unknown
|
ac410be6d9
|
Fix WEB-151 - tolerate missing user cookie attribute in challenge stage2
|
2014-09-20 01:37:51 -04:00 |
|
Rick Lawson
|
3fd7b34536
|
more changes for showSource and showHints
|
2014-09-19 21:06:46 -04:00 |
|
Rick Lawson
|
5c1b3e1916
|
Add flags to lesson menu items if the lesson should show source or hints
|
2014-09-19 20:38:43 -04:00 |
|
Jason White
|
13e3bb87c4
|
Update for WEB-69. Fix for JSONInjection lesson. Stub in javascript for CSRF lesson update/fix
|
2014-09-19 15:37:45 -06:00 |
|
Bruce Mayhew
|
13a95c3b24
|
WEB-146 - fixed some code references to English, not reference en
|
2014-09-19 11:27:40 -06:00 |
|
nbaars
|
b2dcb85b13
|
Changed default language to en instead of English
|
2014-09-18 20:48:44 +02:00 |
|
Rick Lawson
|
faf9e84626
|
WEB-136 Lesson Restart
add service
|
2014-09-17 07:54:37 -04:00 |
|
nbaars
|
8f2fc26aa1
|
Changed the layout of the table
|
2014-09-16 22:09:50 +02:00 |
|
nbaars
|
f69d512c1b
|
Merge branch 'next' into WEB-139
Conflicts:
src/main/java/org/owasp/webgoat/lessons/PasswordStrength.java
|
2014-09-16 18:28:32 +02:00 |
|
Bruce Mayhew
|
149e7ecc40
|
Merge branch 'next' of https://github.com/WebGoat/WebGoat into next
Conflicts:
src/main/java/org/owasp/webgoat/lessons/DBSQLInjection/DBSQLInjection.java
src/main/java/org/owasp/webgoat/lessons/FailOpenAuthentication.java
src/main/java/org/owasp/webgoat/lessons/SQLInjection/SQLInjection.java
src/main/java/org/owasp/webgoat/lessons/WsSqlInjection.java
|
2014-09-15 21:59:30 -04:00 |
|
Bruce Mayhew
|
4202c12c18
|
Replaced WebScarab references with OWASP ZAP in java code only
|
2014-09-15 21:41:25 -04:00 |
|
nbaars
|
5d2f50fa96
|
Fixed typo
|
2014-09-15 22:53:22 +02:00 |
|
nbaars
|
a8500cdedb
|
Fixed problems with answers and updated the lesson plan page
|
2014-09-15 20:59:49 +02:00 |
|
nbaars
|
3ae898784f
|
Replaced the tabs with spaces so we do not mess up the formatting, used the expand command from linux
|
2014-09-15 16:40:51 +02:00 |
|
nbaars
|
0da280c4f8
|
Merge branch 'next' into WEB-139
|
2014-09-15 15:52:57 +02:00 |
|
nbaars
|
a3bf6d0e6f
|
Created the lesson with new online password checker
|
2014-09-15 15:49:18 +02:00 |
|
Rick Lawson
|
9bb1cb8d9c
|
WEB-68 Service to return WebGoat Version and Build Number
-- add email, email list, version number and build number as parameters to about page
|
2014-09-15 08:17:40 -04:00 |
|
Rick Lawson
|
81b009ccfb
|
WEB-68 Service to return WebGoat Version and Build Number
|
2014-09-14 12:34:54 -04:00 |
|
Rick Lawson
|
a4c5be2943
|
WEB-68 Service to return WebGoat Version and Build Number
|
2014-09-14 11:47:25 -04:00 |
|
Rick Lawson
|
809ef80e18
|
autowire servlet context instead of getting from request
|
2014-09-11 09:27:25 -04:00 |
|
Rick Lawson
|
5241af57cc
|
Fix mailto link on top right
|
2014-09-11 07:23:02 -04:00 |
|
Rick Lawson
|
96ec99e65a
|
show user and role in logout menu
|
2014-09-11 07:16:41 -04:00 |
|
Bruce Mayhew
|
35559d657b
|
WEB-66 updated headers
|
2014-09-10 18:15:03 -04:00 |
|
nbaars
|
8eac6ef898
|
fixed WEB-53
|
2014-09-10 08:46:45 +02:00 |
|
nbaars
|
5c8e545185
|
fixed WEB-27
|
2014-09-10 07:52:15 +02:00 |
|
mayhew64
|
e9b7de4bab
|
Merge pull request #6 from WebGoat/WEB-54
Moved images files etc from lesson_solutions_1 to lesson_solutions
|
2014-09-09 16:34:50 -04:00 |
|
nbaars
|
9fe1982eee
|
Removed adding title with h1 to the page and removing it
|
2014-09-09 18:19:34 +02:00 |
|
nbaars
|
f9d14c9b79
|
Added service for fetching the title of a lesson
|
2014-09-09 18:18:45 +02:00 |
|
lawson89@gmail.com
|
e9cd630a95
|
get the info button functioning
|
2014-09-07 23:39:05 -04:00 |
|
Bruce Mayhew
|
be7d40706a
|
WEB-49 Added title to all lessons
|
2014-09-07 16:59:56 -04:00 |
|
nbaars
|
c7d7926147
|
Moved images files etc from lesson_solutions_1 to lesson_solutions
|
2014-09-07 12:50:56 +02:00 |
|
nbaars
|
8ae120404f
|
Changed the layout of the lesson. The congratulation sentence is now displayed in "red". See WEB-46
|
2014-09-06 22:23:22 +02:00 |
|
lawson89@gmail.com
|
5cf9b4752a
|
show lesson solution
|
2014-08-27 21:59:29 -04:00 |
|
lawson89@gmail.com
|
37aed7ffe1
|
show lesson solution
|
2014-08-26 08:03:08 -04:00 |
|
Richard Lawson
|
9c862c729c
|
Merge pull request #4 from dcowden/next
Add dynamic display of source code, updated README
|
2014-08-24 13:59:53 -04:00 |
|
rlawson
|
5b30efed71
|
fix source service so line numbers are not appended, out js code viewer will take care of that
|
2014-08-24 13:49:54 -04:00 |
|
rlawson
|
243d88b6d1
|
fix missing sources, pom was not copying source into WEB-INF/classes
some cleanup and better logging while I was in there
|
2014-08-24 13:46:02 -04:00 |
|
Dave
|
0c28f06d63
|
added interactive view of source code for each lesson.
added ACE editor, to prettyfy the source also
|
2014-08-24 13:25:41 -04:00 |
|
Dave
|
a387d06a34
|
Refactored files to Maven standard Layout
Added plugin to produce executable jar. Now it is easy to run webgoat on all platforms.
|
2014-08-23 13:07:10 -04:00 |
|
mayhew64@gmail.com
|
6a96547ef0
|
Restructured the baseline to remove extra src/main directory structure. Added eclipes project file
git-svn-id: http://webgoat.googlecode.com/svn/branches/webgoat-6.0@485 4033779f-a91e-0410-96ef-6bf7bf53c507
|
2012-11-19 23:57:51 +00:00 |
|
phillip.seay@gmail.com
|
fb938e0933
|
Initial commit of new spring-MVC/spring security/tiles-based functionality
git-svn-id: http://webgoat.googlecode.com/svn/branches/webgoat-6.0@484 4033779f-a91e-0410-96ef-6bf7bf53c507
|
2012-09-11 00:26:09 +00:00 |
|
mayhew64@gmail.com
|
94c89b66d4
|
Printing out full command for command[] argument. Using arrays.tolist() which adds a [] around the text. that should be cleaned up.
git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@473 4033779f-a91e-0410-96ef-6bf7bf53c507
|
2012-04-27 12:24:51 +00:00 |
|
sherif.fathy@gmail.com
|
751c993f22
|
Issue 42
git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@470 4033779f-a91e-0410-96ef-6bf7bf53c507
|
2012-04-26 17:29:19 +00:00 |
|
mayhew64@gmail.com
|
ff9a54ef91
|
Changed errors for dropping tables to info messages
git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@468 4033779f-a91e-0410-96ef-6bf7bf53c507
|
2012-04-26 16:11:46 +00:00 |
|
mayhew64@gmail.com
|
9c6a51e8b1
|
Added additional instructions that 2 methods are required to pass lesson
git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@465 4033779f-a91e-0410-96ef-6bf7bf53c507
|
2012-04-25 18:42:20 +00:00 |
|
mayhew64@gmail.com
|
2ae584d0b2
|
Allowed other criteria to solve lesson and provide some feedback for acceptable solutions
git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@464 4033779f-a91e-0410-96ef-6bf7bf53c507
|
2012-04-25 18:30:06 +00:00 |
|
mayhew64@gmail.com
|
a987ca7cdc
|
added _ to the allowed characterset. Allows for usernames with an _ in them
git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@463 4033779f-a91e-0410-96ef-6bf7bf53c507
|
2012-04-25 18:29:31 +00:00 |
|
sherif.fathy
|
05b9e0d045
|
git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@456 4033779f-a91e-0410-96ef-6bf7bf53c507
|
2012-04-24 16:18:15 +00:00 |
|
mayhew64@gmail.com
|
8963bb9fad
|
Changed image link to be WebGoat/...
git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@453 4033779f-a91e-0410-96ef-6bf7bf53c507
|
2012-04-23 23:12:14 +00:00 |
|
mayhew64@gmail.com
|
0dbd506dc0
|
Works in Unix (Ubuntu). Check for command separator was not present in the exec.
git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@452 4033779f-a91e-0410-96ef-6bf7bf53c507
|
2012-04-23 23:11:51 +00:00 |
|