dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update Landing_page.adoc

Browse Source 
Updated the language to make it easier to understand
This commit is contained in:
Robin 2019-01-19 13:13:54 +09:00 committed by Nanne Baars
parent e625d4008b
commit 528c05a859
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
webgoat-lessons/webwolf-introduction/src/main/resources/lessonPlans/en/Landing_page.adoc
View File

@ -16,10 +16,10 @@ image::images/requests.png[caption="Figure: ", style="lesson-image"]
{nbsp}
Suppose we tricked a user to click on a link he/she received in an email, this link will open up our crafted
password reset link page. The user does not see any difference with the normal password reset page of the company.
The user enters a new password and hits enter, the new password will be send to your host. In this case the new
password will be send to WebWolf. Try to locate the unique code.
password reset link page. The user does not notice any differences compared to the normal password reset page of the company.
The user enters a new password and hits enter. The new password will be sent to your host. In this case the new
password will be sent to WebWolf. Try to locate the unique code.
Please be aware after resetting the password the user will receive an error page in a real attack scenario the
Please be aware that after resetting the password the user will receive an error page. In a real attack scenario the
user would probably see a normal success page (this is due to a limit what we can control with WebWolf)