dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2,758 Commits 11 Branches 78 Tags
Commit Graph

2758 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
juoum
1461263b60 Update WebGoat/GoatAndWolf version on the documentation to the latest 2021-09-26 14:02:49 +02:00
Àngel Ollé Blázquez
61f2bfa9ec Added jdk badge 2021-09-26 11:05:45 +02:00
Nanne Baars
04d1293a33
#1045: Run build with Java 16 2021-09-23 16:09:28 +02:00
Àngel Ollé Blázquez
9af514f3eb WebWolf DataSource Discovery 2021-09-23 15:57:48 +02:00
Àngel Ollé Blázquez
8e567b0f86 Spoofing an Authentication Cookie lesson 2021-09-23 15:51:17 +02:00
René Zubcevic
a4218b0016 Update start.sh 
10 seconds is sometime to fast. WebWolf will fail to start if the database of WebGoat is not up.
 2021-09-17 17:13:50 +02:00
Nanne Baars
42369816c9
1026 (#1047) 
* Move back to Java 15 as XML parsers fail with XXE lesson

* Documentation improvement
 2021-09-17 13:46:58 +02:00
Nanne Baars
3492655f1d
Merge branch 'release/v8.2.2' into develop 2021-09-05 14:42:07 +02:00
Nanne Baars
e75cfbeb11
Adding release notes for version 8.2.2 v8.2.2 2021-09-05 14:41:28 +02:00
Nanne Baars
7ec6826abc #1031: Fix lesson 
- Hints not shown
- Add more hints
- Incorrect grant statement in lesson as example (removed it)
 2021-09-05 14:32:55 +02:00
Nanne Baars
825193bbb5 Update to latest lombok version 2021-09-05 14:32:55 +02:00
Nanne Baars
a14e84d5c5 #1039: Fix token 
Replace `name` with `user` and add `admin`
 2021-09-05 13:07:56 +02:00
dependabot[bot]
14ab2faeaf Bump jsoup in /webgoat-lessons/cross-site-scripting 
Bumps [jsoup](https://github.com/jhy/jsoup) from 1.13.1 to 1.14.2.
- [Release notes](https://github.com/jhy/jsoup/releases)
- [Changelog](https://github.com/jhy/jsoup/blob/master/CHANGES)
- [Commits](https://github.com/jhy/jsoup/compare/jsoup-1.13.1...jsoup-1.14.2)

---
updated-dependencies:
- dependency-name: org.jsoup:jsoup
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-09-04 16:28:15 +02:00
dependabot[bot]
8e47eac263 Bump docker/build-push-action from 2.4.0 to 2.7.0 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 2.4.0 to 2.7.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v2.4.0...v2.7.0)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2021-09-04 16:24:45 +02:00
Nanne Baars
6aaa743302 Fix vulnerable components lesson for Java 16. 2021-09-04 16:08:33 +02:00
Nanne Baars
0e08c4bde0
Update documentation related to Docker 2021-08-25 18:59:40 +02:00
Nanne Baars
f7871942da
Add mapping for localhost:80 to nginx 2021-08-25 18:59:40 +02:00
Nanne Baars
c8fad66973 #1024: Update landing page 2021-08-22 18:26:58 +02:00
Nanne Baars
9cc0ae5c38
Add -it to Docker command so ctrl+c is working directly 2021-08-22 18:17:48 +02:00
Nanne Baars
9a37a27a3c
Add explicit file encoding to the java command to prevent errors like: "It seems the application is startd on a OS with non default UTF-8 encoding:Cp1252" 
"
 2021-08-14 12:19:49 +02:00
Nanne Baars
453a09e0b4
Fix html 2021-08-14 12:19:49 +02:00
Arshan Dabirsiaghi
d566080a79 fix typo 2021-08-14 10:52:16 +02:00
Nanne Baars
4ce098f39b
Pass options directly instead of setting env variables 2021-08-04 10:41:51 +03:00
Nanne Baars
f22e4f55c1
Update release notes 2021-08-04 10:15:38 +03:00
Nanne Baars
15ea31a4df
Remove Travis badge and replace with Github actions 2021-08-02 18:46:01 +02:00
Nanne Baars
032b90d483
Welcome message only when issue is opened v8.2.1 2021-07-30 13:23:10 +03:00
Nanne Baars
a050fa9669
Support multiple platforms 2021-07-29 11:26:17 +03:00
Nanne Baars
60bd04b9aa
Move to snapshot version 2021-07-29 11:13:16 +03:00
Nanne Baars
91af9a0ef7
Merge branch 'release/v8.2.0' into develop 2021-07-26 13:03:16 +03:00
Nanne Baars
486b81f8ec
Push image while releasing 2021-07-26 13:01:01 +03:00
Nanne Baars
eed0feed06
Merge branch 'release/v8.2.0' into develop 2021-05-25 20:56:38 +02:00
Nanne Baars
e9df66ca1f
Add release notes v8.2.0 2021-05-24 21:32:29 +02:00
Nanne Baars
1381daf06e
Fix zip slip issue on Windows 2021-05-24 16:12:15 +02:00
Nanne Baars
ac542ad8b8
Also build on release branches 2021-05-23 21:28:49 +02:00
Nanne Baars
a2677cee58
Update to latest Maven version 2021-05-23 21:19:06 +02:00
Nanne Baars
a641a19615
Add zip slip to path traversal lesson 2021-05-23 21:18:56 +02:00
Nanne Baars
a91d45dea5
Fix other macros as well 2021-05-23 20:11:23 +02:00
Nanne Baars
81c551552b
Fix layout issue image 2021-05-23 20:11:23 +02:00
Nanne Baars
69a370f438
New release, updating pom.xml 2021-05-23 20:11:23 +02:00
René Zubcevic
3aa791bc1b
dependabot suggested updates (#1005) 2021-05-19 18:20:59 +02:00
René Zubcevic
a53ba0af5c
Fix for accidentally disabled integration tests (#997) 
* drop column is no longer required due to better db seperation
'

* integration test fix with BeforeAll
 2021-05-19 18:20:31 +02:00
Nanne Baars
a1071e9c00
Fix return type of asciidoctor macro implementation. 2021-04-23 15:11:56 +02:00
Nanne Baars
70cda80176
Revert to older version of bootstrap, requires more work to get the layout working again 
Especially the mailbox is not working in Bootstrap version 4
 2021-04-23 10:21:19 +02:00
Nanne Baars
ac0cb3560c Fix merge conflicts for README 2021-04-22 20:58:05 +02:00
Nanne Baars
d9712e7589 Add distribution tag for Java action v2 2021-04-22 20:32:57 +02:00
dependabot[bot]
cfe763f98d Bump actions/setup-java from v1 to v2 
Bumps [actions/setup-java](https://github.com/actions/setup-java) from v1 to v2.
- [Release notes](https://github.com/actions/setup-java/releases)
- [Commits](https://github.com/actions/setup-java/compare/v1...8764a52df183aa0ccea74521dfd9d506ffc7a19a)

Signed-off-by: dependabot[bot] <support@github.com>
 2021-04-22 20:32:57 +02:00
Nanne Baars
4869616176 Simplify Docker image with regards to creating the webgoat user 2021-04-22 20:12:01 +02:00
dependabot[bot]
30abcc0a1a Bump actions/cache from v2.1.4 to v2.1.5 
Bumps [actions/cache](https://github.com/actions/cache) from v2.1.4 to v2.1.5.
- [Release notes](https://github.com/actions/cache/releases)
- [Commits](https://github.com/actions/cache/compare/v2.1.4...1a9e2138d905efd099035b49d8b7a3888c653ca8)

Signed-off-by: dependabot[bot] <support@github.com>
 2021-04-16 13:33:37 +02:00
unknown
38f1d52bf3 Corrected typos and poor grammar found in the SQL Injection lessons. 2021-04-16 13:29:01 +02:00
Nanne Baars
e49f5d610f #961: Give each user its own schema for the lessons 
This way we can reset a lesson using the database for each user and not for all users at once.
Also solves the issue that when someone solves the lesson it is solved for all users on the same WebGoat instance
 2021-04-16 13:28:07 +02:00