Activity for Web Security Dojo
-
David Rhoades created ticket #93
add API target - websheep
-
haderson hudai posted a comment on discussion General Discussion
hello bro this web security is ok for my website i have many issue in my web please suggest me i am vert confused
-
add API target
-
Add screenkey tool
-
Web Security Dojo released /Version_3.4.1/Dojo-3.4.1.ova.gpg
-
-
gi0cann modified ticket #31
ZAP HUD attacking POST requests from History
-
Updates cleanup instructions in release checklist
-
Fixes nowasp target url on target list.
-
Updates mutillidae apache config file to fix menus
-
Updates zap config.xml to work with zap version 2.9
-
Updates wavsep ansible roles to retry install request instead of using a sleeping before trying install request.
-
Fixes error where zap role doesn't create plugin directory before installing plugins causing updates to fail.
-
Video wishlist
-
add Insecure Web App creds to menu and home page
-
add tmux
-
update beef and add libcurl dependency
-
Adds timeout to wavsep playbook to wait 30 seconds before running install to avoid timeout issues
-
Adds tmux
-
Fixes #35 OWASP Mutillidae II is missing php-curl
-
Fixes #34 ZAP does not update properly with apt-get upgrade.
-
Fixes #33 keep php.ini insecure
-
Updates rvm install
-
Replaces insecurewebapp absolute paths with relative paths
-
Removes dojo.retry
-
Add bookmark to list of online targets
-
ZAP does not update properly with apt-get upgrade
-
OWASP Mutillidae II is missing php-curl
-
keep php.ini insecure
-
Here is an example of a bookmark that would point to a list of known test sites: http://www.vulnweb.com/ - this is from Acunetix (scanner vendor) These kind of meta links are ideal since in theory the vendor will add new test sites and link to them from here.
-
Merge branch '3.4'
-
investigate potential impact of remote web resources in targets
-
Add OWASP DevSlop
-
OWASP Mutillidae II is missing php-curl
-
Yes we can do this
-
ZAP does not update properly with apt-get upgrade
-
I've re-opened this ticket. This is a critical bug. User gets Dojo and ZAP is fine out of the box, then ZAP Update and suddenly Quick Start fails. That is not acceptable behavior. We need to find a solution. I really want Quick Start in ZAP to work. Maybe if we just install ZAP v2.8.1 it will be solved.
-
Why can't we install ZAP from official repos? https://software.opensuse.org/download.html?project=home%3Acabelo&package=owasp-zap
-
ZAP does not update properly with apt-get upgrade
-
ZAP is not installed using apt-get. Kali has it installed using apt-get because they run their own repos.
-
ZAP does not update properly with apt-get upgrade
-
keep php.ini insecure
-
add tmux
-
Adds additional cleanup and instructions to shrink vm virtual disk to cut down on ova size.
-
-
-
-
-
-
-
-
-
Adds username and password to menu files for targets
-
Adds target username and password to target list page
-
Replaces absolute links with relative links in insecure web app tutorial
-
Adds Online Test Target list bookmark to firefox
-
missing evince - GNOME document viewer
-
ZAP ports and MM3
-
Fixes zap proxy port from 8083 8003
-
ZAP ports and MM3
-
Updates all menu files to include GenericName
-
Adds evince install to misc_setup role
-
Updates release checklist
-
ZAP HUD attacking POST requests from History
-
add Insecure Web App creds to menu and home page
-
GenericName missing from all menu items - especially Tools
-
311b66a..19f07c2
-
add GenericName to tools, docs, and targets
-
GenericName missing from all menu items - especially Tools
-
GenericName missing from all menu items - especially Tools
-
missing evince - GNOME document viewer
-
Add bookmark to list of online targets
-
Burp Suite listing under Tools
-
Fixes burp suite not being in the tools menu section
-
Fixes zap config.xml to make opening browser from inside zap to work properly
-
Burp Suite listing under Tools
-
Adds task to misc_setup role to enable autologin.
-
auto-login
-
auto-login
-
update Burp Suite Community to v2.1
-
update OWASP ZAP to v2.8.x
-
Vm settings for 33.4 beta
-
Fixes duplicate burpsuite menu item
-
Fixes rvm use ruby version in beef launch script.
-
Updates mysql task to work with ansible 2.8
-
Changes gruyere documentation location to not use file:// protocol
-
Updates firefox profile to change behaviour where a new tab shows the targets page.
-
Adds new background images
-
Adds credit for new desktop background images to README.html
-
Adds zap 2.8
-
Vm settings for 33.4 beta
-
update OWASP ZAP to v2.8.x
-
update Burp Suite Community to v2.1
-
Install target - coindex
-
It may even have API interface now: http://demo.testfire.net/swagger/properties.json Which will allow API testing labs (e.g. using Burp API extension)
-
Target - Altoro Mutual
-
Adds cleanup roles to cleanup Downloads directory post build. Renames cleanup_setup role to misc_setup
-
Updates wavsep download url
-
Installed target - coindex
-
consider using ~/Downloads during builds
1 >