├── README.md ├── android-insecure-bank-v2 ├── .gitignore ├── .idea │ ├── .name │ ├── compiler.xml │ ├── copyright │ │ └── profiles_settings.xml │ ├── encodings.xml │ ├── findbugs-idea.xml │ ├── gradle.xml │ ├── inspectionProfiles │ │ ├── Project_Default.xml │ │ └── profiles_settings.xml │ ├── misc.xml │ ├── modules.xml │ ├── scopes │ │ └── scope_settings.xml │ └── vcs.xml ├── InsecureBankv2.iml ├── LICENSE ├── README.md ├── app │ ├── .gitignore │ ├── app.iml │ ├── build.gradle │ ├── hs_err_pid19425.log │ ├── proguard-rules.pro │ ├── replay_pid19425.log │ └── src │ │ ├── androidTest │ │ └── java │ │ │ └── com │ │ │ └── android │ │ │ └── insecurebankv2 │ │ │ └── ApplicationTest.java │ │ └── main │ │ ├── AndroidManifest.xml │ │ ├── ic_launcher-web.png │ │ ├── java │ │ └── com │ │ │ └── android │ │ │ └── insecurebankv2 │ │ │ ├── ChangePassword.java │ │ │ ├── CryptoClass.java │ │ │ ├── DoLogin.java │ │ │ ├── DoTransfer.java │ │ │ ├── FilePrefActivity.java │ │ │ ├── LoginActivity.java │ │ │ ├── MyBroadCastReceiver.java │ │ │ ├── MyWebViewClient.java │ │ │ ├── PostLogin.java │ │ │ ├── TrackUserContentProvider.java │ │ │ ├── ViewStatement.java │ │ │ └── WrongLogin.java │ │ └── res │ │ ├── drawable │ │ ├── roundbutton.xml │ │ └── si.png │ │ ├── layout │ │ ├── activity_change_password.xml │ │ ├── activity_do_login.xml │ │ ├── activity_do_transfer.xml │ │ ├── activity_file_pref.xml │ │ ├── activity_log_main.xml │ │ ├── activity_post_login.xml │ │ ├── activity_view_statement.xml │ │ └── activity_wrong_login.xml │ │ ├── menu │ │ ├── do_login.xml │ │ ├── file_pref.xml │ │ └── main.xml │ │ ├── mipmap-hdpi │ │ └── ic_launcher.png │ │ ├── mipmap-mdpi │ │ └── ic_launcher.png │ │ ├── mipmap-xhdpi │ │ └── ic_launcher.png │ │ ├── mipmap-xxhdpi │ │ └── ic_launcher.png │ │ ├── mipmap-xxxhdpi │ │ └── ic_launcher.png │ │ ├── roundbutton.xml │ │ ├── roundedrectangle.xml │ │ ├── values-w820dp │ │ └── dimens.xml │ │ └── values │ │ ├── dimens.xml │ │ ├── strings.xml │ │ └── styles.xml ├── build.gradle ├── fsb-exclude.xml ├── fsb-include.xml ├── gradle.properties ├── gradle │ └── wrapper │ │ ├── gradle-wrapper.jar │ │ └── gradle-wrapper.properties ├── gradlew ├── gradlew.bat ├── hs_err_pid22123.log ├── replay_pid22123.log └── settings.gradle ├── groovy-simple ├── .gitignore ├── README.md ├── build.gradle ├── fsb-exclude.xml ├── fsb-include.xml ├── gradle │ └── config.groovy └── src │ └── main │ └── groovy │ └── Hello.groovy ├── java-web-jsp ├── .gitignore ├── pom.xml ├── spotbugs-security-exclude.xml ├── spotbugs-security-include.xml └── src │ └── main │ ├── java │ ├── com │ │ └── acme │ │ │ ├── Counter.java │ │ │ ├── Date2Tag.java │ │ │ ├── DateServlet.java │ │ │ ├── DateTag.java │ │ │ └── TagListener.java │ └── org │ │ └── eclipse │ │ └── jetty │ │ └── demo │ │ ├── LoggingUtil.java │ │ ├── Main.java │ │ └── SystemOutHandler.java │ ├── resources │ ├── jetty-logging.properties │ └── logging.properties │ └── webapp │ ├── WEB-INF │ ├── acme-taglib.tld │ ├── acme-taglib2.tld │ ├── applicationContext.xml │ ├── secret.jsp │ ├── spring.tld │ ├── tags │ │ └── panel.tag │ ├── web.xml │ └── weblogic.xml │ ├── include │ ├── ${param.secret_param}.jsp │ ├── jsp_include_1.jsp │ ├── jsp_include_2_safe.jsp │ └── jsp_include_3.jsp │ ├── index.jsp │ ├── jstl │ ├── jstl_escape_1.jsp │ ├── jstl_escape_2.jsp │ └── jstl_escape_3.jsp │ ├── random.jsp │ ├── spring │ ├── spring_eval_1.jsp │ ├── spring_eval_2.jsp │ ├── spring_eval_3.jsp │ └── spring_eval_4_safe.jsp │ ├── test │ ├── bean1.jsp │ ├── bean2.jsp │ ├── dump.jsp │ ├── expr.jsp │ ├── foo │ │ └── foo.jsp │ ├── jstl.jsp │ ├── tag.jsp │ ├── tag2.jsp │ └── tagfile.jsp │ ├── various.jsp │ ├── xml │ ├── xml1.jsp │ └── xml2.jsp │ ├── xsl │ ├── xsl1.jsp │ ├── xsl2.jsp │ ├── xsl3.jsp │ └── xsl4.jsp │ └── xss │ ├── xss0.jsp │ ├── xss1.jsp │ ├── xss2.jsp │ ├── xss3.jsp │ ├── xss4.jsp │ └── xss5.jsp ├── juliet-test-suite-mini ├── .gitignore ├── build.gradle ├── findbugs-security-exclude.xml ├── findbugs-security-include.xml ├── pom.xml └── src │ ├── testcases │ ├── CWE89_SQL_Injection │ │ └── s02 │ │ │ ├── CWE89_SQL_Injection__Environment_execute_01.java │ │ │ ├── CWE89_SQL_Injection__getParameter_Servlet_executeQuery_51a.java │ │ │ └── CWE89_SQL_Injection__getParameter_Servlet_executeQuery_51b.java │ └── CWE90_LDAP_Injection │ │ ├── CWE90_LDAP_Injection__getCookies_Servlet_01.java │ │ └── CWE90_LDAP_Injection__getParameter_Servlet_01.java │ └── testcasesupport │ ├── AbstractTestCase.java │ ├── AbstractTestCaseBadOnly.java │ ├── AbstractTestCaseBase.java │ ├── AbstractTestCaseClassIssue.java │ ├── AbstractTestCaseClassIssueBad.java │ ├── AbstractTestCaseClassIssueGood.java │ ├── AbstractTestCaseServlet.java │ ├── AbstractTestCaseServletBadOnly.java │ ├── AbstractTestCaseServletBase.java │ └── IO.java ├── scala-web-play ├── .gitignore ├── LICENSE ├── README.md ├── activator ├── activator-launch-1.3.7.jar ├── activator.bat ├── app │ ├── assets │ │ ├── javascripts │ │ │ └── index.coffee │ │ └── stylesheets │ │ │ └── main.less │ ├── controllers │ │ ├── CommandController.scala │ │ ├── PathTraversalController.scala │ │ ├── PersonController.scala │ │ ├── RandomValueController.scala │ │ ├── RedirectController.scala │ │ ├── SSRFController.scala │ │ ├── SensitiveDataExposureController.scala │ │ ├── SqlController.scala │ │ └── XssController.scala │ ├── dal │ │ └── PersonRepository.scala │ ├── models │ │ └── Person.scala │ └── views │ │ ├── index.scala.html │ │ ├── main.scala.html │ │ ├── xssHtml.scala.html │ │ └── xssString.scala.html ├── build.sbt ├── conf │ ├── application.conf │ ├── evolutions │ │ └── default │ │ │ └── 1.sql │ ├── logback.xml │ ├── messages │ └── routes ├── project │ ├── build.properties │ └── plugins.sbt ├── public │ ├── images │ │ └── favicon.png │ └── javascripts │ │ └── jquery-1.11.3.min.js └── test │ ├── ApplicationSpec.scala │ └── IntegrationSpec.scala └── sonar-integration-test ├── WebGoat-Lessons ├── .gitignore ├── README.md ├── access-control-matrix │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── AccessControlMatrix.java │ │ └── resources │ │ └── plugin │ │ └── AccessControlMatrix │ │ ├── images │ │ └── aspect.jpg │ │ ├── lessonPlans │ │ ├── en │ │ │ └── AccessControlMatrix.html │ │ └── ru │ │ │ └── AccessControlMatrix.html │ │ └── lessonSolutions │ │ └── en │ │ ├── AccessControlMatrix.html │ │ └── AccessControlMatrix_files │ │ ├── Thumbs.db │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image002.jpg │ │ ├── image003.png │ │ ├── image004.jpg │ │ └── themedata.thmx ├── back-doors │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── lessons │ │ │ └── BackDoors.java │ │ └── resources │ │ └── plugin │ │ └── BackDoors │ │ ├── lessonPlans │ │ ├── en │ │ │ └── BackDoors.html │ │ └── ru │ │ │ └── BackDoors.html │ │ └── lessonSolutions │ │ └── en │ │ ├── BackDoors.html │ │ └── BackDoors_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image003.png │ │ ├── image005.png │ │ ├── image007.png │ │ ├── image009.png │ │ ├── image011.png │ │ ├── image013.jpg │ │ ├── image014.jpg │ │ ├── image015.jpg │ │ ├── image016.jpg │ │ ├── image017.jpg │ │ ├── image018.jpg │ │ └── themedata.thmx ├── basic-authentication │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── BasicAuthentication.java │ │ └── resources │ │ └── plugin │ │ ├── BasicAuthentication │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── BasicAuthentication.html │ │ │ ├── en │ │ │ │ └── BasicAuthentication.html │ │ │ └── ru │ │ │ │ └── BasicAuthentication.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── BasicAuthentication.html │ │ │ └── BasicAuthentication_files │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image003.png │ │ │ ├── image005.png │ │ │ ├── image007.png │ │ │ ├── image009.png │ │ │ ├── image011.png │ │ │ ├── image013.png │ │ │ ├── image015.png │ │ │ ├── image017.png │ │ │ ├── image019.png │ │ │ ├── image021.png │ │ │ ├── image023.png │ │ │ ├── image025.jpg │ │ │ ├── image026.jpg │ │ │ ├── image027.jpg │ │ │ ├── image028.jpg │ │ │ ├── image029.jpg │ │ │ ├── image030.jpg │ │ │ ├── image031.jpg │ │ │ ├── image032.jpg │ │ │ ├── image033.jpg │ │ │ ├── image034.jpg │ │ │ ├── image035.jpg │ │ │ ├── image036.jpg │ │ │ └── themedata.thmx │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ ├── WebGoatLabels_fr.properties │ │ └── WebGoatLabels_ru.properties ├── blind-numeric-sql-injection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── BlindNumericSqlInjection.java │ │ └── resources │ │ └── plugin │ │ └── BlindNumericSqlInjection │ │ └── lessonSolutions │ │ └── en │ │ └── BlindNumericSqlInjection.html ├── blind-script │ ├── pom.xml │ └── src │ │ └── main │ │ └── java │ │ └── org │ │ └── owasp │ │ └── webgoat │ │ └── plugin │ │ └── BlindScript.java ├── blind-string-sql-injection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── BlindStringSqlInjection.java │ │ └── resources │ │ └── plugin │ │ └── BlindStringSqlInjection │ │ ├── lessonPlans │ │ └── en │ │ │ └── BlindStringSqlInjection.html │ │ └── lessonSolutions │ │ └── en │ │ └── BlindStringSqlInjection.html ├── bypass-html-field-restrictions │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── BypassHtmlFieldRestrictions.java │ │ └── resources │ │ └── plugin │ │ ├── BypassHtmlFieldRestrictions │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── BypassHtmlFieldRestrictions.html │ │ │ └── BypassHtmlFieldRestrictions_files │ │ │ ├── image001.jpg │ │ │ └── image002.jpg │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ ├── WebGoatLabels_fr.properties │ │ └── WebGoatLabels_ru.properties ├── challenge │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── ChallengeScreen.java │ │ └── resources │ │ └── plugin │ │ └── challenge │ │ └── lessonPlans │ │ ├── de │ │ └── ChallengeScreen.html │ │ ├── en │ │ └── ChallengeScreen.html │ │ └── ru │ │ └── ChallengeScreen.html ├── client-side-filtering │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── ClientSideFiltering.java │ │ └── resources │ │ └── plugin │ │ ├── ClientSideFiltering │ │ ├── images │ │ │ ├── lesson1_header.jpg │ │ │ └── lesson1_workspace.jpg │ │ ├── js │ │ │ ├── clientSideFiltering.js │ │ │ └── formate.css │ │ ├── jsp │ │ │ ├── clientSideFiltering-stage1.css │ │ │ ├── clientSideFiltering.css │ │ │ ├── clientSideFiltering.jsp │ │ │ └── employees.xml │ │ ├── lessonPlans │ │ │ ├── en │ │ │ │ └── ClientSideFiltering.html │ │ │ └── ru │ │ │ │ └── ClientSideFiltering.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── ClientSideFiltering.html │ │ │ └── ClientSideFiltering_files │ │ │ └── clientside_firebug.jpg │ │ └── i18n │ │ └── WebGoatLabels.properties ├── client-side-validation │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── ClientSideValidation.java │ │ └── resources │ │ └── plugin │ │ └── ClientSideValidation │ │ ├── js │ │ └── clientSideValidation.js │ │ ├── jsp │ │ └── clientSideValidation.jsp │ │ ├── lessonPlans │ │ ├── en │ │ │ └── ClientSideValidation.html │ │ └── ru │ │ │ └── ClientSideValidation.html │ │ └── lessonSolutions │ │ └── en │ │ ├── ClientSideValidation.html │ │ └── ClientSideValidation_files │ │ └── ClientSideValidation_stage1.png ├── command-injection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── CommandInjection.java │ │ └── resources │ │ └── plugin │ │ ├── CommandInjection │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── CommandInjection.html │ │ │ ├── en │ │ │ │ └── CommandInjection.html │ │ │ └── ru │ │ │ │ └── CommandInjection.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── CommandInjection.html │ │ │ └── CommandInjection_files │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image003.png │ │ │ ├── image005.png │ │ │ ├── image007.jpg │ │ │ ├── image008.jpg │ │ │ ├── image009.jpg │ │ │ └── themedata.thmx │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ ├── WebGoatLabels_fr.properties │ │ └── WebGoatLabels_ru.properties ├── common │ ├── pom.xml │ └── src │ │ └── main │ │ └── java │ │ └── org │ │ └── owasp │ │ └── webgoat │ │ └── plugin │ │ ├── Encoding.java │ │ ├── Exec.java │ │ ├── ExecResults.java │ │ ├── LessonUtil.java │ │ └── ThreadWatcher.java ├── concurrency-cart │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── ConcurrencyCart.java │ │ └── resources │ │ └── plugin │ │ └── ConcurrencyCart │ │ ├── lessonPlans │ │ ├── en │ │ │ └── ConcurrencyCart.html │ │ └── ru │ │ │ └── ConcurrencyCart.html │ │ └── lessonSolutions │ │ └── en │ │ ├── ConcurrencyCart.html │ │ └── ConcurrencyCart_files │ │ ├── image001.jpg │ │ ├── image002.jpg │ │ └── image003.jpg ├── cross-site-scripting │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ ├── instructor │ │ │ ├── FindProfile_i.java │ │ │ ├── UpdateProfile_i.java │ │ │ └── ViewProfile_i.java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── crosssitescripting │ │ │ ├── CrossSiteScripting.java │ │ │ ├── EditProfileCrossSiteScripting.java │ │ │ ├── FindProfileCrossSiteScripting.java │ │ │ ├── UpdateProfileCrossSiteScripting.java │ │ │ └── ViewProfileCrossSiteScripting.java │ │ └── resources │ │ └── plugin │ │ └── CrossSiteScripting │ │ ├── images │ │ ├── lesson1_SearchWindow.jpg │ │ ├── lesson1_header.jpg │ │ ├── lesson1_loginWindow.jpg │ │ ├── lesson1_menu.jpg │ │ └── lesson1_workspace.jpg │ │ ├── jsp │ │ ├── CrossSiteScripting.css │ │ ├── CrossSiteScripting.jsp │ │ ├── EditProfile.jsp │ │ ├── ListStaff.jsp │ │ ├── Login.jsp │ │ ├── SearchStaff.jsp │ │ ├── ViewProfile.jsp │ │ └── error.jsp │ │ └── lessonPlans │ │ ├── en │ │ └── CrossSiteScripting.html │ │ └── ru │ │ └── CrossSiteScripting.html ├── csrf-prompt-by-pass │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── CsrfPromptByPass.java │ │ └── resources │ │ └── plugin │ │ └── CsrfPromptByPass │ │ ├── lessonPlans │ │ ├── en │ │ │ └── CsrfPromptByPass.html │ │ └── ru │ │ │ └── CsrfPromptByPass.html │ │ └── lessonSolutions │ │ └── en │ │ ├── CsrfPromptByPass.html │ │ └── CsrfPromptByPass_files │ │ ├── iframePromptHack.png │ │ ├── iframePromptHacked.png │ │ ├── imgPromptHack.png │ │ ├── transferFundsComplete.png │ │ ├── transferFundsHack.png │ │ ├── transferFundsPage.png │ │ └── transferFundsPrompt.png ├── csrf-token-by-pass │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── CsrfTokenByPass.java │ │ └── resources │ │ └── plugin │ │ └── CsrfTokenByPass │ │ ├── lessonPlans │ │ ├── en │ │ │ └── CsrfTokenByPass.html │ │ └── ru │ │ │ └── CsrfTokenByPass.html │ │ └── lessonSolutions │ │ └── en │ │ ├── CsrfTokenByPass.html │ │ └── CsrfTokenByPass_files │ │ ├── tokenHack.png │ │ ├── tokenHacked.png │ │ └── tokenPage.png ├── csrf │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── CSRF.java │ │ └── resources │ │ └── plugin │ │ └── CSRF │ │ ├── lessonPlans │ │ ├── en │ │ │ └── CSRF.html │ │ └── ru │ │ │ └── CSRF.html │ │ └── lessonSolutions │ │ └── en │ │ ├── CSRF.html │ │ └── CSRF_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image003.png │ │ ├── image005.png │ │ ├── image007.png │ │ ├── image009.png │ │ ├── image011.jpg │ │ ├── image012.jpg │ │ ├── image013.jpg │ │ ├── image014.jpg │ │ ├── image015.jpg │ │ └── themedata.thmx ├── dangerous-eval-injection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── DangerousEval.java │ │ └── resources │ │ └── plugin │ │ └── DangerousEval │ │ ├── js │ │ └── eval.js │ │ ├── jsp │ │ └── eval.jsp │ │ ├── lessonPlans │ │ ├── en │ │ │ └── DangerousEval.html │ │ └── ru │ │ │ └── DangerousEval.html │ │ └── lessonSolutions │ │ └── en │ │ └── DangerousEval.html ├── db-cross-site-scripting │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ ├── instructor │ │ │ ├── RegexMatch.cs │ │ │ └── UpdateProfile_i.java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── db_cross_site │ │ │ ├── DBCrossSiteScripting.java │ │ │ └── UpdateProfileDBCrossSiteScripting.java │ │ └── resources │ │ └── plugin │ │ └── DBCrossSiteScripting │ │ ├── images │ │ ├── lesson1_SearchWindow.jpg │ │ ├── lesson1_header.jpg │ │ ├── lesson1_loginWindow.jpg │ │ ├── lesson1_menu.jpg │ │ └── lesson1_workspace.jpg │ │ ├── jsp │ │ ├── DBCrossSiteScripting.css │ │ ├── DBCrossSiteScripting.jsp │ │ ├── EditProfile.jsp │ │ ├── ListStaff.jsp │ │ ├── Login.jsp │ │ ├── SearchStaff.jsp │ │ ├── ViewProfile.jsp │ │ └── error.jsp │ │ └── lessonPlans │ │ ├── en │ │ └── DBCrossSiteScripting.html │ │ └── ru │ │ └── DBCrossSiteScripting.html ├── db-sql-injection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ ├── instructor │ │ │ └── Login_i.java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── dbsqlinjection │ │ │ ├── DBSQLInjection.java │ │ │ └── LoginDBSQLInjection.java │ │ └── resources │ │ └── plugin │ │ └── DBSQLInjection │ │ ├── images │ │ ├── lesson1_SearchWindow.jpg │ │ ├── lesson1_header.jpg │ │ ├── lesson1_loginWindow.jpg │ │ ├── lesson1_menu.jpg │ │ └── lesson1_workspace.jpg │ │ ├── jsp │ │ ├── DBSQLInjection.css │ │ ├── DBSQLInjection.jsp │ │ ├── EditProfile.jsp │ │ ├── ListStaff.jsp │ │ ├── Login.jsp │ │ ├── SearchStaff.jsp │ │ ├── ViewProfile.jsp │ │ └── error.jsp │ │ └── lessonPlans │ │ ├── en │ │ └── DBSQLInjection.html │ │ └── ru │ │ └── DBSQLInjection.html ├── dist │ ├── pom.xml │ └── zip.xml ├── dom-injection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── DOMInjection.java │ │ └── resources │ │ └── plugin │ │ └── DOMInjection │ │ ├── js │ │ └── dom_injection.js │ │ ├── lessonPlans │ │ ├── en │ │ │ └── DOMInjection.html │ │ └── ru │ │ │ └── DOMInjection.html │ │ └── lessonSolutions │ │ └── en │ │ ├── DOMInjection.html │ │ └── DOMInjection_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image002.jpg │ │ ├── image003.png │ │ ├── image004.jpg │ │ ├── image005.png │ │ ├── image006.jpg │ │ ├── image007.png │ │ ├── image008.jpg │ │ ├── image008fix.jpg │ │ ├── image009.png │ │ ├── image010.jpg │ │ ├── image011.png │ │ ├── image012.jpg │ │ └── themedata.thmx ├── dom-xss │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── DOMXSS.java │ │ └── resources │ │ └── plugin │ │ └── DOMXSS │ │ ├── images │ │ └── owasp.jpg │ │ ├── js │ │ ├── DOMXSS.js │ │ └── escape.js │ │ ├── lessonPlans │ │ ├── en │ │ │ └── DOMXSS.html │ │ └── ru │ │ │ └── DOMXSS.html │ │ └── lessonSolutions │ │ └── en │ │ ├── DOMXSS.html │ │ └── DOMXSS_files │ │ ├── Thumbs.db │ │ ├── image001.jpg │ │ ├── image002.jpg │ │ ├── image003.jpg │ │ └── image004.jpg ├── dos-login │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── DOS_Login.java │ │ └── resources │ │ └── plugin │ │ └── DOS_Login │ │ ├── lessonPlans │ │ ├── en │ │ │ └── DOS_Login.html │ │ └── ru │ │ │ └── DOS_Login.html │ │ └── lessonSolutions │ │ └── en │ │ ├── DOS_Login.html │ │ └── DOS_Login_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image002.jpg │ │ ├── image003.png │ │ ├── image004.jpg │ │ └── themedata.thmx ├── encoding │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── EncodingLesson.java │ │ └── resources │ │ └── plugin │ │ └── Encoding │ │ ├── lessonPlans │ │ ├── en │ │ │ └── Encoding.html │ │ └── ru │ │ │ └── Encoding.html │ │ └── lessonSolutions │ │ └── en │ │ └── Encoding.html ├── fail-open-authentication │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── FailOpenAuthentication.java │ │ └── resources │ │ └── plugin │ │ └── FailOpenAuthentication │ │ ├── lessonPlans │ │ ├── en │ │ │ └── FailOpenAuthentication.html │ │ └── ru │ │ │ └── FailOpenAuthentication.html │ │ └── lessonSolutions │ │ └── en │ │ ├── FailOpenAuthentication.html │ │ └── FailOpenAuthentication_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image003.png │ │ ├── image005.png │ │ ├── image007.png │ │ ├── image009.jpg │ │ ├── image010.jpg │ │ ├── image011.jpg │ │ ├── image012.jpg │ │ └── themedata.thmx ├── findbugs-security-exclude.xml ├── findbugs-security-include.xml ├── forced-browsing │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ ├── Config.java │ │ │ └── ForcedBrowsing.java │ │ └── resources │ │ └── plugin │ │ └── ForcedBrowsing │ │ ├── lessonPlans │ │ ├── en │ │ │ └── ForcedBrowsing.html │ │ └── ru │ │ │ └── ForcedBrowsing.html │ │ └── lessonSolutions │ │ └── en │ │ ├── ForcedBrowsing.html │ │ └── ForcedBrowsing_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image002.jpg │ │ ├── image003.png │ │ ├── image004.jpg │ │ ├── image005.png │ │ ├── image006.jpg │ │ ├── image007.png │ │ ├── image008.jpg │ │ └── themedata.thmx ├── forgot-password │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── ForgotPassword.java │ │ └── resources │ │ └── plugin │ │ └── ForgotPassword │ │ ├── lessonPlans │ │ ├── en │ │ │ └── ForgotPassword.html │ │ └── ru │ │ │ └── ForgotPassword.html │ │ └── lessonSolutions │ │ └── en │ │ ├── ForgotPassword.html │ │ └── ForgotPassword_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image003.png │ │ ├── image005.png │ │ ├── image007.png │ │ ├── image009.png │ │ ├── image011.png │ │ ├── image013.png │ │ ├── image015.jpg │ │ ├── image016.jpg │ │ ├── image017.jpg │ │ ├── image018.jpg │ │ ├── image019.jpg │ │ ├── image020.jpg │ │ ├── image021.jpg │ │ └── themedata.thmx ├── goat-hills-financial │ ├── pom.xml │ └── src │ │ └── main │ │ └── java │ │ └── org │ │ └── owasp │ │ └── webgoat │ │ └── plugin │ │ └── GoatHillsFinancial │ │ ├── DefaultLessonAction.java │ │ ├── DeleteProfile.java │ │ ├── EditProfile.java │ │ ├── Employee.java │ │ ├── EmployeeStub.java │ │ ├── FindProfile.java │ │ ├── GoatHillsFinancial.java │ │ ├── LessonAction.java │ │ ├── ListStaff.java │ │ ├── Login.java │ │ ├── Logout.java │ │ ├── SearchStaff.java │ │ ├── UpdateProfile.java │ │ └── ViewProfile.java ├── hidden-field-tampering │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── HiddenFieldTampering.java │ │ └── resources │ │ └── plugin │ │ ├── HiddenFieldTampering │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── HiddenFieldTampering.html │ │ │ ├── en │ │ │ │ └── HiddenFieldTampering.html │ │ │ └── ru │ │ │ │ └── HiddenFieldTampering.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── HiddenFieldTampering.html │ │ │ └── HiddenFieldTampering_files │ │ │ ├── Thumbs.db │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image003.png │ │ │ ├── image005.png │ │ │ ├── image007.png │ │ │ ├── image009.png │ │ │ ├── image011.jpg │ │ │ ├── image012.jpg │ │ │ ├── image013.jpg │ │ │ ├── image014.jpg │ │ │ ├── image015.jpg │ │ │ └── themedata.thmx │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ ├── WebGoatLabels_fr.properties │ │ └── WebGoatLabels_ru.properties ├── how-to-work │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── HowToWork.java │ │ └── resources │ │ └── plugin │ │ └── HowToWork │ │ ├── lessonPlans │ │ ├── de │ │ │ └── HowToWork.html │ │ ├── en │ │ │ ├── HowToWork.html │ │ │ └── HowToWork_files │ │ │ │ ├── HowToUse_2.jpg │ │ │ │ ├── HowToUse_3.jpg │ │ │ │ ├── UsefulTools-ZAP.png │ │ │ │ ├── UsefulTools-ZAP_1.png │ │ │ │ ├── interface.png │ │ │ │ └── wireshark.png │ │ └── ru │ │ │ └── HowToWork.html │ │ └── lessonSolutions │ │ └── en │ │ ├── HowToWork.html │ │ └── HowToWork_files │ │ ├── HowToUse_2.jpg │ │ ├── HowToUse_3.jpg │ │ ├── UsefulTools-ZAP.png │ │ ├── UsefulTools-ZAP_1.png │ │ ├── interface.png │ │ └── wireshark.png ├── html-clues │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── HtmlClues.java │ │ └── resources │ │ └── plugin │ │ ├── HtmlClues │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── HtmlClues.html │ │ │ ├── en │ │ │ │ └── HtmlClues.html │ │ │ └── ru │ │ │ │ └── HtmlClues.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── HtmlClues.html │ │ │ └── HtmlClues_files │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image003.png │ │ │ ├── image005.png │ │ │ ├── image007.png │ │ │ ├── image009.png │ │ │ ├── image011.jpg │ │ │ ├── image012.jpg │ │ │ ├── image013.jpg │ │ │ ├── image014.jpg │ │ │ ├── image015.jpg │ │ │ └── themedata.thmx │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ └── WebGoatLabels_ru.properties ├── http-basics │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── HttpBasics.java │ │ └── resources │ │ └── plugin │ │ ├── HttpBasics │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── HttpBasics.html │ │ │ ├── en │ │ │ │ └── HttpBasics.html │ │ │ └── ru │ │ │ │ └── HttpBasics.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── HttpBasics.html │ │ │ └── HttpBasics_files │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image003.png │ │ │ ├── image005.jpg │ │ │ ├── image006.jpg │ │ │ ├── themedata.thmx │ │ │ ├── webscarab1.jpg │ │ │ └── webscarab2.jpg │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ ├── WebGoatLabels_fr.properties │ │ └── WebGoatLabels_ru.properties ├── http-only │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── HttpOnly.java │ │ └── resources │ │ └── plugin │ │ └── HttpOnly │ │ ├── lessonPlans │ │ ├── en │ │ │ └── HttpOnly.html │ │ └── ru │ │ │ └── HttpOnly.html │ │ └── lessonSolutions │ │ └── en │ │ ├── HttpOnly.html │ │ └── HttpOnly_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image003.png │ │ ├── image005.png │ │ ├── image007.png │ │ ├── image009.png │ │ ├── image011.png │ │ ├── image013.png │ │ ├── image015.jpg │ │ ├── image016.jpg │ │ ├── image017.jpg │ │ ├── image018.jpg │ │ ├── image019.jpg │ │ ├── image020.jpg │ │ ├── image021.jpg │ │ └── themedata.thmx ├── insecure-login │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── InsecureLogin.java │ │ └── resources │ │ └── plugin │ │ └── InsecureLogin │ │ ├── images │ │ ├── lesson1_header.jpg │ │ └── lesson1_workspace.jpg │ │ ├── jsp │ │ └── insecureLogin.css │ │ ├── lessonPlans │ │ ├── en │ │ │ └── InsecureLogin.html │ │ └── ru │ │ │ └── InsecureLogin.html │ │ └── lessonSolutions │ │ └── en │ │ ├── InsecureLogin.html │ │ └── InsecureLogin_files │ │ └── wireshark1.png ├── java-script-validation │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── JavaScriptValidation.java │ │ └── resources │ │ └── plugin │ │ ├── JavaScriptValidation │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── JavaScriptValidation.html │ │ │ ├── en │ │ │ │ └── JavaScriptValidation.html │ │ │ └── ru │ │ │ │ └── JavaScriptValidation.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── JavaScriptValidation.html │ │ │ └── JavaScriptValidation_files │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image002.jpg │ │ │ ├── image003.png │ │ │ ├── image004.jpg │ │ │ ├── image005.png │ │ │ ├── image006.jpg │ │ │ ├── image007.png │ │ │ ├── image008.jpg │ │ │ ├── image009.gif │ │ │ ├── image010.png │ │ │ ├── image011.jpg │ │ │ ├── image012.png │ │ │ ├── image013.jpg │ │ │ ├── image014.png │ │ │ ├── image015.jpg │ │ │ ├── image016.png │ │ │ ├── image017.jpg │ │ │ ├── image018.png │ │ │ ├── image019.jpg │ │ │ ├── image020.png │ │ │ ├── image021.jpg │ │ │ ├── image022.png │ │ │ ├── image023.jpg │ │ │ └── themedata.thmx │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ ├── WebGoatLabels_fr.properties │ │ └── WebGoatLabels_ru.properties ├── json-injection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── JSONInjection.java │ │ └── resources │ │ └── plugin │ │ └── JSONInjection │ │ ├── js │ │ └── jsonInjection.js │ │ ├── lessonPlans │ │ ├── en │ │ │ └── JSONInjection.html │ │ └── ru │ │ │ └── JSONInjection.html │ │ └── lessonSolutions │ │ └── en │ │ ├── JSONInjection.html │ │ └── JSONInjection_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image003.png │ │ ├── image005.png │ │ ├── image007.png │ │ ├── image009.png │ │ ├── image011.png │ │ ├── image013.jpg │ │ ├── image014.jpg │ │ ├── image015.jpg │ │ ├── image016.jpg │ │ ├── image017.jpg │ │ ├── image018.jpg │ │ └── themedata.thmx ├── lesson-converter │ ├── pom.xml │ ├── readme.md │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── converter │ │ │ ├── ConverterException.java │ │ │ ├── ConverterMain.java │ │ │ ├── HtmlLessonSolutionFinder.java │ │ │ ├── HtmlLessonSourceFinder.java │ │ │ ├── JavaSource.java │ │ │ ├── JavaSourceLessonFinder.java │ │ │ ├── LessonConverterFileUtils.java │ │ │ ├── LessonCreator.java │ │ │ ├── Logger.java │ │ │ ├── PomCreator.java │ │ │ └── PropertyCreator.java │ │ ├── resources │ │ ├── pom1.example │ │ └── pom2.example │ │ └── test │ │ └── java │ │ └── org │ │ └── owasp │ │ └── webgoat │ │ └── converter │ │ └── JavaSourceTest.java ├── lesson-template-legacy │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── NewLegacyLesson.java │ │ └── resources │ │ └── plugin │ │ ├── NewLegacyLesson │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── NewLegacyLesson.html │ │ │ ├── en │ │ │ │ └── NewLegacyLesson.html │ │ │ └── ru │ │ │ │ └── NewLegacyLesson.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── NewLegacyLesson.html │ │ │ └── NewLegacyLesson_files │ │ │ ├── filelist.xml │ │ │ ├── image002.png │ │ │ ├── image004.png │ │ │ └── themedata.xml │ │ └── i18n │ │ └── WebGoatLabels.properties ├── log-spoofing │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── LogSpoofing.java │ │ └── resources │ │ └── plugin │ │ ├── LogSpoofing │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── LogSpoofing.html │ │ │ ├── en │ │ │ │ └── LogSpoofing.html │ │ │ └── ru │ │ │ │ └── LogSpoofing.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── LogSpoofing.html │ │ │ └── LogSpoofing_files │ │ │ ├── Thumbs.db │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image003.png │ │ │ ├── image005.png │ │ │ ├── image007.jpg │ │ │ ├── image008.jpg │ │ │ ├── image009.jpg │ │ │ └── themedata.thmx │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ ├── WebGoatLabels_fr.properties │ │ └── WebGoatLabels_ru.properties ├── malicious-file-execution │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── MaliciousFileExecution.java │ │ └── resources │ │ └── plugin │ │ └── MaliciousFileExecution │ │ └── lessonSolutions │ │ └── en │ │ ├── MaliciousFileExecution.html │ │ └── MaliciousFileExecution_files │ │ ├── image001.jpg │ │ └── image002.jpg ├── multi-level-login1 │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── MultiLevelLogin1.java │ │ └── resources │ │ └── plugin │ │ └── MultiLevelLogin1 │ │ ├── images │ │ ├── lesson1_header.jpg │ │ └── lesson1_workspace.jpg │ │ ├── jsp │ │ └── MultiLevelLogin1.css │ │ ├── lessonPlans │ │ ├── en │ │ │ └── MultiLevelLogin1.html │ │ └── ru │ │ │ └── MultiLevelLogin1.html │ │ └── lessonSolutions │ │ └── en │ │ ├── MultiLevelLogin1.html │ │ └── MultiLevelLogin1_files │ │ ├── login.png │ │ ├── success.png │ │ ├── tan.png │ │ └── webscarab.png ├── multi-level-login2 │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── MultiLevelLogin2.java │ │ └── resources │ │ └── plugin │ │ └── MultiLevelLogin2 │ │ ├── lessonPlans │ │ ├── en │ │ │ └── MultiLevelLogin2.html │ │ └── ru │ │ │ └── MultiLevelLogin2.html │ │ └── lessonSolutions │ │ └── en │ │ ├── MultiLevelLogin2.html │ │ └── MultiLevelLogin2_files │ │ └── success.png ├── off-by-one │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── OffByOne.java │ │ └── resources │ │ └── plugin │ │ └── OffByOne │ │ ├── lessonPlans │ │ └── en │ │ │ └── OffByOne.html │ │ └── lessonSolutions │ │ └── en │ │ └── OffByOne.html ├── password-strength │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── PasswordStrength.java │ │ └── resources │ │ └── plugin │ │ └── PasswordStrength │ │ ├── lessonPlans │ │ ├── en │ │ │ └── PasswordStrength.html │ │ └── ru │ │ │ └── PasswordStrength.html │ │ └── lessonSolutions │ │ └── en │ │ ├── PasswordStrength.html │ │ └── PasswordStrength_files │ │ ├── image001.jpg │ │ └── image002.jpg ├── path-based-access-control │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── PathBasedAccessControl.java │ │ └── resources │ │ └── plugin │ │ ├── PathBasedAccessControl │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── PathBasedAccessControl.html │ │ │ ├── en │ │ │ │ └── PathBasedAccessControl.html │ │ │ └── ru │ │ │ │ └── PathBasedAccessControl.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── PathBasedAccessControl.html │ │ │ └── PathBasedAccessControl_files │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image002.jpg │ │ │ ├── image003.png │ │ │ ├── image004.jpg │ │ │ ├── image005.png │ │ │ ├── image006.jpg │ │ │ └── themedata.thmx │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ ├── WebGoatLabels_fr.properties │ │ └── WebGoatLabels_ru.properties ├── phishing │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── Phishing.java │ │ └── resources │ │ └── plugin │ │ ├── Phishing │ │ ├── lessonPlans │ │ │ ├── en │ │ │ │ └── Phishing.html │ │ │ └── ru │ │ │ │ └── Phishing.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── Phishing.html │ │ │ └── Phishing_files │ │ │ └── image001.jpg │ │ └── i18n │ │ └── WebGoatLabels.properties ├── pom.xml ├── reflected-xss │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── ReflectedXSS.java │ │ └── resources │ │ └── plugin │ │ ├── ReflectedXSS │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── ReflectedXSS.html │ │ │ ├── en │ │ │ │ └── ReflectedXSS.html │ │ │ └── ru │ │ │ │ └── ReflectedXSS.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── ReflectedXSS.html │ │ │ └── ReflectedXSS_files │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image003.png │ │ │ ├── image005.jpg │ │ │ ├── image006.jpg │ │ │ └── themedata.thmx │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ ├── WebGoatLabels_fr.properties │ │ └── WebGoatLabels_ru.properties ├── remote-admin-flaw │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── RemoteAdminFlaw.java │ │ └── resources │ │ └── plugin │ │ ├── RemoteAdminFlaw │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── RemoteAdminFlaw.html │ │ │ ├── en │ │ │ │ └── RemoteAdminFlaw.html │ │ │ └── ru │ │ │ │ └── RemoteAdminFlaw.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── RemoteAdminFlaw.html │ │ │ └── RemoteAdminFlaw_files │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image002.jpg │ │ │ ├── image003.png │ │ │ ├── image004.jpg │ │ │ ├── image005.png │ │ │ ├── image006.jpg │ │ │ └── themedata.thmx │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ ├── WebGoatLabels_fr.properties │ │ └── WebGoatLabels_ru.properties ├── role-based-access-control │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ ├── instructor │ │ │ ├── DeleteProfile_i.java │ │ │ ├── EditProfile_i.java │ │ │ ├── RoleBasedAccessControl_i.java │ │ │ ├── UpdateProfile_i.java │ │ │ └── ViewProfile_i.java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── rollbased │ │ │ ├── DeleteProfileRoleBasedAccessControl.java │ │ │ ├── EditProfileRoleBasedAccessControl.java │ │ │ ├── RoleBasedAccessControl.java │ │ │ ├── UpdateProfileRoleBasedAccessControl.java │ │ │ └── ViewProfileRoleBasedAccessControl.java │ │ └── resources │ │ └── plugin │ │ └── RoleBasedAccessControl │ │ ├── images │ │ ├── accessControl.jpg │ │ ├── dbSchema.jpg │ │ ├── lesson1_SearchWindow.jpg │ │ ├── lesson1_header.jpg │ │ ├── lesson1_loginWindow.jpg │ │ ├── lesson1_menu.jpg │ │ ├── lesson1_workspace.jpg │ │ └── orgChart.jpg │ │ ├── jsp │ │ ├── EditProfile.jsp │ │ ├── ListStaff.jsp │ │ ├── Login.jsp │ │ ├── RoleBasedAccessControl.css │ │ ├── RoleBasedAccessControl.jsp │ │ ├── ViewProfile.jsp │ │ └── error.jsp │ │ └── lessonPlans │ │ ├── en │ │ └── RoleBasedAccessControl.html │ │ └── ru │ │ └── RoleBasedAccessControl.html ├── same-origin-policy-protection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── SameOriginPolicyProtection.java │ │ └── resources │ │ └── plugin │ │ └── SameOriginPolicyProtection │ │ ├── js │ │ └── sameOrigin.js │ │ ├── jsp │ │ └── sameOrigin.jsp │ │ ├── lessonPlans │ │ ├── en │ │ │ └── SameOriginPolicyProtection.html │ │ └── ru │ │ │ └── SameOriginPolicyProtection.html │ │ └── lessonSolutions │ │ └── en │ │ └── SameOriginPolicyProtection.html ├── session-fixation │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── SessionFixation.java │ │ └── resources │ │ └── plugin │ │ ├── SessionFixation │ │ ├── lessonPlans │ │ │ ├── en │ │ │ │ └── SessionFixation.html │ │ │ └── ru │ │ │ │ └── SessionFixation.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── SessionFixation.html │ │ │ └── SessionFixation_files │ │ │ ├── sf_stage1.png │ │ │ ├── sf_stage2.png │ │ │ ├── sf_stage3.png │ │ │ ├── sf_stage4_1.png │ │ │ ├── sf_stage4_2.png │ │ │ └── sf_success.png │ │ ├── images │ │ ├── lesson1_header.jpg │ │ └── lesson1_workspace.jpg │ │ └── jsp │ │ └── SessionFixation.css ├── silent-transactions │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── SilentTransactions.java │ │ └── resources │ │ └── plugin │ │ └── SilentTransactions │ │ ├── js │ │ └── silentTransaction.js │ │ ├── lessonPlans │ │ ├── en │ │ │ └── SilentTransactions.html │ │ └── ru │ │ │ └── SilentTransactions.html │ │ └── lessonSolutions │ │ └── en │ │ ├── SilentTransactions.html │ │ └── SilentTransactions_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image003.png │ │ ├── image005.png │ │ ├── image007.png │ │ ├── image009.jpg │ │ ├── image010.jpg │ │ ├── image011.jpg │ │ ├── image012.jpg │ │ └── themedata.thmx ├── soap-request │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── SoapRequest.java │ │ └── resources │ │ └── plugin │ │ └── SoapRequest │ │ ├── lessonPlans │ │ ├── en │ │ │ └── SoapRequest.html │ │ └── ru │ │ │ └── SoapRequest.html │ │ └── lessonSolutions │ │ └── en │ │ ├── SoapRequest.html │ │ └── SoapRequest_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image002.jpg │ │ ├── image003.png │ │ ├── image004.jpg │ │ ├── image005.png │ │ ├── image006.jpg │ │ ├── image007.png │ │ ├── image008.jpg │ │ ├── image009.png │ │ ├── image010.jpg │ │ ├── image011.jpg │ │ └── themedata.thmx ├── sql-injection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ ├── instructor │ │ │ ├── Login_i.java │ │ │ └── ViewProfile_i.java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── sqlinjection │ │ │ ├── ListStaffSqlInjection.java │ │ │ ├── LoginSqlInjection.java │ │ │ ├── SQLInjection.java │ │ │ └── ViewProfileSqlInjection.java │ │ └── resources │ │ └── plugin │ │ └── SQLInjection │ │ ├── images │ │ ├── lesson1_SearchWindow.jpg │ │ ├── lesson1_header.jpg │ │ ├── lesson1_loginWindow.jpg │ │ ├── lesson1_menu.jpg │ │ └── lesson1_workspace.jpg │ │ ├── jsp │ │ ├── EditProfile.jsp │ │ ├── ListStaff.jsp │ │ ├── Login.jsp │ │ ├── SQLInjection.css │ │ ├── SQLInjection.jsp │ │ ├── SearchStaff.jsp │ │ ├── ViewProfile.jsp │ │ └── error.jsp │ │ └── lessonPlans │ │ ├── en │ │ └── SQLInjection.html │ │ └── ru │ │ └── SQLInjection.html ├── sql-numeric-injection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── SqlNumericInjection.java │ │ └── resources │ │ └── plugin │ │ ├── SqlNumericInjection │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── SqlNumericInjection.html │ │ │ ├── en │ │ │ │ └── SqlNumericInjection.html │ │ │ └── ru │ │ │ │ └── SqlNumericInjection.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── SqlNumericInjection.html │ │ │ └── SqlNumericInjection_files │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image002.jpg │ │ │ ├── image003.png │ │ │ ├── image004.jpg │ │ │ ├── image005.png │ │ │ ├── image006.jpg │ │ │ ├── numericinjection.png │ │ │ ├── numericinjection_solved.png │ │ │ └── themedata.thmx │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ ├── WebGoatLabels_fr.properties │ │ └── WebGoatLabels_ru.properties ├── sql-string-injection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── SqlStringInjection.java │ │ └── resources │ │ └── plugin │ │ ├── SqlStringInjection │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── SqlStringInjection.html │ │ │ ├── en │ │ │ │ └── SqlStringInjection.html │ │ │ └── ru │ │ │ │ └── SqlNumericInjection.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── SqlStringInjection.html │ │ │ └── SqlStringInjection_files │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image003.png │ │ │ ├── image005.jpg │ │ │ ├── image006.jpg │ │ │ └── themedata.thmx │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ ├── WebGoatLabels_fr.properties │ │ └── WebGoatLabels_ru.properties ├── stored-xss │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── StoredXss.java │ │ └── resources │ │ └── plugin │ │ ├── StoredXss │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── StoredXss.html │ │ │ ├── en │ │ │ │ └── StoredXss.html │ │ │ └── ru │ │ │ │ └── StoredXss.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── StoredXss.html │ │ │ └── StoredXss_files │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image003.png │ │ │ ├── image005.png │ │ │ ├── image007.jpg │ │ │ ├── image008.jpg │ │ │ ├── image009.jpg │ │ │ └── themedata.thmx │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ ├── WebGoatLabels_fr.properties │ │ └── WebGoatLabels_ru.properties ├── thread-safety-problem │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── ThreadSafetyProblem.java │ │ └── resources │ │ └── plugin │ │ └── ThreadSafetyProblem │ │ ├── lessonPlans │ │ ├── en │ │ │ └── ThreadSafetyProblem.html │ │ └── ru │ │ │ └── ThreadSafetyProblem.html │ │ └── lessonSolutions │ │ └── en │ │ ├── ThreadSafetyProblem.html │ │ └── ThreadSafetyProblem_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image002.jpg │ │ ├── image003.png │ │ ├── image004.jpg │ │ ├── image007.png │ │ ├── image009.jpg │ │ └── themedata.thmx ├── trace-xss │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── TraceXSS.java │ │ └── resources │ │ └── plugin │ │ └── TraceXSS │ │ ├── lessonPlans │ │ ├── en │ │ │ └── TraceXSS.html │ │ └── ru │ │ │ └── TraceXSS.html │ │ └── lessonSolutions │ │ └── en │ │ ├── TraceXSS.html │ │ └── TraceXSS_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image002.jpg │ │ └── themedata.thmx ├── unchecked-email │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── UncheckedEmail.java │ │ └── resources │ │ └── plugin │ │ └── UncheckedEmail │ │ ├── lessonPlans │ │ ├── en │ │ │ └── UncheckedEmail.html │ │ └── ru │ │ │ └── UncheckedEmail.html │ │ └── lessonSolutions │ │ └── en │ │ ├── UncheckedEmail.html │ │ └── UncheckedEmail_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image002.jpg │ │ ├── image003.png │ │ ├── image004.jpg │ │ ├── image005.png │ │ ├── image006.jpg │ │ ├── image007.png │ │ ├── image008.jpg │ │ └── themedata.thmx ├── weak-authentication-cookie │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── WeakAuthenticationCookie.java │ │ └── resources │ │ └── plugin │ │ ├── WeakAuthenticationCookie │ │ ├── lessonPlans │ │ │ ├── de │ │ │ │ └── WeakAuthenticationCookie.html │ │ │ ├── en │ │ │ │ └── WeakAuthenticationCookie.html │ │ │ └── ru │ │ │ │ └── WeakAuthenticationCookie.html │ │ └── lessonSolutions │ │ │ └── en │ │ │ ├── WeakAuthenticationCookie.html │ │ │ └── WeakAuthenticationCookie_files │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image003.png │ │ │ ├── image005.png │ │ │ ├── image007.png │ │ │ ├── image009.png │ │ │ ├── image011.png │ │ │ ├── image013.png │ │ │ ├── image015.png │ │ │ ├── image017.png │ │ │ ├── image019.jpg │ │ │ ├── image020.jpg │ │ │ ├── image021.jpg │ │ │ ├── image022.jpg │ │ │ ├── image023.jpg │ │ │ ├── image024.jpg │ │ │ ├── image025.jpg │ │ │ ├── image026.jpg │ │ │ ├── image027.jpg │ │ │ └── themedata.thmx │ │ └── i18n │ │ ├── WebGoatLabels.properties │ │ ├── WebGoatLabels_de.properties │ │ ├── WebGoatLabels_fr.properties │ │ └── WebGoatLabels_ru.properties ├── weak-session-id │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── WeakSessionID.java │ │ └── resources │ │ └── plugin │ │ └── WeakSessionID │ │ ├── lessonPlans │ │ ├── en │ │ │ └── WeakSessionID.html │ │ └── ru │ │ │ └── WeakSessionID.html │ │ └── lessonSolutions │ │ └── en │ │ ├── WeakSessionID.html │ │ └── WeakSessionID_files │ │ ├── image001.jpg │ │ ├── image002.jpg │ │ ├── image003.jpg │ │ ├── image004.jpg │ │ ├── image005.jpg │ │ └── image006.jpg ├── ws-sax-injection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── WsSAXInjection.java │ │ └── resources │ │ └── plugin │ │ └── WsSAXInjection │ │ ├── lessonPlans │ │ ├── en │ │ │ └── WsSAXInjection.html │ │ └── ru │ │ │ └── WsSAXInjection.html │ │ └── lessonSolutions │ │ └── en │ │ ├── WsSAXInjection.html │ │ └── WsSAXInjection_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image002.jpg │ │ ├── image003.png │ │ ├── image004.jpg │ │ ├── image005.png │ │ ├── image006.jpg │ │ ├── image007.png │ │ ├── image008.jpg │ │ ├── image009.png │ │ ├── image010.jpg │ │ └── themedata.thmx ├── ws-sql-injection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── WsSqlInjection.java │ │ └── resources │ │ └── plugin │ │ └── WsSqlInjection │ │ ├── lessonPlans │ │ ├── en │ │ │ └── WsSqlInjection.html │ │ └── ru │ │ │ └── WsSqlInjection.html │ │ └── lessonSolutions │ │ └── en │ │ ├── WsSqlInjection.html │ │ └── WsSqlInjection_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image002.jpg │ │ ├── image003.png │ │ ├── image004.jpg │ │ ├── image005.png │ │ ├── image006.jpg │ │ ├── image007.png │ │ ├── image008.jpg │ │ └── themedata.thmx ├── wsdl-scanning │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── WSDLScanning.java │ │ └── resources │ │ └── plugin │ │ └── WSDLScanning │ │ ├── lessonPlans │ │ ├── en │ │ │ └── WSDLScanning.html │ │ └── ru │ │ │ └── WSDLScanning.html │ │ └── lessonSolutions │ │ └── en │ │ ├── WSDLScanning.html │ │ └── WSDLScanning_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image003.png │ │ ├── image005.png │ │ ├── image007.png │ │ ├── image009.jpg │ │ ├── image010.jpg │ │ ├── image011.jpg │ │ ├── image012.jpg │ │ └── themedata.thmx ├── xml-injection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── XMLInjection.java │ │ └── resources │ │ └── plugin │ │ └── XMLInjection │ │ ├── js │ │ └── xmlInjection.js │ │ ├── lessonPlans │ │ ├── en │ │ │ └── XMLInjection.html │ │ └── ru │ │ │ └── XMLInjection.html │ │ └── lessonSolutions │ │ └── en │ │ ├── XMLInjection.html │ │ └── XMLInjection_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ ├── image001.png │ │ ├── image003.png │ │ ├── image005.png │ │ ├── image007.png │ │ ├── image009.png │ │ ├── image011.png │ │ ├── image013.png │ │ ├── image015.png │ │ ├── image017.jpg │ │ ├── image018.jpg │ │ ├── image019.jpg │ │ ├── image020.jpg │ │ ├── image021.jpg │ │ ├── image022.jpg │ │ ├── image023.jpg │ │ ├── image024.jpg │ │ └── themedata.thmx ├── xpath-injection │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ └── XPATHInjection.java │ │ └── resources │ │ └── plugin │ │ └── XPATHInjection │ │ ├── lessonPlans │ │ ├── en │ │ │ └── XPATHInjection.html │ │ └── ru │ │ │ └── XPATHInjection.html │ │ ├── lessonSolutions │ │ └── en │ │ │ ├── XPATHInjection.html │ │ │ └── XPATHInjection_files │ │ │ ├── colorschememapping.xml │ │ │ ├── filelist.xml │ │ │ ├── image001.png │ │ │ ├── image003.png │ │ │ ├── image005.png │ │ │ ├── image007.jpg │ │ │ ├── image008.jpg │ │ │ ├── image009.jpg │ │ │ └── themedata.thmx │ │ └── xml │ │ └── EmployeesData.xml ├── xxe │ ├── pom.xml │ └── src │ │ └── main │ │ ├── java │ │ └── org │ │ │ └── owasp │ │ │ └── webgoat │ │ │ └── plugin │ │ │ ├── Flight.java │ │ │ ├── FlightsRepo.java │ │ │ ├── SearchForm.java │ │ │ └── XXE.java │ │ └── resources │ │ └── plugin │ │ └── XXE │ │ ├── csv │ │ └── flights.txt │ │ ├── js │ │ └── xxe.js │ │ ├── lessonPlans │ │ └── en │ │ │ └── XXE.html │ │ └── lessonSolutions │ │ └── en │ │ ├── XXE.html │ │ └── XXE_files │ │ ├── colorschememapping.xml │ │ ├── filelist.xml │ │ └── themedata.thmx └── zip-bomb │ ├── pom.xml │ └── src │ └── main │ └── java │ └── org │ └── owasp │ └── webgoat │ └── plugin │ └── ZipBomb.java ├── sonar-java-only ├── .gitignore ├── README.md ├── pom.xml └── src │ └── main │ └── java │ └── com │ └── h3xstream │ └── sandbox │ ├── SpecialCase1.java │ ├── SpecialCase2.java │ └── SpecialCase3.java └── sonar-jsp-only ├── .gitignore ├── README.md ├── pom.xml └── src └── main ├── resources ├── jetty-logging.properties └── logging.properties └── webapp ├── WEB-INF └── web.xml └── xss ├── xss0.jsp ├── xss1.jsp ├── xss2.jsp ├── xss3.jsp ├── xss4.jsp └── xss5.jsp /android-insecure-bank-v2/.gitignore: -------------------------------------------------------------------------------- 1 | .gradle 2 | /local.properties 3 | /.idea/workspace.xml 4 | /.idea/libraries 5 | .DS_Store 6 | /build 7 | /captures 8 | -------------------------------------------------------------------------------- /android-insecure-bank-v2/.idea/.name: -------------------------------------------------------------------------------- 1 | InsecureBankv2 -------------------------------------------------------------------------------- /android-insecure-bank-v2/.idea/copyright/profiles_settings.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | -------------------------------------------------------------------------------- /android-insecure-bank-v2/.idea/encodings.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | -------------------------------------------------------------------------------- /android-insecure-bank-v2/.idea/inspectionProfiles/profiles_settings.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 7 | -------------------------------------------------------------------------------- /android-insecure-bank-v2/.idea/scopes/scope_settings.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 5 | -------------------------------------------------------------------------------- /android-insecure-bank-v2/.idea/vcs.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | -------------------------------------------------------------------------------- /android-insecure-bank-v2/app/.gitignore: -------------------------------------------------------------------------------- 1 | /build 2 | -------------------------------------------------------------------------------- /android-insecure-bank-v2/app/src/main/ic_launcher-web.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/android-insecure-bank-v2/app/src/main/ic_launcher-web.png -------------------------------------------------------------------------------- /android-insecure-bank-v2/app/src/main/res/drawable/roundbutton.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | android:shape="rectangle"> 4 | 7 | 8 | 9 | -------------------------------------------------------------------------------- /android-insecure-bank-v2/app/src/main/res/drawable/si.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/android-insecure-bank-v2/app/src/main/res/drawable/si.png -------------------------------------------------------------------------------- /android-insecure-bank-v2/app/src/main/res/layout/activity_wrong_login.xml: -------------------------------------------------------------------------------- 1 | 6 | 7 | -------------------------------------------------------------------------------- /android-insecure-bank-v2/app/src/main/res/mipmap-hdpi/ic_launcher.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/android-insecure-bank-v2/app/src/main/res/mipmap-hdpi/ic_launcher.png -------------------------------------------------------------------------------- /android-insecure-bank-v2/app/src/main/res/mipmap-mdpi/ic_launcher.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/android-insecure-bank-v2/app/src/main/res/mipmap-mdpi/ic_launcher.png -------------------------------------------------------------------------------- /android-insecure-bank-v2/app/src/main/res/mipmap-xhdpi/ic_launcher.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/android-insecure-bank-v2/app/src/main/res/mipmap-xhdpi/ic_launcher.png -------------------------------------------------------------------------------- /android-insecure-bank-v2/app/src/main/res/mipmap-xxhdpi/ic_launcher.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/android-insecure-bank-v2/app/src/main/res/mipmap-xxhdpi/ic_launcher.png -------------------------------------------------------------------------------- /android-insecure-bank-v2/app/src/main/res/mipmap-xxxhdpi/ic_launcher.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/android-insecure-bank-v2/app/src/main/res/mipmap-xxxhdpi/ic_launcher.png -------------------------------------------------------------------------------- /android-insecure-bank-v2/app/src/main/res/values/dimens.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 16dp 4 | 16dp 5 | 6 | -------------------------------------------------------------------------------- /android-insecure-bank-v2/app/src/main/res/values/styles.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 7 | 8 | 9 | -------------------------------------------------------------------------------- /android-insecure-bank-v2/fsb-exclude.xml: -------------------------------------------------------------------------------- 1 | 2 | -------------------------------------------------------------------------------- /android-insecure-bank-v2/fsb-include.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | -------------------------------------------------------------------------------- /android-insecure-bank-v2/gradle/wrapper/gradle-wrapper.jar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/android-insecure-bank-v2/gradle/wrapper/gradle-wrapper.jar -------------------------------------------------------------------------------- /android-insecure-bank-v2/gradle/wrapper/gradle-wrapper.properties: -------------------------------------------------------------------------------- 1 | #Wed Apr 10 15:27:10 PDT 2013 2 | distributionBase=GRADLE_USER_HOME 3 | distributionPath=wrapper/dists 4 | zipStoreBase=GRADLE_USER_HOME 5 | zipStorePath=wrapper/dists 6 | distributionUrl=https\://services.gradle.org/distributions/gradle-2.2.1-all.zip 7 | -------------------------------------------------------------------------------- /android-insecure-bank-v2/settings.gradle: -------------------------------------------------------------------------------- 1 | include ':app' 2 | -------------------------------------------------------------------------------- /groovy-simple/.gitignore: -------------------------------------------------------------------------------- 1 | #Gradle 2 | /.gradle 3 | /build 4 | 5 | #IntelliJ 6 | *.iml 7 | /.idea 8 | /.idea_modules 9 | 10 | #Eclipse 11 | /.classpath 12 | /.project 13 | /.settings 14 | 15 | #Others 16 | logs 17 | target -------------------------------------------------------------------------------- /groovy-simple/fsb-exclude.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | -------------------------------------------------------------------------------- /groovy-simple/fsb-include.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | -------------------------------------------------------------------------------- /groovy-simple/gradle/config.groovy: -------------------------------------------------------------------------------- 1 | withConfig(configuration) { 2 | ast(groovy.transform.CompileStatic) 3 | } -------------------------------------------------------------------------------- /groovy-simple/src/main/groovy/Hello.groovy: -------------------------------------------------------------------------------- 1 | 2 | def rand = new Random(); 3 | println rand.nextInt(); -------------------------------------------------------------------------------- /java-web-jsp/.gitignore: -------------------------------------------------------------------------------- 1 | #Eclipse 2 | .classpath 3 | .project 4 | test-output 5 | .settings 6 | 7 | #IntelliJ 8 | *.iml 9 | *.ipr 10 | *.iws 11 | .idea/ 12 | 13 | #Gradle 14 | .gradle 15 | 16 | #Build directories 17 | bin/ 18 | build/ 19 | target/ 20 | 21 | #Maven 22 | *.versionsBackup -------------------------------------------------------------------------------- /java-web-jsp/spotbugs-security-exclude.xml: -------------------------------------------------------------------------------- 1 | 2 | -------------------------------------------------------------------------------- /java-web-jsp/spotbugs-security-include.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/resources/jetty-logging.properties: -------------------------------------------------------------------------------- 1 | org.eclipse.jetty.util.log.class=org.eclipse.jetty.util.log.JavaUtilLog 2 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/resources/logging.properties: -------------------------------------------------------------------------------- 1 | handlers = org.eclipse.jetty.demo.SystemOutHandler 2 | .level = INFO 3 | #org.eclipse.jetty.level = FINE 4 | #org.apache.level = FINEST 5 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/WEB-INF/secret.jsp: -------------------------------------------------------------------------------- 1 | This page should be private. -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/include/${param.secret_param}.jsp: -------------------------------------------------------------------------------- 1 | Dummy -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/include/jsp_include_1.jsp: -------------------------------------------------------------------------------- 1 | 2 | Psst click me or click me! 3 |

4 | 5 | <%-- This line doesn't compile in weblogic --%> -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/include/jsp_include_2_safe.jsp: -------------------------------------------------------------------------------- 1 | Psst click me or click me! 2 |

3 | 4 | 5 | <%@include file="${param.secret_param}.jsp"%> 6 | <%-- This line doesn't compile in weblogic --%> -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/include/jsp_include_3.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> 2 | 3 | Psst click me or click me! 4 |

5 | 6 | 7 | 8 | 9 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/jstl/jstl_escape_1.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> 2 | 3 | 4 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/jstl/jstl_escape_2.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> 2 | 3 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/jstl/jstl_escape_3.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> 2 | 3 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/random.jsp: -------------------------------------------------------------------------------- 1 | <%@ page import="java.util.Random" %> 2 | <% 3 | Random random = new Random(); 4 | %> 5 | 6 | <%= random.nextInt() %> -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/test/foo/foo.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> 2 | 3 | 4 | 5 | 6 |

FOO Example

7 |
8 |

A trivial FOO example 9 |

10 | 11 | 12 |
13 | 14 | 15 | 16 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/test/jstl.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> 2 | 3 | 4 | 5 | 6 |

JSTL Example

7 |
8 |

A trivial jstl example 9 |

10 | 11 | 12 |
13 | 14 | 15 | 16 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/test/tag2.jsp: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | <%@ taglib uri="http://www.acme.com/taglib2" prefix="acme" %> 5 | 6 | 7 | On ${day} of ${month} in the year ${year} 8 | 9 | 10 |
11 | 12 | 13 | ${day} - ${month} - ${year} 14 | 15 | 16 |
17 | 18 | 19 | 20 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/xml/xml1.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="x" uri="http://java.sun.com/jsp/jstl/xml" %> 2 | 3 | You requested a quote for: -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/xml/xml2.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="x" uri="http://java.sun.com/jsp/jstl/xml" %> 2 | 3 | You requested a quote for: -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/xsl/xsl1.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="x" uri="http://java.sun.com/jsp/jstl/xml" %> 2 | 3 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/xsl/xsl2.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="x" uri="http://java.sun.com/jsp/jstl/xml" %> 2 | 3 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/xsl/xsl3.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="x" uri="http://java.sun.com/jsp/jstl/xml" %> 2 | 3 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/xsl/xsl4.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="x" uri="http://java.sun.com/jsp/jstl/xml" %> 2 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/xss/xss0.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> 2 | 3 |

4 | Client message:
5 | 6 |

-------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/xss/xss1.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> 2 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/xss/xss2.jsp: -------------------------------------------------------------------------------- 1 | 2 | Contact form:
3 | 4 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/xss/xss3.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> 2 | 3 | Hello ! -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/xss/xss4.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> 2 | -------------------------------------------------------------------------------- /java-web-jsp/src/main/webapp/xss/xss5.jsp: -------------------------------------------------------------------------------- 1 | <%@taglib prefix="e" uri="https://www.owasp.org/index.php/OWASP_Java_Encoder_Project" %> 2 | 3 | 4 |

${e:forHtml(param.test1)}

5 | 6 | 12 | -------------------------------------------------------------------------------- /juliet-test-suite-mini/.gitignore: -------------------------------------------------------------------------------- 1 | #Eclipse 2 | .classpath 3 | .project 4 | test-output 5 | .settings 6 | 7 | #IntelliJ 8 | *.iml 9 | *.ipr 10 | *.iws 11 | .idea/ 12 | 13 | #Gradle 14 | .gradle 15 | 16 | #Build directories 17 | bin/ 18 | build/ 19 | target/ 20 | 21 | #Maven 22 | *.versionsBackup -------------------------------------------------------------------------------- /juliet-test-suite-mini/findbugs-security-exclude.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | -------------------------------------------------------------------------------- /juliet-test-suite-mini/findbugs-security-include.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | -------------------------------------------------------------------------------- /scala-web-play/.gitignore: -------------------------------------------------------------------------------- 1 | logs 2 | target 3 | /.idea 4 | /.idea_modules 5 | /.classpath 6 | /.project 7 | /.settings 8 | /RUNNING_PID 9 | -------------------------------------------------------------------------------- /scala-web-play/activator-launch-1.3.7.jar: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/scala-web-play/activator-launch-1.3.7.jar -------------------------------------------------------------------------------- /scala-web-play/app/assets/javascripts/index.coffee: -------------------------------------------------------------------------------- 1 | $ -> 2 | $.get "/persons", (persons) -> 3 | $.each persons, (index, person) -> 4 | name = $("
").addClass("name").text person.name 5 | age = $("
").addClass("age").text person.age 6 | $("#persons").append $("
  • ").append(name).append(age) -------------------------------------------------------------------------------- /scala-web-play/app/models/Person.scala: -------------------------------------------------------------------------------- 1 | package models 2 | 3 | import play.api.libs.json._ 4 | 5 | case class Person(id: Long, name: String, age: Int) 6 | 7 | object Person { 8 | 9 | implicit val personFormat = Json.format[Person] 10 | } -------------------------------------------------------------------------------- /scala-web-play/app/views/xssHtml.scala.html: -------------------------------------------------------------------------------- 1 | @(value: Html) 2 | 3 | @value -------------------------------------------------------------------------------- /scala-web-play/app/views/xssString.scala.html: -------------------------------------------------------------------------------- 1 | @(value: String) 2 | 3 | @** Safe **@ 4 | @value 5 | 6 | @** Could be vulnerable **@ 7 | @Html(value) -------------------------------------------------------------------------------- /scala-web-play/conf/evolutions/default/1.sql: -------------------------------------------------------------------------------- 1 | # --- !Ups 2 | 3 | create table "people" ( 4 | "id" bigint generated by default as identity(start with 1) not null primary key, 5 | "name" varchar not null, 6 | "age" int not null 7 | ); 8 | 9 | # --- !Downs 10 | 11 | drop table "people" if exists; 12 | -------------------------------------------------------------------------------- /scala-web-play/conf/messages: -------------------------------------------------------------------------------- 1 | name = Name 2 | age = Age -------------------------------------------------------------------------------- /scala-web-play/project/build.properties: -------------------------------------------------------------------------------- 1 | #Activator-generated Properties 2 | #Mon Dec 14 09:50:47 UTC 2015 3 | template.uuid=fb578f98-c29b-4e75-89f9-74a4d381e80c 4 | sbt.version=0.13.8 5 | -------------------------------------------------------------------------------- /scala-web-play/public/images/favicon.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/scala-web-play/public/images/favicon.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/access-control-matrix/src/main/resources/plugin/AccessControlMatrix/images/aspect.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/access-control-matrix/src/main/resources/plugin/AccessControlMatrix/images/aspect.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/access-control-matrix/src/main/resources/plugin/AccessControlMatrix/lessonSolutions/en/AccessControlMatrix.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/access-control-matrix/src/main/resources/plugin/AccessControlMatrix/lessonSolutions/en/AccessControlMatrix.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/access-control-matrix/src/main/resources/plugin/AccessControlMatrix/lessonSolutions/en/AccessControlMatrix_files/Thumbs.db: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/access-control-matrix/src/main/resources/plugin/AccessControlMatrix/lessonSolutions/en/AccessControlMatrix_files/Thumbs.db -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/access-control-matrix/src/main/resources/plugin/AccessControlMatrix/lessonSolutions/en/AccessControlMatrix_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/access-control-matrix/src/main/resources/plugin/AccessControlMatrix/lessonSolutions/en/AccessControlMatrix_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image009.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image009.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image011.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image011.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image013.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image013.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image014.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image014.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image015.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image015.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image016.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image016.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image017.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image017.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image018.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/image018.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/back-doors/src/main/resources/plugin/BackDoors/lessonSolutions/en/BackDoors_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/basic-authentication/src/main/resources/plugin/BasicAuthentication/lessonPlans/de/BasicAuthentication.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/basic-authentication/src/main/resources/plugin/BasicAuthentication/lessonPlans/de/BasicAuthentication.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/basic-authentication/src/main/resources/plugin/BasicAuthentication/lessonSolutions/en/BasicAuthentication.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/basic-authentication/src/main/resources/plugin/BasicAuthentication/lessonSolutions/en/BasicAuthentication.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/bypass-html-field-restrictions/src/main/resources/plugin/i18n/WebGoatLabels_de.properties: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/bypass-html-field-restrictions/src/main/resources/plugin/i18n/WebGoatLabels_de.properties -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/client-side-filtering/src/main/resources/plugin/ClientSideFiltering/images/lesson1_header.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/client-side-filtering/src/main/resources/plugin/ClientSideFiltering/images/lesson1_header.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/client-side-filtering/src/main/resources/plugin/ClientSideFiltering/images/lesson1_workspace.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/client-side-filtering/src/main/resources/plugin/ClientSideFiltering/images/lesson1_workspace.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/client-side-filtering/src/main/resources/plugin/ClientSideFiltering/js/formate.css: -------------------------------------------------------------------------------- 1 | * { font-family:"Arial","sans-serif"; } 2 | code { font-family:"Courier New"; font-size:10pt; } -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection_files/image007.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection_files/image007.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection_files/image008.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection_files/image008.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection_files/image009.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection_files/image009.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/command-injection/src/main/resources/plugin/CommandInjection/lessonSolutions/en/CommandInjection_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/concurrency-cart/src/main/resources/plugin/ConcurrencyCart/lessonSolutions/en/ConcurrencyCart_files/image001.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/concurrency-cart/src/main/resources/plugin/ConcurrencyCart/lessonSolutions/en/ConcurrencyCart_files/image001.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/concurrency-cart/src/main/resources/plugin/ConcurrencyCart/lessonSolutions/en/ConcurrencyCart_files/image002.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/concurrency-cart/src/main/resources/plugin/ConcurrencyCart/lessonSolutions/en/ConcurrencyCart_files/image002.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/concurrency-cart/src/main/resources/plugin/ConcurrencyCart/lessonSolutions/en/ConcurrencyCart_files/image003.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/concurrency-cart/src/main/resources/plugin/ConcurrencyCart/lessonSolutions/en/ConcurrencyCart_files/image003.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/cross-site-scripting/src/main/resources/plugin/CrossSiteScripting/images/lesson1_SearchWindow.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/cross-site-scripting/src/main/resources/plugin/CrossSiteScripting/images/lesson1_SearchWindow.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/cross-site-scripting/src/main/resources/plugin/CrossSiteScripting/images/lesson1_header.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/cross-site-scripting/src/main/resources/plugin/CrossSiteScripting/images/lesson1_header.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/cross-site-scripting/src/main/resources/plugin/CrossSiteScripting/images/lesson1_loginWindow.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/cross-site-scripting/src/main/resources/plugin/CrossSiteScripting/images/lesson1_loginWindow.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/cross-site-scripting/src/main/resources/plugin/CrossSiteScripting/images/lesson1_menu.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/cross-site-scripting/src/main/resources/plugin/CrossSiteScripting/images/lesson1_menu.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/cross-site-scripting/src/main/resources/plugin/CrossSiteScripting/images/lesson1_workspace.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/cross-site-scripting/src/main/resources/plugin/CrossSiteScripting/images/lesson1_workspace.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/cross-site-scripting/src/main/resources/plugin/CrossSiteScripting/jsp/error.jsp: -------------------------------------------------------------------------------- 1 | <%@ page contentType="text/html; charset=ISO-8859-1" language="java" 2 | errorPage="" %> 3 |


    An error has occurred. 4 | -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf-prompt-by-pass/src/main/resources/plugin/CsrfPromptByPass/lessonSolutions/en/CsrfPromptByPass_files/imgPromptHack.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf-prompt-by-pass/src/main/resources/plugin/CsrfPromptByPass/lessonSolutions/en/CsrfPromptByPass_files/imgPromptHack.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf-token-by-pass/src/main/resources/plugin/CsrfTokenByPass/lessonSolutions/en/CsrfTokenByPass_files/tokenHack.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf-token-by-pass/src/main/resources/plugin/CsrfTokenByPass/lessonSolutions/en/CsrfTokenByPass_files/tokenHack.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf-token-by-pass/src/main/resources/plugin/CsrfTokenByPass/lessonSolutions/en/CsrfTokenByPass_files/tokenHacked.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf-token-by-pass/src/main/resources/plugin/CsrfTokenByPass/lessonSolutions/en/CsrfTokenByPass_files/tokenHacked.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf-token-by-pass/src/main/resources/plugin/CsrfTokenByPass/lessonSolutions/en/CsrfTokenByPass_files/tokenPage.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf-token-by-pass/src/main/resources/plugin/CsrfTokenByPass/lessonSolutions/en/CsrfTokenByPass_files/tokenPage.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image009.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image009.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image011.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image011.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image012.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image012.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image013.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image013.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image014.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image014.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image015.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/image015.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/csrf/src/main/resources/plugin/CSRF/lessonSolutions/en/CSRF_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/db-cross-site-scripting/src/main/resources/plugin/DBCrossSiteScripting/images/lesson1_SearchWindow.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/db-cross-site-scripting/src/main/resources/plugin/DBCrossSiteScripting/images/lesson1_SearchWindow.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/db-cross-site-scripting/src/main/resources/plugin/DBCrossSiteScripting/images/lesson1_header.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/db-cross-site-scripting/src/main/resources/plugin/DBCrossSiteScripting/images/lesson1_header.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/db-cross-site-scripting/src/main/resources/plugin/DBCrossSiteScripting/images/lesson1_loginWindow.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/db-cross-site-scripting/src/main/resources/plugin/DBCrossSiteScripting/images/lesson1_loginWindow.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/db-cross-site-scripting/src/main/resources/plugin/DBCrossSiteScripting/images/lesson1_menu.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/db-cross-site-scripting/src/main/resources/plugin/DBCrossSiteScripting/images/lesson1_menu.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/db-cross-site-scripting/src/main/resources/plugin/DBCrossSiteScripting/images/lesson1_workspace.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/db-cross-site-scripting/src/main/resources/plugin/DBCrossSiteScripting/images/lesson1_workspace.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/db-cross-site-scripting/src/main/resources/plugin/DBCrossSiteScripting/jsp/error.jsp: -------------------------------------------------------------------------------- 1 | <%@ page contentType="text/html; charset=ISO-8859-1" language="java" 2 | errorPage="" %> 3 |


    An error has occurred. 4 | -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/db-sql-injection/src/main/resources/plugin/DBSQLInjection/images/lesson1_SearchWindow.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/db-sql-injection/src/main/resources/plugin/DBSQLInjection/images/lesson1_SearchWindow.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/db-sql-injection/src/main/resources/plugin/DBSQLInjection/images/lesson1_header.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/db-sql-injection/src/main/resources/plugin/DBSQLInjection/images/lesson1_header.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/db-sql-injection/src/main/resources/plugin/DBSQLInjection/images/lesson1_loginWindow.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/db-sql-injection/src/main/resources/plugin/DBSQLInjection/images/lesson1_loginWindow.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/db-sql-injection/src/main/resources/plugin/DBSQLInjection/images/lesson1_menu.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/db-sql-injection/src/main/resources/plugin/DBSQLInjection/images/lesson1_menu.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/db-sql-injection/src/main/resources/plugin/DBSQLInjection/images/lesson1_workspace.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/db-sql-injection/src/main/resources/plugin/DBSQLInjection/images/lesson1_workspace.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/db-sql-injection/src/main/resources/plugin/DBSQLInjection/jsp/error.jsp: -------------------------------------------------------------------------------- 1 | <%@ page contentType="text/html; charset=ISO-8859-1" language="java" 2 | errorPage="" %> 3 |


    An error has occurred. 4 | -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image002.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image002.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image004.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image004.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image006.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image006.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image008.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image008.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image008fix.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image008fix.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image009.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image009.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image010.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image010.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image011.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image011.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image012.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/image012.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-injection/src/main/resources/plugin/DOMInjection/lessonSolutions/en/DOMInjection_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-xss/src/main/resources/plugin/DOMXSS/images/owasp.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-xss/src/main/resources/plugin/DOMXSS/images/owasp.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-xss/src/main/resources/plugin/DOMXSS/js/DOMXSS.js: -------------------------------------------------------------------------------- 1 | function displayGreeting(name) { 2 | if (name != ''){ 3 | document.getElementById("greeting").innerHTML="Hello, " + name+ "!"; 4 | } 5 | } -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-xss/src/main/resources/plugin/DOMXSS/js/escape.js: -------------------------------------------------------------------------------- 1 | function escapeHTML (str) { 2 | var div = document.createElement('div'); 3 | var text = document.createTextNode(str); 4 | div.appendChild(text); 5 | return div.innerHTML; 6 | } 7 | -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-xss/src/main/resources/plugin/DOMXSS/lessonSolutions/en/DOMXSS_files/Thumbs.db: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-xss/src/main/resources/plugin/DOMXSS/lessonSolutions/en/DOMXSS_files/Thumbs.db -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-xss/src/main/resources/plugin/DOMXSS/lessonSolutions/en/DOMXSS_files/image001.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-xss/src/main/resources/plugin/DOMXSS/lessonSolutions/en/DOMXSS_files/image001.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-xss/src/main/resources/plugin/DOMXSS/lessonSolutions/en/DOMXSS_files/image002.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-xss/src/main/resources/plugin/DOMXSS/lessonSolutions/en/DOMXSS_files/image002.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-xss/src/main/resources/plugin/DOMXSS/lessonSolutions/en/DOMXSS_files/image003.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-xss/src/main/resources/plugin/DOMXSS/lessonSolutions/en/DOMXSS_files/image003.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dom-xss/src/main/resources/plugin/DOMXSS/lessonSolutions/en/DOMXSS_files/image004.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dom-xss/src/main/resources/plugin/DOMXSS/lessonSolutions/en/DOMXSS_files/image004.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dos-login/src/main/resources/plugin/DOS_Login/lessonSolutions/en/DOS_Login.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dos-login/src/main/resources/plugin/DOS_Login/lessonSolutions/en/DOS_Login.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dos-login/src/main/resources/plugin/DOS_Login/lessonSolutions/en/DOS_Login_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dos-login/src/main/resources/plugin/DOS_Login/lessonSolutions/en/DOS_Login_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dos-login/src/main/resources/plugin/DOS_Login/lessonSolutions/en/DOS_Login_files/image002.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dos-login/src/main/resources/plugin/DOS_Login/lessonSolutions/en/DOS_Login_files/image002.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dos-login/src/main/resources/plugin/DOS_Login/lessonSolutions/en/DOS_Login_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dos-login/src/main/resources/plugin/DOS_Login/lessonSolutions/en/DOS_Login_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dos-login/src/main/resources/plugin/DOS_Login/lessonSolutions/en/DOS_Login_files/image004.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dos-login/src/main/resources/plugin/DOS_Login/lessonSolutions/en/DOS_Login_files/image004.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/dos-login/src/main/resources/plugin/DOS_Login/lessonSolutions/en/DOS_Login_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/dos-login/src/main/resources/plugin/DOS_Login/lessonSolutions/en/DOS_Login_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/fail-open-authentication/src/main/resources/plugin/FailOpenAuthentication/lessonSolutions/en/FailOpenAuthentication.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/fail-open-authentication/src/main/resources/plugin/FailOpenAuthentication/lessonSolutions/en/FailOpenAuthentication.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/findbugs-security-exclude.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/findbugs-security-include.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image002.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image002.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image004.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image004.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image006.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image006.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image008.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/image008.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forced-browsing/src/main/resources/plugin/ForcedBrowsing/lessonSolutions/en/ForcedBrowsing_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image009.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image009.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image011.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image011.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image013.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image013.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image015.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image015.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image016.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image016.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image017.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image017.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image018.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image018.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image019.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image019.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image020.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image020.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image021.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/image021.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/forgot-password/src/main/resources/plugin/ForgotPassword/lessonSolutions/en/ForgotPassword_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/hidden-field-tampering/src/main/resources/plugin/HiddenFieldTampering/lessonPlans/de/HiddenFieldTampering.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/hidden-field-tampering/src/main/resources/plugin/HiddenFieldTampering/lessonPlans/de/HiddenFieldTampering.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/hidden-field-tampering/src/main/resources/plugin/HiddenFieldTampering/lessonSolutions/en/HiddenFieldTampering.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/hidden-field-tampering/src/main/resources/plugin/HiddenFieldTampering/lessonSolutions/en/HiddenFieldTampering.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonPlans/en/HowToWork_files/HowToUse_2.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonPlans/en/HowToWork_files/HowToUse_2.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonPlans/en/HowToWork_files/HowToUse_3.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonPlans/en/HowToWork_files/HowToUse_3.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonPlans/en/HowToWork_files/UsefulTools-ZAP.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonPlans/en/HowToWork_files/UsefulTools-ZAP.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonPlans/en/HowToWork_files/UsefulTools-ZAP_1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonPlans/en/HowToWork_files/UsefulTools-ZAP_1.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonPlans/en/HowToWork_files/interface.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonPlans/en/HowToWork_files/interface.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonPlans/en/HowToWork_files/wireshark.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonPlans/en/HowToWork_files/wireshark.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonSolutions/en/HowToWork_files/HowToUse_2.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonSolutions/en/HowToWork_files/HowToUse_2.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonSolutions/en/HowToWork_files/HowToUse_3.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonSolutions/en/HowToWork_files/HowToUse_3.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonSolutions/en/HowToWork_files/UsefulTools-ZAP.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonSolutions/en/HowToWork_files/UsefulTools-ZAP.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonSolutions/en/HowToWork_files/UsefulTools-ZAP_1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonSolutions/en/HowToWork_files/UsefulTools-ZAP_1.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonSolutions/en/HowToWork_files/interface.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonSolutions/en/HowToWork_files/interface.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonSolutions/en/HowToWork_files/wireshark.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/how-to-work/src/main/resources/plugin/HowToWork/lessonSolutions/en/HowToWork_files/wireshark.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonPlans/de/HtmlClues.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonPlans/de/HtmlClues.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image009.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image009.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image011.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image011.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image012.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image012.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image013.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image013.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image014.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image014.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image015.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/image015.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/HtmlClues/lessonSolutions/en/HtmlClues_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/i18n/WebGoatLabels_de.properties: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/html-clues/src/main/resources/plugin/i18n/WebGoatLabels_de.properties -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonPlans/de/HttpBasics.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonPlans/de/HttpBasics.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics_files/image005.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics_files/image005.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics_files/image006.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics_files/image006.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics_files/webscarab1.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics_files/webscarab1.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics_files/webscarab2.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/HttpBasics/lessonSolutions/en/HttpBasics_files/webscarab2.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/i18n/WebGoatLabels.properties: -------------------------------------------------------------------------------- 1 | EnterYourName=Enter your Name 2 | Go!=Go! 3 | -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/i18n/WebGoatLabels_de.properties: -------------------------------------------------------------------------------- 1 | EnterYourName=Geben Sie Ihren Namen ein 2 | Go!=Los gehts! 3 | -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/i18n/WebGoatLabels_fr.properties: -------------------------------------------------------------------------------- 1 | EnterYourName=Entrez votre nom 2 | Go!=Go! 3 | -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-basics/src/main/resources/plugin/i18n/WebGoatLabels_ru.properties: -------------------------------------------------------------------------------- 1 | EnterYourName=\u0412\u0432\u0435\u0434\u0438\u0442\u0435 \u0432\u0430\u0448\u0435 \u0438\u043c\u044f 2 | Go!=\u0412\u043f\u0435\u0440\u0451\u0434! 3 | -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image009.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image009.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image011.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image011.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image013.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image013.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image015.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image015.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image016.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image016.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image017.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image017.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image018.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image018.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image019.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image019.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image020.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image020.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image021.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/image021.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/http-only/src/main/resources/plugin/HttpOnly/lessonSolutions/en/HttpOnly_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/insecure-login/src/main/resources/plugin/InsecureLogin/images/lesson1_header.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/insecure-login/src/main/resources/plugin/InsecureLogin/images/lesson1_header.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/insecure-login/src/main/resources/plugin/InsecureLogin/images/lesson1_workspace.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/insecure-login/src/main/resources/plugin/InsecureLogin/images/lesson1_workspace.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/insecure-login/src/main/resources/plugin/InsecureLogin/lessonSolutions/en/InsecureLogin_files/wireshark1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/insecure-login/src/main/resources/plugin/InsecureLogin/lessonSolutions/en/InsecureLogin_files/wireshark1.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/java-script-validation/src/main/resources/plugin/JavaScriptValidation/lessonPlans/de/JavaScriptValidation.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/java-script-validation/src/main/resources/plugin/JavaScriptValidation/lessonPlans/de/JavaScriptValidation.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/java-script-validation/src/main/resources/plugin/JavaScriptValidation/lessonSolutions/en/JavaScriptValidation.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/java-script-validation/src/main/resources/plugin/JavaScriptValidation/lessonSolutions/en/JavaScriptValidation.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image009.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image009.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image011.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image011.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image013.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image013.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image014.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image014.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image015.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image015.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image016.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image016.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image017.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image017.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image018.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/image018.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/json-injection/src/main/resources/plugin/JSONInjection/lessonSolutions/en/JSONInjection_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/lesson-converter/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/lesson-converter/readme.md -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/lesson-template-legacy/src/main/resources/plugin/NewLegacyLesson/lessonPlans/de/NewLegacyLesson.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/lesson-template-legacy/src/main/resources/plugin/NewLegacyLesson/lessonPlans/de/NewLegacyLesson.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/lesson-template-legacy/src/main/resources/plugin/NewLegacyLesson/lessonSolutions/en/NewLegacyLesson_files/image002.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/lesson-template-legacy/src/main/resources/plugin/NewLegacyLesson/lessonSolutions/en/NewLegacyLesson_files/image002.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/lesson-template-legacy/src/main/resources/plugin/NewLegacyLesson/lessonSolutions/en/NewLegacyLesson_files/image004.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/lesson-template-legacy/src/main/resources/plugin/NewLegacyLesson/lessonSolutions/en/NewLegacyLesson_files/image004.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/lesson-template-legacy/src/main/resources/plugin/NewLegacyLesson/lessonSolutions/en/NewLegacyLesson_files/themedata.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/lesson-template-legacy/src/main/resources/plugin/NewLegacyLesson/lessonSolutions/en/NewLegacyLesson_files/themedata.xml -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/lesson-template-legacy/src/main/resources/plugin/i18n/WebGoatLabels.properties: -------------------------------------------------------------------------------- 1 | #NewLegacyLesson.java 2 | NewLegacyLessonHint1=The first hint gives a minor clue on what to do. 3 | NewLegacyLessonHint2=The next hints provide additional guidance to help solve a lesson 4 | NewLegacyLessonHint3=The last hint should provide the cut/paste solution or steps to solve the lesson. 5 | -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonPlans/de/LogSpoofing.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonPlans/de/LogSpoofing.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/Thumbs.db: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/Thumbs.db -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/image007.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/image007.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/image008.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/image008.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/image009.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/image009.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/LogSpoofing/lessonSolutions/en/LogSpoofing_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/i18n/WebGoatLabels_fr.properties: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/log-spoofing/src/main/resources/plugin/i18n/WebGoatLabels_fr.properties -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/multi-level-login1/src/main/resources/plugin/MultiLevelLogin1/images/lesson1_header.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/multi-level-login1/src/main/resources/plugin/MultiLevelLogin1/images/lesson1_header.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/multi-level-login1/src/main/resources/plugin/MultiLevelLogin1/images/lesson1_workspace.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/multi-level-login1/src/main/resources/plugin/MultiLevelLogin1/images/lesson1_workspace.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/multi-level-login1/src/main/resources/plugin/MultiLevelLogin1/lessonSolutions/en/MultiLevelLogin1_files/login.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/multi-level-login1/src/main/resources/plugin/MultiLevelLogin1/lessonSolutions/en/MultiLevelLogin1_files/login.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/multi-level-login1/src/main/resources/plugin/MultiLevelLogin1/lessonSolutions/en/MultiLevelLogin1_files/success.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/multi-level-login1/src/main/resources/plugin/MultiLevelLogin1/lessonSolutions/en/MultiLevelLogin1_files/success.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/multi-level-login1/src/main/resources/plugin/MultiLevelLogin1/lessonSolutions/en/MultiLevelLogin1_files/tan.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/multi-level-login1/src/main/resources/plugin/MultiLevelLogin1/lessonSolutions/en/MultiLevelLogin1_files/tan.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/multi-level-login1/src/main/resources/plugin/MultiLevelLogin1/lessonSolutions/en/MultiLevelLogin1_files/webscarab.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/multi-level-login1/src/main/resources/plugin/MultiLevelLogin1/lessonSolutions/en/MultiLevelLogin1_files/webscarab.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/multi-level-login2/src/main/resources/plugin/MultiLevelLogin2/lessonSolutions/en/MultiLevelLogin2_files/success.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/multi-level-login2/src/main/resources/plugin/MultiLevelLogin2/lessonSolutions/en/MultiLevelLogin2_files/success.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/password-strength/src/main/resources/plugin/PasswordStrength/lessonSolutions/en/PasswordStrength_files/image001.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/password-strength/src/main/resources/plugin/PasswordStrength/lessonSolutions/en/PasswordStrength_files/image001.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/password-strength/src/main/resources/plugin/PasswordStrength/lessonSolutions/en/PasswordStrength_files/image002.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/password-strength/src/main/resources/plugin/PasswordStrength/lessonSolutions/en/PasswordStrength_files/image002.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/path-based-access-control/src/main/resources/plugin/PathBasedAccessControl/lessonPlans/de/PathBasedAccessControl.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/path-based-access-control/src/main/resources/plugin/PathBasedAccessControl/lessonPlans/de/PathBasedAccessControl.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/path-based-access-control/src/main/resources/plugin/PathBasedAccessControl/lessonSolutions/en/PathBasedAccessControl.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/path-based-access-control/src/main/resources/plugin/PathBasedAccessControl/lessonSolutions/en/PathBasedAccessControl.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/phishing/src/main/resources/plugin/Phishing/lessonSolutions/en/Phishing_files/image001.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/phishing/src/main/resources/plugin/Phishing/lessonSolutions/en/Phishing_files/image001.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/reflected-xss/src/main/resources/plugin/ReflectedXSS/lessonPlans/de/ReflectedXSS.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/reflected-xss/src/main/resources/plugin/ReflectedXSS/lessonPlans/de/ReflectedXSS.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/reflected-xss/src/main/resources/plugin/ReflectedXSS/lessonSolutions/en/ReflectedXSS.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/reflected-xss/src/main/resources/plugin/ReflectedXSS/lessonSolutions/en/ReflectedXSS.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/reflected-xss/src/main/resources/plugin/ReflectedXSS/lessonSolutions/en/ReflectedXSS_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/reflected-xss/src/main/resources/plugin/ReflectedXSS/lessonSolutions/en/ReflectedXSS_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/reflected-xss/src/main/resources/plugin/ReflectedXSS/lessonSolutions/en/ReflectedXSS_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/reflected-xss/src/main/resources/plugin/ReflectedXSS/lessonSolutions/en/ReflectedXSS_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/reflected-xss/src/main/resources/plugin/ReflectedXSS/lessonSolutions/en/ReflectedXSS_files/image005.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/reflected-xss/src/main/resources/plugin/ReflectedXSS/lessonSolutions/en/ReflectedXSS_files/image005.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/reflected-xss/src/main/resources/plugin/ReflectedXSS/lessonSolutions/en/ReflectedXSS_files/image006.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/reflected-xss/src/main/resources/plugin/ReflectedXSS/lessonSolutions/en/ReflectedXSS_files/image006.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/reflected-xss/src/main/resources/plugin/ReflectedXSS/lessonSolutions/en/ReflectedXSS_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/reflected-xss/src/main/resources/plugin/ReflectedXSS/lessonSolutions/en/ReflectedXSS_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonPlans/de/RemoteAdminFlaw.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonPlans/de/RemoteAdminFlaw.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw_files/image002.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw_files/image002.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw_files/image004.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw_files/image004.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw_files/image006.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw_files/image006.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/remote-admin-flaw/src/main/resources/plugin/RemoteAdminFlaw/lessonSolutions/en/RemoteAdminFlaw_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/accessControl.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/accessControl.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/dbSchema.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/dbSchema.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/lesson1_SearchWindow.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/lesson1_SearchWindow.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/lesson1_header.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/lesson1_header.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/lesson1_loginWindow.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/lesson1_loginWindow.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/lesson1_menu.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/lesson1_menu.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/lesson1_workspace.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/lesson1_workspace.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/orgChart.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/role-based-access-control/src/main/resources/plugin/RoleBasedAccessControl/images/orgChart.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/same-origin-policy-protection/src/main/resources/plugin/SameOriginPolicyProtection/jsp/sameOrigin.jsp: -------------------------------------------------------------------------------- 1 | Good Response -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/SessionFixation/lessonSolutions/en/SessionFixation_files/sf_stage1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/SessionFixation/lessonSolutions/en/SessionFixation_files/sf_stage1.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/SessionFixation/lessonSolutions/en/SessionFixation_files/sf_stage2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/SessionFixation/lessonSolutions/en/SessionFixation_files/sf_stage2.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/SessionFixation/lessonSolutions/en/SessionFixation_files/sf_stage3.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/SessionFixation/lessonSolutions/en/SessionFixation_files/sf_stage3.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/SessionFixation/lessonSolutions/en/SessionFixation_files/sf_stage4_1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/SessionFixation/lessonSolutions/en/SessionFixation_files/sf_stage4_1.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/SessionFixation/lessonSolutions/en/SessionFixation_files/sf_stage4_2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/SessionFixation/lessonSolutions/en/SessionFixation_files/sf_stage4_2.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/SessionFixation/lessonSolutions/en/SessionFixation_files/sf_success.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/SessionFixation/lessonSolutions/en/SessionFixation_files/sf_success.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/images/lesson1_header.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/images/lesson1_header.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/images/lesson1_workspace.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/session-fixation/src/main/resources/plugin/images/lesson1_workspace.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonPlans/en/SilentTransactions.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonPlans/en/SilentTransactions.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image009.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image009.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image010.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image010.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image011.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image011.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image012.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/silent-transactions/src/main/resources/plugin/SilentTransactions/lessonSolutions/en/SilentTransactions_files/image012.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image002.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image002.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image004.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image004.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image006.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image006.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image008.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image008.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image009.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image009.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image010.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image010.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image011.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/image011.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/soap-request/src/main/resources/plugin/SoapRequest/lessonSolutions/en/SoapRequest_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/sql-injection/src/main/resources/plugin/SQLInjection/images/lesson1_SearchWindow.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/sql-injection/src/main/resources/plugin/SQLInjection/images/lesson1_SearchWindow.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/sql-injection/src/main/resources/plugin/SQLInjection/images/lesson1_header.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/sql-injection/src/main/resources/plugin/SQLInjection/images/lesson1_header.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/sql-injection/src/main/resources/plugin/SQLInjection/images/lesson1_loginWindow.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/sql-injection/src/main/resources/plugin/SQLInjection/images/lesson1_loginWindow.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/sql-injection/src/main/resources/plugin/SQLInjection/images/lesson1_menu.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/sql-injection/src/main/resources/plugin/SQLInjection/images/lesson1_menu.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/sql-injection/src/main/resources/plugin/SQLInjection/images/lesson1_workspace.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/sql-injection/src/main/resources/plugin/SQLInjection/images/lesson1_workspace.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/sql-injection/src/main/resources/plugin/SQLInjection/jsp/error.jsp: -------------------------------------------------------------------------------- 1 | <%@ page contentType="text/html; charset=ISO-8859-1" language="java" 2 | errorPage="" %> 3 |


    An error has occurred. 4 | -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/sql-numeric-injection/src/main/resources/plugin/SqlNumericInjection/lessonPlans/de/SqlNumericInjection.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/sql-numeric-injection/src/main/resources/plugin/SqlNumericInjection/lessonPlans/de/SqlNumericInjection.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/sql-numeric-injection/src/main/resources/plugin/SqlNumericInjection/lessonSolutions/en/SqlNumericInjection.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/sql-numeric-injection/src/main/resources/plugin/SqlNumericInjection/lessonSolutions/en/SqlNumericInjection.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/sql-string-injection/src/main/resources/plugin/SqlStringInjection/lessonPlans/de/SqlStringInjection.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/sql-string-injection/src/main/resources/plugin/SqlStringInjection/lessonPlans/de/SqlStringInjection.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/sql-string-injection/src/main/resources/plugin/SqlStringInjection/lessonSolutions/en/SqlStringInjection.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/sql-string-injection/src/main/resources/plugin/SqlStringInjection/lessonSolutions/en/SqlStringInjection.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/sql-string-injection/src/main/resources/plugin/SqlStringInjection/lessonSolutions/en/SqlStringInjection_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/sql-string-injection/src/main/resources/plugin/SqlStringInjection/lessonSolutions/en/SqlStringInjection_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/sql-string-injection/src/main/resources/plugin/SqlStringInjection/lessonSolutions/en/SqlStringInjection_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/sql-string-injection/src/main/resources/plugin/SqlStringInjection/lessonSolutions/en/SqlStringInjection_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/sql-string-injection/src/main/resources/plugin/SqlStringInjection/lessonSolutions/en/SqlStringInjection_files/image005.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/sql-string-injection/src/main/resources/plugin/SqlStringInjection/lessonSolutions/en/SqlStringInjection_files/image005.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/sql-string-injection/src/main/resources/plugin/SqlStringInjection/lessonSolutions/en/SqlStringInjection_files/image006.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/sql-string-injection/src/main/resources/plugin/SqlStringInjection/lessonSolutions/en/SqlStringInjection_files/image006.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonPlans/de/StoredXss.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonPlans/de/StoredXss.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonSolutions/en/StoredXss_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonSolutions/en/StoredXss_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonSolutions/en/StoredXss_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonSolutions/en/StoredXss_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonSolutions/en/StoredXss_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonSolutions/en/StoredXss_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonSolutions/en/StoredXss_files/image007.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonSolutions/en/StoredXss_files/image007.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonSolutions/en/StoredXss_files/image008.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonSolutions/en/StoredXss_files/image008.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonSolutions/en/StoredXss_files/image009.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonSolutions/en/StoredXss_files/image009.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonSolutions/en/StoredXss_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/stored-xss/src/main/resources/plugin/StoredXss/lessonSolutions/en/StoredXss_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/thread-safety-problem/src/main/resources/plugin/ThreadSafetyProblem/lessonSolutions/en/ThreadSafetyProblem.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/thread-safety-problem/src/main/resources/plugin/ThreadSafetyProblem/lessonSolutions/en/ThreadSafetyProblem.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/trace-xss/src/main/resources/plugin/TraceXSS/lessonSolutions/en/TraceXSS.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/trace-xss/src/main/resources/plugin/TraceXSS/lessonSolutions/en/TraceXSS.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/trace-xss/src/main/resources/plugin/TraceXSS/lessonSolutions/en/TraceXSS_files/filelist.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/trace-xss/src/main/resources/plugin/TraceXSS/lessonSolutions/en/TraceXSS_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/trace-xss/src/main/resources/plugin/TraceXSS/lessonSolutions/en/TraceXSS_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/trace-xss/src/main/resources/plugin/TraceXSS/lessonSolutions/en/TraceXSS_files/image002.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/trace-xss/src/main/resources/plugin/TraceXSS/lessonSolutions/en/TraceXSS_files/image002.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/trace-xss/src/main/resources/plugin/TraceXSS/lessonSolutions/en/TraceXSS_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/trace-xss/src/main/resources/plugin/TraceXSS/lessonSolutions/en/TraceXSS_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image002.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image002.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image004.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image004.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image006.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image006.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image008.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/image008.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/unchecked-email/src/main/resources/plugin/UncheckedEmail/lessonSolutions/en/UncheckedEmail_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/weak-authentication-cookie/src/main/resources/plugin/WeakAuthenticationCookie/lessonPlans/de/WeakAuthenticationCookie.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/weak-authentication-cookie/src/main/resources/plugin/WeakAuthenticationCookie/lessonPlans/de/WeakAuthenticationCookie.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/weak-session-id/src/main/resources/plugin/WeakSessionID/lessonSolutions/en/WeakSessionID_files/image001.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/weak-session-id/src/main/resources/plugin/WeakSessionID/lessonSolutions/en/WeakSessionID_files/image001.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/weak-session-id/src/main/resources/plugin/WeakSessionID/lessonSolutions/en/WeakSessionID_files/image002.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/weak-session-id/src/main/resources/plugin/WeakSessionID/lessonSolutions/en/WeakSessionID_files/image002.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/weak-session-id/src/main/resources/plugin/WeakSessionID/lessonSolutions/en/WeakSessionID_files/image003.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/weak-session-id/src/main/resources/plugin/WeakSessionID/lessonSolutions/en/WeakSessionID_files/image003.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/weak-session-id/src/main/resources/plugin/WeakSessionID/lessonSolutions/en/WeakSessionID_files/image004.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/weak-session-id/src/main/resources/plugin/WeakSessionID/lessonSolutions/en/WeakSessionID_files/image004.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/weak-session-id/src/main/resources/plugin/WeakSessionID/lessonSolutions/en/WeakSessionID_files/image005.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/weak-session-id/src/main/resources/plugin/WeakSessionID/lessonSolutions/en/WeakSessionID_files/image005.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/weak-session-id/src/main/resources/plugin/WeakSessionID/lessonSolutions/en/WeakSessionID_files/image006.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/weak-session-id/src/main/resources/plugin/WeakSessionID/lessonSolutions/en/WeakSessionID_files/image006.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image002.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image002.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image004.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image004.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image006.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image006.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image008.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image008.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image009.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image009.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image010.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/image010.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sax-injection/src/main/resources/plugin/WsSAXInjection/lessonSolutions/en/WsSAXInjection_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image002.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image002.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image004.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image004.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image006.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image006.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image008.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/image008.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/ws-sql-injection/src/main/resources/plugin/WsSqlInjection/lessonSolutions/en/WsSqlInjection_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image009.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image009.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image010.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image010.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image011.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image011.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image012.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/image012.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/wsdl-scanning/src/main/resources/plugin/WSDLScanning/lessonSolutions/en/WSDLScanning_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image007.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image007.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image009.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image009.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image011.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image011.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image013.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image013.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image015.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image015.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image017.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image017.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image018.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image018.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image019.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image019.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image020.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image020.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image021.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image021.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image022.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image022.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image023.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image023.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image024.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/image024.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xml-injection/src/main/resources/plugin/XMLInjection/lessonSolutions/en/XMLInjection_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection.html: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection.html -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection_files/image001.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection_files/image001.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection_files/image003.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection_files/image003.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection_files/image005.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection_files/image005.png -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection_files/image007.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection_files/image007.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection_files/image008.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection_files/image008.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection_files/image009.jpg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection_files/image009.jpg -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xpath-injection/src/main/resources/plugin/XPATHInjection/lessonSolutions/en/XPATHInjection_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xxe/src/main/resources/plugin/XXE/lessonSolutions/en/XXE_files/filelist.xml: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 | -------------------------------------------------------------------------------- /sonar-integration-test/WebGoat-Lessons/xxe/src/main/resources/plugin/XXE/lessonSolutions/en/XXE_files/themedata.thmx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/find-sec-bugs/find-sec-bugs-demos/84274ed6c47ed4627fd13be6ac099dd9fb66f3c8/sonar-integration-test/WebGoat-Lessons/xxe/src/main/resources/plugin/XXE/lessonSolutions/en/XXE_files/themedata.thmx -------------------------------------------------------------------------------- /sonar-integration-test/sonar-java-only/.gitignore: -------------------------------------------------------------------------------- 1 | #Eclipse 2 | .classpath 3 | .project 4 | test-output 5 | .settings 6 | 7 | #IntelliJ 8 | *.iml 9 | *.ipr 10 | *.iws 11 | .idea/ 12 | 13 | #Gradle 14 | .gradle 15 | 16 | #Build directories 17 | bin/ 18 | build/ 19 | target/ 20 | 21 | #Maven 22 | *.versionsBackup -------------------------------------------------------------------------------- /sonar-integration-test/sonar-java-only/README.md: -------------------------------------------------------------------------------- 1 | 2 | ## Compiling 3 | 4 | Only the Java code 5 | 6 | ``` 7 | mvn clean install 8 | ``` 9 | 10 | with the JSP precompiled 11 | 12 | ``` 13 | mvn clean install -Pjetty936Jsp 14 | ``` 15 | 16 | ## SonarQube 17 | 18 | ``` 19 | mvn sonar:sonar -Dsonar.host.url=http://localhost:9000 -Dsonar.login=XXXX 20 | ``` -------------------------------------------------------------------------------- /sonar-integration-test/sonar-java-only/src/main/java/com/h3xstream/sandbox/SpecialCase1.java: -------------------------------------------------------------------------------- 1 | package com.h3xstream.sandbox; 2 | 3 | import java.util.Random; 4 | 5 | public class SpecialCase1 { 6 | 7 | 8 | class CanYouSeeMeInner { 9 | public String generateToken(String[] args){ 10 | return ""+new Random().nextLong(); //FINDME: Insecure random generator 11 | } 12 | } 13 | } 14 | -------------------------------------------------------------------------------- /sonar-integration-test/sonar-java-only/src/main/java/com/h3xstream/sandbox/SpecialCase2.java: -------------------------------------------------------------------------------- 1 | package com.h3xstream.sandbox; 2 | 3 | import java.util.Random; 4 | 5 | public class SpecialCase2 { 6 | 7 | 8 | } 9 | 10 | class CanYouSeeMeOuter { 11 | public String generateToken(String[] args){ 12 | return ""+new Random().nextLong(); //FINDME: Insecure random generator 13 | } 14 | } -------------------------------------------------------------------------------- /sonar-integration-test/sonar-jsp-only/.gitignore: -------------------------------------------------------------------------------- 1 | #Eclipse 2 | .classpath 3 | .project 4 | test-output 5 | .settings 6 | 7 | #IntelliJ 8 | *.iml 9 | *.ipr 10 | *.iws 11 | .idea/ 12 | 13 | #Gradle 14 | .gradle 15 | 16 | #Build directories 17 | bin/ 18 | build/ 19 | target/ 20 | 21 | #Maven 22 | *.versionsBackup -------------------------------------------------------------------------------- /sonar-integration-test/sonar-jsp-only/README.md: -------------------------------------------------------------------------------- 1 | 2 | ## Pre-Compiling the JSP 3 | 4 | ``` 5 | mvn clean install -Pjetty936Jsp 6 | ``` 7 | 8 | ## Sonar 9 | 10 | ``` 11 | mvn sonar:sonar -Dsonar.host.url=http://localhost:9000 -Dsonar.login=XXX 12 | ``` 13 | 14 | ## Expected 15 | 16 | - Few XSS should be report. 17 | -------------------------------------------------------------------------------- /sonar-integration-test/sonar-jsp-only/src/main/resources/jetty-logging.properties: -------------------------------------------------------------------------------- 1 | org.eclipse.jetty.util.log.class=org.eclipse.jetty.util.log.JavaUtilLog 2 | -------------------------------------------------------------------------------- /sonar-integration-test/sonar-jsp-only/src/main/resources/logging.properties: -------------------------------------------------------------------------------- 1 | handlers = org.eclipse.jetty.demo.SystemOutHandler 2 | .level = INFO 3 | #org.eclipse.jetty.level = FINE 4 | #org.apache.level = FINEST 5 | -------------------------------------------------------------------------------- /sonar-integration-test/sonar-jsp-only/src/main/webapp/xss/xss0.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> 2 | 3 |

    4 | Client message:
    5 | 6 |

    -------------------------------------------------------------------------------- /sonar-integration-test/sonar-jsp-only/src/main/webapp/xss/xss1.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> 2 | -------------------------------------------------------------------------------- /sonar-integration-test/sonar-jsp-only/src/main/webapp/xss/xss2.jsp: -------------------------------------------------------------------------------- 1 | 2 | Contact form:
    3 | 4 | -------------------------------------------------------------------------------- /sonar-integration-test/sonar-jsp-only/src/main/webapp/xss/xss3.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> 2 | 3 | Hello ! -------------------------------------------------------------------------------- /sonar-integration-test/sonar-jsp-only/src/main/webapp/xss/xss4.jsp: -------------------------------------------------------------------------------- 1 | <%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core" %> 2 | --------------------------------------------------------------------------------