dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

renamed project->main regarding to Maven conventions

Browse Source 
git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@393 4033779f-a91e-0410-96ef-6bf7bf53c507
This commit is contained in:
ch.ko123
2009-11-01 11:16:30 +00:00
parent f99fad493c
commit c1f2360a35
1038 changed files with 2 additions and 2 deletions
main
build.xml
main
build.xml
config
JavaStyle_WebGoat.xml
doc
New Lesson Instructions.txtSolving the WebGoat Labs.docWebGoat_Users_Guide.doc
java
WebGoatLabels_english.propertiesWebGoatLabels_german.properties
org
owasp
webgoat
Catcher.javaHammerHead.javaLessonSource.java
lessons
AbstractLesson.javaAccessControlMatrix.javaBackDoors.javaBasicAuthentication.javaBlindNumericSqlInjection.javaBlindScript.javaBlindStringSqlInjection.javaBufferOverflow.javaBypassHtmlFieldRestrictions.javaCSRF.javaCategory.javaChallenge2Screen.java
ClientSideFiltering
ClientSideFiltering.java
ClientSideValidation.javaCommandInjection.javaConcurrencyCart.java
CrossSiteScripting
CrossSiteScripting.javaEditProfile.javaFindProfile.javaUpdateProfile.javaViewProfile.java
CsrfPromptByPass.javaCsrfTokenByPass.java
DBCrossSiteScripting
DBCrossSiteScripting.javaUpdateProfile.java
DBSQLInjection
DBSQLInjection.javaLogin.java
DOMInjection.javaDOMXSS.javaDOS_Login.javaDangerousEval.javaEncoding.javaFailOpenAuthentication.javaForcedBrowsing.javaForgotPassword.java
GoatHillsFinancial
DefaultLessonAction.javaDeleteProfile.javaEditProfile.javaFindProfile.javaGoatHillsFinancial.javaLessonAction.javaListStaff.javaLogin.javaLogout.javaSearchStaff.javaUpdateProfile.javaViewProfile.java
HiddenFieldTampering.javaHowToWork.javaHtmlClues.javaHttpBasics.javaHttpOnly.javaHttpSplitting.javaInsecureLogin.javaJSONInjection.javaJavaScriptValidation.javaLessonAdapter.javaLogSpoofing.javaMaliciousFileExecution.javaMultiLevelLogin1.javaMultiLevelLogin2.javaNewLesson.javaPasswordStrength.javaPathBasedAccessControl.javaPhishing.javaRandomLessonAdapter.javaReflectedXSS.javaRemoteAdminFlaw.java
RoleBasedAccessControl
DeleteProfile.javaEditProfile.javaRoleBasedAccessControl.javaUpdateProfile.javaViewProfile.java
SQLInjection
ListStaff.javaLogin.javaSQLInjection.javaViewProfile.java
SameOriginPolicyProtection.javaSequentialLessonAdapter.javaSessionFixation.javaSilentTransactions.javaSoapRequest.javaSqlAddData.javaSqlModifyData.javaSqlNumericInjection.javaSqlStringInjection.javaStoredXss.javaThreadSafetyProblem.javaTomcatSetup.javaTraceXSS.javaUncheckedEmail.javaUsefulTools.javaWSDLScanning.javaWeakAuthenticationCookie.javaWeakSessionID.javaWelcomeScreen.javaWsSAXInjection.javaWsSqlInjection.javaXMLInjection.javaXPATHInjection.java
admin
AdminScreen.javaProductsAdminScreen.javaRefreshDBScreen.javaReportCardScreen.javaSummaryReportCardScreen.javaUserAdminScreen.javaViewDatabase.javaWelcomeAdminScreen.java
instructor
CrossSiteScripting
FindProfile_i.javaUpdateProfile_i.javaViewProfile_i.java
DBCrossSiteScripting
RegexMatch.csRegexMatch.dllUpdateProfile_i.java
DBSQLInjection
Login_i.java
RoleBasedAccessControl
DeleteProfile_i.javaEditProfile_i.javaRoleBasedAccessControl_i.javaUpdateProfile_i.javaViewProfile_i.java
SQLInjection
Login_i.javaViewProfile_i.java
servlets
Controller.java
session
Authorization.javaCourse.javaCreateDB.javaDatabaseUtilities.javaECSFactory.javaEmployee.javaEmployeeStub.javaErrorScreen.javaLessonSession.javaLessonTracker.javaParameter.javaParameterNotFoundException.javaParameterParser.javaRandomLessonTracker.javaScreen.javaSequentialLessonTracker.javaUnauthenticatedException.javaUnauthorizedException.javaUserTracker.javaValidationException.javaWebSession.javaWebgoatContext.javaWebgoatProperties.java
util
Exec.javaExecResults.javaExecutionException.javaHtmlEncoder.javaInterceptor.javaThreadWatcher.javaWebGoatI18N.java
webapp
META-INF
MANIFEST.MF
WEB-INF
lib
activation-1.1.jaraxis-1.2.jaraxis-ant-1.2.jaraxis-jaxrpc-1.2.jaraxis-saaj-1.2.jarcatalina.jarcommons-collections-3.1.jarcommons-digester-1.4.1.jarcommons-discovery-0.2.jarcommons-fileupload-1.2.1.jarcommons-io-1.4.jarcommons-logging-1.0.4.jardependencies.txtdsn-1.4.2.jarecs-1.4.2.jarhsqldb-1.8.0.7.jarimap-1.4.2.jarj2h-1.3.1.jarjta-1.0.1B.jarjtds-1.2.2.jarlog4j-1.2.8.jarmail-1.4.2.jarmailapi-1.4.2.jarojdbc14.jarpop3-1.4.2.jarsmtp-1.4.2.jarwsdl4j-1.5.1.jar
server-config.wsddweb.xmlwebgoat-class.propertieswebgoat-lab.propertieswebgoat-owasp.propertieswebgoat.propertieswebgoat_oracle.sqlwebgoat_sqlserver.sql
css
layers.csslesson.cssmenu.csswebgoat.csswebgoat_challenge.css
database
database.prp
images
WebGoatFinancial
banklogo.jpg
buttons
catStarted.jpgcookies.jpgcookiesOver.jpghelp.jpghelpOver.jpghint.jpghintLeft.jpghintLeftOver.jpghintOver.jpghintRight.jpghintRightOver.jpghtml.jpghtmlOver.jpgjava.jpgjavaOver.jpglessonComplete.jpglogout.jpglogoutOver.jpgparams.jpgparamsOver.jpgplans.jpgplansOver.jpgsolutions.jpgsolutionsOver.jpg
header
header.jpgheader_ASP.jpgheader_CShrp.jpgheader_coldFusion.jpgheader_dotNet.jpg
icons
rightArrow.jpg
introduction
HowToUse_1.jpgHowToUse_2.jpgHowToUse_3.jpgfirebug.jpgiewatch.jpginterface.jpgwebscarab.jpgwireshark.png
logos
aspect.jpgmacadamian.gifmandiant.pngounce.jpgowasp.jpgparasoft.jpgzionsecurity.gif
menu_images
1x1.gif
javascript
DOMXSS.jsDOMXSS_backup.jsclientSideFiltering.jsclientSideValidation.jsescape.jseval.js
instructor
DOMXSS_i.js
javascript.jslessonNav.jsmakeWindow.jsmenu_system.jssameOrigin.jstoggle.js
lesson_plans
English
AccessControlMatrix.htmlBackDoors.htmlBasicAuthentication.htmlBlindSqlInjection.htmlBufferOverflow.htmlCSRF.htmlChallengeScreen.htmlClientSideFiltering.htmlClientSideValidation.htmlCommandInjection.htmlConcurrencyCart.htmlCrossSiteScripting.htmlCsrfPromptByPass.htmlCsrfTokenByPass.htmlDBCrossSiteScripting.htmlDBSQLInjection.htmlDOMInjection.htmlDOMXSS.htmlDOS_Login.htmlDangerousEval.htmlEncoding.htmlFailOpenAuthentication.htmlForcedBrowsing.htmlForgotPassword.htmlHiddenFieldTampering.htmlHowToWork.htmlHtmlClues.htmlHttpBasics.htmlHttpOnly.htmlHttpSplitting.htmlInsecureLogin.htmlJSONInjection.htmlJavaScriptValidation.htmlLesson_Plan_Template.htmlLogSpoofing.htmlMultiLevelLogin1.htmlMultiLevelLogin2.htmlNewLesson.htmlPasswordStrength.htmlPathBasedAccessControl.htmlPhishing.htmlReflectedXSS.htmlRemoteAdminFlaw.htmlRoleBasedAccessControl.htmlSQLInjection.htmlSameOriginPolicyProtection.htmlSessionFixation.htmlSilentTransactions.htmlSoapRequest.htmlSqlNumericInjection.htmlSqlStringInjection.htmlStoredXss.htmlThreadSafetyProblem.htmlTomcatSetup.htmlTraceXSS.htmlUncheckedEmail.htmlUsefulTools.htmlWSDLScanning.htmlWeakAuthenticationCookie.htmlWeakSessionID.htmlWelcomeScreeen.htmlWsSAXInjection.htmlWsSqlInjection.htmlXMLInjection.htmlXPATHInjection.html
German
BasicAuthentication.htmlCommandInjection.htmlHiddenFieldTampering.htmlHtmlClues.htmlHttpBasics.htmlJavaScriptValidation.htmlLogSpoofing.htmlPathBasedAccessControl.htmlReflectedXSS.htmlRemoteAdminFlaw.htmlSqlNumericInjection.htmlSqlStringInjection.htmlStoredXss.htmlWeakAuthenticationCookie.html
lesson_solutions
AccessControlMatrix.html
AccessControlMatrix_files
Thumbs.dbcolorschememapping.xmlfilelist.xmlimage001.pngimage002.jpgimage003.pngimage004.jpgthemedata.thmx
BackDoors.html
BackDoors_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.pngimage011.pngimage013.jpgimage014.jpgimage015.jpgimage016.jpgimage017.jpgimage018.jpgthemedata.thmx
BasicAuthentication.html
BasicAuthentication_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.pngimage011.pngimage013.pngimage015.pngimage017.pngimage019.pngimage021.pngimage023.pngimage025.jpgimage026.jpgimage027.jpgimage028.jpgimage029.jpgimage030.jpgimage031.jpgimage032.jpgimage033.jpgimage034.jpgimage035.jpgimage036.jpgthemedata.thmx
BlindSqlInjection.html
BlindSqlInjection_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.pngimage011.pngimage013.jpgimage014.jpgimage015.jpgimage016.jpgimage017.jpgimage018.jpgthemedata.thmx
CSRF.html
CSRF_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.pngimage011.jpgimage012.jpgimage013.jpgimage014.jpgimage015.jpgthemedata.thmx
ClientSideFiltering.html
ClientSideFiltering_files
clientside_firebug.jpg
ClientSideValidation.html
ClientSideValidation_files
ClientSideValidation_stage1.png
CommandInjection.html
CommandInjection_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.jpgimage008.jpgimage009.jpgthemedata.thmx
ConcurrencyCart.html
ConcurrencyCart_files
image001.jpgimage002.jpgimage003.jpg
CsrfPromptByPass.html
CsrfPromptByPass_files
iframePromptHack.pngiframePromptHacked.pngimgPromptHack.pngtransferFundsComplete.pngtransferFundsHack.pngtransferFundsPage.pngtransferFundsPrompt.png
CsrfTokenByPass.html
CsrfTokenByPass_files
tokenHack.pngtokenHacked.pngtokenPage.png
DOMInjection.html
DOMInjection_files
colorschememapping.xmlfilelist.xmlimage001.pngimage002.jpgimage003.pngimage004.jpgimage005.pngimage006.jpgimage007.pngimage008.jpgimage009.pngimage010.jpgimage011.pngimage012.jpgthemedata.thmx
DOMXSS.html
DOMXSS_files
image001.jpgimage002.jpgimage003.jpgimage004.jpg
DOS_Login.html
DOS_Login_files
colorschememapping.xmlfilelist.xmlimage001.pngimage002.jpgimage003.pngimage004.jpgthemedata.thmx
DangerousEval.htmlEncoding.htmlFailOpenAuthentication.html
FailOpenAuthentication_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.jpgimage010.jpgimage011.jpgimage012.jpgthemedata.thmx
ForcedBrowsing.html
ForcedBrowsing_files
colorschememapping.xmlfilelist.xmlimage001.pngimage002.jpgimage003.pngimage004.jpgimage005.pngimage006.jpgimage007.pngimage008.jpgthemedata.thmx
ForgotPassword.html
ForgotPassword_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.pngimage011.pngimage013.pngimage015.jpgimage016.jpgimage017.jpgimage018.jpgimage019.jpgimage020.jpgimage021.jpgthemedata.thmx
HiddenFieldTampering.html
HiddenFieldTampering_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.pngimage011.jpgimage012.jpgimage013.jpgimage014.jpgimage015.jpgthemedata.thmx
HtmlClues.html
HtmlClues_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.pngimage011.jpgimage012.jpgimage013.jpgimage014.jpgimage015.jpgthemedata.thmx
HttpBasics.html
HttpBasics_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.jpgimage006.jpgthemedata.thmxwebscarab1.jpgwebscarab2.jpg
HttpOnly.html
HttpOnly_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.pngimage011.pngimage013.pngimage015.jpgimage016.jpgimage017.jpgimage018.jpgimage019.jpgimage020.jpgimage021.jpgthemedata.thmx
HttpSplitting.html
HttpSplitting_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.pngimage011.pngimage013.pngimage015.pngimage017.pngimage019.pngimage021.pngimage023.pngimage025.pngimage027.pngimage029.jpgimage030.jpgimage031.jpgimage032.jpgimage033.jpgimage034.jpgimage035.jpgimage036.jpgimage037.jpgimage038.jpgimage039.jpgimage040.jpgimage041.jpgimage042.jpgthemedata.thmx
InsecureLogin.html
InsecureLogin_files
wireshark1.png
JSONInjection.html
JSONInjection_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.pngimage011.pngimage013.jpgimage014.jpgimage015.jpgimage016.jpgimage017.jpgimage018.jpgthemedata.thmx
JavaScriptValidation.html
JavaScriptValidation_files
colorschememapping.xmlfilelist.xmlimage001.pngimage002.jpgimage003.pngimage004.jpgimage005.pngimage006.jpgimage007.pngimage008.jpgimage009.gifimage010.pngimage011.jpgimage012.pngimage013.jpgimage014.pngimage015.jpgimage016.pngimage017.jpgimage018.pngimage019.jpgimage020.pngimage021.jpgimage022.pngimage023.jpgthemedata.thmx
Lab Access Control
Lab Add Business Layer Access Control.htmlLab Add Data Layer Access Control.htmlLab Bypass Business Layer Access Control.htmlLab Bypass Data Layer Access Control.html
images
access_control_stage1.pngaccess_control_stage3.png
Lab SQL Injection
Lab Numeric SQL Injection.htmlLab Parameterized Query #1.htmlLab Parameterized Query #2.htmlLab String SQL Injection.html
Lab XSS
Lab Block Reflected XSS.htmlLab Block Stored XSS using Input Validation.htmlLab Block Stored XSS using Output Encoding.htmlLab Reflected XSS.htmlLab Stored XSS Revisited.htmlLab Stored XSS.html
images
stored_xss.png
LogSpoofing.html
LogSpoofing_files
Thumbs.dbcolorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.jpgimage008.jpgimage009.jpgthemedata.thmx
MultiLevelLogin1.html
MultiLevelLogin1_files
login.pngsuccess.pngtan.pngwebscarab.png
MultiLevelLogin2.html
MultiLevelLogin2_files
success.png
PasswordStrength.html
PasswordStrength_files
image001.jpgimage002.jpgimage003.jpg
PathBasedAccessControl.html
PathBasedAccessControl_files
colorschememapping.xmlfilelist.xmlimage001.pngimage002.jpgimage003.pngimage004.jpgimage005.pngimage006.jpgthemedata.thmx
Phishing.htmlReflectedXSS.html
ReflectedXSS_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.jpgimage006.jpgthemedata.thmx
RemoteAdminFlaw.html
RemoteAdminFlaw_files
colorschememapping.xmlfilelist.xmlimage001.pngimage002.jpgimage003.pngimage004.jpgimage005.pngimage006.jpgthemedata.thmx
SessionFixation.html
SessionFixation_files
sf_stage1.pngsf_stage2.pngsf_stage3.pngsf_stage4_1.pngsf_stage4_2.pngsf_success.png
SilentTransactions.html
SilentTransactions_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.jpgimage010.jpgimage011.jpgimage012.jpgthemedata.thmx
SoapRequest.html
SoapRequest_files
colorschememapping.xmlfilelist.xmlimage001.pngimage002.jpgimage003.pngimage004.jpgimage005.pngimage006.jpgimage007.pngimage008.jpgimage009.pngimage010.jpgthemedata.thmx
SqlNumericInjection.html
SqlNumericInjection_files
colorschememapping.xmlfilelist.xmlimage001.pngimage002.jpgimage003.pngimage004.jpgimage005.pngimage006.jpgnumericinjection.pngnumericinjection_solved.pngthemedata.thmx
SqlStringInjection.html
SqlStringInjection_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.jpgimage006.jpgthemedata.thmx
StoredXSS_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.jpgimage008.jpgimage009.jpgthemedata.thmx
StoredXss.htmlThreadSafetyProblem.html
ThreadSafetyProblem_files
colorschememapping.xmlfilelist.xmlimage001.pngimage002.jpgimage003.pngimage004.jpgimage007.pngimage009.jpgthemedata.thmx
TraceXSS.html
TraceXSS_files
colorschememapping.xmlfilelist.xmlimage001.pngimage002.jpgthemedata.thmx
UncheckedEmail.html
UncheckedEmail_files
colorschememapping.xmlfilelist.xmlimage001.pngimage002.jpgimage003.pngimage004.jpgimage005.pngimage006.jpgimage007.pngimage008.jpgthemedata.thmx
WSDLScanning.html
WSDLScanning_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.jpgimage010.jpgimage011.jpgimage012.jpgthemedata.thmx
WeakAuthenticationCookie.html
WeakAuthenticationCookie_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.pngimage011.pngimage013.pngimage015.pngimage017.pngimage019.jpgimage020.jpgimage021.jpgimage022.jpgimage023.jpgimage024.jpgimage025.jpgimage026.jpgimage027.jpgthemedata.thmx
WeakSessionID.html
WeakSessionID_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage010.pngimage012.pngimage014.pngimage016.pngimage018.pngimage020.jpgimage021.jpgimage022.jpgimage023.jpgimage024.jpgimage025.jpgimage026.jpgimage027.jpgimage028.jpgimage029.jpgthemedata.thmx
WsSAXInjection.html
WsSAXInjection_files
colorschememapping.xmlfilelist.xmlimage001.pngimage002.jpgimage003.pngimage004.jpgimage005.pngimage006.jpgimage007.pngimage008.jpgimage009.pngimage010.jpgthemedata.thmx
WsSqlInjection.html
WsSqlInjection_files
colorschememapping.xmlfilelist.xmlimage001.pngimage002.jpgimage003.pngimage004.jpgimage005.pngimage006.jpgimage007.pngimage008.jpgthemedata.thmx
XMLInjection.html
XMLInjection_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.pngimage009.pngimage011.pngimage013.pngimage015.pngimage017.jpgimage018.jpgimage019.jpgimage020.jpgimage021.jpgimage022.jpgimage023.jpgimage024.jpgthemedata.thmx
XPATHInjection.html
XPATHInjection_files
colorschememapping.xmlfilelist.xmlimage001.pngimage003.pngimage005.pngimage007.jpgimage008.jpgimage009.jpgthemedata.thmx
formate.css
lessons
Ajax
clientSideFiltering.jspclientSideFiltering_backup.jspclientSideValidation.jspemployees.xmleval.jsp
images
lesson1_header.jpglesson1_workspace.jpg
instructor
clientSideFiltering_i.jsp
sameOrigin.jsp
ConfManagement
config.jsp
CrossSiteScripting
CrossSiteScripting.cssCrossSiteScripting.jspEditProfile.jspListStaff.jspLogin.jspSearchStaff.jspViewProfile.jsperror.jsp
images
lesson1_SearchWindow.jpglesson1_header.jpglesson1_loginWindow.jpglesson1_menu.jpglesson1_workspace.jpg
DBCrossSiteScripting
DBCrossSiteScripting.cssDBCrossSiteScripting.jspEditProfile.jspListStaff.jspLogin.jspSearchStaff.jspViewProfile.jsperror.jsp
images
lesson1_SearchWindow.jpglesson1_header.jpglesson1_loginWindow.jpglesson1_menu.jpglesson1_workspace.jpg
DBSQLInjection
DBSQLInjection.cssDBSQLInjection.jspEditProfile.jspListStaff.jspLogin.jspSearchStaff.jspViewProfile.jsperror.jsp
images
lesson1_SearchWindow.jpglesson1_header.jpglesson1_loginWindow.jpglesson1_menu.jpglesson1_workspace.jpg
General
redirect.jsp
GoatHillsFinancial
EditProfile.jspGoatHillsFinancial.cssGoatHillsFinancial.jspListStaff.jspLogin.jspSearchStaff.jspViewProfile.jsperror.jsp
images
accessControl.jpgdbSchema.jpglesson1_SearchWindow.jpglesson1_header.jpglesson1_loginWindow.jpglesson1_menu.jpglesson1_workspace.jpgorgChart.jpg
RoleBasedAccessControl
EditProfile.jspListStaff.jspLogin.jspRoleBasedAccessControl.cssRoleBasedAccessControl.jspSearchStaff.jspViewProfile.jsperror.jsp
images
accessControl.jpgdbSchema.jpglesson1_SearchWindow.jpglesson1_header.jpglesson1_loginWindow.jpglesson1_menu.jpglesson1_workspace.jpgorgChart.jpg
SQLInjection
EditProfile.jspListStaff.jspLogin.jspSQLInjection.cssSQLInjection.jspSearchStaff.jspViewProfile.jsperror.jsp
images
lesson1_SearchWindow.jpglesson1_header.jpglesson1_loginWindow.jpglesson1_menu.jpglesson1_workspace.jpg
XPATHInjection
EmployeesData.xml
main.jspsideWindow.jsp
users
ReadMe.txt
webgoat.jspwebgoat_challenge.jsp

4
main/build.xml

@ -54,8 +54,8 @@
project is bound to this path. project is bound to this path.
--> -->
<property name="app.home" value="${basedir}/project"/> <property name="app.home" value="${basedir}/main"/>
<property name="app.name" value="WebGoat"/> <!-- MUST BE CONSISTENT WITH project/build.xml! --> <property name="app.name" value="WebGoat"/> <!-- MUST BE CONSISTENT WITH main/build.xml! -->
<property name="app.version" value="5.2"/> <!-- MUST BE CONSISTENT WITH project/build.xml! --> <property name="app.version" value="5.2"/> <!-- MUST BE CONSISTENT WITH project/build.xml! -->
<property name="catalina.home" value="${basedir}/tomcat"/> <property name="catalina.home" value="${basedir}/tomcat"/>
<property name="dist.home" value="${app.home}/dist"/> <property name="dist.home" value="${app.home}/dist"/>

0
main/project/build.xml → main/main/build.xml

0
main/project/config/JavaStyle_WebGoat.xml → main/main/config/JavaStyle_WebGoat.xml

0
main/project/doc/New Lesson Instructions.txt → main/main/doc/New Lesson Instructions.txt

0
main/project/doc/Solving the WebGoat Labs.doc → main/main/doc/Solving the WebGoat Labs.doc

0
main/project/doc/WebGoat_Users_Guide.doc → main/main/doc/WebGoat_Users_Guide.doc

0
main/project/java/WebGoatLabels_english.properties → main/main/java/WebGoatLabels_english.properties

0
main/project/java/WebGoatLabels_german.properties → main/main/java/WebGoatLabels_german.properties

0
main/project/java/org/owasp/webgoat/Catcher.java → main/main/java/org/owasp/webgoat/Catcher.java

0
main/project/java/org/owasp/webgoat/HammerHead.java → main/main/java/org/owasp/webgoat/HammerHead.java

0
main/project/java/org/owasp/webgoat/LessonSource.java → main/main/java/org/owasp/webgoat/LessonSource.java

0
main/project/java/org/owasp/webgoat/lessons/AbstractLesson.java → main/main/java/org/owasp/webgoat/lessons/AbstractLesson.java

0
main/project/java/org/owasp/webgoat/lessons/AccessControlMatrix.java → main/main/java/org/owasp/webgoat/lessons/AccessControlMatrix.java

0
main/project/java/org/owasp/webgoat/lessons/BackDoors.java → main/main/java/org/owasp/webgoat/lessons/BackDoors.java

0
main/project/java/org/owasp/webgoat/lessons/BasicAuthentication.java → main/main/java/org/owasp/webgoat/lessons/BasicAuthentication.java

0
main/project/java/org/owasp/webgoat/lessons/BlindNumericSqlInjection.java → main/main/java/org/owasp/webgoat/lessons/BlindNumericSqlInjection.java

0
main/project/java/org/owasp/webgoat/lessons/BlindScript.java → main/main/java/org/owasp/webgoat/lessons/BlindScript.java

0
main/project/java/org/owasp/webgoat/lessons/BlindStringSqlInjection.java → main/main/java/org/owasp/webgoat/lessons/BlindStringSqlInjection.java

0
main/project/java/org/owasp/webgoat/lessons/BufferOverflow.java → main/main/java/org/owasp/webgoat/lessons/BufferOverflow.java

0
main/project/java/org/owasp/webgoat/lessons/BypassHtmlFieldRestrictions.java → main/main/java/org/owasp/webgoat/lessons/BypassHtmlFieldRestrictions.java

0
main/project/java/org/owasp/webgoat/lessons/CSRF.java → main/main/java/org/owasp/webgoat/lessons/CSRF.java

0
main/project/java/org/owasp/webgoat/lessons/Category.java → main/main/java/org/owasp/webgoat/lessons/Category.java

0
main/project/java/org/owasp/webgoat/lessons/Challenge2Screen.java → main/main/java/org/owasp/webgoat/lessons/Challenge2Screen.java

0
main/project/java/org/owasp/webgoat/lessons/ClientSideFiltering/ClientSideFiltering.java → main/main/java/org/owasp/webgoat/lessons/ClientSideFiltering/ClientSideFiltering.java

0
main/project/java/org/owasp/webgoat/lessons/ClientSideValidation.java → main/main/java/org/owasp/webgoat/lessons/ClientSideValidation.java

0
main/project/java/org/owasp/webgoat/lessons/CommandInjection.java → main/main/java/org/owasp/webgoat/lessons/CommandInjection.java

0
main/project/java/org/owasp/webgoat/lessons/ConcurrencyCart.java → main/main/java/org/owasp/webgoat/lessons/ConcurrencyCart.java

0
main/project/java/org/owasp/webgoat/lessons/CrossSiteScripting/CrossSiteScripting.java → main/main/java/org/owasp/webgoat/lessons/CrossSiteScripting/CrossSiteScripting.java

0
main/project/java/org/owasp/webgoat/lessons/CrossSiteScripting/EditProfile.java → main/main/java/org/owasp/webgoat/lessons/CrossSiteScripting/EditProfile.java

0
main/project/java/org/owasp/webgoat/lessons/CrossSiteScripting/FindProfile.java → main/main/java/org/owasp/webgoat/lessons/CrossSiteScripting/FindProfile.java

0
main/project/java/org/owasp/webgoat/lessons/CrossSiteScripting/UpdateProfile.java → main/main/java/org/owasp/webgoat/lessons/CrossSiteScripting/UpdateProfile.java

0
main/project/java/org/owasp/webgoat/lessons/CrossSiteScripting/ViewProfile.java → main/main/java/org/owasp/webgoat/lessons/CrossSiteScripting/ViewProfile.java

0
main/project/java/org/owasp/webgoat/lessons/CsrfPromptByPass.java → main/main/java/org/owasp/webgoat/lessons/CsrfPromptByPass.java

0
main/project/java/org/owasp/webgoat/lessons/CsrfTokenByPass.java → main/main/java/org/owasp/webgoat/lessons/CsrfTokenByPass.java

0
main/project/java/org/owasp/webgoat/lessons/DBCrossSiteScripting/DBCrossSiteScripting.java → main/main/java/org/owasp/webgoat/lessons/DBCrossSiteScripting/DBCrossSiteScripting.java

0
main/project/java/org/owasp/webgoat/lessons/DBCrossSiteScripting/UpdateProfile.java → main/main/java/org/owasp/webgoat/lessons/DBCrossSiteScripting/UpdateProfile.java

0
main/project/java/org/owasp/webgoat/lessons/DBSQLInjection/DBSQLInjection.java → main/main/java/org/owasp/webgoat/lessons/DBSQLInjection/DBSQLInjection.java

0
main/project/java/org/owasp/webgoat/lessons/DBSQLInjection/Login.java → main/main/java/org/owasp/webgoat/lessons/DBSQLInjection/Login.java

0
main/project/java/org/owasp/webgoat/lessons/DOMInjection.java → main/main/java/org/owasp/webgoat/lessons/DOMInjection.java

0
main/project/java/org/owasp/webgoat/lessons/DOMXSS.java → main/main/java/org/owasp/webgoat/lessons/DOMXSS.java

0
main/project/java/org/owasp/webgoat/lessons/DOS_Login.java → main/main/java/org/owasp/webgoat/lessons/DOS_Login.java

0
main/project/java/org/owasp/webgoat/lessons/DangerousEval.java → main/main/java/org/owasp/webgoat/lessons/DangerousEval.java

0
main/project/java/org/owasp/webgoat/lessons/Encoding.java → main/main/java/org/owasp/webgoat/lessons/Encoding.java

0
main/project/java/org/owasp/webgoat/lessons/FailOpenAuthentication.java → main/main/java/org/owasp/webgoat/lessons/FailOpenAuthentication.java

0
main/project/java/org/owasp/webgoat/lessons/ForcedBrowsing.java → main/main/java/org/owasp/webgoat/lessons/ForcedBrowsing.java

0
main/project/java/org/owasp/webgoat/lessons/ForgotPassword.java → main/main/java/org/owasp/webgoat/lessons/ForgotPassword.java

0
main/project/java/org/owasp/webgoat/lessons/GoatHillsFinancial/DefaultLessonAction.java → main/main/java/org/owasp/webgoat/lessons/GoatHillsFinancial/DefaultLessonAction.java

0
main/project/java/org/owasp/webgoat/lessons/GoatHillsFinancial/DeleteProfile.java → main/main/java/org/owasp/webgoat/lessons/GoatHillsFinancial/DeleteProfile.java

0
main/project/java/org/owasp/webgoat/lessons/GoatHillsFinancial/EditProfile.java → main/main/java/org/owasp/webgoat/lessons/GoatHillsFinancial/EditProfile.java

0
main/project/java/org/owasp/webgoat/lessons/GoatHillsFinancial/FindProfile.java → main/main/java/org/owasp/webgoat/lessons/GoatHillsFinancial/FindProfile.java

0
main/project/java/org/owasp/webgoat/lessons/GoatHillsFinancial/GoatHillsFinancial.java → main/main/java/org/owasp/webgoat/lessons/GoatHillsFinancial/GoatHillsFinancial.java

0
main/project/java/org/owasp/webgoat/lessons/GoatHillsFinancial/LessonAction.java → main/main/java/org/owasp/webgoat/lessons/GoatHillsFinancial/LessonAction.java

0
main/project/java/org/owasp/webgoat/lessons/GoatHillsFinancial/ListStaff.java → main/main/java/org/owasp/webgoat/lessons/GoatHillsFinancial/ListStaff.java

0
main/project/java/org/owasp/webgoat/lessons/GoatHillsFinancial/Login.java → main/main/java/org/owasp/webgoat/lessons/GoatHillsFinancial/Login.java

0
main/project/java/org/owasp/webgoat/lessons/GoatHillsFinancial/Logout.java → main/main/java/org/owasp/webgoat/lessons/GoatHillsFinancial/Logout.java

0
main/project/java/org/owasp/webgoat/lessons/GoatHillsFinancial/SearchStaff.java → main/main/java/org/owasp/webgoat/lessons/GoatHillsFinancial/SearchStaff.java

0
main/project/java/org/owasp/webgoat/lessons/GoatHillsFinancial/UpdateProfile.java → main/main/java/org/owasp/webgoat/lessons/GoatHillsFinancial/UpdateProfile.java

0
main/project/java/org/owasp/webgoat/lessons/GoatHillsFinancial/ViewProfile.java → main/main/java/org/owasp/webgoat/lessons/GoatHillsFinancial/ViewProfile.java

0
main/project/java/org/owasp/webgoat/lessons/HiddenFieldTampering.java → main/main/java/org/owasp/webgoat/lessons/HiddenFieldTampering.java

0
main/project/java/org/owasp/webgoat/lessons/HowToWork.java → main/main/java/org/owasp/webgoat/lessons/HowToWork.java

0
main/project/java/org/owasp/webgoat/lessons/HtmlClues.java → main/main/java/org/owasp/webgoat/lessons/HtmlClues.java

0
main/project/java/org/owasp/webgoat/lessons/HttpBasics.java → main/main/java/org/owasp/webgoat/lessons/HttpBasics.java

0
main/project/java/org/owasp/webgoat/lessons/HttpOnly.java → main/main/java/org/owasp/webgoat/lessons/HttpOnly.java

0
main/project/java/org/owasp/webgoat/lessons/HttpSplitting.java → main/main/java/org/owasp/webgoat/lessons/HttpSplitting.java

0
main/project/java/org/owasp/webgoat/lessons/InsecureLogin.java → main/main/java/org/owasp/webgoat/lessons/InsecureLogin.java

0
main/project/java/org/owasp/webgoat/lessons/JSONInjection.java → main/main/java/org/owasp/webgoat/lessons/JSONInjection.java

0
main/project/java/org/owasp/webgoat/lessons/JavaScriptValidation.java → main/main/java/org/owasp/webgoat/lessons/JavaScriptValidation.java

0
main/project/java/org/owasp/webgoat/lessons/LessonAdapter.java → main/main/java/org/owasp/webgoat/lessons/LessonAdapter.java

0
main/project/java/org/owasp/webgoat/lessons/LogSpoofing.java → main/main/java/org/owasp/webgoat/lessons/LogSpoofing.java

0
main/project/java/org/owasp/webgoat/lessons/MaliciousFileExecution.java → main/main/java/org/owasp/webgoat/lessons/MaliciousFileExecution.java

0
main/project/java/org/owasp/webgoat/lessons/MultiLevelLogin1.java → main/main/java/org/owasp/webgoat/lessons/MultiLevelLogin1.java

0
main/project/java/org/owasp/webgoat/lessons/MultiLevelLogin2.java → main/main/java/org/owasp/webgoat/lessons/MultiLevelLogin2.java

0
main/project/java/org/owasp/webgoat/lessons/NewLesson.java → main/main/java/org/owasp/webgoat/lessons/NewLesson.java

0
main/project/java/org/owasp/webgoat/lessons/PasswordStrength.java → main/main/java/org/owasp/webgoat/lessons/PasswordStrength.java

0
main/project/java/org/owasp/webgoat/lessons/PathBasedAccessControl.java → main/main/java/org/owasp/webgoat/lessons/PathBasedAccessControl.java

0
main/project/java/org/owasp/webgoat/lessons/Phishing.java → main/main/java/org/owasp/webgoat/lessons/Phishing.java

0
main/project/java/org/owasp/webgoat/lessons/RandomLessonAdapter.java → main/main/java/org/owasp/webgoat/lessons/RandomLessonAdapter.java

0
main/project/java/org/owasp/webgoat/lessons/ReflectedXSS.java → main/main/java/org/owasp/webgoat/lessons/ReflectedXSS.java

0
main/project/java/org/owasp/webgoat/lessons/RemoteAdminFlaw.java → main/main/java/org/owasp/webgoat/lessons/RemoteAdminFlaw.java

0
main/project/java/org/owasp/webgoat/lessons/RoleBasedAccessControl/DeleteProfile.java → main/main/java/org/owasp/webgoat/lessons/RoleBasedAccessControl/DeleteProfile.java

0
main/project/java/org/owasp/webgoat/lessons/RoleBasedAccessControl/EditProfile.java → main/main/java/org/owasp/webgoat/lessons/RoleBasedAccessControl/EditProfile.java

0
main/project/java/org/owasp/webgoat/lessons/RoleBasedAccessControl/RoleBasedAccessControl.java → main/main/java/org/owasp/webgoat/lessons/RoleBasedAccessControl/RoleBasedAccessControl.java

0
main/project/java/org/owasp/webgoat/lessons/RoleBasedAccessControl/UpdateProfile.java → main/main/java/org/owasp/webgoat/lessons/RoleBasedAccessControl/UpdateProfile.java

0
main/project/java/org/owasp/webgoat/lessons/RoleBasedAccessControl/ViewProfile.java → main/main/java/org/owasp/webgoat/lessons/RoleBasedAccessControl/ViewProfile.java

0
main/project/java/org/owasp/webgoat/lessons/SQLInjection/ListStaff.java → main/main/java/org/owasp/webgoat/lessons/SQLInjection/ListStaff.java

0
main/project/java/org/owasp/webgoat/lessons/SQLInjection/Login.java → main/main/java/org/owasp/webgoat/lessons/SQLInjection/Login.java

0
main/project/java/org/owasp/webgoat/lessons/SQLInjection/SQLInjection.java → main/main/java/org/owasp/webgoat/lessons/SQLInjection/SQLInjection.java

0
main/project/java/org/owasp/webgoat/lessons/SQLInjection/ViewProfile.java → main/main/java/org/owasp/webgoat/lessons/SQLInjection/ViewProfile.java

0
main/project/java/org/owasp/webgoat/lessons/SameOriginPolicyProtection.java → main/main/java/org/owasp/webgoat/lessons/SameOriginPolicyProtection.java

0
main/project/java/org/owasp/webgoat/lessons/SequentialLessonAdapter.java → main/main/java/org/owasp/webgoat/lessons/SequentialLessonAdapter.java

0
main/project/java/org/owasp/webgoat/lessons/SessionFixation.java → main/main/java/org/owasp/webgoat/lessons/SessionFixation.java

0
main/project/java/org/owasp/webgoat/lessons/SilentTransactions.java → main/main/java/org/owasp/webgoat/lessons/SilentTransactions.java

0
main/project/java/org/owasp/webgoat/lessons/SoapRequest.java → main/main/java/org/owasp/webgoat/lessons/SoapRequest.java

0
main/project/java/org/owasp/webgoat/lessons/SqlAddData.java → main/main/java/org/owasp/webgoat/lessons/SqlAddData.java

0
main/project/java/org/owasp/webgoat/lessons/SqlModifyData.java → main/main/java/org/owasp/webgoat/lessons/SqlModifyData.java

0
main/project/java/org/owasp/webgoat/lessons/SqlNumericInjection.java → main/main/java/org/owasp/webgoat/lessons/SqlNumericInjection.java

0
main/project/java/org/owasp/webgoat/lessons/SqlStringInjection.java → main/main/java/org/owasp/webgoat/lessons/SqlStringInjection.java

0
main/project/java/org/owasp/webgoat/lessons/StoredXss.java → main/main/java/org/owasp/webgoat/lessons/StoredXss.java

0
main/project/java/org/owasp/webgoat/lessons/ThreadSafetyProblem.java → main/main/java/org/owasp/webgoat/lessons/ThreadSafetyProblem.java

0
main/project/java/org/owasp/webgoat/lessons/TomcatSetup.java → main/main/java/org/owasp/webgoat/lessons/TomcatSetup.java

Some files were not shown because too many files have changed in this diff Show More