[OWASP-WEBGOAT]Cheat Sheet

Tim Smith Tim.Smith at alphawest.com.au
Wed Nov 27 02:36:57 EST 2002 

Thanks for that David but it's v2 that I'm after info on. v1 just crashes
all the time, v2 seems much more stable.

-----Original Message-----
From: David Rhoades [mailto:rhoades at mavensecurity.com]
Sent: Wednesday, 27 November 2002 3:12 PM
To: 'Tim Smith'
Cc: owasp-webgoat at lists.sourceforge.net
Subject: RE: [OWASP-WEBGOAT]Cheat Sheet


WebGoat v1 (WebMaven) - the user guide has a spoiler at the very end.
Did you want more details, like step by step how to exploit?

The source code (specifically wm.cgi) will show exactly what types of
input will trigger the exploits.

Hope that helps.

David Rhoades

> -----Original Message-----
> From: owasp-webgoat-admin at lists.sourceforge.net 
> [mailto:owasp-webgoat-admin at lists.sourceforge.net] On Behalf 
> Of Mark Curphey
> Sent: Tuesday, November 26, 2002 9:10 PM
> To: Tim Smith
> Cc: 'owasp-webgoat at lists.sourceforge.net'
> Subject: Re: [OWASP-WEBGOAT]Cheat Sheet
> 
> 
> Thats a great idea Tim. I will wait for Jeff and Bruce to 
> answer for now but also we can add that to the feature 
> requests on the Sourceforge task manager. 
> 
> 
> 
> 
> On Tue, 2002-11-26 at 15:53, Tim Smith wrote:
> > Hi guys
> > can someone help me out with a cheat sheet for WebGoat. I 
> understand 
> > the philosophy behind using it as a training tool but am struggling 
> > with some of the basics here :-) Any help greatly 
> appreciated - look 
> > on this as a trial user..
> -- 
> Mark Curphey <mark at curphey.com>
> 
> 
> 
> -------------------------------------------------------
> This SF.net email is sponsored by: Get the new Palm Tungsten T 
> handheld. Power & Color in a compact size! 
> http://ads.sourceforge.net/cgi-bin/redirect.pl?palm0002en
> _______________________________________________
> OWASP-WEBGOAT mailing list
> OWASP-WEBGOAT at lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/owasp-webgoat
> 
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: InterScan_Disclaimer.txt
Url: http://lists.owasp.org/pipermail/owasp-webgoat/attachments/20021127/d6e55f3e/attachment.txt

More information about the Owasp-webgoat mailing list