Skip to content

gaurabb/ipvl-csharp

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits

IPVL

IPVL

 
 

IPVL.sln

IPVL.sln

 
 

IPVL.suo

IPVL.suo

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

Repository files navigation

ipvl - input validation library

[Still Work In Progress]

Secure Input Validation Library - C#

Secure File Upload Checks

  • File exists
  • File size validation
  • File extension validation
  • File magic number validation

How File Extension and Magic Number Checks done?

  • The code will first check for the extension of the uploaded file.
  • If the extension is in the whitelist then the magic number check will be performed.
  • The code will read the magic number value of the uploaded file's type based on the extension.
  • If the magic number is valid then the file is marked as a valid file.

The magicnumbers.txt file in the root folder is used to obtain the "magic numbers" for validation. When the IPVL is invoked, the constructor of the IPVL class will check for the magicnumbers.txt file in the project root. If found, the values obtained from this file will be used. If the file does not exist, then a new file will be created and the default set of magic numbers will be written into this file and used for validation.

If new file types needs to be supported then the magic number values can be added to the magicnumbers.txt file in the following format, one key value per line:

.<filetype>=<magic#Value>
Eg.
.bmp=42-4D

About

Input Validation Library - C#

Topics

c-sharp magic-numbers file validation-library secure-file-upload

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages