Skip to content

Super-vulnerable to do list Java application

Notifications You must be signed in to change notification settings

gregoryrabbit/java-snyk-goof

 
 

Repository files navigation

Java Goof

A vulnerable demo application, initially based on Ben Hassine's TodoMVC.

The goal of this application is to demonstrate through example how to find, exploit and fix vulnerable Maven packages.

This repo is still incomplete, a work in progress to support related presentations.

Build and run Todolist MVC

(from the original README)

  1. Check out the project source code from github : git clone https://github.com/benas/todolist-mvc.git
  2. Open a terminal and run the following command from root directory : mvn install
  3. Choose a web framework to test and run it. For example : cd todolist-web-springmvc && mvn tomcat7:run (note: this example currently only copied the Struts demo)
  4. Browse the following URL : localhost:8080/
  5. You can register a new account or login using the following credentials : foo@bar.org / foobar

License

This repo is available released under the MIT License.

About

Super-vulnerable to do list Java application

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Java 60.2%
  • HTML 32.8%
  • CSS 4.1%
  • Lua 1.2%
  • Shell 1.1%
  • TSQL 0.4%
  • Python 0.2%