663224d06a
xxe path info ( #670 )
...
* xxe path info aid added
* xxe path info aid added
* changes to template file and hints
* added ssl test support for XXE
* added ssl test support for XXE
* restconfig replaced by httpsrelaxed
* processed review comments on hints and example
2019-10-02 09:59:32 +02:00
9b906a2a29
Fix typo in XXE lesson
2019-09-25 00:37:36 +08:00
35c1305ce9
Merge conflicts resolved
2019-09-23 07:34:27 +02:00
e8d086ac9b
All successful
2019-09-20 07:59:04 +02:00
82ad0a7cc7
Finally working
2019-09-18 17:53:43 +02:00
ec236a4ff5
First steps in XXE integration tests
2019-09-18 14:48:34 +02:00
5e6f825e64
WIP
2019-09-13 16:42:13 +02:00
361249c666
First attempt at moving to Spring Boot 2
2019-09-12 17:22:03 +02:00
63a1097466
owasp categories
2019-07-14 12:38:11 +02:00
98537426f2
SNAPSHOT version
2019-05-03 11:15:11 +02:00
9b0c4e62c2
New release, updating pom.xml
2019-05-03 09:50:01 +02:00
aa2eac0cd8
fixed test
2019-04-21 14:14:23 +02:00
6d974b5fa8
Fixed lesson sorting issue
2019-03-26 08:43:38 +01:00
4050e899ff
changed unit test to dynamic port to prevent port conflict and build failure
2019-03-26 08:37:47 +01:00
bd86dc6ee0
SNAPSHOT version
2019-02-09 18:20:08 +01:00
6c86929aa6
New release, updating pom.xml
2019-02-08 14:20:23 +01:00
631fedb752
New release, updating pom.xml
2019-01-18 08:45:44 +01:00
9be4361afc
New release, updating pom.xml
2019-01-18 08:37:26 +01:00
ed490a5ecf
Fix for #545
...
Introduced new macro to make a clear distinction between /WebWolf with
context root and without.
2019-01-16 11:07:30 +01:00
ec225558b9
Move to latest Spring Boot version and move to Java 11
2018-12-15 13:59:54 +01:00
bf45a0a8e5
Fix for XXE docs
2018-12-14 12:43:19 +01:00
1252e3dc21
Update instructions to use docker-compose only
2018-07-17 20:17:35 +02:00
651698d96c
Add different solution for XXE attack
2018-06-21 07:17:27 +02:00
ac12a009e4
New release v8.0.0.M20
2018-06-20 18:05:59 +02:00
9dd93d88d9
New release v8.0.0.M19
2018-06-20 16:40:28 +02:00
26aa72e721
New release
2018-05-30 20:54:13 +02:00
c510bd9bf1
New develop version
2018-05-30 20:37:25 +02:00
c7a714a590
Move to next release
2018-05-30 17:05:50 +02:00
ecb7688e08
Update to new version for develop
...
Move WebWolf to port 9090 easier since most of the time something is running on 8081
Add scripts for easy building Docker files etc
2018-05-30 13:17:05 +02:00
55793dd153
New release v8.0.0.M15
2018-05-27 20:54:50 +02:00
1edceb0aa8
Extended and fixed some lessons
2018-05-27 20:37:44 +02:00
d2b6725f3b
Moved challenge2 to client-side-filtering as final assignment
2018-05-27 12:41:52 +02:00
8050a2b56d
XXE lesson not showing correct link for WebWolf
2018-05-01 21:54:28 +02:00
11ffa5702c
Added "WebWolf" enabled to the lessons which support the usage of WebWolf
2018-04-29 15:02:19 +02:00
e4ca0c4836
Make report working again
2018-04-27 19:26:01 +02:00
245ba2c3d1
Fix XXE lesson, the exact .webgoat directory including version number will be put in the lesson.
2018-04-24 20:44:05 +02:00
f30db3abfc
New version number
2018-04-11 20:45:12 +02:00
568fa82270
fixed ContentTypeAssignment and SimpleXXE to work with MacOSX
2018-01-13 16:00:11 +00:00
75d0405da1
Fixed XXE lesson the posting of the comments did not show up directly only after page refresh
2017-11-17 07:07:43 +01:00
f91f77708a
New version
2017-11-02 21:44:30 +01:00
56fc0fce05
Added test for XXE
2017-11-02 20:41:30 +01:00
fc1353b2f1
Pom cleanup
2017-11-02 16:14:44 +01:00
1ecb43092d
Bumped version number
2017-10-18 19:58:14 +02:00
8250b4048f
Updating version number
2017-10-18 19:43:33 +02:00
5033c3661a
Cleaning up test case logging
2017-10-08 02:07:22 +02:00
8a982dedb5
Updated XXE lesson so it also uses WebWolf
2017-10-07 13:46:34 +02:00
0cb4faf15f
refactor to support cleaner scoping && success and failure callbacks
2017-07-18 17:39:58 -04:00
36ad73c800
Added more mitigations for XXE
2017-06-15 23:36:51 +02:00
99f75a835c
#359 Fixed
2017-06-12 20:02:21 +02:00
52a48df70c
XXE successfully completed message was no longer shown, fixed it by using form POST together with customjs functions.
...
Introduced callback functionality which you can specify after the posting in order to be able to load the comments list again.
2017-06-12 15:08:55 +02:00
