dubey/WebGoat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Commit Graph

  • c3fe7cece9 Including one small documentation change: giving credit to Sherif Koussa's original CSRF lesson cam.morris 2009-10-23 21:29:42 +00:00
  • d971d2f734 Including one small documentation change: giving credit to Sherif Koussa's original CSRF lesson cam.morris 2009-10-23 21:29:42 +00:00
  • d2a6a2b272 This change includes two additional CSRF lessons. One for by-passing a prompt (showing why prompts don't work). The second for by-passing CSRF tokens when XSS exists. cam.morris 2009-10-23 21:23:17 +00:00
  • 85c6843ee4 This change includes two additional CSRF lessons. One for by-passing a prompt (showing why prompts don't work). The second for by-passing CSRF tokens when XSS exists. cam.morris 2009-10-23 21:23:17 +00:00
  • b4af6471b1 Three new lessons and supporting files and changes to other files. Some changes to other files may not be quite the "right" way to accomplish my goal, so they may need to be updated. I deleted the old BlindSQLInjection lesson (which was by me) since it is replaced by the two new lessons for BlindNumericSqlInjection and BlindStringSqlInjection. Other new lesson is for MaliciousFileExecution, which requires the Apache Commons fileupload library (which in turn needs the commons io library). chuck@securityfoundry.com 2009-10-20 04:30:00 +00:00
  • 72936c72b9 Three new lessons and supporting files and changes to other files. Some changes to other files may not be quite the "right" way to accomplish my goal, so they may need to be updated. I deleted the old BlindSQLInjection lesson (which was by me) since it is replaced by the two new lessons for BlindNumericSqlInjection and BlindStringSqlInjection. Other new lesson is for MaliciousFileExecution, which requires the Apache Commons fileupload library (which in turn needs the commons io library). chuck@securityfoundry.com 2009-10-20 04:30:00 +00:00
  • 4f3892a0b6 Re-adding .jar file that appears to have been removed recently. Re-adding this file should fix build some build errors. chuck@securityfoundry.com 2009-10-20 03:56:46 +00:00
  • cef196e172 Re-adding .jar file that appears to have been removed recently. Re-adding this file should fix build some build errors. chuck@securityfoundry.com 2009-10-20 03:56:46 +00:00
  • c1af5e86b0 initial version of pom.xml ch.ko123 2009-10-12 21:06:55 +00:00
  • c00b8b2dfe initial version of pom.xml ch.ko123 2009-10-12 21:06:55 +00:00
  • e3af09e500 infos to dependencies ch.ko123 2009-10-11 15:19:25 +00:00
  • 271d746153 infos to dependencies ch.ko123 2009-10-11 15:19:25 +00:00
  • 94378680ca replaced jars with versions from maven repo to prepare migration ch.ko123 2009-10-11 13:47:42 +00:00
  • 34270c8931 replaced jars with versions from maven repo to prepare migration ch.ko123 2009-10-11 13:47:42 +00:00
  • 62bc77cbe7 replaced jars with versions from maven repo to prepare migration ch.ko123 2009-10-11 11:07:01 +00:00
  • 24acd5081d replaced jars with versions from maven repo to prepare migration ch.ko123 2009-10-11 11:07:01 +00:00
  • de18bc56d2 replaced axis jars with versions from maven repo; removed catalina.jar no longer needed ch.ko123 2009-10-10 23:39:11 +00:00
  • c719c47128 replaced axis jars with versions from maven repo; removed catalina.jar no longer needed ch.ko123 2009-10-10 23:39:11 +00:00
  • 215caee8be fixed typo (Issue 29) - test commit ch.ko123 2009-10-07 21:15:11 +00:00
  • 87ce172faa fixed typo (Issue 29) - test commit ch.ko123 2009-10-07 21:15:11 +00:00
  • 4897249cb8 5.3 Logo mayhew64@gmail.com 2009-02-04 13:06:48 +00:00
  • f5200a8fd0 5.3 Logo mayhew64@gmail.com 2009-02-04 13:06:48 +00:00
  • 976671949e Changed the credit card user to be the user that was logged in as. Also base64 encoded the user cookie to make finding sql injection slightly harder. mayhew64 2009-02-03 18:16:51 +00:00
  • 0032ffdbfc Changed the credit card user to be the user that was logged in as. Also base64 encoded the user cookie to make finding sql injection slightly harder. mayhew64 2009-02-03 18:16:51 +00:00
  • b63d0a6886 Changed the class build. mayhew64 2009-02-03 17:56:48 +00:00
  • cafcea2ae9 Changed the class build. mayhew64 2009-02-03 17:56:48 +00:00
  • 3cf801f58f Removed errors introduced in previous checkin. String and integer conflicts in JSP mayhew64 2009-02-03 17:55:27 +00:00
  • 88a730f225 Removed errors introduced in previous checkin. String and integer conflicts in JSP mayhew64 2009-02-03 17:55:27 +00:00
  • b8c1d13e50 Lots of wording changes and HTML fixes. soylentmean 2009-01-06 21:06:42 +00:00
  • 97571dbe90 Lots of wording changes and HTML fixes. soylentmean 2009-01-06 21:06:42 +00:00
  • 8a372baa01 Fixing wording a smidge. soylentmean 2009-01-06 20:19:22 +00:00
  • 5506f1c279 Fixing wording a smidge. soylentmean 2009-01-06 20:19:22 +00:00
  • 01b845beb9 Changes by Chris Roe to fix lesson issues with FireFox. mayhew64 2008-12-17 13:06:29 +00:00
  • 9331ef0d9a Changes by Chris Roe to fix lesson issues with FireFox. mayhew64 2008-12-17 13:06:29 +00:00
  • 7a55b7e02f fixed a typo soylentmean 2008-12-11 21:15:20 +00:00
  • 6d1158c40c fixed a typo soylentmean 2008-12-11 21:15:20 +00:00
  • 711097a340 Standardized all the HTML, clarified things, and fixed a whole bunch of grammar issues. soylentmean 2008-12-11 20:04:15 +00:00
  • 64899b3ee3 Standardized all the HTML, clarified things, and fixed a whole bunch of grammar issues. soylentmean 2008-12-11 20:04:15 +00:00
  • 696550ccb0 Minor syntax issue with the word prename in the instructions - reported by April King mayhew64 2008-12-10 23:52:04 +00:00
  • f6e994b14e Minor syntax issue with the word prename in the instructions - reported by April King mayhew64 2008-12-10 23:52:04 +00:00
  • 7998e60f29 Removed hardcoded webgoat path for URLs mayhew64 2008-11-21 16:57:23 +00:00
  • 9d8c58bef3 Removed hardcoded webgoat path for URLs mayhew64 2008-11-21 16:57:23 +00:00
  • c0d2d13e5a Reported by dwpoon, Yesterday (17 hours ago) mayhew64 2008-11-21 12:57:14 +00:00
  • bab1f6aeb7 Reported by dwpoon, Yesterday (17 hours ago) mayhew64 2008-11-21 12:57:14 +00:00
  • 3412f1e984 Contribution by Kristian Erik Hermansen. Fixed to work with 1.6 mayhew64 2008-09-09 15:32:23 +00:00
  • 58aa49317a Contribution by Kristian Erik Hermansen. Fixed to work with 1.6 mayhew64 2008-09-09 15:32:23 +00:00
  • 5854b66614 minor bug fixes and enhancements, including proper dollar value formatting brandon.devries 2008-08-14 14:31:17 +00:00
  • 5337ef31ff minor bug fixes and enhancements, including proper dollar value formatting brandon.devries 2008-08-14 14:31:17 +00:00
  • 71e53c1ffb removing unused folder brandon.devries 2008-08-14 12:56:14 +00:00
  • 68357637bc removing unused folder brandon.devries 2008-08-14 12:56:14 +00:00
  • a185de3fa0 minor changes and improving display issues brandon.devries 2008-08-12 17:36:30 +00:00
  • 4c242f52dc minor changes and improving display issues brandon.devries 2008-08-12 17:36:30 +00:00
  • 775fdad7c4 some cleanup, and removing unneeded ClassNotFoundExceptions brandon.devries 2008-08-12 14:33:22 +00:00
  • a3990f549e some cleanup, and removing unneeded ClassNotFoundExceptions brandon.devries 2008-08-12 14:33:22 +00:00
  • 9c84df3d6c corrected spelling and some formatting brandon.devries 2008-08-11 14:39:09 +00:00
  • 2203a1ebd2 corrected spelling and some formatting brandon.devries 2008-08-11 14:39:09 +00:00
  • 17af39e428 Formatting according to OWASP WebGoat Java Style brandon.devries 2008-08-05 17:32:17 +00:00
  • ba6560b24a Formatting according to OWASP WebGoat Java Style brandon.devries 2008-08-05 17:32:17 +00:00
  • 7918037066 Removed build.xml mayhew64 2008-07-12 16:14:06 +00:00
  • acab6e9274 Removed build.xml mayhew64 2008-07-12 16:14:06 +00:00
  • 95c57ea521 Removed windows and changed to developer mayhew64 2008-07-12 16:05:17 +00:00
  • 8751d7579a Removed windows and changed to developer mayhew64 2008-07-12 16:05:17 +00:00
  • 7c8dcc37fb Logos that slipped through mayhew64 2008-07-12 16:04:22 +00:00
  • ae79118f55 Logos that slipped through mayhew64 2008-07-12 16:04:22 +00:00
  • 8f06b0197b Smaller eclipse workspace Changed workspace name to reflect WebGoat Added the video solutions link Update readmen to reflect contributions and new stuff mayhew64 2008-07-12 15:40:13 +00:00
  • d849168ce1 Smaller eclipse workspace Changed workspace name to reflect WebGoat Added the video solutions link Update readmen to reflect contributions and new stuff mayhew64 2008-07-12 15:40:13 +00:00
  • 581151f166 Actually, I think the problem was happening because the lesson was returning the lesson HTML again incase of incorrect key to eval was throwing an error trying to evaluate a whole bunch of HTML. Fixed this by catching the exception and showing an appropriate message. sherif.fathy 2008-07-12 05:56:41 +00:00
  • c8908f6911 Actually, I think the problem was happening because the lesson was returning the lesson HTML again incase of incorrect key to eval was throwing an error trying to evaluate a whole bunch of HTML. Fixed this by catching the exception and showing an appropriate message. sherif.fathy 2008-07-12 05:56:41 +00:00
  • 084c43381b Added bug report Added message for missing solutions Minor edits to lesson plans mayhew64 2008-07-11 00:05:05 +00:00
  • fbf2a079c8 Added bug report Added message for missing solutions Minor edits to lesson plans mayhew64 2008-07-11 00:05:05 +00:00
  • 536d29e78a Minor wording changes mayhew64 2008-07-09 00:25:02 +00:00
  • 2a0d5b62a4 Minor wording changes mayhew64 2008-07-09 00:25:02 +00:00
  • d590f7deb2 Minor wording edits mayhew64 2008-07-09 00:21:32 +00:00
  • 5d75ed4cae Minor wording edits mayhew64 2008-07-09 00:21:32 +00:00
  • 71460125b6 Separated DB usage for messages in CSRF and Stored XSS Many cosmetic english changes Fixed IE rendering for Challenge mayhew64 2008-07-09 00:17:20 +00:00
  • ec95ba4089 Separated DB usage for messages in CSRF and Stored XSS Many cosmetic english changes Fixed IE rendering for Challenge mayhew64 2008-07-09 00:17:20 +00:00
  • 29f0222258 Minor 5.2 changes. mayhew64 2008-05-13 03:44:40 +00:00
  • b0ade9782e Minor 5.2 changes. mayhew64 2008-05-13 03:44:40 +00:00
  • 6598829155 Added doc directory back into main project root. Build script moves doc to webcontent. Changed how to work with WebGoat picture to have original buttons mayhew64 2008-05-12 14:22:33 +00:00
  • ad0b90bd24 Added doc directory back into main project root. Build script moves doc to webcontent. Changed how to work with WebGoat picture to have original buttons mayhew64 2008-05-12 14:22:33 +00:00
  • 40ee15bcaa Alphabetized categories mayhew64 2008-05-12 13:10:17 +00:00
  • 429fd7b0a9 Alphabetized categories mayhew64 2008-05-12 13:10:17 +00:00
  • ba26dd3a84 Reorder categories to be alphabetized Changed unvalidated input to parameter tampering mayhew64 2008-04-22 16:45:29 +00:00
  • 9071b86a59 Reorder categories to be alphabetized Changed unvalidated input to parameter tampering mayhew64 2008-04-22 16:45:29 +00:00
  • cabc905d4b 5.2 Credits mayhew64 2008-04-22 15:38:21 +00:00
  • bbcd546137 5.2 Credits mayhew64 2008-04-22 15:38:21 +00:00
  • 2dd882a9a8 Minor fixes removed many System.out.printlns delete extra solutions directory - wrong location added 5.2 credits mayhew64 2008-04-22 15:34:54 +00:00
  • 243f8ca360 Minor fixes removed many System.out.printlns delete extra solutions directory - wrong location added 5.2 credits mayhew64 2008-04-22 15:34:54 +00:00
  • 7f034fa3f9 No Changes - SVN Test mayhew64 2008-04-22 12:01:21 +00:00
  • 14fa88396e No Changes - SVN Test mayhew64 2008-04-22 12:01:21 +00:00
  • 3e1d124434 Text edited wirth.marcel 2008-04-18 08:41:02 +00:00
  • c7776ece65 Text edited wirth.marcel 2008-04-18 08:41:02 +00:00
  • decc426267 Minor changes... Tan gets now only updatet after it was correct wirth.marcel 2008-04-18 08:38:51 +00:00
  • 314c350079 Minor changes... Tan gets now only updatet after it was correct wirth.marcel 2008-04-18 08:38:51 +00:00
  • 1493631f02 Session Fixation instructions altered wirth.marcel 2008-04-15 09:43:34 +00:00
  • 2649bcb086 Session Fixation instructions altered wirth.marcel 2008-04-15 09:43:34 +00:00
  • 5a0e7a5d7a Session Fixation lesson plan and solution edited wirth.marcel 2008-04-15 09:43:01 +00:00
  • 3a1397f178 Session Fixation lesson plan and solution edited wirth.marcel 2008-04-15 09:43:01 +00:00
  • c001a67b95 Minor Bugfixes wirth.marcel 2008-04-14 13:28:25 +00:00
  • e2ca7f9a33 Minor Bugfixes wirth.marcel 2008-04-14 13:28:25 +00:00