Skip to content
Browse files

WebGoat.NET

  • Loading branch information...
1 parent bc9977c commit 0b2c4d214dc231141859358a6b6aa9532b063e49 @jerryhoff committed Oct 19, 2011
Showing with 11,930 additions and 0 deletions.
  1. BIN .DS_Store
  2. +38 −0 WebGoat.NET.sln
  3. +30 −0 WebGoat.NET.userprefs
  4. BIN WebGoat/.DS_Store
  5. +58 −0 WebGoat/AddNewUser.aspx
  6. +100 −0 WebGoat/AddNewUser.aspx.cs
  7. +38 −0 WebGoat/AddNewUser.aspx.designer.cs
  8. BIN WebGoat/App_Data/Provider.sqlite
  9. BIN WebGoat/App_Data/app_data.sqlite
  10. +182 −0 WebGoat/App_Data/data.sql
  11. BIN WebGoat/App_Data/goatdb.sqlite
  12. +180 −0 WebGoat/App_Data/tabledata.sql
  13. +3 −0 WebGoat/App_Data/tables.sql
  14. 0 WebGoat/App_Data/test.sqlite
  15. BIN WebGoat/App_Themes/.DS_Store
  16. +44 −0 WebGoat/App_Themes/Default/00.reset.css
  17. +519 −0 WebGoat/App_Themes/Default/01.960_24_col.css
  18. +56 −0 WebGoat/App_Themes/Default/02.text.css
  19. +183 −0 WebGoat/App_Themes/Default/03.layout.css
  20. +94 −0 WebGoat/App_Themes/Default/BreadCrumb.css
  21. +146 −0 WebGoat/App_Themes/Default/Forms.css
  22. +24 −0 WebGoat/App_Themes/Default/WebGoat.skin
  23. +262 −0 WebGoat/App_Themes/Default/buttons.css
  24. +115 −0 WebGoat/App_Themes/Default/grids.css
  25. BIN WebGoat/App_Themes/Default/images/Chevron.gif
  26. BIN WebGoat/App_Themes/Default/images/ChevronOverlay.png
  27. BIN WebGoat/App_Themes/Default/images/IconHome.gif
  28. BIN WebGoat/App_Themes/Default/images/blank.gif
  29. BIN WebGoat/App_Themes/Default/images/calendar.png
  30. BIN WebGoat/App_Themes/Default/images/eisk-5-logo-x2.png
  31. BIN WebGoat/App_Themes/Default/images/eisk-header-grad.png
  32. BIN WebGoat/App_Themes/Default/images/eisk-logo.png
  33. BIN WebGoat/App_Themes/Default/images/extras/ico-delete.png
  34. BIN WebGoat/App_Themes/Default/images/extras/loader-modal.gif
  35. BIN WebGoat/App_Themes/Default/images/listing/asc.png
  36. BIN WebGoat/App_Themes/Default/images/listing/desc.png
  37. BIN WebGoat/App_Themes/Default/images/listing/ico-edit.png
  38. BIN WebGoat/App_Themes/Default/images/listing/ico-view.png
  39. BIN WebGoat/App_Themes/Default/images/listing/sort-regular.png
  40. BIN WebGoat/App_Themes/Default/images/logo.png
  41. BIN WebGoat/App_Themes/Default/images/logo2.png
  42. +60 −0 WebGoat/App_Themes/Default/left-menu.css
  43. +25 −0 WebGoat/ChangePassword.aspx
  44. +11 −0 WebGoat/ChangePassword.aspx.cs
  45. +38 −0 WebGoat/ChangePassword.aspx.designer.cs
  46. +253 −0 WebGoat/Code/DatabaseUtilities.cs
  47. +20 −0 WebGoat/Code/IOHelper.cs
  48. +1,959 −0 WebGoat/Code/SQLiteMembershipProvider.cs
  49. +1,144 −0 WebGoat/Code/SQLiteProfileProvider.cs
  50. +763 −0 WebGoat/Code/SQLiteRoleProvider.cs
  51. BIN WebGoat/Content/.DS_Store
  52. +20 −0 WebGoat/Content/About.aspx
  53. +17 −0 WebGoat/Content/About.aspx.cs
  54. +20 −0 WebGoat/Content/About.aspx.designer.cs
  55. +5 −0 WebGoat/Content/BasicAuth.aspx
  56. +17 −0 WebGoat/Content/BasicAuth.aspx.cs
  57. +20 −0 WebGoat/Content/BasicAuth.aspx.designer.cs
  58. +5 −0 WebGoat/Content/CSRFDemo.aspx
  59. +17 −0 WebGoat/Content/CSRFDemo.aspx.cs
  60. +20 −0 WebGoat/Content/CSRFDemo.aspx.designer.cs
  61. +5 −0 WebGoat/Content/Challenge1.aspx
  62. +17 −0 WebGoat/Content/Challenge1.aspx.cs
  63. +20 −0 WebGoat/Content/Challenge1.aspx.designer.cs
  64. +5 −0 WebGoat/Content/Challenge2.aspx
  65. +17 −0 WebGoat/Content/Challenge2.aspx.cs
  66. +20 −0 WebGoat/Content/Challenge2.aspx.designer.cs
  67. +5 −0 WebGoat/Content/Challenge3.aspx
  68. +17 −0 WebGoat/Content/Challenge3.aspx.cs
  69. +20 −0 WebGoat/Content/Challenge3.aspx.designer.cs
  70. +5 −0 WebGoat/Content/ChangePwd.aspx
  71. +17 −0 WebGoat/Content/ChangePwd.aspx.cs
  72. +20 −0 WebGoat/Content/ChangePwd.aspx.designer.cs
  73. +5 −0 WebGoat/Content/ClientSideStorage.aspx
  74. +17 −0 WebGoat/Content/ClientSideStorage.aspx.cs
  75. +20 −0 WebGoat/Content/ClientSideStorage.aspx.designer.cs
  76. +5 −0 WebGoat/Content/CommandInjection.aspx
  77. +17 −0 WebGoat/Content/CommandInjection.aspx.cs
  78. +20 −0 WebGoat/Content/CommandInjection.aspx.designer.cs
  79. +5 −0 WebGoat/Content/DomXSS.aspx
  80. +17 −0 WebGoat/Content/DomXSS.aspx.cs
  81. +17 −0 WebGoat/Content/DomXSS.aspx.designer.cs
  82. +5 −0 WebGoat/Content/EmbeddedError.aspx
  83. +17 −0 WebGoat/Content/EmbeddedError.aspx.cs
  84. +20 −0 WebGoat/Content/EmbeddedError.aspx.designer.cs
  85. +38 −0 WebGoat/Content/EncryptVSEncode.aspx
  86. +81 −0 WebGoat/Content/EncryptVSEncode.aspx.cs
  87. +28 −0 WebGoat/Content/EncryptVSEncode.aspx.designer.cs
  88. +5 −0 WebGoat/Content/Error.aspx
  89. +17 −0 WebGoat/Content/Error.aspx.cs
  90. +20 −0 WebGoat/Content/Error.aspx.designer.cs
  91. +5 −0 WebGoat/Content/ExploitDebug.aspx
  92. +17 −0 WebGoat/Content/ExploitDebug.aspx.cs
  93. +20 −0 WebGoat/Content/ExploitDebug.aspx.designer.cs
  94. +5 −0 WebGoat/Content/FlashScripting.aspx
  95. +17 −0 WebGoat/Content/FlashScripting.aspx.cs
  96. +20 −0 WebGoat/Content/FlashScripting.aspx.designer.cs
  97. +5 −0 WebGoat/Content/ForcedBrowsing.aspx
  98. +17 −0 WebGoat/Content/ForcedBrowsing.aspx.cs
  99. +20 −0 WebGoat/Content/ForcedBrowsing.aspx.designer.cs
  100. +5 −0 WebGoat/Content/FormBasedAuth.aspx
  101. +17 −0 WebGoat/Content/FormBasedAuth.aspx.cs
  102. +20 −0 WebGoat/Content/FormBasedAuth.aspx.designer.cs
  103. +1 −0 WebGoat/Content/Global.asax
  104. +45 −0 WebGoat/Content/Global.asax.cs
  105. +5 −0 WebGoat/Content/HiddenField.aspx
  106. +17 −0 WebGoat/Content/HiddenField.aspx.cs
  107. +20 −0 WebGoat/Content/HiddenField.aspx.designer.cs
  108. +5 −0 WebGoat/Content/InjectionExercise.aspx
  109. +17 −0 WebGoat/Content/InjectionExercise.aspx.cs
  110. +20 −0 WebGoat/Content/InjectionExercise.aspx.designer.cs
  111. +5 −0 WebGoat/Content/JSONInjection.aspx
  112. +17 −0 WebGoat/Content/JSONInjection.aspx.cs
  113. +20 −0 WebGoat/Content/JSONInjection.aspx.designer.cs
  114. +5 −0 WebGoat/Content/LogInjection.aspx
  115. +17 −0 WebGoat/Content/LogInjection.aspx.cs
  116. +20 −0 WebGoat/Content/LogInjection.aspx.designer.cs
  117. +5 −0 WebGoat/Content/LogoutIssues.aspx
  118. +17 −0 WebGoat/Content/LogoutIssues.aspx.cs
  119. +20 −0 WebGoat/Content/LogoutIssues.aspx.designer.cs
  120. +5 −0 WebGoat/Content/ParamTampering.aspx
  121. +17 −0 WebGoat/Content/ParamTampering.aspx.cs
  122. +20 −0 WebGoat/Content/ParamTampering.aspx.designer.cs
  123. +16 −0 WebGoat/Content/PathManipulation.aspx
  124. +108 −0 WebGoat/Content/PathManipulation.aspx.cs
  125. +22 −0 WebGoat/Content/PathManipulation.aspx.designer.cs
  126. +7 −0 WebGoat/Content/PwdComplexity.aspx
  127. +17 −0 WebGoat/Content/PwdComplexity.aspx.cs
  128. +37 −0 WebGoat/Content/RebuildDatabase.aspx
  129. +27 −0 WebGoat/Content/ReflectedXSS.aspx
  130. +57 −0 WebGoat/Content/ReflectedXSS.aspx.cs
  131. +26 −0 WebGoat/Content/ReflectedXSS.aspx.designer.cs
  132. +5 −0 WebGoat/Content/ResponseSplitting.aspx
  133. +17 −0 WebGoat/Content/ResponseSplitting.aspx.cs
  134. +20 −0 WebGoat/Content/ResponseSplitting.aspx.designer.cs
  135. +55 −0 WebGoat/Content/SQLInjection.aspx
  136. +52 −0 WebGoat/Content/SQLInjection.aspx.cs
  137. +34 −0 WebGoat/Content/SQLInjection.aspx.designer.cs
  138. +30 −0 WebGoat/Content/SQLInjectionDiscovery.aspx
  139. +28 −0 WebGoat/Content/SQLInjectionDiscovery.aspx.cs
  140. +26 −0 WebGoat/Content/SQLInjectionDiscovery.aspx.designer.cs
  141. +4 −0 WebGoat/Content/SamplePage.aspx
  142. +17 −0 WebGoat/Content/SamplePage.aspx.cs
  143. +18 −0 WebGoat/Content/SamplePage.aspx.designer.cs
  144. +5 −0 WebGoat/Content/SessionExercise.aspx
  145. +17 −0 WebGoat/Content/SessionExercise.aspx.cs
  146. +20 −0 WebGoat/Content/SessionExercise.aspx.designer.cs
  147. +5 −0 WebGoat/Content/SessionFixation.aspx
  148. +17 −0 WebGoat/Content/SessionFixation.aspx.cs
  149. +20 −0 WebGoat/Content/SessionFixation.aspx.designer.cs
  150. +49 −0 WebGoat/Content/StoredXSS.aspx
  151. +67 −0 WebGoat/Content/StoredXSS.aspx.cs
  152. +34 −0 WebGoat/Content/StoredXSS.aspx.designer.cs
  153. +5 −0 WebGoat/Content/Viewstate.aspx
  154. +17 −0 WebGoat/Content/Viewstate.aspx.cs
  155. +20 −0 WebGoat/Content/Viewstate.aspx.designer.cs
  156. +5 −0 WebGoat/Content/WSAttacks.aspx
  157. +17 −0 WebGoat/Content/WSAttacks.aspx.cs
  158. +20 −0 WebGoat/Content/WSAttacks.aspx.designer.cs
  159. +5 −0 WebGoat/Content/WSDL.aspx
  160. +17 −0 WebGoat/Content/WSDL.aspx.cs
  161. +20 −0 WebGoat/Content/WSDL.aspx.designer.cs
  162. +5 −0 WebGoat/Content/Worm.aspx
  163. +17 −0 WebGoat/Content/Worm.aspx.cs
  164. +20 −0 WebGoat/Content/Worm.aspx.designer.cs
  165. +5 −0 WebGoat/Content/XMLInjection.aspx
  166. +5 −0 WebGoat/Content/XSSExercise.aspx
  167. +17 −0 WebGoat/Content/XSSExercise.aspx.cs
  168. +20 −0 WebGoat/Content/XSSExercise.aspx.designer.cs
  169. +31 −0 WebGoat/Content/dbtest.aspx.cs
  170. +26 −0 WebGoat/Content/dbtest.aspx.designer.cs
  171. +5 −0 WebGoat/Content/jQueryInjection.aspx
  172. +17 −0 WebGoat/Content/jQueryInjection.aspx.cs
  173. +20 −0 WebGoat/Content/jQueryInjection.aspx.designer.cs
  174. +26 −0 WebGoat/Content/proxytest.aspx
  175. +33 −0 WebGoat/Content/proxytest.aspx.cs
  176. +28 −0 WebGoat/Content/proxytest.aspx.designer.cs
  177. +17 −0 WebGoat/Default.aspx
  178. +11 −0 WebGoat/Default.aspx.cs
  179. +22 −0 WebGoat/Default.aspx.designer.cs
  180. BIN WebGoat/DotNetGoat.pidb
  181. +11 −0 WebGoat/ForgotPassword.aspx
  182. +12 −0 WebGoat/ForgotPassword.aspx.cs
  183. +22 −0 WebGoat/ForgotPassword.aspx.designer.cs
  184. +33 −0 WebGoat/LoginPage.aspx
  185. +35 −0 WebGoat/LoginPage.aspx.cs
  186. +34 −0 WebGoat/LoginPage.aspx.designer.cs
  187. 0 WebGoat/Provider.sqlite
  188. +128 −0 WebGoat/Web.config
  189. +267 −0 WebGoat/Web.sitemap
  190. +469 −0 WebGoat/WebGoat.NET.csproj
  191. BIN WebGoat/WebGoat.NET.pidb
  192. BIN WebGoat/bin/DotNetGoat.dll
  193. BIN WebGoat/bin/DotNetGoat.dll.mdb
  194. BIN WebGoat/bin/System.Data.SQLite.dll
  195. BIN WebGoat/bin/TechInfoSystems.Data.SQLiteProvider.dll
  196. BIN WebGoat/bin/TechInfoSystems.Data.SQLiteProvider.dll.mdb
  197. BIN WebGoat/downloads/architecture.pdf
  198. BIN WebGoat/downloads/authentication.pdf
  199. BIN WebGoat/downloads/csrf.pdf
  200. BIN WebGoat/downloads/transport_layer.pdf
  201. +168 −0 WebGoat/resources/Master-Pages/Site.Master
  202. +21 −0 WebGoat/resources/Master-Pages/Site.Master.cs
  203. +46 −0 WebGoat/resources/Master-Pages/Site.Master.designer.cs
  204. BIN WebGoat/resources/client-scripts/.DS_Store
  205. +154 −0 WebGoat/resources/client-scripts/jquery-1.4.2.min.js
  206. +18 −0 WebGoat/resources/client-scripts/jquery-1.6.2.min.js
  207. +791 −0 WebGoat/resources/client-scripts/jquery-ui-1.8.16.custom.min.js
  208. +99 −0 WebGoat/resources/client-scripts/menu.js
  209. BIN WebGoat/resources/images/infrared_logo.png
  210. BIN WebGoat/resources/jquery-ui/images/ui-bg_diagonals-thick_90_eeeeee_40x40.png
  211. BIN WebGoat/resources/jquery-ui/images/ui-bg_flat_15_cd0a0a_40x100.png
  212. BIN WebGoat/resources/jquery-ui/images/ui-bg_glass_100_e4f1fb_1x400.png
  213. BIN WebGoat/resources/jquery-ui/images/ui-bg_glass_50_3baae3_1x400.png
  214. BIN WebGoat/resources/jquery-ui/images/ui-bg_glass_80_d7ebf9_1x400.png
  215. BIN WebGoat/resources/jquery-ui/images/ui-bg_highlight-hard_100_f2f5f7_1x100.png
  216. BIN WebGoat/resources/jquery-ui/images/ui-bg_highlight-hard_70_000000_1x100.png
  217. BIN WebGoat/resources/jquery-ui/images/ui-bg_highlight-soft_100_deedf7_1x100.png
  218. BIN WebGoat/resources/jquery-ui/images/ui-bg_highlight-soft_25_ffef8f_1x100.png
  219. BIN WebGoat/resources/jquery-ui/images/ui-icons_2694e8_256x240.png
  220. BIN WebGoat/resources/jquery-ui/images/ui-icons_2e83ff_256x240.png
  221. BIN WebGoat/resources/jquery-ui/images/ui-icons_3d80b3_256x240.png
  222. BIN WebGoat/resources/jquery-ui/images/ui-icons_72a7cf_256x240.png
  223. BIN WebGoat/resources/jquery-ui/images/ui-icons_ffffff_256x240.png
  224. +568 −0 WebGoat/resources/jquery-ui/jquery-ui-1.8.16.custom.css
  225. +272 −0 WebGoat/web.sitemap.backup
View
BIN .DS_Store
Binary file not shown.
View
38 WebGoat.NET.sln
@@ -0,0 +1,38 @@
+
+Microsoft Visual Studio Solution File, Format Version 10.00
+# Visual Studio 2008
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "WebGoat.NET", "WebGoat\WebGoat.NET.csproj", "{83B04441-0F79-4424-AAD0-46E0C3CDDAA1}"
+EndProject
+Global
+ GlobalSection(SolutionConfigurationPlatforms) = preSolution
+ Debug|Any CPU = Debug|Any CPU
+ Release|Any CPU = Release|Any CPU
+ EndGlobalSection
+ GlobalSection(ProjectConfigurationPlatforms) = postSolution
+ {83B04441-0F79-4424-AAD0-46E0C3CDDAA1}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+ {83B04441-0F79-4424-AAD0-46E0C3CDDAA1}.Debug|Any CPU.Build.0 = Debug|Any CPU
+ {83B04441-0F79-4424-AAD0-46E0C3CDDAA1}.Release|Any CPU.ActiveCfg = Release|Any CPU
+ {83B04441-0F79-4424-AAD0-46E0C3CDDAA1}.Release|Any CPU.Build.0 = Release|Any CPU
+ EndGlobalSection
+ GlobalSection(MonoDevelopProperties) = preSolution
+ StartupItem = WebGoat\WebGoat.NET.csproj
+ Policies = $0
+ $0.DotNetNamingPolicy = $1
+ $1.DirectoryNamespaceAssociation = None
+ $1.ResourceNamePolicy = FileFormatDefault
+ $0.StandardHeader = $2
+ $2.Text =
+ $2.IncludeInNewFiles = True
+ $0.TextStylePolicy = $3
+ $3.FileWidth = 120
+ $3.TabWidth = 4
+ $3.EolMarker = Windows
+ $3.inheritsSet = Mono
+ $3.inheritsScope = text/plain
+ $3.scope = text/x-csharp
+ $0.CSharpFormattingPolicy = $4
+ $4.inheritsSet = Mono
+ $4.inheritsScope = text/x-csharp
+ $4.scope = text/x-csharp
+ EndGlobalSection
+EndGlobal
View
30 WebGoat.NET.userprefs
@@ -0,0 +1,30 @@
+<Properties>
+ <MonoDevelop.Ide.Workspace ActiveConfiguration="Debug" />
+ <MonoDevelop.Ide.Workbench>
+ <Pads>
+ <Pad Id="ProjectPad">
+ <State expanded="True">
+ <Node name="WebGoat.NET" expanded="True">
+ <Node name="App_Themes" expanded="True">
+ <Node name="Default" expanded="True">
+ <Node name="03.layout.css" selected="True" />
+ </Node>
+ </Node>
+ <Node name="Content" expanded="True" />
+ <Node name="AddNewUser.aspx" expanded="True" />
+ </Node>
+ </State>
+ </Pad>
+ <Pad Id="ClassPad">
+ <State expanded="True" selected="True" />
+ </Pad>
+ <Pad Id="MonoDevelop.Debugger.WatchPad">
+ <State />
+ </Pad>
+ </Pads>
+ </MonoDevelop.Ide.Workbench>
+ <MonoDevelop.Ide.DebuggingService.Breakpoints>
+ <BreakpointStore />
+ </MonoDevelop.Ide.DebuggingService.Breakpoints>
+ <MonoDevelop.Ide.DebuggingService.PinnedWatches />
+</Properties>
View
BIN WebGoat/.DS_Store
Binary file not shown.
View
58 WebGoat/AddNewUser.aspx
@@ -0,0 +1,58 @@
+<%@ Page Title="" Language="C#" MasterPageFile="~/resources/Master-Pages/Site.Master" AutoEventWireup="true" CodeBehind="AddNewUser.aspx.cs" Inherits="OWASP.WebGoat.NET.AddNewUser" %>
+<asp:Content ID="Content1" ContentPlaceHolderID="HeadContentPlaceHolder" runat="server">
+
+</asp:Content>
+
+<asp:Content ID="Content3" ContentPlaceHolderID="HelpContentPlaceholder" runat="server">
+ This page allows you to add a new user
+</asp:Content>
+
+
+<asp:Content ID="Content2" ContentPlaceHolderID="BodyContentPlaceholder" runat="server">
+<h1 class="title-regular-4 clearfix">Add New User</h1>
+ <%--
+ <p>
+ <asp:CreateUserWizard ID="RegisterUser" runat="server"
+ CancelDestinationPageUrl="~/Default.aspx"
+ ContinueDestinationPageUrl="~/Default.aspx" DisplayCancelButton="True"
+ oncreatinguser="RegisterUser_CreatingUser">
+ <WizardSteps>
+ <asp:CreateUserWizardStep ID="CreateUserWizardStep1" runat="server" />
+ <asp:CompleteWizardStep ID="CompleteWizardStep1" runat="server" />
+ </WizardSteps>
+ </asp:CreateUserWizard>
+ </p>
+ --%>
+ <p>
+ <asp:Label runat="server" id="InvalidUserNameOrPasswordMessage" Visible="false" EnableViewState="false" ForeColor="Red"></asp:Label>
+ </p>
+
+ <p>
+ <table>
+ <tr>
+ <td>Enter a username: </td>
+ <td><asp:TextBox ID="Username" runat="server"></asp:TextBox></td>
+
+ </tr>
+ <tr>
+ <td>Choose a password:</td>
+ <td><asp:TextBox ID="Password" TextMode="Password" runat="server"></asp:TextBox></td>
+ </tr>
+ <tr>
+ <td>Enter your email address:</td>
+ <td><asp:TextBox ID="Email" runat="server"></asp:TextBox></td>
+ </tr>
+ <tr>
+ <td><asp:Label runat="server" ID="SecurityQuestion"></asp:Label>: </td>
+ <td><asp:TextBox ID="SecurityAnswer" runat="server"></asp:TextBox> </td>
+ </tr>
+ </table>
+ <p/>
+ <asp:Button ID="CreateAccountButton" runat="server"
+ Text="Create the User Account" onclick="CreateAccountButton_Click" />
+ </p>
+ <p>
+ <asp:Label ID="CreateAccountResults" runat="server"></asp:Label>
+ </p>
+</asp:Content>
+
View
100 WebGoat/AddNewUser.aspx.cs
@@ -0,0 +1,100 @@
+using System;
+using System.Collections;
+using System.Configuration;
+using System.Data;
+using System.Linq;
+using System.Web;
+using System.Web.Security;
+using System.Web.UI;
+using System.Web.UI.HtmlControls;
+using System.Web.UI.WebControls;
+using System.Web.UI.WebControls.WebParts;
+
+namespace OWASP.WebGoat.NET
+{
+ public partial class AddNewUser : System.Web.UI.Page
+ {
+ const string passwordQuestion = "What is your favorite color";
+
+ protected void Page_Load(object sender, EventArgs e)
+ {
+ if (!Page.IsPostBack)
+ SecurityQuestion.Text = passwordQuestion;
+ }
+
+ protected void CreateAccountButton_Click(object sender, EventArgs e)
+ {
+ MembershipCreateStatus createStatus;
+
+ MembershipUser newUser =
+ Membership.CreateUser(Username.Text, Password.Text,
+ Email.Text, passwordQuestion,
+ SecurityAnswer.Text, true,
+ out createStatus);
+
+ if(newUser == null)
+ Console.WriteLine("New User is null!");
+
+ switch (createStatus)
+ {
+ case MembershipCreateStatus.Success:
+ CreateAccountResults.Text = "The user account was successfully created!";
+ break;
+
+ case MembershipCreateStatus.DuplicateUserName:
+ CreateAccountResults.Text = "There already exists a user with this username.";
+ break;
+
+ case MembershipCreateStatus.DuplicateEmail:
+ CreateAccountResults.Text = "There already exists a user with this email address.";
+ break;
+
+ case MembershipCreateStatus.InvalidEmail:
+ CreateAccountResults.Text = "There email address you provided in invalid.";
+ break;
+
+ case MembershipCreateStatus.InvalidAnswer:
+ CreateAccountResults.Text = "There security answer was invalid.";
+ break;
+
+ case MembershipCreateStatus.InvalidPassword:
+ CreateAccountResults.Text = "The password you provided is invalid. It must be seven characters long and have at least one non-alphanumeric character.";
+ break;
+
+ default:
+ CreateAccountResults.Text = "There was an unknown error; the user account was NOT created.";
+ break;
+ }
+ }
+
+ protected void RegisterUser_CreatingUser(object sender, LoginCancelEventArgs e)
+ {
+ /*
+ string trimmedUserName = RegisterUser.UserName.Trim();
+ if (RegisterUser.UserName.Length != trimmedUserName.Length)
+ {
+ // Show the error message
+ InvalidUserNameOrPasswordMessage.Text = "The username cannot contain leading or trailing spaces.";
+ InvalidUserNameOrPasswordMessage.Visible = true;
+
+ // Cancel the create user workflow
+ e.Cancel = true;
+ }
+ else
+ {
+ // Username is valid, make sure that the password does not contain the username
+ if (RegisterUser.Password.IndexOf(RegisterUser.UserName, StringComparison.OrdinalIgnoreCase) >= 0)
+ {
+ // Show the error message
+ InvalidUserNameOrPasswordMessage.Text = "The username may not appear anywhere in the password.";
+ InvalidUserNameOrPasswordMessage.Visible = true;
+
+ // Cancel the create user workflow
+ e.Cancel = true;
+ }
+ }
+ */
+ }
+ }
+}
+
View
38 WebGoat/AddNewUser.aspx.designer.cs
@@ -0,0 +1,38 @@
+// ------------------------------------------------------------------------------
+// <autogenerated>
+// This code was generated by a tool.
+// Mono Runtime Version: 4.0.30319.1
+//
+// Changes to this file may cause incorrect behavior and will be lost if
+// the code is regenerated.
+// </autogenerated>
+// ------------------------------------------------------------------------------
+
+namespace OWASP.WebGoat.NET {
+
+
+ public partial class AddNewUser {
+
+ protected System.Web.UI.WebControls.Content Content1;
+
+ protected System.Web.UI.WebControls.Content Content3;
+
+ protected System.Web.UI.WebControls.Content Content2;
+
+ protected System.Web.UI.WebControls.Label InvalidUserNameOrPasswordMessage;
+
+ protected System.Web.UI.WebControls.TextBox Username;
+
+ protected System.Web.UI.WebControls.TextBox Password;
+
+ protected System.Web.UI.WebControls.TextBox Email;
+
+ protected System.Web.UI.WebControls.Label SecurityQuestion;
+
+ protected System.Web.UI.WebControls.TextBox SecurityAnswer;
+
+ protected System.Web.UI.WebControls.Button CreateAccountButton;
+
+ protected System.Web.UI.WebControls.Label CreateAccountResults;
+ }
+}
View
BIN WebGoat/App_Data/Provider.sqlite
Binary file not shown.
View
BIN WebGoat/App_Data/app_data.sqlite
Binary file not shown.
View
182 WebGoat/App_Data/data.sql
@@ -0,0 +1,182 @@
+CREATE TABLE MailingList (FirstName nvarchar(50) not null, LastName nvarchar(50), Email nvarchar(256))
+CREATE TABLE Users (UserID INT not null, UserName NVARCHAR(50) not null, Email NVARCHAR(50), Password NVARCHAR(50))
+CREATE TABLE Postings (PostingID INT not null, Email nvarchar(50) not null, Title nvarchar(50) not null, Message nvarchar(256), Filename nvarchar(256))
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1000','Grace','Mclean','ornare.tortor.at@Maecenaslibero.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1001','Amelia','Gutierrez','Etiam.ligula@nequeet.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1002','Scott','Burch','Pellentesque@Quisque.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1003','Steel','Delacruz','lacus.Etiam.bibendum@Nullam.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1004','Wayne','Kennedy','a.auctor.non@Nunc.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1005','Lacy','Mcgowan','massa.non@Donecfeugiatmetus.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1006','Joshua','Barlow','vel.arcu.eu@mauris.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1007','Frances','Solis','auctor@elit.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1008','Conan','Hodge','purus.Maecenas@Sedegetlacus.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1009','Alana','Morgan','magna.Praesent.interdum@et.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1010','Clayton','Gould','nibh.lacinia@loremipsum.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1011','Kibo','Leblanc','facilisis.Suspendisse@dignissimtempor.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1012','Jeremy','Hartman','Vivamus.rhoncus.Donec@massaSuspendisseeleifend.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1013','Patience','Mills','Sed.nec@pede.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1014','Kalia','Farmer','dignissim.pharetra@neccursus.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1015','Alexis','Mendez','non.magna@libero.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1016','Keelie','Hughes','tortor.Integer@porttitorinterdumSed.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1017','Mikayla','Spencer','Integer.in@Vestibulumaccumsan.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1018','Quentin','West','vehicula.Pellentesque@nibh.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1019','Stephanie','Dennis','lectus.sit@erosProinultrices.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1020','Zeus','Reeves','nisl.Quisque.fringilla@Cras.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1021','Armand','Travis','scelerisque@Integereulacus.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1022','Diana','Pearson','urna.Ut@nibhPhasellusnulla.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1023','Tobias','Wilkerson','amet@pretium.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1024','Aphrodite','Mayo','eu@interdumenim.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1025','Kim','Lindsey','cursus@Pellentesqueultricies.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1026','Cole','Carter','sit.amet@acturpisegestas.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1027','Kennan','Poole','amet.faucibus.ut@Proinegetodio.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1028','Timothy','Schmidt','Aliquam.gravida.mauris@sempercursus.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1029','Orli','Chaney','Morbi.non@tinciduntcongueturpis.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1030','Cade','Best','risus@Sed.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1031','Azalia','Mercado','augue.eu@Maurisquis.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1032','Andrew','English','pharetra@Fusce.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1033','Jonas','Ford','Vestibulum.ante.ipsum@ipsumcursus.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1034','Carly','Ferrell','eros.nec@pedenec.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1035','Lara','Hodge','Aenean.sed@tellus.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1036','Hedley','Woods','non.luctus@pede.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1037','Geraldine','Stuart','eu.tempor@iaculis.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1038','Martha','Snyder','at.fringilla@Fusce.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1039','Jordan','Morris','et.malesuada.fames@per.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1040','Brandon','Brady','nibh@diam.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1041','Garrett','Austin','nisl.Nulla@orciconsectetuereuismod.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1042','Barrett','Zimmerman','erat.vel@ataugueid.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1043','Zorita','Chan','ac.mattis@inconsequatenim.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1044','Stuart','Palmer','eget@arcuiaculisenim.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1045','Sybil','Myers','urna.suscipit@pharetrafeliseget.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1046','Lenore','Leon','penatibus.et@sedsapien.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1047','Hasad','Daniels','placerat.velit.Quisque@duiaugue.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1048','Chastity','Bender','senectus.et@IncondimentumDonec.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1049','Kitra','Anthony','consequat.enim@malesuadaiderat.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1050','Gloria','Simmons','ac.feugiat@arcuimperdiet.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1051','Thaddeus','Becker','ornare@ipsum.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1052','Melanie','Michael','et.malesuada@sitametconsectetuer.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1053','Isabelle','Paul','interdum.libero.dui@sagittisplaceratCras.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1054','Hillary','Madden','nunc@necante.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1055','Rahim','Nolan','montes.nascetur@dapibusligulaAliquam.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1056','Adele','Hall','amet.ultricies@Mauris.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1057','Mufutau','Collier','ante.Vivamus@egetmassaSuspendisse.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1058','Maggy','Warren','tincidunt.vehicula@nequevenenatis.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1059','Teegan','Fry','magnis.dis@nequenonquam.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1060','Octavia','Daniel','luctus@imperdietnon.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1061','Lillian','Clemons','orci.tincidunt.adipiscing@Nullamlobortis.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1062','Dillon','Richmond','at.libero@Nuncuterat.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1063','Colin','Reeves','magna.Sed.eu@posuere.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1064','Arden','Blake','Lorem@est.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1065','Tarik','Jarvis','rutrum.urna.nec@telluslorem.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1066','Akeem','Collins','adipiscing@Donecvitaeerat.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1067','Mia','Shepard','lorem@metusIn.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1068','Merrill','Berg','luctus.et.ultrices@vel.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1069','Ira','Howard','arcu@anteMaecenasmi.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1070','Lance','Rich','ligula.eu@nonummyultriciesornare.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1071','Tobias','Long','ante@blanditenim.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1072','Yasir','Acevedo','natoque.penatibus@hymenaeos.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1073','Cleo','Davidson','et.magnis.dis@nuncidenim.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1074','Lev','Sherman','sem.molestie.sodales@afacilisis.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1075','Kyla','Day','aliquam.enim@velitAliquamnisl.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1076','Callum','Snow','metus.sit@FuscefeugiatLorem.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1077','Urielle','Dudley','Nam@Uttincidunt.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1078','Cameran','Walters','Sed.congue.elit@nonenimcommodo.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1079','Haviva','Wyatt','dolor.nonummy.ac@justo.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1080','Zena','Woodward','mauris.rhoncus@indolorFusce.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1081','Nicholas','Wilder','vel@eu.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1082','Neville','Cummings','purus.Nullam@arcu.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1083','Vielka','Stein','sociis.natoque@dictumeueleifend.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1084','Ayanna','Jordan','nisi.a.odio@quisturpis.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1085','Farrah','Cantu','sapien.gravida@dis.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1086','Fulton','Parks','erat.semper@dolornonummyac.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1087','Athena','Dorsey','et.arcu@arcu.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1088','Yuli','Conrad','et.malesuada@arcuMorbisit.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1089','Caldwell','Hull','quis.accumsan@temporerat.com');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1090','Noah','Greer','sed@Sed.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1091','Yuri','Johns','facilisis.vitae.orci@nectempusscelerisque.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1092','Seth','Joyce','eget.varius@sapiengravidanon.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1093','Ginger','Fuller','sed@turpisNullaaliquet.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1094','Halla','Diaz','Nam.interdum@Duisdignissim.edu');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1095','Melyssa','Branch','mus@necmalesuada.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1096','Emma','Munoz','mollis.nec.cursus@eleifend.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1097','Rowan','Cooper','aliquet.vel.vulputate@laoreetipsum.org');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1098','Emery','Fletcher','magna.nec@odiosemper.ca');
+INSERT INTO MailingList (ContactID,FirstName,LastName,Email) VALUES ('1099','Brody','Morgan','risus.Duis.a@sitametrisus.com');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('K883','Noel','nulla@Phasellusinfelis.ca','habitant');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('Q027','Naida','sodales.elit.erat@Nullatinciduntneque.ca','etcet');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('O028','Kirestin','lectus.Nullam@Nullaeuneque.edu','arcu');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('O346','Alisa','velit@Fusce.com','mollis');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('I172','Yetta','Cras.dolor.dolor@dolortempusnon.edu','dolor.');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('W133','Nissim','morbi@Aliquameratvolutpat.org','rutrum.');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('H205','Autumn','tincidunt@odioPhasellus.ca','inout');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('Y166','Rhoda','magnis.dis@Nunc.edu','Donec');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('M586','Marah','fringilla.euismod@interdum.ca','ligula');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('R367','Wade','mi@loremeumetus.ca','dolor');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('N589','Tarik','pellentesque.Sed.dictum@Duis.org','vestibulum');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('U233','Ray','sollicitudin.commodo@egetodio.org','sedet,');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('T398','Ella','est.Nunc.ullamcorper@Pellentesque.edu','tincidunt');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('R165','Deanna','tortor.nibh.sit@Maecenasmalesuadafringilla.com','Sed');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('S692','Lance','Nam.porttitor@nibh.edu','eubob');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('J981','Montana','euismod.in.dolor@IncondimentumDonec.org','Utpuppy');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('E416','Ryan','vitae@nonummyultriciesornare.org','lectus');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('Q766','Mufutau','ligula.consectetuer@gravida.org','tempus');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('Q069','Cherokee','Ut.semper@penatibusetmagnis.com','Mauris');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('D916','Emerald','turpis.non@consectetueripsumnunc.ca','tempus');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('A999','Brent','parturient.montes@euligula.edu','euismod');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('W074','Preston','auctor.vitae@Nulla.edu','mauris,');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('Z734','Sybil','montes.nascetur@egetmetusIn.com','tellus');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('B384','Shannon','lorem.fringilla@laoreetipsumCurabitur.org','lobortis');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('Q980','Willa','vulputate.posuere.vulputate@ut.ca','Lorem');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('I366','Miriam','vitae.erat@ut.ca','Quisque');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('D215','Vanna','non@cubiliaCurae;.edu','arcu');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('B139','Amal','accumsan.neque@orciluctuset.edu','feugiat');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('X993','Seth','tellus.non.magna@primis.com','porttitor');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('Z182','Wendy','dui.quis@Nuncut.org','neque.');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('O630','Vivian','nunc.sed@Maecenasornare.org','turpis');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('W547','Basil','Duis.sit.amet@portaelita.edu','tristique');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('Q501','Xavier','non.dui.nec@ligulaNullam.ca','primis');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('S811','Idola','Proin.vel@dolorNullasemper.com','tempus');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('O402','Neville','convallis.erat@lacuspede.com','metus');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('U482','Chiquita','at.fringilla@lectusconvallis.com','pulvinar');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('N671','Dalton','elit@hendreritconsectetuer.ca','mauris');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('J500','Wyatt','ultrices.a@nonlobortis.edu','gravida');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('U311','Cameran','eget.tincidunt.dui@Phasellusfermentum.edu','mollis');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('N237','Clio','arcu.eu.odio@dui.org','dolor');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('B775','Benjamin','est@turpis.edu','Proin');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('J360','Aiko','Nam@at.com','turpis');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('S166','Jana','ornare.placerat.orci@Sed.org','Vivamus');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('D573','Denise','orci.Donec@non.org','nisi');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('I148','Brian','vel.quam.dignissim@volutpatNulladignissim.edu','felis');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('J424','Ella','Mauris.magna.Duis@nequetellus.org','dictum');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('R013','Brenna','a.auctor@etlibero.org','consectetuer');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('D511','Beatrice','ut.erat@nullaCraseu.ca','ornare,');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('Q191','Illiana','Nunc.ut@Pellentesque.org','mauris');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('S862','Yvonne','eget.tincidunt.dui@Aeneaneuismod.ca','dignissim');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('Y890','Rahim','Integer.aliquam@Etiamimperdietdictum.edu','adipiscing');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('U827','Tyrone','nunc.sed@Sednulla.com','luctus');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('D558','Cameran','Fusce@odio.ca','lectus');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('U981','Kenneth','est.Nunc@IntegermollisInteger.ca','montes');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('P646','Nomlanga','pellentesque.Sed@Crasvehiculaaliquet.com','natoque');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('C365','Pascale','dictum.Proin.eget@amagnaLorem.ca','Integer');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('C506','Maxwell','elementum.at.egestas@eleifend.edu','Mauris');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('P468','Plato','et@Cumsociis.org','vulputate');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('N282','Elvis','magna.Praesent.interdum@ligulaAliquam.org','sagittis');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('O506','Cedric','ipsum.dolor.sit@magnaUt.com','vestibulum');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('J693','Dominic','lobortis.ultrices@necmaurisblandit.edu','bibendum');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('O953','Noelle','accumsan@et.edu','aliquet');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('U511','Jamal','Morbi.quis@consequatnecmollis.edu','magna');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('U098','Walker','pede@massa.ca','pretium');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('P901','Mara','Nulla.aliquet.Proin@Crasegetnisi.org','dictum');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('L222','Halee','neque.vitae@Duis.edu','Donec');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('U008','Allistair','nostra@rhoncusDonecest.ca','pharetra');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('J859','Doris','quis.arcu.vel@fringillami.com','ipsum');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('Q013','Norman','ullamcorper.magna@turpis.ca','euismod');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('P672','Rana','est.Nunc.laoreet@ametdapibusid.edu','Donec');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('D676','Graham','Donec.egestas.Aliquam@portaelita.org','dapibus');
+INSERT INTO Users (UserID,UserName,Email,Password) VALUES ('B964','Berk','dolor@tristique.com','auctor');
+INSERT INTO Postings (PostingID,Email, Title, Message) VALUES ('820759','justo.sit@vitaeerat.com', 'D&D player needs help', 'As the title says, I am a new D&D player. I really want to start playing the game, but it all looks tricky. I was hoping for someone, or a group of players, to help me out. I would love to join a game even, as long as no one minds a new guy. But I would need help creating a character first. Any kind of character is all right for now, to help me learn, and I could work on my own later on. Is there anybody out there willing to help? I know only a little about the game, but not enough to get started on my own. Any help would be appreciated, but I would be so grateful if you showed me the ropes fully. Thanks in advance, I really want to play the game.');
+INSERT INTO Postings (PostingID,Email, Title, Message) VALUES ('950556','diam@pellentesquetellus.com', 'Trading guitar lessons for Wing Chun Kung Fu lessons!!!', 'So, I am looking to trade and make a buddy! Guy or Girl, it doesnt matter to me. You just need an eagerness to learn, teach, and the time to hang out! Let me teach you how to play the guitar, how to improvise, and even how to write your own songs. I cut out the fluff and try to be as efficient as possible in my teaching so you can pick it up QUICKLY! All I want from you is for you to teach me Wing Chun. I am not new to martial arts so I would guess I can pick it up at a decent rate. I can practice with you as a personal music coach as often as you like for an even trade of lesson and practice time from you in Wing Chun. I have guitar gear at my place that you can use and plenty of room for Kung Fu!');
+INSERT INTO Postings (PostingID,Email, Title, Message) VALUES ('833260','ornare.in@sed.org', 'Looking for poets!', 'Welcome to Poetry Corner Here you will not only be able to view but print or save any poem you like,we have poems from famous to infamous poets and also from poets like you. We here at Poetry Corner want to keep all forms of poetry alive for we feel that a great poem comes deep down from a persons soul,it is the most artistic form of expression ever imaginable.In our world today with all this technology of computers,cell phones, video games etc. One tends to forget the most fun and simple things in life like writing a beautiful poem that comes from the heart and you dont even need a Hi-Tech gadget which so many of us rely on today,all you need is a pencil a piece of paper and a little imaganation. So if you ever thought about writing a poem or have a stack of them just sitting around collecting dust now is your chance of having the whole world see them....');
+INSERT INTO Postings (PostingID,Email, Title, Message) VALUES ('100013','dolor@mi.ca', 'Free Stuff', 'Moving Giveaway: Tons of free stuff out front...Kitchen Utensils, Art, End Tables, Lamps, Night Stand, Organizers, Office Chair, Cornhole Set (Minus Bags and Legs), Carpet Shampooer (1 yr old), Vacuum (1 yr old), Dresser Unit, Large Vases, Coffee Table, Couch, Storage Totes and more...');
+INSERT INTO Postings (PostingID,Email, Title, Message) VALUES ('243898','nisi@faucibusleoin.com', '10 Gallon aquarium tank with Screen top! $10', '10 gallon Aquarium tank with locking screen top. Great condition! I can even throw in some foliage for a reptile tank. I no longer need this tank and am looking to clear our storage area.');
+INSERT INTO Postings (PostingID,Email, Title, Message) VALUES ('280233','bibendum@gravidasitamet.org', 'Tax Preparer for Artists', 'Tax preparer for individual artists and small business in the creative arts. Over twenty-five years of experience filling out tax forms for the IRS. Studied accounting at Northern Illinois University and received CPA certificate in 1978. I worked at CPA firm for three years and then decided to set up my own practice. Most of my clients are self-employed in the creative arts, and the work I do meets a broad a range of requirements from filing Corporate, Non-Profit and Individual tax returns, to doing the routine monthly bookkeeping work of posting cash disbursements, preparing the sales tax, payroll deposit and all the other accounting work. Very competitive rates. ');
+INSERT INTO Postings (PostingID,Email, Title, Message) VALUES ('858241','vitae@faucibusidlibero.ca', 'Magic The Gathering Tournament', 'Magic The Gathering Tournamnet coming soon. Great prizes avalible, entry fee as low as $5. Reply to this post for more info and tournament registration.');
View
BIN WebGoat/App_Data/goatdb.sqlite
Binary file not shown.
View
180 WebGoat/App_Data/tabledata.sql
@@ -0,0 +1,180 @@
+--Mailing List Data
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Grace','Mclean','aaa@bbb.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Amelia','Gutierrez','Etiam.ligula@nequeet.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Scott','Burch','Pellentesque@Quisque.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Steel','Delacruz','lacus.Etiam.bibendum@Nullam.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Wayne','Kennedy','a.auctor.non@Nunc.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Lacy','Mcgowan','massa.non@Donecfeugiatmetus.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Joshua','Barlow','vel.arcu.eu@mauris.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Frances','Solis','auctor@elit.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Conan','Hodge','purus.Maecenas@Sedegetlacus.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Alana','Morgan','magna.Praesent.interdum@et.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Clayton','Gould','nibh.lacinia@loremipsum.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Kibo','Leblanc','facilisis.Suspendisse@dignissimtempor.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Jeremy','Hartman','Vivamus.rhoncus.Donec@massaSuspendisseeleifend.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Patience','Mills','Sed.nec@pede.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Kalia','Farmer','dignissim.pharetra@neccursus.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Alexis','Mendez','non.magna@libero.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Keelie','Hughes','tortor.Integer@porttitorinterdumSed.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Mikayla','Spencer','Integer.in@Vestibulumaccumsan.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Quentin','West','vehicula.Pellentesque@nibh.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Stephanie','Dennis','lectus.sit@erosProinultrices.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Zeus','Reeves','nisl.Quisque.fringilla@Cras.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Armand','Travis','scelerisque@Integereulacus.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Diana','Pearson','urna.Ut@nibhPhasellusnulla.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Tobias','Wilkerson','amet@pretium.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Aphrodite','Mayo','eu@interdumenim.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Kim','Lindsey','cursus@Pellentesqueultricies.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Cole','Carter','sit.amet@acturpisegestas.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Kennan','Poole','amet.faucibus.ut@Proinegetodio.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Timothy','Schmidt','Aliquam.gravida.mauris@sempercursus.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Orli','Chaney','Morbi.non@tinciduntcongueturpis.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Cade','Best','risus@Sed.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Azalia','Mercado','augue.eu@Maurisquis.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Andrew','English','pharetra@Fusce.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Jonas','Ford','Vestibulum.ante.ipsum@ipsumcursus.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Carly','Ferrell','eros.nec@pedenec.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Lara','Hodge','Aenean.sed@tellus.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Hedley','Woods','non.luctus@pede.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Geraldine','Stuart','eu.tempor@iaculis.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Martha','Snyder','at.fringilla@Fusce.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Jordan','Morris','et.malesuada.fames@per.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Brandon','Brady','nibh@diam.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Garrett','Austin','nisl.Nulla@orciconsectetuereuismod.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Barrett','Zimmerman','erat.vel@ataugueid.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Zorita','Chan','ac.mattis@inconsequatenim.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Stuart','Palmer','eget@arcuiaculisenim.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Sybil','Myers','urna.suscipit@pharetrafeliseget.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Lenore','Leon','penatibus.et@sedsapien.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Hasad','Daniels','placerat.velit.Quisque@duiaugue.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Chastity','Bender','senectus.et@IncondimentumDonec.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Kitra','Anthony','consequat.enim@malesuadaiderat.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Gloria','Simmons','ac.feugiat@arcuimperdiet.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Thaddeus','Becker','ornare@ipsum.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Melanie','Michael','et.malesuada@sitametconsectetuer.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Isabelle','Paul','interdum.libero.dui@sagittisplaceratCras.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Hillary','Madden','nunc@necante.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Rahim','Nolan','montes.nascetur@dapibusligulaAliquam.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Adele','Hall','amet.ultricies@Mauris.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Mufutau','Collier','ante.Vivamus@egetmassaSuspendisse.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Maggy','Warren','tincidunt.vehicula@nequevenenatis.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Teegan','Fry','magnis.dis@nequenonquam.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Octavia','Daniel','luctus@imperdietnon.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Lillian','Clemons','orci.tincidunt.adipiscing@Nullamlobortis.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Dillon','Richmond','at.libero@Nuncuterat.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Colin','Reeves','magna.Sed.eu@posuere.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Arden','Blake','Lorem@est.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Tarik','Jarvis','rutrum.urna.nec@telluslorem.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Akeem','Collins','adipiscing@Donecvitaeerat.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Mia','Shepard','lorem@metusIn.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Merrill','Berg','luctus.et.ultrices@vel.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Ira','Howard','arcu@anteMaecenasmi.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Lance','Rich','ligula.eu@nonummyultriciesornare.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Tobias','Long','ante@blanditenim.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Yasir','Acevedo','natoque.penatibus@hymenaeos.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Cleo','Davidson','et.magnis.dis@nuncidenim.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Lev','Sherman','sem.molestie.sodales@afacilisis.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Kyla','Day','aliquam.enim@velitAliquamnisl.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Callum','Snow','metus.sit@FuscefeugiatLorem.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Urielle','Dudley','Nam@Uttincidunt.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Cameran','Walters','Sed.congue.elit@nonenimcommodo.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Haviva','Wyatt','dolor.nonummy.ac@justo.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Zena','Woodward','mauris.rhoncus@indolorFusce.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Nicholas','Wilder','vel@eu.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Neville','Cummings','purus.Nullam@arcu.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Vielka','Stein','sociis.natoque@dictumeueleifend.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Ayanna','Jordan','nisi.a.odio@quisturpis.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Farrah','Cantu','sapien.gravida@dis.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Fulton','Parks','erat.semper@dolornonummyac.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Athena','Dorsey','et.arcu@arcu.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Yuli','Conrad','et.malesuada@arcuMorbisit.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Caldwell','Hull','quis.accumsan@temporerat.com');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Noah','Greer','sed@Sed.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Yuri','Johns','facilisis.vitae.orci@nectempusscelerisque.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Seth','Joyce','eget.varius@sapiengravidanon.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Ginger','Fuller','sed@turpisNullaaliquet.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Halla','Diaz','Nam.interdum@Duisdignissim.edu');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Melyssa','Branch','mus@necmalesuada.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Emma','Munoz','mollis.nec.cursus@eleifend.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Rowan','Cooper','aliquet.vel.vulputate@laoreetipsum.org');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Emery','Fletcher','magna.nec@odiosemper.ca');
+INSERT INTO MailingList (FirstName,LastName,Email) VALUES ('Brody','Morgan','risus.Duis.a@sitametrisus.com');
+--UserList table data
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('A111','Noel','nulla@Phasellusinfelis.ca','habitant');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('A222','Naida','sodales.elit.erat@Nullatinciduntneque.ca','etcet');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('A333','Kirestin','lectus.Nullam@Nullaeuneque.edu','arcu');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('A444','Alisa','velit@Fusce.com','mollis');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('A555','Yetta','Cras.dolor.dolor@dolortempusnon.edu','dolor');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('A666','Nissim','morbi@Aliquameratvolutpat.org','rutrum');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('A777','Autumn','tincidunt@odioPhasellus.ca','inout');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('A888','Rhoda','magnis.dis@Nunc.edu','Donec');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('A999','Marah','fringilla.euismod@interdum.ca','ligula');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('B111','Wade','mi@loremeumetus.ca','dolor');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('B222','Tarik','pellentesque.Sed.dictum@Duis.org','vestibulum');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('B333','Ray','sollicitudin.commodo@egetodio.org','sedet');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('B444','Ella','est.Nunc.ullamcorper@Pellentesque.edu','tincidunt');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('B555','Lance','Nam.porttitor@nibh.edu','eubob');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('J981','Montana','euismod.in.dolor@IncondimentumDonec.org','Utpuppy');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('E416','Ryan','vitae@nonummyultriciesornare.org','lectus');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('Q766','Mufutau','ligula.consectetuer@gravida.org','tempus');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('Q069','Cherokee','Ut.semper@penatibusetmagnis.com','Mauris');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('D916','Emerald','turpis.non@consectetueripsumnunc.ca','tempus');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('A999','Brent','parturient.montes@euligula.edu','euismod');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('W074','Preston','auctor.vitae@Nulla.edu','mauris');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('Z734','Sybil','montes.nascetur@egetmetusIn.com','tellus');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('B384','Shannon','lorem.fringilla@laoreetipsumCurabitur.org','lobortis');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('Q980','Willa','vulputate.posuere.vulputate@ut.ca','Lorem');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('I366','Miriam','vitae.erat@ut.ca','Quisque');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('D215','Vanna','non@cubiliaCurae;.edu','arcu');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('B139','Amal','accumsan.neque@orciluctuset.edu','feugiat');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('X993','Seth','tellus.non.magna@primis.com','porttitor');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('Z182','Wendy','dui.quis@Nuncut.org','neque');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('O630','Vivian','nunc.sed@Maecenasornare.org','turpis');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('W547','Basil','Duis.sit.amet@portaelita.edu','tristique');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('Q501','Xavier','non.dui.nec@ligulaNullam.ca','primis');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('S811','Idola','Proin.vel@dolorNullasemper.com','tempus');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('O402','Neville','convallis.erat@lacuspede.com','metus');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('U482','Chiquita','at.fringilla@lectusconvallis.com','pulvinar');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('N671','Dalton','elit@hendreritconsectetuer.ca','mauris');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('J500','Wyatt','ultrices.a@nonlobortis.edu','gravida');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('U311','Cameran','eget.tincidunt.dui@Phasellusfermentum.edu','mollis');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('N237','Clio','arcu.eu.odio@dui.org','dolor');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('B775','Benjamin','est@turpis.edu','Proin');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('J360','Aiko','Nam@at.com','turpis');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('S166','Jana','ornare.placerat.orci@Sed.org','Vivamus');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('D573','Denise','orci.Donec@non.org','nisi');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('I148','Brian','vel.quam.dignissim@volutpatNulladignissim.edu','felis');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('J424','Ella','Mauris.magna.Duis@nequetellus.org','dictum');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('R013','Brenna','a.auctor@etlibero.org','consectetuer');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('D511','Beatrice','ut.erat@nullaCraseu.ca','ornare,');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('Q191','Illiana','Nunc.ut@Pellentesque.org','mauris');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('S862','Yvonne','eget.tincidunt.dui@Aeneaneuismod.ca','dignissim');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('Y890','Rahim','Integer.aliquam@Etiamimperdietdictum.edu','adipiscing');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('U827','Tyrone','nunc.sed@Sednulla.com','luctus');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('D558','Cameran','Fusce@odio.ca','lectus');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('U981','Kenneth','est.Nunc@IntegermollisInteger.ca','montes');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('P646','Nomlanga','pellentesque.Sed@Crasvehiculaaliquet.com','natoque');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('C365','Pascale','dictum.Proin.eget@amagnaLorem.ca','Integer');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('C506','Maxwell','elementum.at.egestas@eleifend.edu','Mauris');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('P468','Plato','et@Cumsociis.org','vulputate');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('N282','Elvis','magna.Praesent.interdum@ligulaAliquam.org','sagittis');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('O506','Cedric','ipsum.dolor.sit@magnaUt.com','vestibulum');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('J693','Dominic','lobortis.ultrices@necmaurisblandit.edu','bibendum');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('O953','Noelle','accumsan@et.edu','aliquet');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('U511','Jamal','Morbi.quis@consequatnecmollis.edu','magna');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('U098','Walker','pede@massa.ca','pretium');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('P901','Mara','Nulla.aliquet.Proin@Crasegetnisi.org','dictum');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('L222','Halee','neque.vitae@Duis.edu','Donec');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('U008','Allistair','nostra@rhoncusDonecest.ca','pharetra');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('J859','Doris','quis.arcu.vel@fringillami.com','ipsum');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('Q013','Norman','ullamcorper.magna@turpis.ca','euismod');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('P672','Rana','est.Nunc.laoreet@ametdapibusid.edu','Donec');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('D676','Graham','Donec.egestas.Aliquam@portaelita.org','dapibus');
+INSERT INTO UserList (UserID,UserName,Email,Password) VALUES ('B964','Berk','dolor@tristique.com','auctor');
+--Messages table data
+INSERT INTO Postings (Email, Title, Message) VALUES ('justo.sit@vitaeerat.com', 'D&D player needs help', 'As the title says, I am a new D&D player. I really want to start playing the game, but it all looks tricky. I was hoping for someone, or a group of players, to help me out. I would love to join a game even, as long as no one minds a new guy. But I would need help creating a character first. Any kind of character is all right for now, to help me learn, and I could work on my own later on. Is there anybody out there willing to help? I know only a little about the game, but not enough to get started on my own. Any help would be appreciated, but I would be so grateful if you showed me the ropes fully. Thanks in advance, I really want to play the game.');
+INSERT INTO Postings (Email, Title, Message) VALUES ('ornare.in@sed.org', 'Looking for poets!', 'Welcome to Poetry Corner Here you will not only be able to view but print or save any poem you like,we have poems from famous to infamous poets and also from poets like you. We here at Poetry Corner want to keep all forms of poetry alive for we feel that a great poem comes deep down from a persons soul,it is the most artistic form of expression ever imaginable.In our world today with all this technology of computers,cell phones, video games etc. One tends to forget the most fun and simple things in life like writing a beautiful poem that comes from the heart and you dont even need a Hi-Tech gadget which so many of us rely on today,all you need is a pencil a piece of paper and a little imaganation. So if you ever thought about writing a poem or have a stack of them just sitting around collecting dust now is your chance of having the whole world see them....');
+INSERT INTO Postings (Email, Title, Message) VALUES ('dolor@mi.ca', 'Free Stuff', 'Moving Giveaway: Tons of free stuff out front...Kitchen Utensils, Art, End Tables, Lamps, Night Stand, Organizers, Office Chair, Cornhole Set (Minus Bags and Legs), Carpet Shampooer (1 yr old), Vacuum (1 yr old), Dresser Unit, Large Vases, Coffee Table, Couch, Storage Totes and more...');
+INSERT INTO Postings (Email, Title, Message) VALUES ('nisi@faucibusleoin.com', '10 Gallon aquarium tank with Screen top! $10', '10 gallon Aquarium tank with locking screen top. Great condition! I can even throw in some foliage for a reptile tank. I no longer need this tank and am looking to clear our storage area.');
+INSERT INTO Postings (Email, Title, Message) VALUES ('bibendum@gravidasitamet.org', 'Tax Preparer for Artists', 'Tax preparer for individual artists and small business in the creative arts. Over twenty-five years of experience filling out tax forms for the IRS. Studied accounting at Northern Illinois University and received CPA certificate in 1978. I worked at CPA firm for three years and then decided to set up my own practice. Most of my clients are self-employed in the creative arts, and the work I do meets a broad a range of requirements from filing Corporate, Non-Profit and Individual tax returns, to doing the routine monthly bookkeeping work of posting cash disbursements, preparing the sales tax, payroll deposit and all the other accounting work. Very competitive rates. ');
+INSERT INTO Postings (Email, Title, Message) VALUES ('vitae@faucibusidlibero.ca', 'Magic The Gathering Tournament', 'Magic The Gathering Tournamnet coming soon. Great prizes avalible, entry fee as low as $5. Reply to this post for more info and tournament registration.');
View
3 WebGoat/App_Data/tables.sql
@@ -0,0 +1,3 @@
+CREATE TABLE MailingList (ContactID INTEGER PRIMARY KEY AUTOINCREMENT, FirstName nvarchar(50) not null, LastName nvarchar(50), Email nvarchar(256))
+CREATE TABLE UserList (UserID nvarchar(6) not null, UserName nvarchar(50) not null, Email nvarchar(50), Password nvarchar(50))
+CREATE TABLE Postings (PostingID INTEGER PRIMARY KEY AUTOINCREMENT, Email nvarchar(50) not null, Title nvarchar(50) not null, Message ntext, Filename nvarchar(256))
View
0 WebGoat/App_Data/test.sqlite
No changes.
View
BIN WebGoat/App_Themes/.DS_Store
Binary file not shown.
View
44 WebGoat/App_Themes/Default/00.reset.css
@@ -0,0 +1,44 @@
+html, body, div, span, applet, object, iframe, h1, h2, h3, h4, h5, h6, p, blockquote, pre, a, abbr, acronym, address, big, cite, code, del, dfn, em, font, img, ins, kbd, q, s, samp, small, strike, strong, sub, sup, tt, var, b, u, i, center, dl, dt, dd, ol, ul, li, fieldset, form, label, legend, table, caption, tbody, tfoot, thead, tr, th, td
+{
+ margin: 0;
+ padding: 0;
+ border: 0;
+ outline: 0;
+ font-size: 100%;
+ vertical-align: baseline;
+ background: transparent;
+}
+body
+{
+ line-height: 1;
+}
+ol, ul
+{
+ list-style: none;
+}
+blockquote, q
+{
+ quotes: none;
+}
+blockquote:before, blockquote:after, q:before, q:after
+{
+ content: '';
+ content: none;
+}
+:focus
+{
+ outline: 0;
+}
+ins
+{
+ text-decoration: none;
+}
+del
+{
+ text-decoration: line-through;
+}
+table
+{
+ border-collapse: collapse;
+ border-spacing: 0;
+}
View
519 WebGoat/App_Themes/Default/01.960_24_col.css
@@ -0,0 +1,519 @@
+body
+{
+ min-width: 960px;
+}
+.container_24
+{
+ margin-left: auto;
+ margin-right: auto;
+ width: 960px;
+}
+.grid_1, .grid_2, .grid_3, .grid_4, .grid_5, .grid_6, .grid_7, .grid_8, .grid_9, .grid_10, .grid_11, .grid_12, .grid_13, .grid_14, .grid_15, .grid_16, .grid_17, .grid_18, .grid_19, .grid_20, .grid_21, .grid_22, .grid_23, .grid_24
+{
+ display: inline;
+ float: left;
+ margin-left: 5px;
+ margin-right: 5px;
+}
+.push_1, .pull_1, .push_2, .pull_2, .push_3, .pull_3, .push_4, .pull_4, .push_5, .pull_5, .push_6, .pull_6, .push_7, .pull_7, .push_8, .pull_8, .push_9, .pull_9, .push_10, .pull_10, .push_11, .pull_11, .push_12, .pull_12, .push_13, .pull_13, .push_14, .pull_14, .push_15, .pull_15, .push_16, .pull_16, .push_17, .pull_17, .push_18, .pull_18, .push_19, .pull_19, .push_20, .pull_20, .push_21, .pull_21, .push_22, .pull_22, .push_23, .pull_23
+{
+ position: relative;
+}
+.alpha
+{
+ margin-left: 0;
+}
+.omega
+{
+ margin-right: 0;
+}
+.container_24 .grid_1
+{
+ width: 30px;
+}
+.container_24 .grid_2
+{
+ width: 70px;
+}
+.container_24 .grid_3
+{
+ width: 110px;
+}
+.container_24 .grid_4
+{
+ width: 150px;
+}
+.container_24 .grid_5
+{
+ width: 190px;
+}
+.container_24 .grid_6
+{
+ width: 230px;
+}
+.container_24 .grid_7
+{
+ width: 270px;
+}
+.container_24 .grid_8
+{
+ width: 310px;
+}
+.container_24 .grid_9
+{
+ width: 350px;
+}
+.container_24 .grid_10
+{
+ width: 390px;
+}
+.container_24 .grid_11
+{
+ width: 430px;
+}
+.container_24 .grid_12
+{
+ width: 470px;
+}
+.container_24 .grid_13
+{
+ width: 510px;
+}
+.container_24 .grid_14
+{
+ width: 550px;
+}
+.container_24 .grid_15
+{
+ width: 590px;
+}
+.container_24 .grid_16
+{
+ width: 630px;
+}
+.container_24 .grid_17
+{
+ width: 670px;
+}
+.container_24 .grid_18
+{
+ width: 710px;
+}
+.container_24 .grid_19
+{
+ width: 750px;
+}
+.container_24 .grid_20
+{
+ width: 790px;
+}
+.container_24 .grid_21
+{
+ width: 830px;
+}
+.container_24 .grid_22
+{
+ width: 870px;
+}
+.container_24 .grid_23
+{
+ width: 910px;
+}
+.container_24 .grid_24
+{
+ width: 950px;
+}
+.container_24 .prefix_1
+{
+ padding-left: 40px;
+}
+.container_24 .prefix_2
+{
+ padding-left: 80px;
+}
+.container_24 .prefix_3
+{
+ padding-left: 120px;
+}
+.container_24 .prefix_4
+{
+ padding-left: 160px;
+}
+.container_24 .prefix_5
+{
+ padding-left: 200px;
+}
+.container_24 .prefix_6
+{
+ padding-left: 240px;
+}
+.container_24 .prefix_7
+{
+ padding-left: 280px;
+}
+.container_24 .prefix_8
+{
+ padding-left: 320px;
+}
+.container_24 .prefix_9
+{
+ padding-left: 360px;
+}
+.container_24 .prefix_10
+{
+ padding-left: 400px;
+}
+.container_24 .prefix_11
+{
+ padding-left: 440px;
+}
+.container_24 .prefix_12
+{
+ padding-left: 480px;
+}
+.container_24 .prefix_13
+{
+ padding-left: 520px;
+}
+.container_24 .prefix_14
+{
+ padding-left: 560px;
+}
+.container_24 .prefix_15
+{
+ padding-left: 600px;
+}
+.container_24 .prefix_16
+{
+ padding-left: 640px;
+}
+.container_24 .prefix_17
+{
+ padding-left: 680px;
+}
+.container_24 .prefix_18
+{
+ padding-left: 720px;
+}
+.container_24 .prefix_19
+{
+ padding-left: 760px;
+}
+.container_24 .prefix_20
+{
+ padding-left: 800px;
+}
+.container_24 .prefix_21
+{
+ padding-left: 840px;
+}
+.container_24 .prefix_22
+{
+ padding-left: 880px;
+}
+.container_24 .prefix_23
+{
+ padding-left: 920px;
+}
+.container_24 .suffix_1
+{
+ padding-right: 40px;
+}
+.container_24 .suffix_2
+{
+ padding-right: 80px;
+}
+.container_24 .suffix_3
+{
+ padding-right: 120px;
+}
+.container_24 .suffix_4
+{
+ padding-right: 160px;
+}
+.container_24 .suffix_5
+{
+ padding-right: 200px;
+}
+.container_24 .suffix_6
+{
+ padding-right: 240px;
+}
+.container_24 .suffix_7
+{
+ padding-right: 280px;
+}
+.container_24 .suffix_8
+{
+ padding-right: 320px;
+}
+.container_24 .suffix_9
+{
+ padding-right: 360px;
+}
+.container_24 .suffix_10
+{
+ padding-right: 400px;
+}
+.container_24 .suffix_11
+{
+ padding-right: 440px;
+}
+.container_24 .suffix_12
+{
+ padding-right: 480px;
+}
+.container_24 .suffix_13
+{
+ padding-right: 520px;
+}
+.container_24 .suffix_14
+{
+ padding-right: 560px;
+}
+.container_24 .suffix_15
+{
+ padding-right: 600px;
+}
+.container_24 .suffix_16
+{
+ padding-right: 640px;
+}
+.container_24 .suffix_17
+{
+ padding-right: 680px;
+}
+.container_24 .suffix_18
+{
+ padding-right: 720px;
+}
+.container_24 .suffix_19
+{
+ padding-right: 760px;
+}
+.container_24 .suffix_20
+{
+ padding-right: 800px;
+}
+.container_24 .suffix_21
+{
+ padding-right: 840px;
+}
+.container_24 .suffix_22
+{
+ padding-right: 880px;
+}
+.container_24 .suffix_23
+{
+ padding-right: 920px;
+}
+.container_24 .push_1
+{
+ left: 40px;
+}
+.container_24 .push_2
+{
+ left: 80px;
+}
+.container_24 .push_3
+{
+ left: 120px;
+}
+.container_24 .push_4
+{
+ left: 160px;
+}
+.container_24 .push_5
+{
+ left: 200px;
+}
+.container_24 .push_6
+{
+ left: 240px;
+}
+.container_24 .push_7
+{
+ left: 280px;
+}
+.container_24 .push_8
+{
+ left: 320px;
+}
+.container_24 .push_9
+{
+ left: 360px;
+}
+.container_24 .push_10
+{
+ left: 400px;
+}
+.container_24 .push_11
+{
+ left: 440px;
+}
+.container_24 .push_12
+{
+ left: 480px;
+}
+.container_24 .push_13
+{
+ left: 520px;
+}
+.container_24 .push_14
+{
+ left: 560px;
+}
+.container_24 .push_15
+{
+ left: 600px;
+}
+.container_24 .push_16
+{
+ left: 640px;
+}
+.container_24 .push_17
+{
+ left: 680px;
+}
+.container_24 .push_18
+{
+ left: 720px;
+}
+.container_24 .push_19
+{
+ left: 760px;
+}
+.container_24 .push_20
+{
+ left: 800px;
+}
+.container_24 .push_21
+{
+ left: 840px;
+}
+.container_24 .push_22
+{
+ left: 880px;
+}
+.container_24 .push_23
+{
+ left: 920px;
+}
+.container_24 .pull_1
+{
+ left: -40px;
+}
+.container_24 .pull_2
+{
+ left: -80px;
+}
+.container_24 .pull_3
+{
+ left: -120px;
+}
+.container_24 .pull_4
+{
+ left: -160px;
+}
+.container_24 .pull_5
+{
+ left: -200px;
+}
+.container_24 .pull_6
+{
+ left: -240px;
+}
+.container_24 .pull_7
+{
+ left: -280px;
+}
+.container_24 .pull_8
+{
+ left: -320px;
+}
+.container_24 .pull_9
+{
+ left: -360px;
+}
+.container_24 .pull_10
+{
+ left: -400px;
+}
+.container_24 .pull_11
+{
+ left: -440px;
+}
+.container_24 .pull_12
+{
+ left: -480px;
+}
+.container_24 .pull_13
+{
+ left: -520px;
+}
+.container_24 .pull_14
+{
+ left: -560px;
+}
+.container_24 .pull_15
+{
+ left: -600px;
+}
+.container_24 .pull_16
+{
+ left: -640px;
+}
+.container_24 .pull_17
+{
+ left: -680px;
+}
+.container_24 .pull_18
+{
+ left: -720px;
+}
+.container_24 .pull_19
+{
+ left: -760px;
+}
+.container_24 .pull_20
+{
+ left: -800px;
+}
+.container_24 .pull_21
+{
+ left: -840px;
+}
+.container_24 .pull_22
+{
+ left: -880px;
+}
+.container_24 .pull_23
+{
+ left: -920px;
+}
+.clear
+{
+ clear: both;
+ display: block;
+ overflow: hidden;
+ visibility: hidden;
+ width: 0;
+ height: 0;
+}
+.clearfix:before, .clearfix:after
+{
+ content: '\0020';
+ display: block;
+ overflow: hidden;
+ visibility: hidden;
+ width: 0;
+ height: 0;
+}
+.clearfix:after
+{
+ clear: both;
+}
+.clearfix
+{
+ zoom: 1;
+}
View
56 WebGoat/App_Themes/Default/02.text.css
@@ -0,0 +1,56 @@
+body
+{
+ font: 13px/1.5 'Segoe UI','Helvetica Neue',Arial,'Liberation Sans',FreeSans,sans-serif;
+}
+
+a:focus
+{
+ outline: 1px dotted;
+}
+hr
+{
+ border: 0 #ccc solid;
+ border-top-width: 1px;
+ clear: both;
+ height: 0;
+}
+h1
+{
+ font-size: 25px;
+}
+h2
+{
+ font-size: 23px;
+}
+h3
+{
+ font-size: 21px;
+}
+h4
+{
+ font-size: 19px;
+}
+h5
+{
+ font-size: 17px;
+}
+h6
+{
+ font-size: 15px;
+}
+ol
+{
+ list-style: decimal;
+}
+ul
+{
+ list-style: disc;
+}
+li
+{
+
+}
+p, dl, hr, h1, h2, h3, h4, h5, h6, ol, ul, pre, table, address, fieldset
+{
+ margin-bottom: 20px;
+}
View
183 WebGoat/App_Themes/Default/03.layout.css
@@ -0,0 +1,183 @@
+body
+{
+ min-height:100%;
+ text-align: center;
+ /* background-color: #e7f0fa; */
+ background-color: #ffffff;
+ margin:0;
+ padding:0;
+ height:100%;
+ padding-bottom:10px;
+}
+.container_16
+{
+ display: block;
+ text-align: left;
+ min-height:100%;
+ position:relative;
+}
+.HeaderTop
+{
+ display: block;
+}
+.branding
+{
+ background-image: url('./images/logo.png');
+ background-repeat: no-repeat;
+ height: 69px;
+}
+.branding-x2
+{
+ background-image: url('./images/logo2.png');
+ background-repeat: no-repeat;
+ height: 67px;
+}
+.eisk-info
+{
+ color: #14283C;
+ font-size: 12px;
+ line-height: normal;
+ /* border-right: 1px solid #D6E0E4;*/
+}
+.eisk-info a
+{
+ color: #2489b0;
+ text-decoration: none;
+}
+.eisk-info a:hover
+{
+ color: #1e7495;
+ text-decoration: none;
+}
+.HeaderGrad
+{
+ background-image: url('./images/eisk-header-grad.png');
+ height: 96px;
+ width: 100%;
+}
+.Header
+{
+ padding-top: 20px;
+}
+
+.HeadingMain h1
+{
+ font-size: 5em;
+}
+
+.HeadingMain h2
+{
+ font-size: 3em;
+ margin-top: -1em;
+}
+.UtilityMenu
+{
+ color: #90B9D2;
+ text-align: right;
+}
+.UtilityMenu a, .UtilityMenu a:visited
+{
+ color: #fff;
+ text-decoration: none;
+}
+.UtilityMenu a:hover, .UtilityMenu a:active
+{
+ color: #e3eff6;
+}
+
+
+.ContentMain
+{
+ min-height:100%;
+ height:100%;
+ background-color: #fff;
+ /* border-bottom: solid 1px #cdd5de; */
+ text-align: left;
+ padding-bottom: 120px;
+}
+.Content
+{
+ padding-left: 50px;
+}
+.ContentArea a
+{
+ color: #4D8FCF;
+
+}
+.ContentArea a:hover
+{
+ color: #417BAF;
+}
+.ContentArea ul
+{
+ list-style: square inside none;
+}
+.title-regular, .title-regular-2, .title-regular-3, .title-regular-4
+{
+ color: #2D5883;
+ font-weight: normal;
+ text-transform: uppercase;
+ }
+.title-regular
+{
+ border-bottom: 1px solid #D6E7F1;
+
+}
+.title-regular-2
+{
+ border: none;
+ font-size: 1.5em;
+ margin-bottom: 10px;
+}
+.title-regular-3
+{
+ border: none;
+ font-size: 1.25em;
+ margin-bottom: 5px;
+}
+. .round-box
+{
+ -moz-border-radius: 6px;
+ border-radius: 6px;
+}
+.FooterMain
+{
+ text-align: left;
+ padding: 20px 0;
+ bottom:0;
+ width:100%;
+ height:60px;
+}
+.grid-viewer
+{
+ overflow: auto;
+ margin: 0;
+}
+.button-right
+{
+ float: right;
+ position: relative;
+ top: 10px !important;
+}
+.ui-datepicker-trigger
+{
+ left: 5px;
+ position: relative;
+ top: 6px;
+ cursor: pointer;
+}
+.ui-datepicker-div select
+{
+ padding: 0;
+}
+
+.align-right
+{
+ text-align: right;
+}
+.required-field-indicator
+{
+ color: #CF0C2F;
+ vertical-align: sub;
+}
+
View
94 WebGoat/App_Themes/Default/BreadCrumb.css
@@ -0,0 +1,94 @@
+/* Float Clearing
+ ---------------------------------------------------------------------*/
+
+.module:after
+{
+ clear: both;
+ content: ".";
+ display: block;
+ height: 0;
+ visibility: hidden;
+}
+
+/* float clearing for IE6 */
+* html .module
+{
+ height: 1%;
+ overflow: visible;
+}
+
+/* float clearing for IE7 */
+* + html .module
+{
+ min-height: 1%;
+}
+
+/* Breadcrumb Styles
+ ---------------------------------------------------------------------*/
+
+.breadCrumb
+{
+ margin: 0;
+ padding: 0;
+ /* float: left;*/
+ display: block;
+ height: 21px;
+ overflow: hidden;
+ /*width: 990px;*/
+ padding: 5px 0;
+ background: #fff;
+}
+.bc-container
+{
+ margin: 0;
+ padding: 0;
+ height: 21px;
+ display: block;
+}
+.bc-seperator
+{
+ display: block;
+ float: left;
+ position: relative;
+ height: 21px;
+ overflow: hidden;
+ line-height: 21px;
+ margin: 0px 6px 0px 0;
+ padding: 0px 10px 0px 0;
+ font-size: .9167em;
+ background: url(./images/Chevron.gif) no-repeat 100% 0;
+}
+
+
+.breadCrumb a
+{
+ display: block;
+ position: relative;
+ height: 21px;
+ line-height: 21px;
+ overflow: hidden;
+ float: left;
+ color:#2D5883;
+ text-decoration:none;
+}
+.bc-container .first
+{
+ height: 16px !important;
+ text-indent: -1000em;
+ width: 16px;
+ padding: 0;
+ margin-top: 2px;
+ overflow: hidden;
+ background: url(./images/IconHome.gif) no-repeat 0 0;
+}
+.bc-container .first:hover
+{
+ background-position: 0 -16px;
+}
+.bc-container .last
+{
+ background: none;
+ margin-right: 0;
+ padding-right: 0;
+}
+
View
146 WebGoat/App_Themes/Default/Forms.css
@@ -0,0 +1,146 @@
+/* --------------------------------------------------------------
+
+ forms.css
+ * Sets up some default styling for forms
+ * Gives you classes to enhance your forms
+
+ Usage:
+ * For text fields, use class .title or .text
+ * For inline forms, use .inline (even when using columns)
+
+-------------------------------------------------------------- */
+
+label
+{
+ font-weight: normal;
+}
+fieldset
+{
+ padding: 1.4em;
+ margin: 0 0 1.5em 0;
+ border: 1px solid #ccc;
+}
+legend
+{
+ font-weight: bold;
+ font-size: 1.2em;
+}
+
+
+/* Form fields
+-------------------------------------------------------------- */
+
+input[type=text], input[type=password], input.text, input.title, textarea, select
+{
+ background-color: #fff;
+ border: 1px solid #bbb;
+}
+input[type=text]:focus, input[type=password]:focus, input.text:focus, input.title:focus, textarea:focus, select:focus
+{
+ border-color: #666;