : "Mythology", "type" : "Primary", "status" : "true", "amount" : 151849.0, "availableBalance" : 213788.0, "user" : null }, { "id" : "105-70-7717", "createdBy" : "11", "createdDate" : "2020-06-30T06:59:44.749+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T08:26:06.750+0000", "version" : null, "inactive" : false, "description" : "Mythopoeia", "type" : "Primary", "status" : "true", "amount" : 504326.0, "availableBalance" : 465575.0, "user" : null }, { "id" : "479-83-2980", "createdBy" : "11", "createdDate" : "2020-06-30T09:30:47.101+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T06:29:11.295+0000", "version" : null, "inactive" : false, "description" : "Classic", "type" : "Primary", "status" : "false", "amount" : 316800.0, "availableBalance" : 257872.0, "user" : null }, { "id" : "039-41-2663", "createdBy" : "13", "createdDate" : "2020-06-30T16:50:08.649+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T17:24:56.557+0000", "version" : null, "inactive" : false, "description" : "Biography/Autobiography", "type" : "Primary", "status" : "true", "amount" : 479231.0, "availableBalance" : 587480.0, "user" : null }, { "id" : "657-37-0151", "createdBy" : "12", "createdDate" : "2020-06-30T01:45:13.425+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T13:39:45.896+0000", "version" : null, "inactive" : false, "description" : "Comic/Graphic Novel", "type" : "Primary", "status" : "true", "amount" : 497904.0, "availableBalance" : 318965.0, "user" : null }, { "id" : "096-54-3628", "createdBy" : "12", "createdDate" : "2020-06-30T15:46:08.405+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T13:27:05.076+0000", "version" : null, "inactive" : false, "description" : "Biography/Autobiography", "type" : "Primary", "status" : "false", "amount" : 122326.0, "availableBalance" : 379146.0, "user" : null }, { "id" : "759-22-8573", "createdBy" : "10", "createdDate" : "2020-06-30T07:57:30.244+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T15:17:05.122+0000", "version" : null, "inactive" : false, "description" : "Comic/Graphic Novel", "type" : "Primary", "status" : "true", "amount" : 153513.0, "availableBalance" : 292693.0, "user" : null }, { "id" : "670-24-2573", "createdBy" : "10", "createdDate" : "2020-06-30T18:18:51.230+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T23:08:29.904+0000", "version" : null, "inactive" : false, "description" : "Comic/Graphic Novel", "type" : "Primary", "status" : "true", "amount" : 587171.0, "availableBalance" : 55221.0, "user" : null }, { "id" : "867-82-3884", "createdBy" : "14", "createdDate" : "2020-06-30T14:05:55.325+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T00:47:00.206+0000", "version" : null, "inactive" : false, "description" : "Folklore", "type" : "Primary", "status" : "false", "amount" : 114569.0, "availableBalance" : 593993.0, "user" : null }, { "id" : "488-95-9644", "createdBy" : "12", "createdDate" : "2020-06-30T06:31:09.662+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T05:39:02.064+0000", "version" : null, "inactive" : false, "description" : "Tall tale", "type" : "Primary", "status" : "true", "amount" : 279435.0, "availableBalance" : 487303.0, "user" : null }, { "id" : "316-31-3523", "createdBy" : "10", "createdDate" : "2020-06-30T17:59:50.577+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T16:34:52.526+0000", "version" : null, "inactive" : false, "description" : "Science fiction", "type" : "Primary", "status" : "true", "amount" : 439493.0, "availableBalance" : 366352.0, "user" : null }, { "id" : "847-45-0781", "createdBy" : "12", "createdDate" : "2020-06-30T03:22:17.626+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T06:39:38.055+0000", "version" : null, "inactive" : false, "description" : "Short story", "type" : "Primary", "status" : "false", "amount" : 460642.0, "availableBalance" : 556123.0, "user" : null }, { "id" : "092-99-7309", "createdBy" : "14", "createdDate" : "2020-06-30T11:26:34.375+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T14:32:10.702+0000", "version" : null, "inactive" : false, "description" : "Metafiction", "type" : "Primary", "status" : "true", "amount" : 97287.0, "availableBalance" : 499686.0, "user" : null }, { "id" : "652-71-9921", "createdBy" : "12", "createdDate" : "2020-06-30T04:24:31.414+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T02:01:12.511+0000", "version" : null, "inactive" : false, "description" : "Fiction in verse", "type" : "Primary", "status" : "true", "amount" : 64889.0, "availableBalance" : 145416.0, "user" : null }, { "id" : "870-75-2443", "createdBy" : "11", "createdDate" : "2020-06-30T10:08:30.239+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T07:18:17.222+0000", "version" : null, "inactive" : false, "description" : "Mystery", "type" : "Primary", "status" : "true", "amount" : 503420.0, "availableBalance" : 361532.0, "user" : null }, { "id" : "060-27-8063", "createdBy" : "13", "createdDate" : "2020-06-30T01:19:06.705+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T12:16:43.113+0000", "version" : null, "inactive" : false, "description" : "Reference book", "type" : "Primary", "status" : "true", "amount" : 597396.0, "availableBalance" : 65064.0, "user" : null }, { "id" : "372-77-4225", "createdBy" : "14", "createdDate" : "2020-06-30T18:19:33.509+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T10:29:40.179+0000", "version" : null, "inactive" : false, "description" : "Horror", "type" : "Primary", "status" : "true", "amount" : 203424.0, "availableBalance" : 415120.0, "user" : null }, { "id" : "644-93-5167", "createdBy" : "13", "createdDate" : "2020-06-30T01:41:44.716+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T07:52:14.521+0000", "version" : null, "inactive" : false, "description" : "Folklore", "type" : "Primary", "status" : "true", "amount" : 564058.0, "availableBalance" : 91230.0, "user" : null }, { "id" : "400-81-5175", "createdBy" : "11", "createdDate" : "2020-06-30T15:00:11.850+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T23:58:00.513+0000", "version" : null, "inactive" : false, "description" : "Fairy tale", "type" : "Primary", "status" : "true", "amount" : 185592.0, "availableBalance" : 218307.0, "user" : null }, { "id" : "419-15-8674", "createdBy" : "13", "createdDate" : "2020-06-30T00:39:33.207+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T20:22:58.338+0000", "version" : null, "inactive" : false, "description" : "Folklore", "type" : "Primary", "status" : "false", "amount" : 266203.0, "availableBalance" : 154910.0, "user" : null }, { "id" : "228-29-8699", "createdBy" : "13", "createdDate" : "2020-06-30T18:34:46.619+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T20:40:48.329+0000", "version" : null, "inactive" : false, "description" : "Metafiction", "type" : "Primary", "status" : "false", "amount" : 361033.0, "availableBalance" : 15815.0, "user" : null }, { "id" : "149-54-7769", "createdBy" : "14", "createdDate" : "2020-06-30T16:36:50.280+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T14:30:35.416+0000", "version" : null, "inactive" : false, "description" : "Fiction narrative", "type" : "Primary", "status" : "false", "amount" : 25679.0, "availableBalance" : 256329.0, "user" : null }, { "id" : "277-30-9426", "createdBy" : "14", "createdDate" : "2020-06-30T23:09:25.263+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T02:46:04.522+0000", "version" : null, "inactive" : false, "description" : "Mythopoeia", "type" : "Primary", "status" : "false", "amount" : 381710.0, "availableBalance" : 408926.0, "user" : null }, { "id" : "661-47-2600", "createdBy" : "13", "createdDate" : "2020-06-30T04:37:03.242+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T21:40:25.269+0000", "version" : null, "inactive" : false, "description" : "Crime/Detective", "type" : "Primary", "status" : "false", "amount" : 447437.0, "availableBalance" : 263919.0, "user" : null }, { "id" : "814-81-8481", "createdBy" : "12", "createdDate" : "2020-06-30T15:52:39.802+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T04:07:04.377+0000", "version" : null, "inactive" : false, "description" : "Fable", "type" : "Primary", "status" : "false", "amount" : 8030.0, "availableBalance" : 306961.0, "user" : null }, { "id" : "449-16-8988", "createdBy" : "13", "createdDate" : "2020-06-30T05:33:03.238+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T02:53:59.686+0000", "version" : null, "inactive" : false, "description" : "Fable", "type" : "Primary", "status" : "true", "amount" : 445349.0, "availableBalance" : 16887.0, "user" : null }, { "id" : "640-29-2398", "createdBy" : "10", "createdDate" : "2020-06-30T17:01:15.473+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T10:21:22.899+0000", "version" : null, "inactive" : false, "description" : "Fanfiction", "type" : "Primary", "status" : "false", "amount" : 426148.0, "availableBalance" : 556267.0, "user" : null }, { "id" : "835-17-4373", "createdBy" : "13", "createdDate" : "2020-06-30T16:14:19.848+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T19:08:09.582+0000", "version" : null, "inactive" : false, "description" : "Short story", "type" : "Primary", "status" : "false", "amount" : 327172.0, "availableBalance" : 463854.0, "user" : null }, { "id" : "682-85-2653", "createdBy" : "13", "createdDate" : "2020-06-30T01:25:41.457+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T12:36:02.941+0000", "version" : null, "inactive" : false, "description" : "Biography/Autobiography", "type" : "Primary", "status" : "true", "amount" : 519262.0, "availableBalance" : 224134.0, "user" : null }, { "id" : "197-96-5166", "createdBy" : "11", "createdDate" : "2020-06-30T07:17:12.368+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T18:08:28.656+0000", "version" : null, "inactive" : false, "description" : "Mythology", "type" : "Primary", "status" : "true", "amount" : 478733.0, "availableBalance" : 569595.0, "user" : null }, { "id" : "690-89-4857", "createdBy" : "12", "createdDate" : "2020-06-30T20:00:32.409+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T02:04:13.029+0000", "version" : null, "inactive" : false, "description" : "Horror", "type" : "Primary", "status" : "false", "amount" : 475742.0, "availableBalance" : 593996.0, "user" : null }, { "id" : "799-56-9266", "createdBy" : "12", "createdDate" : "2020-06-30T23:06:57.934+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T19:56:13.656+0000", "version" : null, "inactive" : false, "description" : "Science fiction", "type" : "Primary", "status" : "true", "amount" : 227160.0, "availableBalance" : 135344.0, "user" : null }, { "id" : "339-37-9489", "createdBy" : "12", "createdDate" : "2020-06-30T16:21:00.246+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T21:45:34.237+0000", "version" : null, "inactive" : false, "description" : "Crime/Detective", "type" : "Primary", "status" : "true", "amount" : 576574.0, "availableBalance" : 261915.0, "user" : null }, { "id" : "131-04-5795", "createdBy" : "14", "createdDate" : "2020-06-30T08:04:15.863+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T01:00:02.237+0000", "version" : null, "inactive" : false, "description" : "Suspense/Thriller", "type" : "Primary", "status" : "true", "amount" : 5745.0, "availableBalance" : 380227.0, "user" : null }, { "id" : "797-50-1959", "createdBy" : "11", "createdDate" : "2020-06-30T13:36:08.698+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T17:17:25.219+0000", "version" : null, "inactive" : false, "description" : "Fiction narrative", "type" : "Primary", "status" : "true", "amount" : 410539.0, "availableBalance" : 73395.0, "user" : null }, { "id" : "748-78-4242", "createdBy" : "13", "createdDate" : "2020-06-30T19:45:21.834+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T12:29:27.835+0000", "version" : null, "inactive" : false, "description" : "Mythology", "type" : "Primary", "status" : "false", "amount" : 457093.0, "availableBalance" : 245777.0, "user" : null }, { "id" : "747-84-8900", "createdBy" : "13", "createdDate" : "2020-06-30T17:33:49.406+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T04:03:09.372+0000", "version" : null, "inactive" : false, "description" : "Science fiction", "type" : "Primary", "status" : "false", "amount" : 348844.0, "availableBalance" : 127731.0, "user" : null }, { "id" : "322-48-1871", "createdBy" : "14", "createdDate" : "2020-06-30T04:30:28.499+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T05:07:15.481+0000", "version" : null, "inactive" : false, "description" : "Classic", "type" : "Primary", "status" : "false", "amount" : 581889.0, "availableBalance" : 222793.0, "user" : null }, { "id" : "870-05-2235", "createdBy" : "14", "createdDate" : "2020-06-30T22:22:47.327+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T15:35:33.474+0000", "version" : null, "inactive" : false, "description" : "Comic/Graphic Novel", "type" : "Primary", "status" : "true", "amount" : 81464.0, "availableBalance" : 218287.0, "user" : null }, { "id" : "755-51-8110", "createdBy" : "14", "createdDate" : "2020-06-30T15:26:01.893+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T02:00:45.401+0000", "version" : null, "inactive" : false, "description" : "Horror", "type" : "Primary", "status" : "true", "amount" : 404664.0, "availableBalance" : 213829.0, "user" : null }, { "id" : "439-77-9713", "createdBy" : "14", "createdDate" : "2020-06-30T19:29:24.990+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T02:21:43.566+0000", "version" : null, "inactive" : false, "description" : "Folklore", "type" : "Primary", "status" : "false", "amount" : 179536.0, "availableBalance" : 563769.0, "user" : null }, { "id" : "109-03-6109", "createdBy" : "12", "createdDate" : "2020-06-30T12:11:30.868+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T22:02:52.965+0000", "version" : null, "inactive" : false, "description" : "Reference book", "type" : "Primary", "status" : "false", "amount" : 306580.0, "availableBalance" : 66773.0, "user" : null }, { "id" : "847-18-2316", "createdBy" : "13", "createdDate" : "2020-06-30T14:07:06.883+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T09:08:41.032+0000", "version" : null, "inactive" : false, "description" : "Legend", "type" : "Primary", "status" : "true", "amount" : 295566.0, "availableBalance" : 406698.0, "user" : null }, { "id" : "068-65-3131", "createdBy" : "11", "createdDate" : "2020-06-30T18:41:56.838+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T19:34:08.646+0000", "version" : null, "inactive" : false, "description" : "Essay", "type" : "Primary", "status" : "false", "amount" : 284766.0, "availableBalance" : 44802.0, "user" : null }, { "id" : "393-09-0285", "createdBy" : "13", "createdDate" : "2020-06-30T17:56:28.216+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T15:16:30.923+0000", "version" : null, "inactive" : false, "description" : "Short story", "type" : "Primary", "status" : "false", "amount" : 22953.0, "availableBalance" : 529668.0, "user" : null }, { "id" : "027-46-8225", "createdBy" : "12", "createdDate" : "2020-06-30T15:36:05.069+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T07:19:33.551+0000", "version" : null, "inactive" : false, "description" : "Short story", "type" : "Primary", "status" : "true", "amount" : 68048.0, "availableBalance" : 196910.0, "user" : null }, { "id" : "693-50-6912", "createdBy" : "12", "createdDate" : "2020-06-30T19:18:57.124+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T19:17:31.047+0000", "version" : null, "inactive" : false, "description" : "Realistic fiction", "type" : "Primary", "status" : "true", "amount" : 434569.0, "availableBalance" : 555235.0, "user" : null }, { "id" : "441-09-7184", "createdBy" : "14", "createdDate" : "2020-06-30T17:48:04.640+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T10:58:36.782+0000", "version" : null, "inactive" : false, "description" : "Classic", "type" : "Primary", "status" : "true", "amount" : 286655.0, "availableBalance" : 499527.0, "user" : null }, { "id" : "630-02-6378", "createdBy" : "10", "createdDate" : "2020-06-30T22:01:08.169+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T20:12:41.056+0000", "version" : null, "inactive" : false, "description" : "Speech", "type" : "Primary", "status" : "false", "amount" : 356764.0, "availableBalance" : 72739.0, "user" : null }, { "id" : "115-86-5822", "createdBy" : "13", "createdDate" : "2020-06-30T11:13:18.375+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T13:25:55.735+0000", "version" : null, "inactive" : false, "description" : "Fiction in verse", "type" : "Primary", "status" : "false", "amount" : 235880.0, "availableBalance" : 152243.0, "user" : null }, { "id" : "397-31-2729", "createdBy" : "11", "createdDate" : "2020-06-30T08:36:14.381+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T04:58:42.056+0000", "version" : null, "inactive" : false, "description" : "Fiction narrative", "type" : "Primary", "status" : "false", "amount" : 402013.0, "availableBalance" : 159545.0, "user" : null }, { "id" : "111-04-2297", "createdBy" : "13", "createdDate" : "2020-06-30T19:03:56.798+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T08:17:55.578+0000", "version" : null, "inactive" : false, "description" : "Narrative nonfiction", "type" : "Primary", "status" : "false", "amount" : 588907.0, "availableBalance" : 595134.0, "user" : null }, { "id" : "598-13-4893", "createdBy" : "11", "createdDate" : "2020-06-30T11:28:43.229+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T14:56:37.381+0000", "version" : null, "inactive" : false, "description" : "Textbook", "type" : "Primary", "status" : "false", "amount" : 277228.0, "availableBalance" : 359946.0, "user" : null }, { "id" : "115-65-0408", "createdBy" : "10", "createdDate" : "2020-06-30T11:01:48.544+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T07:22:09.162+0000", "version" : null, "inactive" : false, "description" : "Narrative nonfiction", "type" : "Primary", "status" : "false", "amount" : 376068.0, "availableBalance" : 152271.0, "user" : null }, { "id" : "687-74-5987", "createdBy" : "14", "createdDate" : "2020-06-30T22:55:00.714+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T05:41:28.775+0000", "version" : null, "inactive" : false, "description" : "Western", "type" : "Primary", "status" : "false", "amount" : 385067.0, "availableBalance" : 199514.0, "user" : null }, { "id" : "610-40-4084", "createdBy" : "11", "createdDate" : "2020-06-30T17:50:03.041+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T11:15:09.748+0000", "version" : null, "inactive" : false, "description" : "Fairy tale", "type" : "Primary", "status" : "false", "amount" : 180841.0, "availableBalance" : 425070.0, "user" : null }, { "id" : "052-27-0144", "createdBy" : "14", "createdDate" : "2020-06-30T20:08:25.146+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T19:29:28.702+0000", "version" : null, "inactive" : false, "description" : "Fanfiction", "type" : "Primary", "status" : "false", "amount" : 132982.0, "availableBalance" : 426214.0, "user" : null }, { "id" : "768-74-9489", "createdBy" : "12", "createdDate" : "2020-06-30T05:57:05.716+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T23:57:33.866+0000", "version" : null, "inactive" : false, "description" : "Fanfiction", "type" : "Primary", "status" : "true", "amount" : 380972.0, "availableBalance" : 540378.0, "user" : null } ], "totalPages" : 0, "totalElements" : 0 }] 07:10:14 [D] [AVPTGQPPDdos] : Response-Headers [{X-Content-Type-Options=[nosniff], X-XSS-Protection=[1; mode=block], Cache-Control=[no-cache, no-store, max-age=0, must-revalidate], Pragma=[no-cache], Expires=[0], X-Frame-Options=[DENY], Set-Cookie=[SESSION=M2ExZTA3NmEtZmIxOC00MmU2LTg0ODYtMzcwNDZhMGE5MTA4; Path=/; HttpOnly], Content-Type=[application/json;charset=UTF-8], Transfer-Encoding=[chunked], Date=[Thu, 13 Aug 2020 19:10:14 GMT]}] 07:10:14 [D] [AVPTGQPPDdos] : StatusCode [200] 07:10:14 [D] [AVPTGQPPDdos] : Time [199] 07:10:14 [D] [AVPTGQPPDdos] : Size [30326] 07:10:14 [E] [AVPTGQPPDdos] : Assertion [@StatusCode == 200 AND @Response.errors != false] resolved-to [200 == 200 AND false != false] result [Failed] IMPORTANT LINKS Vulnerability Details: https://cloud.fxlabs.io/#/app/projects/8a8081766fc3e2a1016fc421d6e55a13/recommendations/null/details Project: https://cloud.fxlabs.io/#/app/projects/8a8081766fc3e2a1016fc421d6e55a13/jobs Environment: https://cloud.fxlabs.io/#/app/projects/8a8081766fc3e2a1016fc421d6e55a13/environments/8a8081766fc3e2a1016fc421d7155a15/edit Scan Dashboard: https://cloud.fxlabs.io/#/app/projects/8a8081766fc3e2a1016fc421d6e55a13/jobs/8a8081766fc3e2a1016fc4230f426628/runs/8a80814f73e75f3f0173e93acc32134c Playbook: https://cloud.fxlabs.io/#/app/projects/8a8081766fc3e2a1016fc421d6e55a13/template/ApiV1PrimaryTransactionGetQueryParamPagesizeDdos Coverage: https://cloud.fxlabs.io/#/app/projects/8a8081766fc3e2a1016fc421d6e55a13/configuration Code Sample: https://cloud.fxlabs.io/#/app/projects/8a8081766fc3e2a1016fc421d6e55a13/recommendations/null/codesamples PS: Please contact support@apisec.ai for apisec access and login issues. --- apisec Bot ---
Title: DDOS Vulnerability on GET:/api/v1/primary-transaction Project: NetBanking API Description: The Application DDoS exploit allows an attacker to overwelm you Application/DB by requesting seemingly large resources through vulnerable endpoint.
Assertion Name: DDoS ( 1 )( 2 )Overview: In computing, a Denial-of-Service attack (DoS attack) is a cyber-attack in which the perpetrator seeks to make a machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a host connected to the Internet. Denial of service is typically accomplished by flooding the targeted machine or resource with superfluous requests in an attempt to overload systems and prevent some or all legitimate requests from being fulfilled.
In a Distributed Denial-of-Service attack (DDoS attack), the incoming traffic flooding the victim originates from many different sources. This effectively makes it impossible to stop the attack simply by blocking a single source.
DDoS or Distributed Denial of service is flooding the targeted API endpoints with superfluous requests in an attempt to overload systems and prevent some or all legitimate requests from being fulfilled.
An advanced DDoS attack can be created with a very few tailored requests. e.g. if the API endpoints have a vulnerability which allows requesting 10,000 items or records by setting page-size=10000 or large date range on the vulnerable API endpoint, then by sending a few of these requests regularly can put the entire system unresponsive leading towards revenue and brand loss.
e.g. values pageSize=101 page_size=101 /api/v1/dashboard/count-bugs-between?fromDate={{@PastDate | dd/MM/yyyy}}&toDate={{@Date | dd/MM/yyyy}} /api/v1/dashboard/count-tests-between?fromDate={{@PastDate | dd/MM/yyyy}}&toDate={{@Date | dd/MM/yyyy}}.
Quite often, APIs do not impose any restrictions on the size or number of resources that can be requested by the client/user. Not only can this impact the API server performance, leading to Denial of Service (DoS), but also leaves the door open to authentication flaws such as brute force.
Severity: DDoS is a form of Cyber Attack. The DDoS attacks are increasing on Year-on-Year basis and is consistently reported in Akamai State of Internet / Security Reports( 3 ).
Vulnerability Impact: A successful DDoS attacks can
Exploitation: DoS / DDoS attackers attempt to overwhelm web applications and APIs with a flood of HTTP/HTTPS requests. In order to obtain a high enough level of traffic, attackers typically need to leverage a large number of attacking hosts to achieve the desired effect. One way to do this is by purchasing access to a "booter service" - which is a marketing term for "DDoS for Hire" ( 5 ).
Remediation: While it may not be completely possible to avoid DoS or DDoS attack, but it is possible to identify and take remediation steps. Different protections that can be leveraged are
References:
Risk: DDOS Severity: Medium API Endpoint: http://95.217.118.53:8080/api/v1/primary-transaction?pageSize=101 Environment: Master Playbook: ApiV1PrimaryTransactionGetQueryParamPagesizeDdos Researcher: [apisec Bot] QUICK TIPS Suggestion: Add a max limit validation on the endpoint params used for requesting maximum number of resources. Effort Estimate: 0.5 Wire Logs: 07:10:14 [D] [AVPTGQPPDdos] : URL [http://95.217.118.53:8080/api/v1/primary-transaction?pageSize=101] 07:10:14 [D] [AVPTGQPPDdos] : Method [GET] 07:10:14 [D] [AVPTGQPPDdos] : Auth [Default] 07:10:14 [D] [AVPTGQPPDdos] : Request [] 07:10:14 [D] [AVPTGQPPDdos] : Request-Headers [{Accept=[application/json], Content-Type=[application/json], Authorization=[**********]}] 07:10:14 [D] [AVPTGQPPDdos] : Response [{ "requestId" : "None", "requestTime" : "2020-08-13T19:10:14.146+0000", "errors" : false, "messages" : [ ], "data" : [ { "id" : "119-23-5986", "createdBy" : "12", "createdDate" : "2020-06-30T09:11:37.687+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T19:43:53.581+0000", "version" : null, "inactive" : false, "description" : "Metafiction", "type" : "Primary", "status" : "false", "amount" : 286954.0, "availableBalance" : 333136.0, "user" : null }, { "id" : "504-14-6066", "createdBy" : "10", "createdDate" : "2020-06-30T04:09:44.671+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T10:11:29.625+0000", "version" : null, "inactive" : false, "description" : "Mystery", "type" : "Primary", "status" : "false", "amount" : 527477.0, "availableBalance" : 499037.0, "user" : null }, { "id" : "616-40-2606", "createdBy" : "11", "createdDate" : "2020-06-30T23:27:40.177+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T23:40:06.588+0000", "version" : null, "inactive" : false, "description" : "Classic", "type" : "Primary", "status" : "true", "amount" : 285042.0, "availableBalance" : 554757.0, "user" : null }, { "id" : "631-41-7645", "createdBy" : "13", "createdDate" : "2020-06-30T10:47:40.428+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T03:49:59.784+0000", "version" : null, "inactive" : false, "description" : "Mythopoeia", "type" : "Primary", "status" : "true", "amount" : 212228.0, "availableBalance" : 432292.0, "user" : null }, { "id" : "816-85-0231", "createdBy" : "13", "createdDate" : "2020-06-30T15:08:35.674+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T06:42:18.409+0000", "version" : null, "inactive" : false, "description" : "Science fiction", "type" : "Primary", "status" : "true", "amount" : 303255.0, "availableBalance" : 457929.0, "user" : null }, { "id" : "030-96-1941", "createdBy" : "14", "createdDate" : "2020-06-30T05:28:48.802+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T15:32:15.723+0000", "version" : null, "inactive" : false, "description" : "Short story", "type" : "Primary", "status" : "false", "amount" : 186480.0, "availableBalance" : 410717.0, "user" : null }, { "id" : "110-23-6199", "createdBy" : "11", "createdDate" : "2020-06-30T15:35:15.692+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T08:36:32.029+0000", "version" : null, "inactive" : false, "description" : "Western", "type" : "Primary", "status" : "false", "amount" : 413791.0, "availableBalance" : 366878.0, "user" : null }, { "id" : "565-93-2691", "createdBy" : "10", "createdDate" : "2020-06-30T07:24:26.220+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T18:53:46.608+0000", "version" : null, "inactive" : false, "description" : "Essay", "type" : "Primary", "status" : "false", "amount" : 144406.0, "availableBalance" : 510522.0, "user" : null }, { "id" : "478-47-3886", "createdBy" : "12", "createdDate" : "2020-06-30T12:57:52.247+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T14:44:53.802+0000", "version" : null, "inactive" : false, "description" : "Comic/Graphic Novel", "type" : "Primary", "status" : "true", "amount" : 349161.0, "availableBalance" : 488134.0, "user" : null }, { "id" : "734-23-7316", "createdBy" : "13", "createdDate" : "2020-06-30T17:24:49.750+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T01:15:54.911+0000", "version" : null, "inactive" : false, "description" : "Realistic fiction", "type" : "Primary", "status" : "true", "amount" : 270271.0, "availableBalance" : 454377.0, "user" : null }, { "id" : "378-82-5555", "createdBy" : "11", "createdDate" : "2020-06-30T14:17:08.310+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T20:58:47.239+0000", "version" : null, "inactive" : false, "description" : "Realistic fiction", "type" : "Primary", "status" : "false", "amount" : 24555.0, "availableBalance" : 185786.0, "user" : null }, { "id" : "510-41-6198", "createdBy" : "11", "createdDate" : "2020-06-30T05:30:24.860+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T03:42:46.730+0000", "version" : null, "inactive" : false, "description" : "Horror", "type" : "Primary", "status" : "false", "amount" : 441412.0, "availableBalance" : 129401.0, "user" : null }, { "id" : "178-08-6839", "createdBy" : "12", "createdDate" : "2020-06-30T22:39:46.221+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T02:58:51.114+0000", "version" : null, "inactive" : false, "description" : "Fantasy", "type" : "Primary", "status" : "false", "amount" : 580226.0, "availableBalance" : 411092.0, "user" : null }, { "id" : "119-28-1312", "createdBy" : "13", "createdDate" : "2020-06-30T00:07:33.416+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T21:31:51.323+0000", "version" : null, "inactive" : false, "description" : "Fiction narrative", "type" : "Primary", "status" : "false", "amount" : 468641.0, "availableBalance" : 310811.0, "user" : null }, { "id" : "211-33-4616", "createdBy" : "12", "createdDate" : "2020-06-30T03:55:07.529+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T06:01:56.571+0000", "version" : null, "inactive" : false, "description" : "Biography/Autobiography", "type" : "Primary", "status" : "false", "amount" : 486888.0, "availableBalance" : 233455.0, "user" : null }, { "id" : "089-18-6474", "createdBy" : "12", "createdDate" : "2020-06-30T07:54:13.551+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T20:02:16.181+0000", "version" : null, "inactive" : false, "description" : "Speech", "type" : "Primary", "status" : "false", "amount" : 63191.0, "availableBalance" : 265522.0, "user" : null }, { "id" : "118-38-7891", "createdBy" : "10", "createdDate" : "2020-06-30T03:58:19.548+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T06:46:36.727+0000", "version" : null, "inactive" : false, "description" : "Biography/Autobiography", "type" : "Primary", "status" : "false", "amount" : 154836.0, "availableBalance" : 385815.0, "user" : null }, { "id" : "253-14-2660", "createdBy" : "12", "createdDate" : "2020-06-30T02:10:00.578+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T10:53:27.215+0000", "version" : null, "inactive" : false, "description" : "Realistic fiction", "type" : "Primary", "status" : "true", "amount" : 534740.0, "availableBalance" : 237719.0, "user" : null }, { "id" : "659-13-0879", "createdBy" : "11", "createdDate" : "2020-06-30T11:15:29.194+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T00:10:36.602+0000", "version" : null, "inactive" : false, "description" : "Folklore", "type" : "Primary", "status" : "true", "amount" : 323570.0, "availableBalance" : 275158.0, "user" : null }, { "id" : "797-85-5973", "createdBy" : "11", "createdDate" : "2020-06-30T05:27:31.666+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T14:48:20.918+0000", "version" : null, "inactive" : false, "description" : "Science fiction", "type" : "Primary", "status" : "true", "amount" : 542965.0, "availableBalance" : 66525.0, "user" : null }, { "id" : "419-84-4067", "createdBy" : "13", "createdDate" : "2020-06-30T19:15:11.820+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T22:45:03.169+0000", "version" : null, "inactive" : false, "description" : "Fantasy", "type" : "Primary", "status" : "true", "amount" : 543753.0, "availableBalance" : 81342.0, "user" : null }, { "id" : "186-06-0745", "createdBy" : "13", "createdDate" : "2020-06-30T05:26:44.764+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T21:28:01.691+0000", "version" : null, "inactive" : false, "description" : "Western", "type" : "Primary", "status" : "false", "amount" : 247506.0, "availableBalance" : 213316.0, "user" : null }, { "id" : "369-75-4477", "createdBy" : "10", "createdDate" : "2020-06-30T04:09:21.956+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T19:03:13.857+0000", "version" : null, "inactive" : false, "description" : "Historical fiction", "type" : "Primary", "status" : "false", "amount" : 310813.0, "availableBalance" : 212679.0, "user" : null }, { "id" : "885-13-2357", "createdBy" : "13", "createdDate" : "2020-06-30T08:07:56.759+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T11:42:16.441+0000", "version" : null, "inactive" : false, "description" : "Biography/Autobiography", "type" : "Primary", "status" : "false", "amount" : 227976.0, "availableBalance" : 44037.0, "user" : null }, { "id" : "711-37-0582", "createdBy" : "12", "createdDate" : "2020-06-30T17:43:47.718+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T00:45:52.919+0000", "version" : null, "inactive" : false, "description" : "Fable", "type" : "Primary", "status" : "true", "amount" : 187459.0, "availableBalance" : 467701.0, "user" : null }, { "id" : "173-51-9703", "createdBy" : "12", "createdDate" : "2020-06-30T06:26:39.456+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T21:16:16.814+0000", "version" : null, "inactive" : false, "description" : "Metafiction", "type" : "Primary", "status" : "false", "amount" : 336149.0, "availableBalance" : 26563.0, "user" : null }, { "id" : "772-53-6003", "createdBy" : "12", "createdDate" : "2020-06-30T03:19:32.896+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T00:44:38.763+0000", "version" : null, "inactive" : false, "description" : "Folklore", "type" : "Primary", "status" : "false", "amount" : 373255.0, "availableBalance" : 556934.0, "user" : null }, { "id" : "320-43-4912", "createdBy" : "13", "createdDate" : "2020-06-30T09:20:44.619+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T01:49:24.154+0000", "version" : null, "inactive" : false, "description" : "Essay", "type" : "Primary", "status" : "false", "amount" : 479985.0, "availableBalance" : 228574.0, "user" : null }, { "id" : "141-51-6709", "createdBy" : "11", "createdDate" : "2020-06-30T14:41:08.708+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T12:11:07.243+0000", "version" : null, "inactive" : false, "description" : "Horror", "type" : "Primary", "status" : "false", "amount" : 169250.0, "availableBalance" : 491548.0, "user" : null }, { "id" : "761-35-4775", "createdBy" : "14", "createdDate" : "2020-06-30T19:00:33.944+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T23:14:49.954+0000", "version" : null, "inactive" : false, "description" : "Speech", "type" : "Primary", "status" : "true", "amount" : 119535.0, "availableBalance" : 436253.0, "user" : null }, { "id" : "325-62-4721", "createdBy" : "11", "createdDate" : "2020-06-30T13:15:53.554+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T13:18:46.745+0000", "version" : null, "inactive" : false, "description" : "Essay", "type" : "Primary", "status" : "false", "amount" : 357684.0, "availableBalance" : 406600.0, "user" : null }, { "id" : "243-73-6984", "createdBy" : "14", "createdDate" : "2020-06-30T21:30:48.406+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T06:56:38.480+0000", "version" : null, "inactive" : false, "description" : "Fiction narrative", "type" : "Primary", "status" : "true", "amount" : 74103.0, "availableBalance" : 315269.0, "user" : null }, { "id" : "802-11-5998", "createdBy" : "13", "createdDate" : "2020-06-30T20:29:07.895+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T13:19:30.137+0000", "version" : null, "inactive" : false, "description" : "Tall tale", "type" : "Primary", "status" : "true", "amount" : 587452.0, "availableBalance" : 108124.0, "user" : null }, { "id" : "362-03-9822", "createdBy" : "12", "createdDate" : "2020-06-30T03:20:57.210+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T02:35:45.524+0000", "version" : null, "inactive" : false, "description" : "Suspense/Thriller", "type" : "Primary", "status" : "false", "amount" : 190815.0, "availableBalance" : 533540.0, "user" : null }, { "id" : "473-19-7886", "createdBy" : "10", "createdDate" : "2020-06-30T15:32:23.600+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T11:44:35.857+0000", "version" : null, "inactive" : false, "description" : "Suspense/Thriller", "type" : "Primary", "status" : "false", "amount" : 217029.0, "availableBalance" : 535904.0, "user" : null }, { "id" : "350-10-4685", "createdBy" : "12", "createdDate" : "2020-06-30T03:23:11.256+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T19:42:28.457+0000", "version" : null, "inactive" : false, "description" : "Realistic fiction", "type" : "Primary", "status" : "false", "amount" : 437869.0, "availableBalance" : 103445.0, "user" : null }, { "id" : "150-18-9203", "createdBy" : "13", "createdDate" : "2020-06-30T20:21:14.656+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T03:26:38.925+0000", "version" : null, "inactive" : false, "description" : "Fable", "type" : "Primary", "status" : "false", "amount" : 278421.0, "availableBalance" : 9049.0, "user" : null }, { "id" : "573-59-5084", "createdBy" : "13", "createdDate" : "2020-06-30T14:37:47.961+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T21:31:45.350+0000", "version" : null, "inactive" : false, "description" : "Tall tale", "type" : "Primary", "status" : "true", "amount" : 117453.0, "availableBalance" : 42757.0, "user" : null }, { "id" : "894-73-7988", "createdBy" : "13", "createdDate" : "2020-06-30T14:28:01.701+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T01:15:37.025+0000", "version" : null, "inactive" : false, "description" : "Fantasy", "type" : "Primary", "status" : "false", "amount" : 31617.0, "availableBalance" : 105228.0, "user" : null }, { "id" : "252-17-7078", "createdBy" : "12", "createdDate" : "2020-06-30T21:05:14.423+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T01:55:29.032+0000", "version" : null, "inactive" : false, "description" : "Mystery", "type" : "Primary", "status" : "false", "amount" : 525873.0, "availableBalance" : 338158.0, "user" : null }, { "id" : "648-30-1053", "createdBy" : "11", "createdDate" : "2020-06-30T13:14:56.083+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T08:04:44.899+0000", "version" : null, "inactive" : false, "description" : "Reference book", "type" : "Primary", "status" : "false", "amount" : 533206.0, "availableBalance" : 243109.0, "user" : null }, { "id" : "683-48-3471", "createdBy" : "12", "createdDate" : "2020-06-30T15:08:33.807+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T05:59:24.324+0000", "version" : null, "inactive" : false, "description" : "Fable", "type" : "Primary", "status" : "true", "amount" : 202690.0, "availableBalance" : 205924.0, "user" : null }, { "id" : "158-13-3801", "createdBy" : "14", "createdDate" : "2020-06-30T14:31:41.294+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T05:13:01.507+0000", "version" : null, "inactive" : false, "description" : "Legend", "type" : "Primary", "status" : "false", "amount" : 509343.0, "availableBalance" : 154850.0, "user" : null }, { "id" : "279-04-3874", "createdBy" : "11", "createdDate" : "2020-06-30T14:33:40.091+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T15:15:44.921+0000", "version" : null, "inactive" : false, "description" : "Mythology", "type" : "Primary", "status" : "true", "amount" : 151849.0, "availableBalance" : 213788.0, "user" : null }, { "id" : "105-70-7717", "createdBy" : "11", "createdDate" : "2020-06-30T06:59:44.749+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T08:26:06.750+0000", "version" : null, "inactive" : false, "description" : "Mythopoeia", "type" : "Primary", "status" : "true", "amount" : 504326.0, "availableBalance" : 465575.0, "user" : null }, { "id" : "479-83-2980", "createdBy" : "11", "createdDate" : "2020-06-30T09:30:47.101+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T06:29:11.295+0000", "version" : null, "inactive" : false, "description" : "Classic", "type" : "Primary", "status" : "false", "amount" : 316800.0, "availableBalance" : 257872.0, "user" : null }, { "id" : "039-41-2663", "createdBy" : "13", "createdDate" : "2020-06-30T16:50:08.649+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T17:24:56.557+0000", "version" : null, "inactive" : false, "description" : "Biography/Autobiography", "type" : "Primary", "status" : "true", "amount" : 479231.0, "availableBalance" : 587480.0, "user" : null }, { "id" : "657-37-0151", "createdBy" : "12", "createdDate" : "2020-06-30T01:45:13.425+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T13:39:45.896+0000", "version" : null, "inactive" : false, "description" : "Comic/Graphic Novel", "type" : "Primary", "status" : "true", "amount" : 497904.0, "availableBalance" : 318965.0, "user" : null }, { "id" : "096-54-3628", "createdBy" : "12", "createdDate" : "2020-06-30T15:46:08.405+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T13:27:05.076+0000", "version" : null, "inactive" : false, "description" : "Biography/Autobiography", "type" : "Primary", "status" : "false", "amount" : 122326.0, "availableBalance" : 379146.0, "user" : null }, { "id" : "759-22-8573", "createdBy" : "10", "createdDate" : "2020-06-30T07:57:30.244+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T15:17:05.122+0000", "version" : null, "inactive" : false, "description" : "Comic/Graphic Novel", "type" : "Primary", "status" : "true", "amount" : 153513.0, "availableBalance" : 292693.0, "user" : null }, { "id" : "670-24-2573", "createdBy" : "10", "createdDate" : "2020-06-30T18:18:51.230+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T23:08:29.904+0000", "version" : null, "inactive" : false, "description" : "Comic/Graphic Novel", "type" : "Primary", "status" : "true", "amount" : 587171.0, "availableBalance" : 55221.0, "user" : null }, { "id" : "867-82-3884", "createdBy" : "14", "createdDate" : "2020-06-30T14:05:55.325+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T00:47:00.206+0000", "version" : null, "inactive" : false, "description" : "Folklore", "type" : "Primary", "status" : "false", "amount" : 114569.0, "availableBalance" : 593993.0, "user" : null }, { "id" : "488-95-9644", "createdBy" : "12", "createdDate" : "2020-06-30T06:31:09.662+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T05:39:02.064+0000", "version" : null, "inactive" : false, "description" : "Tall tale", "type" : "Primary", "status" : "true", "amount" : 279435.0, "availableBalance" : 487303.0, "user" : null }, { "id" : "316-31-3523", "createdBy" : "10", "createdDate" : "2020-06-30T17:59:50.577+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T16:34:52.526+0000", "version" : null, "inactive" : false, "description" : "Science fiction", "type" : "Primary", "status" : "true", "amount" : 439493.0, "availableBalance" : 366352.0, "user" : null }, { "id" : "847-45-0781", "createdBy" : "12", "createdDate" : "2020-06-30T03:22:17.626+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T06:39:38.055+0000", "version" : null, "inactive" : false, "description" : "Short story", "type" : "Primary", "status" : "false", "amount" : 460642.0, "availableBalance" : 556123.0, "user" : null }, { "id" : "092-99-7309", "createdBy" : "14", "createdDate" : "2020-06-30T11:26:34.375+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T14:32:10.702+0000", "version" : null, "inactive" : false, "description" : "Metafiction", "type" : "Primary", "status" : "true", "amount" : 97287.0, "availableBalance" : 499686.0, "user" : null }, { "id" : "652-71-9921", "createdBy" : "12", "createdDate" : "2020-06-30T04:24:31.414+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T02:01:12.511+0000", "version" : null, "inactive" : false, "description" : "Fiction in verse", "type" : "Primary", "status" : "true", "amount" : 64889.0, "availableBalance" : 145416.0, "user" : null }, { "id" : "870-75-2443", "createdBy" : "11", "createdDate" : "2020-06-30T10:08:30.239+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T07:18:17.222+0000", "version" : null, "inactive" : false, "description" : "Mystery", "type" : "Primary", "status" : "true", "amount" : 503420.0, "availableBalance" : 361532.0, "user" : null }, { "id" : "060-27-8063", "createdBy" : "13", "createdDate" : "2020-06-30T01:19:06.705+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T12:16:43.113+0000", "version" : null, "inactive" : false, "description" : "Reference book", "type" : "Primary", "status" : "true", "amount" : 597396.0, "availableBalance" : 65064.0, "user" : null }, { "id" : "372-77-4225", "createdBy" : "14", "createdDate" : "2020-06-30T18:19:33.509+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T10:29:40.179+0000", "version" : null, "inactive" : false, "description" : "Horror", "type" : "Primary", "status" : "true", "amount" : 203424.0, "availableBalance" : 415120.0, "user" : null }, { "id" : "644-93-5167", "createdBy" : "13", "createdDate" : "2020-06-30T01:41:44.716+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T07:52:14.521+0000", "version" : null, "inactive" : false, "description" : "Folklore", "type" : "Primary", "status" : "true", "amount" : 564058.0, "availableBalance" : 91230.0, "user" : null }, { "id" : "400-81-5175", "createdBy" : "11", "createdDate" : "2020-06-30T15:00:11.850+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T23:58:00.513+0000", "version" : null, "inactive" : false, "description" : "Fairy tale", "type" : "Primary", "status" : "true", "amount" : 185592.0, "availableBalance" : 218307.0, "user" : null }, { "id" : "419-15-8674", "createdBy" : "13", "createdDate" : "2020-06-30T00:39:33.207+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T20:22:58.338+0000", "version" : null, "inactive" : false, "description" : "Folklore", "type" : "Primary", "status" : "false", "amount" : 266203.0, "availableBalance" : 154910.0, "user" : null }, { "id" : "228-29-8699", "createdBy" : "13", "createdDate" : "2020-06-30T18:34:46.619+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T20:40:48.329+0000", "version" : null, "inactive" : false, "description" : "Metafiction", "type" : "Primary", "status" : "false", "amount" : 361033.0, "availableBalance" : 15815.0, "user" : null }, { "id" : "149-54-7769", "createdBy" : "14", "createdDate" : "2020-06-30T16:36:50.280+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T14:30:35.416+0000", "version" : null, "inactive" : false, "description" : "Fiction narrative", "type" : "Primary", "status" : "false", "amount" : 25679.0, "availableBalance" : 256329.0, "user" : null }, { "id" : "277-30-9426", "createdBy" : "14", "createdDate" : "2020-06-30T23:09:25.263+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T02:46:04.522+0000", "version" : null, "inactive" : false, "description" : "Mythopoeia", "type" : "Primary", "status" : "false", "amount" : 381710.0, "availableBalance" : 408926.0, "user" : null }, { "id" : "661-47-2600", "createdBy" : "13", "createdDate" : "2020-06-30T04:37:03.242+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T21:40:25.269+0000", "version" : null, "inactive" : false, "description" : "Crime/Detective", "type" : "Primary", "status" : "false", "amount" : 447437.0, "availableBalance" : 263919.0, "user" : null }, { "id" : "814-81-8481", "createdBy" : "12", "createdDate" : "2020-06-30T15:52:39.802+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T04:07:04.377+0000", "version" : null, "inactive" : false, "description" : "Fable", "type" : "Primary", "status" : "false", "amount" : 8030.0, "availableBalance" : 306961.0, "user" : null }, { "id" : "449-16-8988", "createdBy" : "13", "createdDate" : "2020-06-30T05:33:03.238+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T02:53:59.686+0000", "version" : null, "inactive" : false, "description" : "Fable", "type" : "Primary", "status" : "true", "amount" : 445349.0, "availableBalance" : 16887.0, "user" : null }, { "id" : "640-29-2398", "createdBy" : "10", "createdDate" : "2020-06-30T17:01:15.473+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T10:21:22.899+0000", "version" : null, "inactive" : false, "description" : "Fanfiction", "type" : "Primary", "status" : "false", "amount" : 426148.0, "availableBalance" : 556267.0, "user" : null }, { "id" : "835-17-4373", "createdBy" : "13", "createdDate" : "2020-06-30T16:14:19.848+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T19:08:09.582+0000", "version" : null, "inactive" : false, "description" : "Short story", "type" : "Primary", "status" : "false", "amount" : 327172.0, "availableBalance" : 463854.0, "user" : null }, { "id" : "682-85-2653", "createdBy" : "13", "createdDate" : "2020-06-30T01:25:41.457+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T12:36:02.941+0000", "version" : null, "inactive" : false, "description" : "Biography/Autobiography", "type" : "Primary", "status" : "true", "amount" : 519262.0, "availableBalance" : 224134.0, "user" : null }, { "id" : "197-96-5166", "createdBy" : "11", "createdDate" : "2020-06-30T07:17:12.368+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T18:08:28.656+0000", "version" : null, "inactive" : false, "description" : "Mythology", "type" : "Primary", "status" : "true", "amount" : 478733.0, "availableBalance" : 569595.0, "user" : null }, { "id" : "690-89-4857", "createdBy" : "12", "createdDate" : "2020-06-30T20:00:32.409+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T02:04:13.029+0000", "version" : null, "inactive" : false, "description" : "Horror", "type" : "Primary", "status" : "false", "amount" : 475742.0, "availableBalance" : 593996.0, "user" : null }, { "id" : "799-56-9266", "createdBy" : "12", "createdDate" : "2020-06-30T23:06:57.934+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T19:56:13.656+0000", "version" : null, "inactive" : false, "description" : "Science fiction", "type" : "Primary", "status" : "true", "amount" : 227160.0, "availableBalance" : 135344.0, "user" : null }, { "id" : "339-37-9489", "createdBy" : "12", "createdDate" : "2020-06-30T16:21:00.246+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T21:45:34.237+0000", "version" : null, "inactive" : false, "description" : "Crime/Detective", "type" : "Primary", "status" : "true", "amount" : 576574.0, "availableBalance" : 261915.0, "user" : null }, { "id" : "131-04-5795", "createdBy" : "14", "createdDate" : "2020-06-30T08:04:15.863+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T01:00:02.237+0000", "version" : null, "inactive" : false, "description" : "Suspense/Thriller", "type" : "Primary", "status" : "true", "amount" : 5745.0, "availableBalance" : 380227.0, "user" : null }, { "id" : "797-50-1959", "createdBy" : "11", "createdDate" : "2020-06-30T13:36:08.698+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T17:17:25.219+0000", "version" : null, "inactive" : false, "description" : "Fiction narrative", "type" : "Primary", "status" : "true", "amount" : 410539.0, "availableBalance" : 73395.0, "user" : null }, { "id" : "748-78-4242", "createdBy" : "13", "createdDate" : "2020-06-30T19:45:21.834+0000", "modifiedBy" : "11", "modifiedDate" : "2020-06-30T12:29:27.835+0000", "version" : null, "inactive" : false, "description" : "Mythology", "type" : "Primary", "status" : "false", "amount" : 457093.0, "availableBalance" : 245777.0, "user" : null }, { "id" : "747-84-8900", "createdBy" : "13", "createdDate" : "2020-06-30T17:33:49.406+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T04:03:09.372+0000", "version" : null, "inactive" : false, "description" : "Science fiction", "type" : "Primary", "status" : "false", "amount" : 348844.0, "availableBalance" : 127731.0, "user" : null }, { "id" : "322-48-1871", "createdBy" : "14", "createdDate" : "2020-06-30T04:30:28.499+0000", "modifiedBy" : "10", "modifiedDate" : "2020-06-30T05:07:15.481+0000", "version" : null, "inactive" : false, "description" : "Classic", "type" : "Primary", "status" : "false", "amount" : 581889.0, "availableBalance" : 222793.0, "user" : null }, { "id" : "870-05-2235", "createdBy" : "14", "createdDate" : "2020-06-30T22:22:47.327+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T15:35:33.474+0000", "version" : null, "inactive" : false, "description" : "Comic/Graphic Novel", "type" : "Primary", "status" : "true", "amount" : 81464.0, "availableBalance" : 218287.0, "user" : null }, { "id" : "755-51-8110", "createdBy" : "14", "createdDate" : "2020-06-30T15:26:01.893+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T02:00:45.401+0000", "version" : null, "inactive" : false, "description" : "Horror", "type" : "Primary", "status" : "true", "amount" : 404664.0, "availableBalance" : 213829.0, "user" : null }, { "id" : "439-77-9713", "createdBy" : "14", "createdDate" : "2020-06-30T19:29:24.990+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T02:21:43.566+0000", "version" : null, "inactive" : false, "description" : "Folklore", "type" : "Primary", "status" : "false", "amount" : 179536.0, "availableBalance" : 563769.0, "user" : null }, { "id" : "109-03-6109", "createdBy" : "12", "createdDate" : "2020-06-30T12:11:30.868+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T22:02:52.965+0000", "version" : null, "inactive" : false, "description" : "Reference book", "type" : "Primary", "status" : "false", "amount" : 306580.0, "availableBalance" : 66773.0, "user" : null }, { "id" : "847-18-2316", "createdBy" : "13", "createdDate" : "2020-06-30T14:07:06.883+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T09:08:41.032+0000", "version" : null, "inactive" : false, "description" : "Legend", "type" : "Primary", "status" : "true", "amount" : 295566.0, "availableBalance" : 406698.0, "user" : null }, { "id" : "068-65-3131", "createdBy" : "11", "createdDate" : "2020-06-30T18:41:56.838+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T19:34:08.646+0000", "version" : null, "inactive" : false, "description" : "Essay", "type" : "Primary", "status" : "false", "amount" : 284766.0, "availableBalance" : 44802.0, "user" : null }, { "id" : "393-09-0285", "createdBy" : "13", "createdDate" : "2020-06-30T17:56:28.216+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T15:16:30.923+0000", "version" : null, "inactive" : false, "description" : "Short story", "type" : "Primary", "status" : "false", "amount" : 22953.0, "availableBalance" : 529668.0, "user" : null }, { "id" : "027-46-8225", "createdBy" : "12", "createdDate" : "2020-06-30T15:36:05.069+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T07:19:33.551+0000", "version" : null, "inactive" : false, "description" : "Short story", "type" : "Primary", "status" : "true", "amount" : 68048.0, "availableBalance" : 196910.0, "user" : null }, { "id" : "693-50-6912", "createdBy" : "12", "createdDate" : "2020-06-30T19:18:57.124+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T19:17:31.047+0000", "version" : null, "inactive" : false, "description" : "Realistic fiction", "type" : "Primary", "status" : "true", "amount" : 434569.0, "availableBalance" : 555235.0, "user" : null }, { "id" : "441-09-7184", "createdBy" : "14", "createdDate" : "2020-06-30T17:48:04.640+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T10:58:36.782+0000", "version" : null, "inactive" : false, "description" : "Classic", "type" : "Primary", "status" : "true", "amount" : 286655.0, "availableBalance" : 499527.0, "user" : null }, { "id" : "630-02-6378", "createdBy" : "10", "createdDate" : "2020-06-30T22:01:08.169+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T20:12:41.056+0000", "version" : null, "inactive" : false, "description" : "Speech", "type" : "Primary", "status" : "false", "amount" : 356764.0, "availableBalance" : 72739.0, "user" : null }, { "id" : "115-86-5822", "createdBy" : "13", "createdDate" : "2020-06-30T11:13:18.375+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T13:25:55.735+0000", "version" : null, "inactive" : false, "description" : "Fiction in verse", "type" : "Primary", "status" : "false", "amount" : 235880.0, "availableBalance" : 152243.0, "user" : null }, { "id" : "397-31-2729", "createdBy" : "11", "createdDate" : "2020-06-30T08:36:14.381+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T04:58:42.056+0000", "version" : null, "inactive" : false, "description" : "Fiction narrative", "type" : "Primary", "status" : "false", "amount" : 402013.0, "availableBalance" : 159545.0, "user" : null }, { "id" : "111-04-2297", "createdBy" : "13", "createdDate" : "2020-06-30T19:03:56.798+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T08:17:55.578+0000", "version" : null, "inactive" : false, "description" : "Narrative nonfiction", "type" : "Primary", "status" : "false", "amount" : 588907.0, "availableBalance" : 595134.0, "user" : null }, { "id" : "598-13-4893", "createdBy" : "11", "createdDate" : "2020-06-30T11:28:43.229+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T14:56:37.381+0000", "version" : null, "inactive" : false, "description" : "Textbook", "type" : "Primary", "status" : "false", "amount" : 277228.0, "availableBalance" : 359946.0, "user" : null }, { "id" : "115-65-0408", "createdBy" : "10", "createdDate" : "2020-06-30T11:01:48.544+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T07:22:09.162+0000", "version" : null, "inactive" : false, "description" : "Narrative nonfiction", "type" : "Primary", "status" : "false", "amount" : 376068.0, "availableBalance" : 152271.0, "user" : null }, { "id" : "687-74-5987", "createdBy" : "14", "createdDate" : "2020-06-30T22:55:00.714+0000", "modifiedBy" : "14", "modifiedDate" : "2020-06-30T05:41:28.775+0000", "version" : null, "inactive" : false, "description" : "Western", "type" : "Primary", "status" : "false", "amount" : 385067.0, "availableBalance" : 199514.0, "user" : null }, { "id" : "610-40-4084", "createdBy" : "11", "createdDate" : "2020-06-30T17:50:03.041+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T11:15:09.748+0000", "version" : null, "inactive" : false, "description" : "Fairy tale", "type" : "Primary", "status" : "false", "amount" : 180841.0, "availableBalance" : 425070.0, "user" : null }, { "id" : "052-27-0144", "createdBy" : "14", "createdDate" : "2020-06-30T20:08:25.146+0000", "modifiedBy" : "12", "modifiedDate" : "2020-06-30T19:29:28.702+0000", "version" : null, "inactive" : false, "description" : "Fanfiction", "type" : "Primary", "status" : "false", "amount" : 132982.0, "availableBalance" : 426214.0, "user" : null }, { "id" : "768-74-9489", "createdBy" : "12", "createdDate" : "2020-06-30T05:57:05.716+0000", "modifiedBy" : "13", "modifiedDate" : "2020-06-30T23:57:33.866+0000", "version" : null, "inactive" : false, "description" : "Fanfiction", "type" : "Primary", "status" : "true", "amount" : 380972.0, "availableBalance" : 540378.0, "user" : null } ], "totalPages" : 0, "totalElements" : 0 }] 07:10:14 [D] [AVPTGQPPDdos] : Response-Headers [{X-Content-Type-Options=[nosniff], X-XSS-Protection=[1; mode=block], Cache-Control=[no-cache, no-store, max-age=0, must-revalidate], Pragma=[no-cache], Expires=[0], X-Frame-Options=[DENY], Set-Cookie=[SESSION=M2ExZTA3NmEtZmIxOC00MmU2LTg0ODYtMzcwNDZhMGE5MTA4; Path=/; HttpOnly], Content-Type=[application/json;charset=UTF-8], Transfer-Encoding=[chunked], Date=[Thu, 13 Aug 2020 19:10:14 GMT]}] 07:10:14 [D] [AVPTGQPPDdos] : StatusCode [200] 07:10:14 [D] [AVPTGQPPDdos] : Time [199] 07:10:14 [D] [AVPTGQPPDdos] : Size [30326] 07:10:14 [E] [AVPTGQPPDdos] : Assertion [@StatusCode == 200 AND @Response.errors != false] resolved-to [200 == 200 AND false != false] result [Failed] IMPORTANT LINKS Vulnerability Details: https://cloud.fxlabs.io/#/app/projects/8a8081766fc3e2a1016fc421d6e55a13/recommendations/8a80814f73e75f3f0173e93ada1a1353/details Project: https://cloud.fxlabs.io/#/app/projects/8a8081766fc3e2a1016fc421d6e55a13/jobs Environment: https://cloud.fxlabs.io/#/app/projects/8a8081766fc3e2a1016fc421d6e55a13/environments/8a8081766fc3e2a1016fc421d7155a15/edit Scan Dashboard: https://cloud.fxlabs.io/#/app/projects/8a8081766fc3e2a1016fc421d6e55a13/jobs/8a8081766fc3e2a1016fc4230f426628/runs/8a80814f73e75f3f0173e93acc32134c Playbook: https://cloud.fxlabs.io/#/app/projects/8a8081766fc3e2a1016fc421d6e55a13/template/ApiV1PrimaryTransactionGetQueryParamPagesizeDdos Coverage: https://cloud.fxlabs.io/#/app/projects/8a8081766fc3e2a1016fc421d6e55a13/configuration Code Sample: https://cloud.fxlabs.io/#/app/projects/8a8081766fc3e2a1016fc421d6e55a13/recommendations/8a80814f73e75f3f0173e93ada1a1353/codesamples PS: Please contact support@apisec.ai for apisec access and login issues. --- apisec Bot ---