How to Detect XXE Attacks from Text Input using C/C++

External references embedded within XML strings often represent a significant security threat. Thankfully, you can easily detect XXE threats using the low-code content threat detection API provided below. With ready-to-run C/C++ code examples, you can quickly structure your API request and authorize up to 800 API calls per month (free with no additional commitment) by supplying a free-tier API key in the authorization header.

To begin, install libcurl in your project:

libcurl/7.75.0

Next, copy from the below code examples:

CURL *curl;
CURLcode res;
curl = curl_easy_init();
if(curl) {
     curl_easy_setopt(curl, CURLOPT_CUSTOMREQUEST, "POST");
     curl_easy_setopt(curl, CURLOPT_URL, "https://api.cloudmersive.com/security/threat-detection/content/xxe/detect/xml/string");
     curl_easy_setopt(curl, CURLOPT_FOLLOWLOCATION, 1L);
     curl_easy_setopt(curl, CURLOPT_DEFAULT_PROTOCOL, "https");
     struct curl_slist *headers = NULL;
     headers = curl_slist_append(headers, "Content-Type: application/json");
     headers = curl_slist_append(headers, "Apikey: YOUR-API-KEY-HERE");
     curl_easy_setopt(curl, CURLOPT_HTTPHEADER, headers);
     const char *data = "\"<string>\"";
     curl_easy_setopt(curl, CURLOPT_POSTFIELDS, data);
     res = curl_easy_perform(curl);
}
curl_easy_cleanup(curl);

The API response will contain a boolean indicating if an XXE threat was detected, making it easy to neutralize the threat in subsequent steps.