dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Commit Graph

  • af565b5035 Added Tutorial for Chrome Developer Tools. Tobias_Melzer 2018-11-20 00:52:46 +01:00
  • eb29ed00ff Removed old unused files from XSS Benedikt - Desktop 2018-11-18 17:18:46 +01:00
  • 58dc5d2d41 Removed unneccessary comments from html documents. Benedikt - Desktop 2018-11-18 17:00:21 +01:00
  • 600c6203ef Changed the lesson plans of all the XSS lessons. Benedikt - Desktop 2018-11-18 15:32:09 +01:00
  • fffbb3c804 Added missing messages. Benedikt - Desktop 2018-11-18 14:54:58 +01:00
  • dd8b067a55 Changed names of hints and messages fro SQL-Injection assignments for better readability in properties file. Benedikt - Desktop 2018-11-18 14:41:37 +01:00
  • 596383fd59 bugfixes philippesteinbach 2018-11-13 21:34:24 +01:00
  • 90da672be2 added hints to sql injection assignment 4 & 5, minor text changes to be consistent to other assignments philippesteinbach 2018-11-12 11:19:55 +01:00
  • 0098f07d00 implemented sql injection assignment 5 philippesteinbach 2018-11-12 09:48:26 +01:00
  • 6b669df025 implemented assignment 4, some other changes philippesteinbach 2018-11-10 21:03:28 +01:00
  • 7733ea0c85 Bug fixes due to changed fuction, Updated text philippesteinbach 2018-11-10 19:41:35 +01:00
  • 295b5a4772 implemented assignment 2 & 3 of sql injection lession philippesteinbach 2018-11-09 21:15:35 +01:00
  • 2ee3b22207 Reworked some XSS assignments Max Geldner 2018-11-18 14:34:37 +01:00
  • 990bf079d3 Added hints for dom-based xss assignment (part 2) Benedikt - Desktop 2018-11-18 13:19:26 +01:00
  • 362671e67e Added hints for dom-based xss assignment (part 1) Benedikt - Desktop 2018-11-18 13:02:07 +01:00
  • 46f92dad3b Added hints for Reflected XSS assignment. Benedikt - Desktop 2018-11-18 12:41:47 +01:00
  • 3a7601d348 Moved js files to global directory, added id system to question json Max Geldner 2018-11-17 13:12:04 +01:00
  • 2962ddbb3e Restructured XSS category. Updated gitignore to ignore TestClass.class. Bene-Notebook 2018-11-13 14:35:12 +01:00
  • 1cfd8dd843 Added feedback to cia quiz Max Geldner 2018-11-13 11:50:47 +01:00
  • 61d8051b5f Added feedback for assignment Max Geldner 2018-11-13 11:39:03 +01:00
  • 7db39765c6 Improved Tests Tobias Melzer 2018-11-12 20:31:02 +01:00
  • 718b113f86 Added my improved assignments Tobias Melzer 2018-11-12 20:16:16 +01:00
  • 551f87dbd9 Deleted more unessecary files Max Geldner 2018-11-11 16:54:09 +01:00
  • dbba0fc188 Deleted not needed files for syntax highlighter Max Geldner 2018-11-11 16:48:44 +01:00
  • 8dd0957c39 Added syntax highlighting for mitigation assignment Max Geldner 2018-11-11 16:39:46 +01:00
  • 50c88738c2 Added a quiz for cia-triad lessons Max Geldner 2018-11-11 14:17:53 +01:00
  • baff6b06f3 Moved questions JSON to seperate file Max Geldner 2018-11-10 15:04:24 +01:00
  • 41998a0143 Deleted old assignments (introduction) and added tests for the new ones Benedikt - Desktop 2018-11-07 13:31:29 +01:00
  • 46e71a8bcd Renamed hints Benedikt - Desktop 2018-11-07 11:46:38 +01:00
  • 3b0c09add7 Highlighted important parts of text and expanded the CIA explanations. Benedikt - Desktop 2018-11-07 11:40:17 +01:00
  • 002ce6e8a6 Polished and fixed assignment 10 (A) of sql injections Benedikt - Desktop 2018-11-06 18:06:56 +01:00
  • 1bcddaf710 Reworked and polished assignment 8 and 9 (C and I) Benedikt - Desktop 2018-11-06 17:44:26 +01:00
  • cd3f7ea924 Inserted quiz into sql injection advanced Max Geldner 2018-11-06 12:12:35 +01:00
  • 14f4b42ba5 Fixed some errors. Benedikt - Desktop 2018-11-06 11:47:23 +01:00
  • 26e3803de0 Added more hints Benedikt - Desktop 2018-11-06 11:21:25 +01:00
  • 6fe7582dfb Added an assignment for compromising availability to the sql injections (introduction). WIP Benedikt - Desktop 2018-11-05 19:39:22 +01:00
  • 4e6c721545 Added an assignment for compromising integrity by query chaining to the sql injections (introduction) Benedikt - Desktop 2018-11-05 17:31:56 +01:00
  • 75b1895122 Added a new lessons for sql injections on "Compromising confidentiality with String SQL Injection" Benedikt - Desktop 2018-11-05 15:47:09 +01:00
  • 083eb1b567 improved the description of the new sql injection mitigation assignments Max Geldner 2018-11-03 16:35:52 +01:00
  • d2a2716a9a Added a lesson for the CIA-Triad in the general category explaining the three elements of the triad. Benedikt - Desktop 2018-11-02 13:51:36 +01:00
  • 0529289f6d Added (introduction) extra to the sidebar menu on the left. Slightly modified SQL Injections explanation/example. Benedikt - Desktop 2018-11-02 11:59:56 +01:00
  • adc8891160 Reworked SQl-Injections Introdruction Lesson plan Benedikt - Desktop 2018-11-02 11:39:51 +01:00
  • 2fdde982eb Restructured SQL Injection introduction lesson and created new required lesson-pages. Benedikt - Desktop 2018-11-02 11:33:52 +01:00
  • 2334b3c02d lessons: sql_injection added another assignment Max Geldner 2018-10-30 11:49:21 +01:00
  • 8667a85865 Draft_Version for SQL Injection Tobias Melzer 2018-10-29 23:45:38 +01:00
  • 78ff54b910 Modified and improved explanations for SQL Injections (basics) Bene-Notebook 2018-10-29 17:54:59 +01:00
  • bca50e8ca5 lesson: sql-injection-mitigation added new assignment for jdbc code completion Max Geldner 2018-10-27 14:56:45 +02:00
  • 6e36cc1ea4 removed unnecessary interceptors Rene Zubcevic 2019-03-07 19:08:49 +01:00
  • 4050e899ff changed unit test to dynamic port to prevent port conflict and build failure Rene Zubcevic 2019-03-06 22:18:01 +01:00
  • 1c2648e0a9 disable the fallback to the system locale to fix unit test and establish the desired behaviour Rene Zubcevic 2019-03-06 18:58:49 +01:00
  • 24bbb636f8 Update HttpBasics_ProxyIntro1.adoc Robin 2019-01-19 18:30:01 +09:00
  • 7291651967 Update IntroductionWebWolf.adoc Robin 2019-01-19 13:16:14 +09:00
  • 528c05a859 Update Landing_page.adoc Robin 2019-01-19 13:13:54 +09:00
  • e625d4008b Update Receiving_mail.adoc Robin 2019-01-19 13:10:44 +09:00
  • 53050d7198 Make language more understandable Robin 2019-01-19 13:06:58 +09:00
  • 5ebf838cd2 Merge branch 'alexanderfry-feature/ssrf' into develop Nanne Baars 2019-02-09 20:51:27 +01:00
  • a49dd6c348 Updated version in pom.xml Nanne Baars 2019-02-09 20:51:14 +01:00
  • c0dd773b90 Merge branch 'develop' into alexanderfry-feature/ssrf Nanne Baars 2019-02-09 18:20:43 +01:00
  • bd86dc6ee0 SNAPSHOT version Nanne Baars 2019-02-09 18:20:08 +01:00
  • d6dae9ef75 Merge branch 'feature/ssrf' of git://github.com/alexanderfry/WebGoat into alexanderfry-feature/ssrf Nanne Baars 2019-02-09 16:42:08 +01:00
  • 941ca5e9a1 SQL injection add hints #470 Nanne Baars 2019-02-09 16:41:46 +01:00
  • 5bc48193b6 Merge branch 'master' into develop Nanne Baars 2019-02-08 14:56:53 +01:00
  • e9b1a10a52 Update landing page Nanne Baars 2019-02-08 14:56:35 +01:00
  • c58ff9d0cb Merge tag 'v8.0.0.M24' into develop Nanne Baars 2019-02-08 14:21:57 +01:00
  • 4948380aa1 Merge branch 'release/v8.0.0.M24' v8.0.0.M24 Nanne Baars 2019-02-08 14:21:36 +01:00
  • 6c86929aa6 New release, updating pom.xml Nanne Baars 2019-02-08 14:20:23 +01:00
  • c25643afe2 Add landing page for WebGoat Nanne Baars 2019-02-08 14:13:58 +01:00
  • 7be519e724 Update README to reflect Java 11 change #553 Nanne Baars 2019-01-31 18:16:10 +01:00
  • 98f75e34d5 Initial Commit of SSRF Lesson Alex Fry 2019-01-21 18:09:31 -04:00
  • 5ba6492684 Merge tag 'v8.0.0.M23' into develop Nanne Baars 2019-01-18 08:47:00 +01:00
  • 72968d9619 Merge branch 'release/v8.0.0.M23' v8.0.0.M23 Nanne Baars 2019-01-18 08:46:50 +01:00
  • 631fedb752 New release, updating pom.xml Nanne Baars 2019-01-18 08:45:44 +01:00
  • 4f59bf545e Updating release doc Nanne Baars 2019-01-18 08:44:46 +01:00
  • 5d5ba53473 Merge tag 'v8.0.0.M22' into develop Nanne Baars 2019-01-18 08:39:19 +01:00
  • 7b8e3cdb52 Merge branch 'release/v8.0.0.M22' v8.0.0.M22 Nanne Baars 2019-01-18 08:38:10 +01:00
  • 9be4361afc New release, updating pom.xml Nanne Baars 2019-01-18 08:37:26 +01:00
  • b0e3a06b50 Password reset lesson 5 not working #512 Nanne Baars 2019-01-17 16:33:55 +01:00
  • 9170dcb87f Fix a grammatical error Shreyas Minocha 2019-01-06 20:43:42 +05:30
  • dc5f9880af Full implementation of "Update Webgoat Dockerfile to use entrypoints and commands #523" based on the pull request of Nicklaus McClendon Nanne Baars 2019-01-17 14:49:42 +01:00
  • ed490a5ecf Fix for #545 Introduced new macro to make a clear distinction between /WebWolf with context root and without. Nanne Baars 2019-01-16 11:07:30 +01:00
  • 81d6e12ae1 Spring devtools no longer work in combination with Spring and Java 11 Nanne Baars 2019-01-15 16:29:49 +01:00
  • c3ee0b7662 Travis build should also use Java 11 Nanne Baars 2019-01-15 16:24:39 +01:00
  • 959a3c6420 Docker images should use new jar version notation Nanne Baars 2019-01-15 16:23:21 +01:00
  • 3fa10c4b10 Update to Java 11 Nanne Baars 2019-01-15 16:23:03 +01:00
  • ec225558b9 Move to latest Spring Boot version and move to Java 11 Nanne Baars 2018-12-15 13:59:54 +01:00
  • dd1009bc54 Add Maven wrapper Nanne Baars 2018-12-14 12:56:21 +01:00
  • bf45a0a8e5 Fix for XXE docs Bartosz Bogatko 2018-11-18 13:18:01 +01:00
  • f81a6852db YAML structure fix, postgres version fix Patrick Double 2018-11-03 08:38:06 -05:00
  • 6699456ee1 Bug fix in sample code malikashish8 2018-10-26 22:29:44 +11:00
  • ecbbb5258e encapsulated the WEBGOAT_HOME in quotes Joubin Jabbari 2018-10-07 11:15:01 -07:00
  • 1520c7571f HTML Tampering Mitigation Description Typo Josh Cummings 2018-10-05 14:01:52 -06:00
  • 5921a06747 Fix SQL injection mitigation answer (fixes #505) Omniscimus 2018-10-03 09:30:30 +02:00
  • b6e4995d11 Fixed Vagrant file Chirag Jariwala 2018-09-05 11:27:20 +05:30
  • a2f28460c0 Update password_reset.html donkrasnov 2018-08-30 12:20:55 +03:00
  • 0797c3e2bf
         Merge pull request #519 from pingiun/patch-1 misfir3 2018-09-13 08:16:11 -07:00
  • f9a4061604
         Fix typo Jelle Besseling 2018-09-12 09:54:44 +02:00
  • 580e50f558 Same form post is used and with autocomplete this does not work because all fields will be posted. The endpoint could no long distinguish between the different actions (sending e-mail and checking password) Nanne Baars 2018-08-10 13:15:40 +02:00
  • 3d58049af6 docker-compose-local.yml now extends docker-compose.yml WebWolf waits for 8 seconds after WebGoat starts so the database connection can be established Nanne Baars 2018-08-08 18:26:12 +02:00
  • bca8b3c650 Fix buildscripts to wait for Docker and build snapshots Nanne Baars 2018-08-08 18:23:27 +02:00
  • 1252e3dc21 Update instructions to use docker-compose only Nanne Baars 2018-07-17 20:17:35 +02:00