forked from WebGoat/WebGoat-Lessons
-
Notifications
You must be signed in to change notification settings - Fork 0
/
pom.xml
160 lines (154 loc) · 6.14 KB
/
pom.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/maven-v4_0_0.xsd">
<name>webgoat-plugins-parent</name>
<modelVersion>4.0.0</modelVersion>
<groupId>org.owasp.webgoat.lesson</groupId>
<artifactId>webgoat-plugins-parent</artifactId>
<packaging>pom</packaging>
<version>1.0</version>
<properties>
<webgoat.container.version>7.1</webgoat.container.version>
</properties>
<modules>
<module>common</module>
<module>goat-hills-financial</module>
<module>access-control-matrix</module>
<module>back-doors</module>
<module>basic-authentication</module>
<module>blind-numeric-sql-injection</module>
<module>blind-script</module>
<module>blind-string-sql-injection</module>
<module>bypass-html-field-restrictions</module>
<module>challenge</module>
<module>client-side-filtering</module>
<module>client-side-validation</module>
<module>command-injection</module>
<module>concurrency-cart</module>
<module>cross-site-scripting</module>
<module>csrf-prompt-by-pass</module>
<module>csrf-token-by-pass</module>
<module>csrf</module>
<module>dangerous-eval-injection</module>
<module>db-cross-site-scripting</module>
<module>db-sql-injection</module>
<module>dom-injection</module>
<module>dom-xss</module>
<module>dos-login</module>
<module>encoding</module>
<module>fail-open-authentication</module>
<module>forced-browsing</module>
<module>forgot-password</module>
<module>hidden-field-tampering</module>
<module>how-to-work</module>
<module>html-clues</module>
<module>http-basics</module>
<module>http-only</module>
<module>insecure-login</module>
<module>java-script-validation</module>
<module>json-injection</module>
<!--<module>lesson-converter</module>-->
<module>lesson-template-legacy</module>
<module>log-spoofing</module>
<module>malicious-file-execution</module>
<module>multi-level-login1</module>
<module>multi-level-login2</module>
<module>off-by-one</module>
<module>password-strength</module>
<module>path-based-access-control</module>
<module>phishing</module>
<module>reflected-xss</module>
<module>remote-admin-flaw</module>
<module>role-based-access-control</module>
<module>same-origin-policy-protection</module>
<module>session-fixation</module>
<module>silent-transactions</module>
<module>soap-request</module>
<module>sql-injection</module>
<module>sql-numeric-injection</module>
<module>sql-string-injection</module>
<module>stored-xss</module>
<module>thread-safety-problem</module>
<module>trace-xss</module>
<module>unchecked-email</module>
<module>weak-authentication-cookie</module>
<module>weak-session-id</module>
<module>ws-sax-injection</module>
<module>ws-sql-injection</module>
<module>wsdl-scanning</module>
<module>xml-injection</module>
<module>xpath-injection</module>
<module>xxe</module>
<module>zip-bomb</module>
<!--Should be defined as the last module -->
<module>dist</module>
</modules>
<dependencies>
<dependency>
<groupId>org.owasp.webgoat</groupId>
<artifactId>webgoat-container</artifactId>
<scope>provided</scope>
<type>jar</type>
</dependency>
</dependencies>
<dependencyManagement>
<dependencies>
<dependency>
<groupId>javax.servlet</groupId>
<artifactId>javax.servlet-api</artifactId>
<version>3.1.0</version>
</dependency>
<dependency>
<groupId>org.owasp.webgoat</groupId>
<artifactId>webgoat-container</artifactId>
<version>${webgoat.container.version}</version>
<type>jar</type>
</dependency>
</dependencies>
</dependencyManagement>
<build>
<resources>
<resource>
<directory>${basedir}/src/main/java</directory>
</resource>
<resource>
<directory>${basedir}/src/main/resources</directory>
</resource>
</resources>
<plugins>
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-compiler-plugin</artifactId>
<version>3.1</version>
<configuration>
<source>1.7</source>
<target>1.7</target>
<encoding>ISO-8859-1</encoding>
</configuration>
</plugin>
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-dependency-plugin</artifactId>
<executions>
<execution>
<id>copy-artifact</id>
<phase>package</phase>
<goals>
<goal>copy</goal>
</goals>
<configuration>
<artifactItems>
<artifactItem>
<groupId>${project.groupId}</groupId>
<artifactId>${project.artifactId}</artifactId>
<version>${project.version}</version>
<type>${project.packaging}</type>
</artifactItem>
</artifactItems>
<outputDirectory>../target/plugins</outputDirectory>
</configuration>
</execution>
</executions>
</plugin>
</plugins>
</build>
</project>