dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2,589 Commits 11 Branches 78 Tags
Commit Graph

2589 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
avivmu
215b3b4e78
Remove redundant escaping in regex (#929) 2021-02-11 15:13:38 +01:00
NatasG
00c4be63f0
Fix sql injection line comments issue. (#925) 2021-01-19 10:47:04 +01:00
Kelly Marchewa
2e581d6bdb
docs: update SQLi lesson text (#928) 
- corrected typos/grammar issues
  - restructured sentences for clarity
 2021-01-19 10:29:16 +01:00
avivmu
b20f6492a3
Simplify regex (#927) 2021-01-15 14:36:04 +01:00
avivmu
74b218b2a7
Use try with resources instead of try (#921) 
* Use try with resources instead of try

* Remove unused lesson

* Remove unused fields
 2021-01-13 18:21:04 +01:00
René Zubcevic
b219854f81
fix in case external site is down (#919) 2021-01-11 20:15:23 +01:00
avivmu
dea4a9d2a9
Small improvements (#918) 
* Typo fix

* No need to use thread-safe object

* Use String case in-sensitive equals
 2021-01-11 16:38:14 +01:00
René Zubcevic
6d3f38e2df
Update README.MD (#915) 2021-01-11 15:56:50 +01:00
René Zubcevic
60c7fdd0db activation button tested 2020-12-09 19:40:16 +01:00
René Zubcevic
bce4c775bf initial idea for explanation on static code analysis and experience of the fix 2020-12-09 19:40:16 +01:00
René Zubcevic
8bed91a8dc
improved threading and logic based on number of calls and number of tests (#910) 2020-12-08 16:03:36 +01:00
René Zubcevic
e78420fa8e fix warnings 2020-12-04 08:47:50 +01:00
René Zubcevic
f676b3a3d6 fix warnings 2020-12-04 08:47:50 +01:00
René Zubcevic
8b4240889a fix warnings 2020-12-04 08:47:50 +01:00
René Zubcevic
262afedb08 fix warnings 2020-12-04 08:47:50 +01:00
René Zubcevic
9dbd41c830 fix warnings 2020-12-04 08:47:50 +01:00
René Zubcevic
3aab59e326 fix warnings 2020-12-04 08:47:50 +01:00
René Zubcevic
0f7a556b9c fix warnings 2020-12-04 08:47:50 +01:00
René Zubcevic
48b3c6a07d fix warnings 2020-12-04 08:47:50 +01:00
René Zubcevic
649fce6f42 fix warnings 2020-12-04 08:47:50 +01:00
Gabriel M. Schuyler
b1495a8cd5
Fix typo (#909) 2020-12-03 14:23:23 +01:00
René Zubcevic
69c19d19d4
flattened pom plugin added for easy build of seperate modules (#907) 2020-12-01 17:12:43 +01:00
René Zubcevic
89f43229ab
upgrade springboot version and some related unit test fixes (#904) 
* upgrade springboot version and some related unit test fixes

* removed log for test

* removed junit version property
 2020-11-28 17:35:55 +01:00
René Zubcevic
8235ea0f58
Custom menu (#901) 
* added way to customize menu

* fixed unit mock test

* updated release notes

* updated release notes

* default none exclude
 2020-11-27 14:36:57 +01:00
René Zubcevic
6bee0f3fa6
layout of page improved and ordered ranking (#903) 2020-11-27 13:58:58 +01:00
René Zubcevic
574039902d changed version to snapshot version and introduced revision parameter 
for it
 2020-11-27 12:15:19 +01:00
René Zubcevic
090263b279 added start checks with hints on port usage 2020-11-27 12:13:24 +01:00
Eskil Andréen
74cca6d185
Add missing trailing double quote in sql query (#897) 2020-11-19 07:45:07 +01:00
Nanne Baars
f3e3cbd45f
Improve navigation bar (#890) 
* Remove Raspberry pi Docker file

* Remove old show-source/solution and plan button

* Remove commented out code

* Improve navigation

* Remove underline from navigation and remove margin of left navigation button

* Make arrow a bit smaller so it aligns a bit better with the navigation bar itself
 2020-11-13 07:24:52 +01:00
Nanne Baars
db3015e0bc When current lesson is not set do not try to remove selected class as there is no element selected. 
The current lesson is now selected correctly so it makes it easier to see which item in the menu is selected
 2020-11-04 21:33:57 +01:00
Nanne Baars
fa9b5ae87d Remove option to hide menu with the lessons 2020-11-04 21:33:57 +01:00
Nanne Baars
36cf028334 Remove blinking navigation buttons 2020-11-04 21:33:57 +01:00
Nanne Baars
488a8e934a #843: Add readonly field and update the layout of the assignment 2020-11-04 20:35:05 +01:00
Nanne Baars
753a2db958 #846: add extra test to verify whether the solution is solved for the original user as well 2020-11-04 20:35:05 +01:00
Nanne Baars
37e9359c9e #841: Clarify the lesson based on the comments 
- Output messages more clear
- Replace success to failure (otherwise lesson is marked complete immediately)
- Fix the layout of the lesson (remove whitespace update buttons)
 2020-11-04 20:35:05 +01:00
Nanne Baars
7b8523dcab #839: fix the SQL statement as this one does not express that the orderBy clause input is user input 2020-11-04 20:35:05 +01:00
Nanne Baars
dac011db78 fix failing test (order) 2020-10-21 08:05:53 +02:00
Nanne Baars
41879c4603 Blind XXE lesson blocks including the file in the comment directly 2020-10-20 22:09:49 +02:00
Nanne Baars
641d75e734 Link to the original lesson for the goal 2020-10-20 22:09:49 +02:00
Kelly Marchewa
e4ec90db8a chore: update CIA grammar and content 
- misc. grammatical edits
  - add a few more examples
 2020-10-15 08:39:28 +02:00
René Zubcevic
d5f78351a2
lesson pages updated based on comments for #834 and #836 (#864) 2020-08-23 15:36:01 +02:00
René Zubcevic
ef6993c636 improving lesson due to issue #845 2020-07-09 19:21:42 +02:00
René Zubcevic
2d2dc22e19 first step 2020-07-09 19:21:42 +02:00
René Zubcevic
db9e1c4c4f first step 2020-07-09 19:21:42 +02:00
René Zubcevic
317573c897
Small fixes june 2020 (#857) 
* issue 849

* another integration test for a challenge

* fixing issue 848

* updated link for issue 833

* fix for 847
 2020-07-08 19:26:09 +02:00
Roy Stultiens
ba8444dd85
Update 1proxysetupsteps.adoc (#854) 
thanks for the fix
 2020-07-04 08:00:32 +02:00
Mike Robinson
219aad0bbc
Correcting incorrect information (#835) 
Thanks for the improvement. Hope you liked the lesson.
 2020-06-19 17:00:43 +02:00
René Zubcevic
1cbaade9ab
adjustments for arbitrary user support (openshift guideline) (#830) 
* adjustments for arbitrary user support (openshift guideline)

* do not create up front .webgoat
 2020-06-08 07:30:55 +02:00
Elie De Brauwer
98d17433f1 HTML Tampering mitigation: Typo fixes 2020-05-25 09:09:26 +02:00
Elie De Brauwer
11a7814626 Dinis Cruz Blog 
This was discussed in ticket https://github.com/WebGoat/WebGoat/issues/724 however the Dinis Cruz Blog remains available through a blogspot.com URL which might be more interesting to reference than an web.archive.org link.
 2020-05-25 09:08:55 +02:00