dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
3,148 Commits 11 Branches 78 Tags
f263888c032b1cb76d311e592b59487e1ee60b74
Commit Graph

3148 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nanne Baars
042a62624f Fixed the classnames in the wsdd config file (moved to different package) 2016-03-29 00:17:01 +02:00
Nanne Baars
015dcbde38 Added image for Github developers documentation about lesson progress implementation. 2016-03-28 08:38:25 +02:00
Nanne Baars
60192db921 Renamed everything to 'progress' instead of 'completed' 2016-03-28 08:37:18 +02:00
Nanne
765b212032 Merge pull request #219 from muzir/patch-1 
Update README.MD
 2016-03-27 17:46:51 +02:00
Nanne Baars
b4cc27c761 Lesson completed message is now within js which makes it possible to show the Congratulation message after the CSRF link has been clicked. 
Same as marking the lesson complete green checkbox
 2016-03-27 17:46:06 +02:00
erhun
c11ecef099 Update README.MD 
grammar fix
 2016-03-25 10:28:07 +02:00
Nanne
35bd866873 Merge pull request #214 from span/restart-button 
Fix #213 by changing the id of the restart button to the correct id
 2016-03-19 15:22:41 +01:00
Nanne Baars
1815494681 Injection Flaws -> Limit Command Injection success to a set of commands and clarify this to the user #179 
- Defuse command boolean flag is no longer necessary due to a change in the lesson, removed this flag from the webgoat-container project
 2016-03-19 12:40:28 +01:00
Daniel Kvist
6c92f0629e Fix #213 by changing the id of the restart button to the correct it 2016-03-18 21:11:49 +01:00
Nanne Baars
7a7fb088ad #173 Added the URL for WebGoat to the console output 2016-03-18 14:38:49 +01:00
Nanne Baars
bc6b040f42 Injection Flaws | XPath Injection date file path issue #184 
- Enabled the lesson again because lesson has been fixed
 2016-03-18 13:39:18 +01:00
Nanne Baars
50c4d9c170 Removed duplicate entry 2016-03-18 13:17:10 +01:00
Nanne
8738bb2e46 Merge pull request #210 from nxadm/develop 
Fix shebang
 2016-03-09 19:07:40 +01:00
u0097636@kuleuven.be
dc56ff9359 Fix shebang 2016-03-09 15:41:32 +01:00
Nanne
5d393d1d65 Merge pull request #207 from span/weak-auth-cookie-enable 
Enable weak authentication cookie lesson
 2016-02-25 22:07:46 +01:00
Nanne
f5a5335e31 Merge pull request #205 from muzir/develop 
-- Remove raw type usage, add type check parameter.
 2016-02-25 22:06:24 +01:00
Daniel Kvist
a9a7c18592 Enable weak authentication cookie lesson if webgoat/webgoat#181 is not reproducible 2016-02-24 15:23:03 +01:00
mayhew64
01636eae10 Merge pull request #203 from span/readme-7.0.1 
Update package references in readme
 2016-02-23 09:08:13 -05:00
mayhew64
3d7eb40787 Merge pull request #202 from misfir3/develop 
Develop
 2016-02-23 09:07:40 -05:00
muzir
25f08ea9b4 -- Remove raw type usage, add type check parameter. 
-- Remove unused variable and unused imports.
 2016-02-23 15:15:47 +02:00
Daniel Kvist
82d4324b67 Update easy run links to package 7.0.1 and update developer references from 7.0-SNAPSHOT to 7.1-SNAPSHOT as noted by @diegochavezcarro in #200 2016-02-20 13:02:05 +01:00
Jason White
575c940655 #180, clean up 2016-02-18 21:26:32 -05:00
Jason White
7c65441c8e #180, better management of show* buttons 2016-02-18 19:44:12 -05:00
Ruslan Boyarsky
daa05dd192 Seems locale should not depend of request's Accept-Language header. 
Signed-off-by: Nanne Baars <nbaars@xebia.com>
 2016-02-12 23:42:21 +01:00
mayhew64
dbb75980c9 Merge pull request #197 from span/htmlencoder 
Fixes #195 by adding static initialisation of the maps
 2016-02-12 13:02:41 -05:00
mayhew64
727e4ff56c Merge pull request #196 from span/xss-lab 
Add stage parameter in the session to keep track of current stage
 2016-02-12 13:01:31 -05:00
mayhew64
d89362226e Merge pull request #193 from nbaars/develop 
webgoat-container should unpack all the lessons #192
 2016-02-12 12:59:36 -05:00
Daniel Kvist
77c4a04d3d Fixes #195 by adding static initialisation of the maps rather then using the constructor 2016-02-04 23:27:31 +01:00
Daniel Kvist
59549e3b21 Add stage parameter in the session to keep track of current stage so that we do not reset the stage and recreate the database in the middle of a lesson. To do this a small refactor of WebSession was made which simply extracts some methods from the previously large update method. Ref #176. 2016-02-04 23:21:12 +01:00
Nanne Baars
1d2a612c1f webgoat-container should unpack all the lessons #192 2016-02-02 00:42:10 +01:00
Doug Morato
724c084abf Updading develop branch pom versions to 7.1-SNAPSHOT 2016-02-01 18:30:53 -05:00
Doug Morato
f825bead8b The OWASP WebGoat 7.0.1 Release 7.0.1 2016-02-01 18:09:48 -05:00
Doug Morato
f5290faaf0 Merge pull request #191 from span/disable-xss-lesson 
Disable cross-site scripting lab
 2016-02-01 16:18:59 -05:00
Daniel Kvist
370c34b7da Disable cross-site scripting lab 2016-02-01 21:47:28 +01:00
Doug Morato
35e9b36b00 [maven-release-plugin] prepare for next development iteration 2016-02-01 13:57:19 -05:00
Doug Morato
dcf1995fe8 [maven-release-plugin] prepare release 7.0 2016-02-01 13:57:16 -05:00
Doug Morato
3d3edfa809 Merge pull request #190 from dougmorato/master 
Adding OSSRH Repository on Parent Pom
 2016-02-01 00:03:21 -05:00
Doug Morato
9997b61995 Adding OSSRH Repository on Parent Pom 
In order to push it to The Maven Central Repository, adding the OSSRH repo under distributionManagement on the Parent Pom

Signed-off-by: Doug Morato <dm@corp.io>
 2016-01-31 23:57:49 -05:00
Doug Morato
8c97acda8a Merge pull request #189 from dougmorato/master 
Setting GPG keyname as WebGoat in Parent Pom
 2016-01-31 23:32:18 -05:00
Doug Morato
3bd9d87b42 Setting GPG keyname as WebGoat in Parent Pom 
In order to specify which key to use for signing the JAR/WAR, add the keyname configuration under the Release Profile on the Parent Pom

Signed-off-by: Doug Morato <dm@corp.io>
 2016-01-31 23:31:20 -05:00
Doug Morato
61d8e20b09 Merge pull request #188 from dougmorato/master 
Fixining all the javadoc issues preventing the release
 2016-01-31 23:27:29 -05:00
Doug Morato
6320c2d22d Fixining all the javadoc issues preventing the release 
In order to perfom a Sonatype OSS release, all the javadocs must pe corretly and completely parsed in order to pass the release requirement.
This comment is only adding "comments' pertaining to javadoc. NO CODE HAS BEEN CHANGED

Signed-off-by: Doug Morato <dm@corp.io>
 2016-01-31 23:14:50 -05:00
Doug Morato
35a39777af Merge pull request #187 from dougmorato/master 
Improving WebGoat Developer Bootstrap Script
 2016-01-31 22:38:36 -05:00
Doug Morato
6826d0eeba Improving WebGoat Developer Bootstrap Script 
Improved the Developer Bootstratp script to perform some checking for tools and pull the git repo if directory already exists

Signed-off-by: Doug Morato <dm@corp.io>
 2016-01-31 22:36:29 -05:00
mayhew64
b937e5936c Merge pull request #185 from mayhew64/master 
issue #147 disabling broken lessons
 2016-01-30 13:48:42 -05:00
mayhew64
416fda799b issue #147 disabling broken lessons 2016-01-30 13:45:26 -05:00
Nanne
f94d8121d0 Merge pull request #172 from misfir3/master 
#167 removing refrences to github.io in code
 2016-01-18 15:57:19 +01:00
Jason White
76fa797857 #167 removing refrences to github.io in code 2016-01-18 06:42:05 -05:00
Nanne
8d87830472 Merge pull request #166 from misfir3/master 
#165 support for custom submitMethod
 2016-01-15 17:38:26 +01:00
Jason White
07f0cea0a0 #165 cleaning up interim code 2016-01-14 09:03:43 -05:00