SecureCodingDojo
SecureCodingDojo copied to clipboard
OWASP
The Secure Coding Dojo is a platform for delivering secure coding knowledge.
https://github.com/OWASP/SecureCodingDojo/issues/144
If you attempt to setup the slack integration you will be met with the error json is undefined due to the project passport-slack no longer being maintained. There is a...
removed deb.debian.org from the source.list was getting 404 error and amended archive.debian.org. Added command to generate CHALLENGE_MASTER_SALT via openssl.
Hi Team, Could you please double check the example mentioned under snipXSS3.jsp? I believe the `StringEscapeUtils.escapeHtml4` already handles single quotes and It is not necessary to replace the single quote...
We were doing the buffer overflow black belt challange with a couple of friends and after several attempts the challange stoped loading for all of us.
 Noticed that under the Code Review 101 challenge for Input Validation, not getting any option to solve it.
Exploit XXE alone to view `/usr/local/tomcat/logs/catalina.2023-10-05.log` on `host2`: ``` argument: -DSECRET3=/code/getCode.html#eyJhbGciOiJIUz... ```
It would be really helpful if the injection of configuration variables can be fully migrated to environment variables. This would allow users to deploy these tools to a k8s environment...
