46c536554c
- Added new challenges
...
- Added new webapplication called WebWolf to make attacks more realistic
- Added WebWolf lesson to explain the concepts behind this new application
2017-09-12 23:12:10 +02:00
b41751a55c
missing function level ac working again ... after VM implosion
2017-08-08 17:15:20 -06:00
8df1d53471
interim missing function ac commit, traversing dev. env.
2017-08-08 09:28:09 -06:00
f1a104f0ab
merging missing function-level-ac lesson
2017-07-25 09:44:10 -04:00
8186bd4766
css and xss updates
2017-07-24 18:05:57 -04:00
ca4b0c06b5
lesson css file
2017-07-24 11:34:10 -04:00
0cb4faf15f
refactor to support cleaner scoping && success and failure callbacks
2017-07-18 17:39:58 -04:00
fb65534355
Merging from 'injection-updates' into local develop branch
2017-07-03 15:22:02 -04:00
2e4e4ea716
including restart lesson fix for lesson overview
2017-07-03 12:37:15 -04:00
daaf361dd2
Lesson Overview updates
2017-07-03 12:14:01 -04:00
89e2fc109c
Work-around to handle special chars in action ... currently to be able to match {userId} in hint creation/assignment for IDOR
2017-06-27 10:24:38 -04:00
dd18e68660
merge of upstream, conflict resolution
2017-06-27 08:30:58 -04:00
7809057208
Enabled the challenges again to make them visible for everybody who starts WebGoat
2017-06-15 23:38:04 +02:00
52a48df70c
XXE successfully completed message was no longer shown, fixed it by using form POST together with customjs functions.
...
Introduced callback functionality which you can specify after the posting in order to be able to load the comments list again.
2017-06-12 15:08:55 +02:00
0ad1f0d147
Fixing Travis issues while building
2017-05-21 13:28:29 +02:00
2b2451dd9c
testing with Travis dirs
2017-05-21 13:10:52 +02:00
50795d9ded
testing with Travis dirs
2017-05-21 13:06:00 +02:00
877de6ebd4
Updated XXE lessons with challenge screens
2017-05-21 12:24:42 +02:00
feead6b740
initial cut on XSS, need to add some tests still
2017-05-18 14:41:14 -04:00
8d3c251d04
Merge branch 'challenge' into develop
...
Conflicts:
webgoat-container/src/main/resources/static/css/main.css
2017-05-04 03:02:00 +02:00
08e7916b39
polling updates, including banner for appseceu
2017-05-10 16:15:38 +01:00
c7c664ad4a
polling for scoreboard added (appseceu)
2017-05-10 15:28:07 +01:00
328cd9bf24
For quick reloading/restart via intelliJ during dev
2017-05-10 13:08:27 +01:00
118079233d
hints view fix. still a redundant call issue, but logging separately
2017-05-10 13:08:27 +01:00
194a327ad5
Fixed issue when restarting the lesson the menu was not updated (the marker stayed behind)
...
Also restarting the lesson was not persisted
2017-05-03 05:08:00 +02:00
6fbd8457c1
update for width .. FF fix
2017-05-02 10:02:42 -04:00
480dfe6a0a
scoreboard v 0.1 we'll say
2017-05-05 13:12:01 -04:00
aeaa3cd1a2
removing template cruft from other lesson
2017-05-05 09:59:59 -04:00
454e8d4c14
Solving an assignment twice adds its again which breaks the UI because the endpoint for lessonoverview returns mulitple values for the same assignment.
2017-05-02 04:38:30 +02:00
b840b0f3b5
additional support for scoreboard view
2017-05-02 22:24:31 -04:00
4a2701c79b
clean up
2017-05-02 22:24:31 -04:00
e0f23bfa38
initial removal (comment) of plan,solution and source views. Should remove some chattiness
2017-05-02 22:24:31 -04:00
b0f66f16fb
initial plumb of scoreboard
2017-05-02 22:24:31 -04:00
eb7a6bd2be
Creating endpoint for the scoreboard
2017-05-02 02:29:47 +02:00
459cc613e1
Update main.css
...
quick update to ensure horizontal space is used
2017-04-21 12:27:37 -04:00
3ccfcac8ff
Challenge 4 done
2017-04-16 05:14:47 +02:00
213e73bf02
Making database for each user (no sharing between each other)
2017-04-15 18:11:55 +02:00
6f633a0f78
Added the ability to remove all *.progress files when starting the server (for development). This is sometimes necessary when the internal structure of the lessons change but we still use old progress files.
2017-04-15 14:01:11 +02:00
4e3ca68d08
Stop showing old lesson overview after finishing a lesson
2017-04-15 11:37:44 +02:00
e570f4bde2
Fixed pagination not initializing correctly when clicking on menu items
2017-04-15 11:37:44 +02:00
9bc219e931
numbering on pagination
2017-04-15 11:37:43 +02:00
e3d281a5f6
refactor of pagination controls
2017-04-15 11:37:43 +02:00
5156b05aac
Fixed logout
2017-03-23 21:03:20 +01:00
90eee0e2d8
Adding write_delay option to hsql database (otherwise users were not persisted in database correctly)
2017-03-22 17:04:44 +01:00
c14b172503
Removed default values from login screen
2017-03-22 15:53:50 +01:00
259fd19c1b
- Introduced user registration
...
- Now using Spring Boot for classloading, this way local development does not need to restart the complete server
- Fixed all kinds of dependencies on the names of the lessons necessary to keep in mind during the creation of a lesson.
- Simplied loading of resources, by adding resource mappings in MvcConfig.
- Refactored plugin loading, now only one class is left for loading the lessons.
2017-03-22 11:35:14 +01:00
f71d02fc6a
Merge branch 'develop' into develop
2017-03-02 21:24:09 +01:00
2d6235e4f0
Provide Server-side service to support UI localization #265
...
- Now also enabled for adoc
2017-03-02 21:17:21 +01:00
7f532f0ffc
XSS lesson updates
2017-02-17 13:05:54 -05:00
af8f8c27a6
moving controls to top of content
2017-02-16 14:56:08 -05:00
