dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
1,676 Commits 11 Branches 78 Tags
Commit Graph

129 Commits

Author SHA1 Message Date
Nanne Baars
b048988d2f Changed layout of the html tampering lesson and fixed some JavaScript issues. Added a small mitigation page. 
Moved the lessons concerning client side validation to client side category
 2017-06-13 03:22:19 +02:00
Nanne Baars
09d8fef50e Merge branch 'develop' of github.com:WebGoat/WebGoat into develop 2017-06-12 20:02:30 +02:00
Michal Smolík
870fa000aa bypass front-end restrictions (javascript validation) 2017-06-13 10:09:39 +02:00
Michal Smolík
01421ca822 html restrictions lesson 2017-06-13 10:09:39 +02:00
Michal Smolík
007cdaa0d8 insecure login lesson 2017-06-13 10:09:39 +02:00
Nanne Baars
99f75a835c #359 Fixed 2017-06-12 20:02:21 +02:00
Nanne Baars
52a48df70c XXE successfully completed message was no longer shown, fixed it by using form POST together with customjs functions. 
Introduced callback functionality which you can specify after the posting in order to be able to load the comments list again.
 2017-06-12 15:08:55 +02:00
Nanne Baars
19a4859e4f Fix hint not being display correctly due to missing escaping 2017-06-12 13:03:14 +02:00
Nanne Baars
129e9deba9 Added testcase for SQL injection lesson 2017-05-21 16:40:52 +02:00
Nanne Baars
0ad1f0d147 Fixing Travis issues while building 2017-05-21 13:28:29 +02:00
Nanne Baars
edea515564 Test failed due to hardcoded path 2017-05-21 12:46:10 +02:00
Nanne Baars
877de6ebd4 Updated XXE lessons with challenge screens 2017-05-21 12:24:42 +02:00
Nanne Baars
6f0f71b131 Changed XXE lessons to use photo comment example 2017-05-04 06:25:11 +02:00
Nanne Baars
4a061f61a6 Integrated XXE assigment from CTF to XXE lesson 2017-05-04 02:25:56 +02:00
Nanne Baars
d25f71532b Moved challenge 4 to challenge 6 and introduced new sql injection challenge 5 2017-05-03 17:30:49 +02:00
Jason White
e656d30b7e hint updates 2017-05-11 10:44:26 +01:00
Jason White
9cd5f101d4 challenge 1 hint update 2017-05-11 09:05:01 +01:00
Nanne Baars
ff89daf987 Moved challenge 4 to challenge 6 and introduced new sql injection challenge 5 2017-05-03 14:34:15 +02:00
Jason White
4baceeb98b challenge 1 hint update 2017-05-11 08:57:16 +01:00
Nanne Baars
5508a08e20 small UI improvement 2017-05-03 03:33:49 +02:00
Nanne Baars
97e84ae872 Adding assignment class for challenge 5 2017-05-03 03:30:06 +02:00
Nanne Baars
6909d13ecb Fixed challenge 1 2017-05-03 03:16:07 +02:00
Nanne Baars
4f561fc377 Added testcases for challenge 2 and 5 2017-05-03 02:47:17 +02:00
Jason White
efe5ca4b4d http-proxies update for AppSecEU challenge 2017-05-09 15:07:56 +01:00
Jason White
f6d7016b96 typo fix 2017-05-09 15:07:56 +01:00
Nanne Baars
6184a05c15 Fix challenge 1 testcase 2017-05-02 23:37:37 +02:00
Nanne Baars
945976868b Added testcases 2017-05-02 23:28:48 +02:00
Nanne Baars
262d82f80b Finishing challenge 5 2017-05-02 19:05:40 +02:00
Nanne Baars
3cb089d675 Layout improvements 2017-05-02 15:01:10 +02:00
Nanne Baars
1edf091c4e Improvements for challenge 3 2017-05-02 14:26:50 +02:00
Nanne Baars
344b1f9beb Extended challenge 1 with checking ip address client 2017-05-02 09:13:41 +02:00
Nanne Baars
615ca5afe3 Posting a flag shows a response in the UI (correct or incorrect) 2017-05-02 03:25:31 +02:00
Nanne Baars
eb7a6bd2be Creating endpoint for the scoreboard 2017-05-02 02:29:47 +02:00
Nanne Baars
39f1597f82 Challenge 5: loading votes from endpoint 2017-04-30 20:53:43 +02:00
Nanne Baars
9964fac0f1 Challenge 5: changing username working 2017-04-30 20:53:42 +02:00
Nanne Baars
262fbbcf52 First setup for challenge 5 2017-04-30 20:53:42 +02:00
Nanne Baars
7054c44c40 Fixed sorting issue with lessons, in particular the challenges need to be ordered so the intro is displayed first 2017-04-16 05:57:40 +02:00
Nanne Baars
3ccfcac8ff Challenge 4 done 2017-04-16 05:14:47 +02:00
Nanne Baars
ec36dbd43c Challenge 4 SQL is working 2017-04-15 21:15:46 +02:00
Nanne Baars
ed0e1a1f37 First setup for challenge 4 2017-04-15 18:12:25 +02:00
Nanne Baars
7ff5503241 Fixed posting flags towards the server 2017-04-15 14:01:34 +02:00
Nanne Baars
b10817564e Fixing challenges intro and challenge 3 2017-04-15 11:37:44 +02:00
Nanne Baars
6a3b40a640 Fixed layout issues 2017-04-15 11:37:43 +02:00
Nanne Baars
ec338326ea Separating challenges 2017-04-15 11:37:43 +02:00
Nanne Baars
4feae018d3 Challenge 3: displaying comments 2017-04-15 11:37:43 +02:00
Nanne Baars
835cf35ea0 Challenge 4: First setup 2017-04-15 11:37:43 +02:00
Nanne Baars
cebf74cd10 Challenge 3: First setup completed 2017-04-15 11:37:43 +02:00
Nanne Baars
6a9f7e0b0f Challenge 2: making elements on page work together 2017-04-15 11:37:43 +02:00
Nanne Baars
05bb61ad57 Roundtrip for challenge 2 done 2017-04-15 11:37:43 +02:00
Nanne Baars
599f36fdb8 Challenge 2 JavaScript is working 2017-04-15 11:37:43 +02:00