Lesson Plan Title: How to Force Browser Web Resources

Concept / Topic To Teach:

Applications will often have an adminstrative interface that allows privileged users access to functionality that normal users shouldn't see. The application server will often have an admin interface as well.

Standards Addressed:

General Goal(s): Try to access the administrative interface for WebGoat. You may also try to access the administrative interface for Tomcat. The Tomcat admin interface can be accessed via a URL (/admin) and will not count towards the completion of this lesson.