Start WebScarab and Webgoat as you did before, so you can see the WebGoat main page in Firefox.
At the upper left of the WebGoat window, click "Access Control Flaws".
In the "Access Control Flaws" section, click "Using an Access Control Matrix", as shown below.
Click the Lesson Plan button. A box opens explaining the purpose of this lesson. Read it. Then click the gray "Close this window" text at the bottom of the box.
Use the form to check each user's access to each resource. You should be able to find a user that can access resources that should be denied. If you get stuck, click the Solution button. When you find the user with improper access rights, the "Using an Access Control Matrix" item will show a green check mark, as shown below.
Use the form to check each user's access to each resource, and keep notes of the results. You should be able to find a user that can access resources that should be denied. If you get stuck, click the Solutiobn button.
At the upper left of the WebGoat window, In the "Access Control Flaws" section, click "Bypass a Path Based Access Control Scheme".
Click the Lesson Plan button. A box opens explaining the purpose of this lesson. Read it. Then click the gray "Close this window" text at the bottom of the box.
To complete this task, you will need to intercept a request and alter it. You could use the "Tamper Data" firefox extension, but you can also do it with WebScarab. In WebScarab, click the Proxy tab. Then click the "Manual Edit" tab. Then click the "Intercept requests" check box, as shown below.
In Firefox, in the WebGoat window, select a file and click the "View File" button. WebScarab intercepts the request. In the "Edit Request" box, in the top pane, click the Parsed tab. Click the "URL encoded" tab. In the "File" line, double-click the variable value, as shown below.
Now you can change the value of the 'File" variable to something the Web application designer did not intend. You should be able to access a file outside the "lesson_plans\English" folder. If you get stuck, click the Solution button. When you succeed, the "Bypass a Path Based Access Control Scheme" item will show a green check mark, as shown below.
Make sure both green check marks are visible.
Save this screen shot with a filename of Proj 15 from Your Name.
Email the image to [email protected] with a subject of "Project 5 from YOUR NAME".