dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
2,208 Commits 11 Branches 78 Tags
Commit Graph

475 Commits

Author SHA1 Message Date
Nanne Baars
5e6f825e64 WIP 2019-09-13 16:42:13 +02:00
Nanne Baars
361249c666 First attempt at moving to Spring Boot 2 2019-09-12 17:22:03 +02:00
René Zubcevic
6e9a52a05e
Merge pull request #647 from WebGoat/separate_project 
Nice work. I will add some tests for the missing parts in the SQL mitigations (in a separate pull request)
 2019-09-09 14:05:21 +02:00
Nanne Baars
f7c8a271aa Fixed small typos 2019-09-09 13:55:24 +02:00
Nanne Baars
7a4f6e6fd3 Merge branch 'JeffreyWagnerBHN-develop' into develop 2019-09-09 13:54:38 +02:00
ephemeralwaves
aec051a9f1 Fixed minor spelling mistake 2019-09-09 13:41:38 +02:00
Jeffrey Wagner
75a174ff7b Fixed description and grammer 2019-09-06 21:12:55 -04:00
Nanne Baars
ff530e926e Use separate project for integration tests so we can start WebGoat and WebWolf 2019-08-25 17:43:14 +02:00
Matthias Grundmann
139651615e Make lesson csrf-7 stricter (do not allow invalid JSON, e.g. trailing =) 2019-08-22 17:44:52 +02:00
René Zubcevic
924a53c22a fixed sql adv 5 progress and added prove in integration test 2019-08-22 17:44:34 +02:00
René Zubcevic
73553d91d3
Merge pull request #639 from jskiba99/patch-2 
Update CrossSiteScripting_content9.adoc
 2019-08-22 11:14:38 +02:00
Nanne Baars
6d36e7db74 Added new endpoint for POST so it will give feedback to the UI. It now 
ended up in a HTTP/405 which does not give any feedback to the UI
 2019-08-17 13:52:59 +02:00
Nanne Baars
e01c2a35ce Add test case for security question assignment and the tracking is now 
done with a session scoped bean
 2019-08-06 19:04:07 +02:00
Jacob Skiba
7d9f24c86b
Update CrossSiteScripting_content9.adoc 
Fix broken resource link
 2019-08-06 05:26:05 -04:00
Nanne Baars
18eee4df58 Fix for issue with timestamp not being parsed when sending to WebWolf 
timestamp was already fixed at LocalDateTime.now() however WebGoat still
send the timestamp along, removed it
 2019-07-28 20:50:19 +02:00
René Zubcevic
ae674b9297
Merge pull request #620 from zubcevic/july2019-bugfixes 
increased sql form fields and fixed chrome progress
 2019-07-25 08:39:34 +02:00
Nanne Baars
216b29fca2 Clean up in pom files 2019-07-24 20:37:32 +02:00
Rene Zubcevic
7ad3996f2f fix 6a6b page 2019-07-22 15:36:31 +02:00
Rene Zubcevic
b65644edee progress fix for SqlInjectionMitigations 2019-07-22 12:16:18 +02:00
René Zubcevic
7d0a63ac95 small html changes to improve progress 2019-07-20 09:34:27 +02:00
Rene Zubcevic
656fa40182 style sheet and advanced sql 2019-07-19 16:49:30 +02:00
Rene Zubcevic
99435a1073 increased sql form fields and fixed chrome progress 2019-07-19 12:16:06 +02:00
Johannes Egger
9471e53818 Fix image names for google chrome dev tools lesson 2019-07-14 12:40:05 +02:00
Johannes Egger
d814522223 Fix test for HTTP proxy lesson 2019-07-14 12:39:07 +02:00
Johannes Egger
2eaf263e81 Improve task description for HTTP proxy lesson 2019-07-14 12:39:07 +02:00
Rene Zubcevic
41f252970b corrected path in pom 2019-07-14 12:38:11 +02:00
Rene Zubcevic
63a1097466 owasp categories 2019-07-14 12:38:11 +02:00
misfir3
62fbd6d340
Merge pull request #610 from johannesegger/patch-1 
Fix typo in CIA lesson
 2019-07-12 17:21:46 -06:00
Matthias Grundmann
97f66545e0
In CSRF-3 use POST instead of GET to prevent solving the assignment just by opening the URL in a new tab 2019-07-12 17:25:58 +02:00
Johannes Egger
703b6c676e
Fix typo 2019-06-14 15:09:55 +02:00
Nanne Baars
00deb66ad9 Small update for password reset lesson 2019-05-09 09:17:11 +02:00
Nanne Baars
98537426f2 SNAPSHOT version 2019-05-03 11:15:11 +02:00
Nanne Baars
9b0c4e62c2 New release, updating pom.xml 2019-05-03 09:50:01 +02:00
Tobias-Melzer
aa2eac0cd8 fixed test 2019-04-21 14:14:23 +02:00
René Zubcevic
8fdfbbd3fb changed order of attack forms in order to get the green completed 2019-04-21 14:12:26 +02:00
Rene Zubcevic
80b8326766 link corrected to avoid 404 2019-04-21 14:11:45 +02:00
Rene Zubcevic
e57c9d05b6 added checkbox and corrected fall back for the other labels 2019-04-21 14:10:01 +02:00
Rene Zubcevic
2b2e267594 hide password for testing with your actual password in front of colleagues 2019-04-21 14:10:01 +02:00
Rene Zubcevic
4bafc19883 fixed classcast exception on randValue 2019-04-21 13:59:26 +02:00
Rene Zubcevic
48d926491f removed possible NullpointerException and System.out 2019-04-21 13:59:26 +02:00
Rene Zubcevic
203b5fe717 chrome NetworkNum fix 2019-04-21 13:59:26 +02:00
zubcevic
93830ac15b adjusted to findByUser 2019-03-26 13:57:21 +01:00
ronanclancy
5df6e987eb Fim simple email assignment typo 2019-03-26 13:56:31 +01:00
Tobias-Melzer
bcacf94c6f Added Test for Developer Tools 2019-03-26 08:43:38 +01:00
Benedikt - Desktop
5a11a5dae9 Added test for CIA Quiz 2019-03-26 08:43:38 +01:00
Marvin Schöning
b8e68d13b8 implement xss (mitigation) assignment 6 2019-03-26 08:43:38 +01:00
Tobias-Melzer
a8106f6671 Removed git merge symbols 2019-03-26 08:43:38 +01:00
Benedikt - Desktop
2d5919dfc6 Changed snapshot versions of cia, dev-tools and secure passwords lessons. 2019-03-26 08:43:38 +01:00
Benedikt - Desktop
b190b08258 Added Import of AssignmentsHints to SQL Injection Challenge to fix build error. 2019-03-26 08:43:38 +01:00
Tobias-Melzer
256c0d05aa Implemented some feedback 2019-03-26 08:43:38 +01:00