rhoades at mavensecurity.com
Wed Nov 27 02:12:10 EST 2002
WebGoat v1 (WebMaven) - the user guide has a spoiler at the very end.
Did you want more details, like step by step how to exploit?
The source code (specifically wm.cgi) will show exactly what types of
input will trigger the exploits.
Hope that helps.
> -----Original Message-----
> From: owasp-webgoat-admin at lists.sourceforge.net
> [mailto:owasp-webgoat-admin at lists.sourceforge.net] On Behalf
> Of Mark Curphey
> Sent: Tuesday, November 26, 2002 9:10 PM
> To: Tim Smith
> Cc: 'owasp-webgoat at lists.sourceforge.net'
> Subject: Re: [OWASP-WEBGOAT]Cheat Sheet
> Thats a great idea Tim. I will wait for Jeff and Bruce to
> answer for now but also we can add that to the feature
> requests on the Sourceforge task manager.
> On Tue, 2002-11-26 at 15:53, Tim Smith wrote:
> > Hi guys
> > can someone help me out with a cheat sheet for WebGoat. I
> > the philosophy behind using it as a training tool but am struggling
> > with some of the basics here :-) Any help greatly
> appreciated - look
> > on this as a trial user..
> Mark Curphey <mark at curphey.com>
> This SF.net email is sponsored by: Get the new Palm Tungsten T
> handheld. Power & Color in a compact size!
> OWASP-WEBGOAT mailing list
> OWASP-WEBGOAT at lists.sourceforge.net
More information about the Owasp-webgoat