solution for MultiLevelLogin1 altered

git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@321 4033779f-a91e-0410-96ef-6bf7bf53c507

main/project/WebContent/lesson_solutions/MultiLevelLogin1.html

@@ -32,18 +32,39 @@ works. In the second you have to breake the strong authentication.
 <p>
 <b>Stage 1</b><br>
 This stage should be rather straight forward. Give in as name Jane
-and as password tarzan. Afther clicking on the submit button
-you will be asked for the TAN. Choose the correct TAN from the
+and as password tarzan. </p>
+<div align="center"><font size="2">
+<img src="lesson_solutions/MultiLevelLogin1_files/login.png"><br>
+<b>Image 1: Login Screen</b>
+</font></div><br>
+Afthr clicking on the submit button
+you will be asked for the TAN. <br><br>
+<div align="center"><font size="2">
+<img src="lesson_solutions/MultiLevelLogin1_files/tan.png"><br>
+<b>Image 2: TAN Screen</b>
+</font></div>
+<br>
+Choose the correct TAN from the
 list provided, click on the submit button and you are done.
-</p>
+
 <p>
 <b>Stage 2</b><br>
 The first step in this stage is equal to Stage 1. Log in as Jane with tarzan.
-Now you will be asked for a TAN. Unfortunately the TAN you have only a already
+Now you will be asked for a TAN. Unfortunately you have only a already
 used TAN from the victim. Fill in the TAN you have and make sure that WebScarab
 will intercept the next request. Hit the submit button and change the hidden_tan
-value to 1. Congratulations you are logged in as Jane.
-</p>
+value to 1. </p>
+<div align="center"><font size="2">
+<img src="lesson_solutions/MultiLevelLogin1_files/webscarab.png"><br>
+<b>Image 3: Manipulation Of The Hidden Field With WebScarab</b>
+</font></div><br><br>
+Congratulations you are logged in as Jane.<br><br>
+
+<div align="center"><font size="2">
+<img src="lesson_solutions/MultiLevelLogin1_files/success.png"><br>
+<b>Image 3: Manipulation Of The Hidden Field With WebScarab</b>
+</font></div>
+
 
 
 </body>