Skip to content
Browse files

Working on unsafe block

  • Loading branch information...
1 parent 8eaf91b commit 8c934c78384fced845713bd4b47b22c8fcfe415d @hpapaxen hpapaxen committed Aug 13, 2012
Showing with 2 additions and 3 deletions.
  1. +2 −2 WebGoat/TODO.txt
  2. +0 −1 WebGoat/WebGoat.NET.csproj
View
4 WebGoat/TODO.txt
@@ -9,7 +9,6 @@ Unassigned:
+ Role manipulation (standard .net api for role (isInRole(request.getParameter("role")))
+ Verb tampering (changing POST/GET etc. request to something different)
* Google verb tampering by author: Rshan
-+ Unsafe
+ LDAP injection (research the APIs / point to the APIs)
+ Weak cryptographic cypher (mode & padding).
* Find out the default behavior (mode & padding)
@@ -27,7 +26,8 @@ Harry:
+ Create adaptor for switching out DBs (DONE)
* Amend Rebuild Page to easily switchout DBs (DONE)
+ Debugging leaks (DONE)
-+ Insecure message digest
++ Insecure message digest (DONE)
++ Unsafe
+ Insecure random # gen
+ Hard coded seed (For when using random funcationality)
+ Not using SSL
View
1 WebGoat/WebGoat.NET.csproj
@@ -958,7 +958,6 @@
</Compile>
</ItemGroup>
<Import Project="$(MSBuildBinPath)\Microsoft.CSharp.targets" />
- <Import Project="$(MSBuildExtensionsPath)\Microsoft\VisualStudio\v10.0\WebApplications\Microsoft.WebApplication.targets" />
<ProjectExtensions>
<MonoDevelop>
<Properties VerifyCodeBehindFields="true" VerifyCodeBehindEvents="true">

0 comments on commit 8c934c7

Please sign in to comment.
Something went wrong with that request. Please try again.