WebGoat/webapp/lesson_plans/English/HowToWork.html

<!-- Start Instructions -->
<h1>How To Work With WebGoat</h1>
<p>
Welcome to a short introduction to WebGoat.<br> 
Here you will learn how to use WebGoat and additional tools for the lessons.<br><br>
</p>
<h2>Environment Information</h2>
<p>
WebGoat uses the Apache Tomcat server. It is configured to run on localhost although this can be
easily changed. This
configuration is for single user, additional users can be added in the tomcat-users.xml file. 
If you want to use WebGoat in a laboratory or in 
class you might need to change this setup. Please refer to the Tomcat Configuration 
in the Introduction section.</p>

<h2>The WebGoat Interface</h2>
<p>
<img src="images/introduction/interface.jpg"><br><br>
1. These are Lesson Categories in WebGoat. Click on a Category to see all Lessons in it.<br>
2. This will show technical hints to solve the lesson.<br>
3. This will show the HTTP Request Parameters<br>
4. This will show the HTTP Request Cookies<br>
5. This will show goals and objectives of the lesson.<br>
6. This will show the underlying Java source code.<br>
7. This will show the complete solution of the selected lesson.<br>
8. If you want to restart a lesson you can use this link.</p>
<h2>Solve The Lesson</h2>
<p>
Always start with the lessons plan. Then try to solve the lesson and if necessary, 
use the hints. The last hint is the solution text if applicable.  If you cannot solve the lesson using the hints, you may view the 
solution for complete details.</p>
<h2>Read And Edit Parameters</h2>
<p>
To read and edit Parameters you need a local proxy to intercept the HTTP request. 
Here we use WebScarab. More information on WebScarab can be found in the "Useful Tools" Chapter.
</p>
<h2>Read And Edit Cookies</h2>
<p>
Often it is not only necessary to change the value of the parameters but to change the value of cookies.
WebScarab has functionality for this as well.

</p>
<!-- Stop Instructions -->