dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2,151 Commits 11 Branches 78 Tags
Commit Graph

2151 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nanne Baars
c0dd773b90 Merge branch 'develop' into alexanderfry-feature/ssrf 2019-02-09 18:20:43 +01:00
Nanne Baars
bd86dc6ee0 SNAPSHOT version 2019-02-09 18:20:08 +01:00
Nanne Baars
d6dae9ef75 Merge branch 'feature/ssrf' of git://github.com/alexanderfry/WebGoat into alexanderfry-feature/ssrf 2019-02-09 16:42:08 +01:00
Nanne Baars
941ca5e9a1 SQL injection add hints #470 2019-02-09 16:41:46 +01:00
Nanne Baars
5bc48193b6 Merge branch 'master' into develop 2019-02-08 14:56:53 +01:00
Nanne Baars
e9b1a10a52 Update landing page 2019-02-08 14:56:35 +01:00
Nanne Baars
c58ff9d0cb Merge tag 'v8.0.0.M24' into develop 
New version v8.0.0.M24
 2019-02-08 14:21:57 +01:00
Nanne Baars
4948380aa1 Merge branch 'release/v8.0.0.M24' v8.0.0.M24 2019-02-08 14:21:36 +01:00
Nanne Baars
6c86929aa6 New release, updating pom.xml 2019-02-08 14:20:23 +01:00
Nanne Baars
c25643afe2 Add landing page for WebGoat 2019-02-08 14:13:58 +01:00
Nanne Baars
7be519e724 Update README to reflect Java 11 change #553 2019-01-31 18:16:10 +01:00
Alex Fry
98f75e34d5 Initial Commit of SSRF Lesson 2019-01-21 18:09:31 -04:00
Nanne Baars
5ba6492684 Merge tag 'v8.0.0.M23' into develop 
v8.0.0.M23
 2019-01-18 08:47:00 +01:00
Nanne Baars
72968d9619 Merge branch 'release/v8.0.0.M23' v8.0.0.M23 2019-01-18 08:46:50 +01:00
Nanne Baars
631fedb752 New release, updating pom.xml 2019-01-18 08:45:44 +01:00
Nanne Baars
4f59bf545e Updating release doc 2019-01-18 08:44:46 +01:00
Nanne Baars
5d5ba53473 Merge tag 'v8.0.0.M22' into develop 
v8.0.0.M22
 2019-01-18 08:39:19 +01:00
Nanne Baars
7b8e3cdb52 Merge branch 'release/v8.0.0.M22' v8.0.0.M22 2019-01-18 08:38:10 +01:00
Nanne Baars
9be4361afc New release, updating pom.xml 2019-01-18 08:37:26 +01:00
Nanne Baars
b0e3a06b50 Password reset lesson 5 not working #512 
Added comment to not use OWASP ZAP
 2019-01-17 16:35:04 +01:00
Shreyas Minocha
9170dcb87f Fix a grammatical error 2019-01-17 14:50:07 +01:00
Nanne Baars
dc5f9880af Full implementation of "Update Webgoat Dockerfile to use entrypoints and commands #523" based on the pull request of Nicklaus McClendon 2019-01-17 14:49:42 +01:00
Nanne Baars
ed490a5ecf Fix for #545 
Introduced new macro to make a clear distinction between /WebWolf with
context root and without.
 2019-01-16 11:07:30 +01:00
Nanne Baars
81d6e12ae1 Spring devtools no longer work in combination with Spring and Java 11 2019-01-15 16:29:49 +01:00
Nanne Baars
c3ee0b7662 Travis build should also use Java 11 2019-01-15 16:24:39 +01:00
Nanne Baars
959a3c6420 Docker images should use new jar version notation 2019-01-15 16:23:21 +01:00
Nanne Baars
3fa10c4b10 Update to Java 11 2019-01-15 16:23:03 +01:00
Nanne Baars
ec225558b9 Move to latest Spring Boot version and move to Java 11 2018-12-15 13:59:54 +01:00
Nanne Baars
dd1009bc54 Add Maven wrapper 2018-12-14 12:56:21 +01:00
Bartosz Bogatko
bf45a0a8e5 Fix for XXE docs 2018-12-14 12:43:19 +01:00
Patrick Double
f81a6852db YAML structure fix, postgres version fix 
The structure of the environment was incorrect. The postgres dialect doesn't match the postgres:latest image.
 2018-11-19 08:16:49 +01:00
malikashish8
6699456ee1 Bug fix in sample code 2018-11-19 08:15:41 +01:00
Joubin Jabbari
ecbbb5258e encapsulated the WEBGOAT_HOME in quotes 
Encapsulating the `WEBGOAT_HOME` variable in quotes allows for spaces to exist in the path
 2018-11-19 08:14:29 +01:00
Josh Cummings
1520c7571f HTML Tampering Mitigation Description Typo 2018-11-19 08:13:17 +01:00
Omniscimus
5921a06747 Fix SQL injection mitigation answer (fixes #505) 
You need to submit the IP of the webgoat-prd server, not just any of the IPs.
 2018-11-19 08:12:17 +01:00
Chirag Jariwala
b6e4995d11 Fixed Vagrant file 
- Added correct wget urls for .jar files
- changed server address to 0.0.0.0(pointing to all interfaces) because by default it listens for connections on VM's localhost only but we want to access webgoat on NAT adapter via port forwarding
 2018-11-19 08:10:11 +01:00
donkrasnov
a2f28460c0 Update password_reset.html 
Without this attribute it is impossible to pass the lesson "password-reset" `Email functionality with WebWolf`.
 2018-11-19 08:08:41 +01:00
misfir3
0797c3e2bf
Merge pull request #519 from pingiun/patch-1 
Fix typo
 2018-09-13 08:16:11 -07:00
Jelle Besseling
f9a4061604
Fix typo 2018-09-12 09:54:44 +02:00
Nanne Baars
580e50f558 Same form post is used and with autocomplete this does not work because all fields will be posted. The endpoint could no long distinguish between the different actions (sending e-mail and checking password) 2018-08-10 13:15:40 +02:00
Nanne Baars
3d58049af6 docker-compose-local.yml now extends docker-compose.yml 
WebWolf waits for 8 seconds after WebGoat starts so the database connection can be established
 2018-08-08 18:26:12 +02:00
Nanne Baars
bca8b3c650 Fix buildscripts to wait for Docker and build snapshots 2018-08-08 18:23:27 +02:00
Nanne Baars
1252e3dc21 Update instructions to use docker-compose only 2018-07-17 20:17:35 +02:00
Nanne Baars
63a50df7a1 Add hint to lesson users no longer have guess the complete ip address 2018-07-06 18:22:29 +02:00
Nanne Baars
f9e552f1cd Add instructions how to run WebGoat on Java 9 or higher 2018-07-04 19:15:54 +02:00
Nanne Baars
2233550fe1 Adding more solutions for SQL order by lesson 2018-06-22 14:12:37 +02:00
Nanne Baars
cb18295f9f Update hint 2018-06-21 07:53:21 +02:00
Nanne Baars
651698d96c Add different solution for XXE attack 2018-06-21 07:17:27 +02:00
Nanne Baars
4d7d0058c3 Update how to create a release document 2018-06-20 18:38:16 +02:00
Nanne Baars
e3fba396de Merge tag 'v8.0.0.M21' into develop 2018-06-20 18:24:06 +02:00