dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,479 Commits 11 Branches 78 Tags
Commit Graph

1479 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jason White
5d6ad6852a ignoring targets in webgoat lessons 2017-01-12 14:50:25 -05:00
Jason White
f8b39d7d8c #303 Clear current form on successful submission 2017-01-10 15:23:43 -05:00
Jason White
3274ff7a93 properly scoping data submiission in onFormSubmit 2017-01-10 15:23:43 -05:00
misfir3
ad3599f6af Merge pull request #306 from zupzup/issue_302_double_calls_on_submit 
Issue #302: Fix redundant calls to lessonoverview.mvc and lessonmenu.…
 2017-01-09 15:00:55 -05:00
Jason White
2688c8ee77 removing debug statement 2017-01-09 14:04:48 -05:00
Jason White
4e9b30d7f6 #304 incremental addition for IDOR, still experiencing 400 with PUT method 2017-01-09 14:02:00 -05:00
Mario Zupan
40f1d58796 Issue #302: Fix redundant calls to lessonoverview.mvc and lessonmenu.mvc on submission 2017-01-07 15:46:19 +01:00
Jason White
fe4f568fc0 #304 update to IDOR. Still experiencing 400 on EditOwnProfile endpoint 2017-01-06 13:04:03 -05:00
Jason White
c2988eb771 #305 - update to use generic Object in map 2017-01-06 13:01:55 -05:00
Jason White
07b9a5d634 adding contact info. to pom 2017-01-06 13:01:08 -05:00
Jason White
4c5e58d1a1 minor style updates 2017-01-06 08:08:22 -05:00
Jason White
0a41b2813d #304 ... trying to fix prev. commit 2017-01-06 08:06:49 -05:00
Jason White
65eaa934ea Initial/partial commit of IDOR lesson 2017-01-05 17:30:53 -05:00
Jason White
00eeae911d #305 UserSessionData bean to provide stateful session data 2017-01-05 17:28:53 -05:00
Nanne Baars
dcab7d8abd Lesson overview simplification moving template to separate file. 2017-01-01 21:06:00 +01:00
Nanne Baars
be8f263319 Merge pull request #299 from WebGoat/admin 
#277 Re-institute admin functionality for WebGoat 8
 2016-12-31 18:36:57 +01:00
Nanne Baars
e2cb9ceae0 #277 Re-institute admin functionality for WebGoat 8 
- Report card functionality is back
 2016-12-31 18:27:20 +01:00
Nanne Baars
490f542885 Merge pull request #298 from WebGoat/lesson_overview 
#276 Automatic lesson summary page
 2016-12-28 10:21:07 +01:00
Nanne Baars
9c03b6f63b #276 Automatic lesson summary page 
- Basic overview of all the assignments needed to be solved in a lesson
 - Clicking on a link will jump to the correct page with the assignment
 - Lesson completed also updates lesson overview immediately
 2016-12-28 10:14:34 +01:00
Nanne Baars
de4e581ee4 Update .travis.yml 2016-12-24 09:26:21 +01:00
Nanne Baars
0d0d2258d8 Changing install to package to include lessons as well 2016-12-24 09:24:22 +01:00
Jason White
282073ed2d Adding ZAP content for HTTP Basics 2016-12-22 16:37:57 -05:00
Jason White
35055eeb3c #296 updates href according to to page nav 2016-12-22 15:08:33 -05:00
Nanne
025ac49e19 Merge pull request #295 from zupzup/feature/asciidoc_syntax_highlight 
Issue #275: Activate Syntax Highlighting with Coderay in Asciidoc
 2016-12-16 16:53:51 +01:00
Nanne
4392150561 Merge branch 'develop' into feature/asciidoc_syntax_highlight 2016-12-16 16:44:42 +01:00
Nanne
bfe06f9026 Merge pull request #294 from zupzup/images_in_asciidoc 
Issue #293: fix images in asciidoc by setting backend to xhtml
 2016-12-16 16:43:07 +01:00
Mario Zupan
6fa894938b Issue #275: Activate Syntax Highlighting with Coderay in Asciidoc templates 2016-12-15 17:37:30 +01:00
Mario Zupan
81e3000f2d Issue #293: fix images in asciidoc by setting backend to xhtml 2016-12-11 20:05:28 +01:00
Nanne Baars
b8b632905d Fixing failing unit test 2016-12-08 22:06:21 +01:00
Jason White
f8c4d2232b quick update of README, removing -DskipTests 2016-12-07 09:02:25 -05:00
Jason White
3ab86d69ca temporary commenting out test additions that were breaking build/run 2016-12-07 08:46:13 -05:00
Jason White
1a9dcc1d21 moving vagrant instructions down 2016-12-05 07:58:05 -05:00
Jason White
54a152eb22 quick/temporary update for README for 8.x 2016-12-05 07:55:57 -05:00
misfir3
2850beed22 Merge pull request #291 from zupzup/feature/asyncerrorhandling 
Feature/asyncerrorhandling
 2016-12-02 12:14:28 -05:00
Mario Zupan
16e5df09b5 Fix wrong comment 2016-12-02 13:51:46 +01:00
Mario Zupan
feb38eef8c Issue #160: Provide Async Error Handling 
Added Toast notification for unexpected errors
    On 401 and 403 Errors, user is redirected to login
 2016-12-02 13:37:25 +01:00
Nanne Baars
e5ed24fcf7 Added testcase for LabelService 2016-11-29 21:27:11 +01:00
Nanne Baars
5f0ab09866 Added license 2016-11-29 20:31:28 +01:00
Nanne Baars
1a854a500e Lesson overview 2016-11-29 20:27:54 +01:00
misfir3
df29b36389 Merge pull request #289 from zupzup/feature/labelservice 
Issue #265: Created LabelService to support UI localization
 2016-11-29 12:57:53 -05:00
Nanne Baars
c7e46bf3c9 Only uploading war 2016-11-23 23:37:34 +01:00
Jason White
e183c8d8b3 implementing support for dom xss 2016-11-23 17:25:47 -05:00
Nanne Baars
5347311319 XXE last assignment completely working 2016-11-23 17:09:35 +01:00
Nanne Baars
c80bfcbc2f First checkin for CSRF 
(cherry picked from commit a01a767)
 2016-11-23 17:09:35 +01:00
Mario Zupan
2b0b49c0c2 Remove unused import 2016-11-23 15:36:02 +01:00
Jason White
0aa9c29256 adding direct to page navigation route 2016-11-23 09:32:06 -05:00
Mario Zupan
6acd149e5f Issue #265: Created LabelService to support UI localization 2016-11-23 14:20:43 +01:00
Jason White
4940a12d0d button size fix 2016-11-22 16:25:19 -05:00
mayhew64
32d1009390 Reflected xss working - still have to think how to get the success criteria. Page needs some work though 2016-11-21 23:09:58 -05:00
Bruce Mayhew
edaadecc38 Merge pull request #286 from WebGoat/feature/spring-boot 
First draft at XSS
 2016-11-21 18:37:53 -05:00