codeql-intro-csharp/README.org at c89fbf8adea62896fa091e64bfa0cb154dd08fa0

hohn/codeql-intro-csharp

Fork 0

mirror of https://github.com/hohn/codeql-intro-csharp.git synced 2025-12-16 10:43:05 +01:00

Files

Michael Hohn c89fbf8ade DONE SQL Injection Code Compilation and Sample Run

2024-12-03 10:52:19 -08:00

5.2 KiB

Raw Blame History

Introduction to CodeQL
CodeQL overview
CodeQL CLI Setup
Test Problem Setup
- Hello World Sample
- SQL Injection
SQL Injection Code Compilation and Sample Run
Build database
CodeQL VS Code Setup
CodeQL for Devops and Administrators
CodeQL for Query Writers

TODO Introduction to CodeQL

describe the system using diagrams as reference point, with details from existing docs
- https://github.com/hohn/codeql-visual-guides/blob/master/codeql-system.drawio.pdf, ~/work-gh/codeql-visual-guides/
Update https://github.com/hohn/codeql-cli-end-to-end
- Send setup instructions for windows / linux – for the laptops, not VMs or Docker.
  - old: https://github.com/advanced-security/codeql-workshops-staging/blob/master/java/workshop-java-mismatched-loop-condition.md#setup-instructions
  - better: https://github.com/ps-resources/codeql-partner-training/blob/39bc5e8d84a8f0dd1698d9cdcc59eed98fa691b9/preparation-materials/setup-instructions.md#codeql-workshop-preparation-instructions
  - ~/local/codeql-operational-view/operational-view.pdf
  - windows version – to be written.
- Suggest variant analysis for log4j etc.
- Tools:
  - octopuss deploy
  - progit for package management – anito.
  - Actions for building
https://github.com/hohn/codeql-workshop-sql-injection-java
- version for C#

TODO CodeQL overview

/Users/hohn/local/codeql-dataflow-sql-injection/CodeQL-workshop-overview-only.pdf

There are two identifyable tracks for codeql users: devops and query writers. The first one focuses on setup, deployment, and query selection; the second on query writing. There is significant overlap; the CodeQL CLI Setup is needed by both.

TODO CodeQL CLI Setup

  cd ~/work-gh/codeql-intro-csharp
  codeql resolve  packs
  codeql pack install

Using

  library: false
  name: sample/csharp-sql-injection
  version: 0.0.1
  dependencies:
    codeql/csharp-all: "*"

with

codeql pack install

will install the packs matching this codeql version, then create

codeql-pack.lock.yml

which pins the version.

DONE Test Problem Setup

CLOSED: [2024-12-02 Mon 14:59]

State "DONE" from "NEXT" [2024-12-02 Mon 14:59]

Hello World Sample

  # Install sdk
  brew install --cask dotnet-sdk
  dotnet --version

  # Create template project
  mkdir HelloWorld
  cd HelloWorld
  dotnet new console

  # Compile template project
  cd ~/work-gh/codeql-intro-csharp/HelloWorld/
  dotnet build

  # Run template project
  dotnet run
  # or
  ./bin/Debug/net9.0/HelloWorld

SQL Injection

  # Project Setup
  cd ~/work-gh/codeql-intro-csharp/
  dotnet new console -n SqliDemo
  cd SqliDemo

  dotnet add package Microsoft.Data.Sqlite

  # Database Init
  cd ~/work-gh/codeql-intro-csharp/SqliDemo
  sqlite3 users.sqlite
  CREATE TABLE users (id INTEGER, info TEXT);
  .exit

  # Build
  cd ~/work-gh/codeql-intro-csharp/SqliDemo
  dotnet build

  # Run
  dotnet run
  First User

  # Check db
  echo '
      SELECT * FROM users;
  ' | sqlite3 users.sqlite 

  # Add Johnny Droptable 
  dotnet run
  Johnny'); DROP TABLE users; --

  # Check db
  echo '
      SELECT * FROM users;
  ' | sqlite3 users.sqlite 
  # Parse error near line 2: no such table: users

DONE SQL Injection Code Compilation and Sample Run

CLOSED: [2024-12-03 Tue 10:52]

State "DONE" from "NEXT" [2024-12-03 Tue 10:52]

  # All run in pwsh, typical prompt is
  # PS /Users/hohn/work-gh/codeql-intro-csharp> 

  # Build
  cd $HOME/work-gh/codeql-intro-csharp
  ./build.ps1

  # Prepare db
  ./admin.ps1 -r
  ./admin.ps1 -c
  ./admin.ps1 -s

  # Add regular user interactively
  ./build.ps1
  ./SqliDemo/bin/Debug/net9.0/SqliDemo
  hello user

  # Check
  ./admin.ps1 -s

  # Add Johnny Droptable 
  ./SqliDemo/bin/Debug/net9.0/SqliDemo
  Johnny'); DROP TABLE users; --

  # And the problem:
  ./admin.ps1 -s
  Parse error near line 1: no such table: users

TODO Build database

pwsh -File build.ps1

TODO CodeQL VS Code Setup

TODO CodeQL for Devops and Administrators

https://docs.github.com/en/code-security/codeql-cli/codeql-cli-manual
https://github.com/hohn/codeql-visual-guides/blob/master/codeql-system.drawio.pdf
https://htmlpreview.github.io/?https://github.com/hohn/codeql-cli-end-to-end/blob/master/doc/readme.html
https://github.com/hohn/codeql-workshop-sql-injection-java
- https://github.com/hohn/codeql-workshop-sql-injection-java/blob/master/src/README.org
Prerequisites and setup instructions
picking queries via query suites
- /Users/hohn/local/codeql-workshops-staging/java/codeql-java-workshop-notes.md
- /Users/hohn/local/codeql-cli-end-to-end/doc/readme.md
- /Users/hohn/local/codeql-cli-end-to-end/sarif-cli/non-sarif-metadata/README.org

TODO CodeQL for Query Writers

https://github.com/hohn/codeql-workshop-sql-injection-java
- https://github.com/hohn/codeql-workshop-sql-injection-java/blob/master/session/README.org

5.2 KiB Raw Blame History Unescape Escape