dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

* Hints added

Browse Source 
* Solutions added
* Bugfixes
* Introduction added (including how to start with webgoat and useful tools)
* New lesson: Password strength
* New lessons: Multi Level Login
* Not yet working new lesson: Session fixation (inital release)

git-svn-id: http://webgoat.googlecode.com/svn/trunk@301 4033779f-a91e-0410-96ef-6bf7bf53c507
This commit is contained in:
wirth.marcel
2008-04-07 14:28:38 +00:00
parent ce703bc67d
commit 82e32acb77
137 changed files with 4230 additions and 479 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
webgoat/main/project/WebContent/lesson_solutions/HiddenFieldTampering.html
View File

@ -581,8 +581,8 @@ style='font-family:"Arial","sans-serif"'>Solution:<o:p></o:p></span></b></p>
hidden field you need to start your favorite HTTP Interceptor. You can use
WebScarab from OWASP to intercept the request and change the hidden field.
Configure your browser to use a local proxy. In Internet Explorer you can do
this via <EFBFBD>Tools<EFBFBD> <20> <EFBFBD>Internet Options<EFBFBD> <20> <EFBFBD>Connections<EFBFBD> <20> <EFBFBD>LAN Settings<EFBFBD>. You
must define proxy <EFBFBD>localhost<EFBFBD> with port 8008.<o:p></o:p></span></p>
this via "Tools" <20> "Internet Options" <20> "Connections" <20> "LAN Settings". You
must define proxy "localhost" with port 8008.<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-family:"Arial","sans-serif"'><o:p>&nbsp;</o:p></span></p>