1

3 years ago · deb511d92a
--- a/.DS_Store
+++ b/.DS_Store
--- a/Command_Injection/Command_Injection.class
+++ b/Command_Injection/Command_Injection.class
--- a/Create_Boolean_Object/Create_Boolean_Object.class
+++ b/Create_Boolean_Object/Create_Boolean_Object.class
--- a/Create_String_Object/Create_String_Object.class
+++ b/Create_String_Object/Create_String_Object.class
--- a/Debug_Code/Debug_Code_bad.class
+++ b/Debug_Code/Debug_Code_bad.class
--- a/Debug_Code/Debug_Code_good.class
+++ b/Debug_Code/Debug_Code_good.class
--- a/Empty_Catch_Block/Empty_Catch_Block.class
+++ b/Empty_Catch_Block/Empty_Catch_Block.class
--- a/Empty_If_Block/Empty_If_Block.class
+++ b/Empty_If_Block/Empty_If_Block.class
--- a/Empty_Password/Empty_Password.class
+++ b/Empty_Password/Empty_Password.class
--- a/Empty_String_Compare/Empty_String_Compare.class
+++ b/Empty_String_Compare/Empty_String_Compare.class
--- a/Empty_Syn_Block/Empty_Syn_Block.class
+++ b/Empty_Syn_Block/Empty_Syn_Block.class
--- a/Expression_Always_False/Expression_Always_False_01.class
+++ b/Expression_Always_False/Expression_Always_False_01.class
--- a/Expression_Always_False/Expression_Always_False_02.class
+++ b/Expression_Always_False/Expression_Always_False_02.class
--- a/Expression_Always_True/Expression_Always_True_01.class
+++ b/Expression_Always_True/Expression_Always_True_01.class
--- a/Expression_Always_True/Expression_Always_True_02.class
+++ b/Expression_Always_True/Expression_Always_True_02.class
--- a/HTML_Comment_in_JSP/HTML_Comment_in_JSP.jsp
+++ b/HTML_Comment_in_JSP/HTML_Comment_in_JSP.jsp
@@ -0,0 +1,13 @@
 <%@ page language="java" contentType="text/html; charset=ISO-8859-1"
    pageEncoding="ISO-8859-1"%>
 <!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
 <html>
 <head>
 <meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1">
 <title>HTTP Splitting</title>
 </head>
 <body>  
 <% response.sendRedirect("https://aa.com/test.php"); %>	<%--  // good HTML Comment in JSP file --%>	        
 <!-- this is an html comment.it will show up int the response. -->  <%--  // bad HTML Comment in JSP file --%>
 </body>
 </html>
--- a/HTTP_Response_Splitting/HTTP_Response_Splitting.class
+++ b/HTTP_Response_Splitting/HTTP_Response_Splitting.class
--- a/Hard_Coded_Password/Hard_Coded_Password.class
+++ b/Hard_Coded_Password/Hard_Coded_Password.class
--- a/Insecuere_Randomness/Insecuere_Randomness.class
+++ b/Insecuere_Randomness/Insecuere_Randomness.class
--- a/J2EE_Bad_Practices_Use_of_System_Exit/J2EE_Bad_Practices_Use_of_System_Exit__Servlet_01.class
+++ b/J2EE_Bad_Practices_Use_of_System_Exit/J2EE_Bad_Practices_Use_of_System_Exit__Servlet_01.class
--- a/Just_one_of_Equals_or_hashCode_defined/Just_one_of_Equals_or_hashCode_defined_bad.class
+++ b/Just_one_of_Equals_or_hashCode_defined/Just_one_of_Equals_or_hashCode_defined_bad.class
--- a/Just_one_of_Equals_or_hashCode_defined/Just_one_of_Equals_or_hashCode_defined_good.class
+++ b/Just_one_of_Equals_or_hashCode_defined/Just_one_of_Equals_or_hashCode_defined_good.class
--- a/LDAP_Injection/LDAP_Injection.class
+++ b/LDAP_Injection/LDAP_Injection.class
--- a/Log_Forging/Log_Forging.class
+++ b/Log_Forging/Log_Forging.class
--- a/Logging_using_System_output/Logging_using_System_output.class
+++ b/Logging_using_System_output/Logging_using_System_output.class
--- a/Null_Password/Null_Password.class
+++ b/Null_Password/Null_Password.class
--- a/Obsolete_Method/Obsolete_Method.class
+++ b/Obsolete_Method/Obsolete_Method.class
--- a/Open_Redirect/Open_Redirect_bad.jsp
+++ b/Open_Redirect/Open_Redirect_bad.jsp
@@ -0,0 +1,6 @@
 <%@ page language="java" contentType="text/html; charset=ISO-8859-1" import="java.util.regex.*" 
    pageEncoding="ISO-8859-1"%>
 <%

 String strDest = request.getParameter("dest");
 pageContext.forward(strDest);   %>  <%--  // good Open Redirect --%>
--- a/Open_Redirect/Open_Redirect_good.jsp
+++ b/Open_Redirect/Open_Redirect_good.jsp
@@ -0,0 +1,8 @@
 <%@ page language="java" contentType="text/html; charset=ISO-8859-1" import="java.util.regex.*" 
    pageEncoding="ISO-8859-1"%>
 <%
 	String[] strURLArray = new String[]{"http://aa.com","http://bb.com","http://cc.com"};
    int strDest = Integer.parseInt(request.getParameter("dest"));
    if((strDest >= 0) && (strDest <= 15 ))
    {   String strFinalURL = strURLArray[strDest];
        pageContext.forward(strFinalURL);  } %>  <%--  // good Open Redirect --%>
--- a/Overly_board_Catch/Overly_board_Catch.class
+++ b/Overly_board_Catch/Overly_board_Catch.class
--- a/Overly_board_Throws/Overly_board_Throws.class
+++ b/Overly_board_Throws/Overly_board_Throws.class
--- a/Path_Manipulate/Path_Manipulate.class
+++ b/Path_Manipulate/Path_Manipulate.class
--- a/Persist_XSS/Persist_XSS.class
+++ b/Persist_XSS/Persist_XSS.class
--- a/Redundence_Initialize/Redundence_Initialize.class
+++ b/Redundence_Initialize/Redundence_Initialize.class
--- a/Reflect_XSS/Reflect_XSS_bad.jsp
+++ b/Reflect_XSS/Reflect_XSS_bad.jsp
@@ -0,0 +1,19 @@
 <%@ page language="java" contentType="text/html; charset=ISO-8859-1" import="java.util.regex.*"
    pageEncoding="ISO-8859-1"%>
 <%
 String action = request.getParameter("action");
 String field1 = request.getParameter("field1");
 String regex1 = "^[0-9]{3}$";// any three digits
 Pattern pattern1 = Pattern.compile(regex1);

 if("Purchase".equals(action))
 {
 	if(!pattern1.matcher(field1).matches())
 	{
 		/** If they supplied the right attack, pass them **/
 		
 		out.write("alert('Whoops: You entered an incorrect access code of \"" + field1 + "\"');");  // bad  XSS
 	}
 	
 }
 %>
--- a/Reflect_XSS/Reflect_XSS_good.jsp
+++ b/Reflect_XSS/Reflect_XSS_good.jsp
@@ -0,0 +1,20 @@
 <%@ page language="java" contentType="text/html; charset=ISO-8859-1" import="java.util.regex.*" 
    pageEncoding="ISO-8859-1"%>
 <%
 String action = request.getParameter("action");
 String field1 = "field1";
 String regex1 = "^[0-9]{3}$";// any three digits
 Pattern pattern1 = Pattern.compile(regex1);

 if("Purchase".equals(action))
 {
 	if(!pattern1.matcher(field1).matches())
 	{
 	
 		/** If they supplied the right attack, pass them **/
 		out.write("alert('Whoops: You entered an incorrect access code of \"" + field1 + "\"');");  // good  xss
 	
 	}
 	
 }
 %>
--- a/Return_in_Finally/Return_in_Finally.class
+++ b/Return_in_Finally/Return_in_Finally.class
--- a/SQL_Injection/SQL_Injection.class
+++ b/SQL_Injection/SQL_Injection.class
--- a/Static_Field_Not_Final/Static_Field_Not_Final.class
+++ b/Static_Field_Not_Final/Static_Field_Not_Final.class
--- a/String_Compare_Error/String_Compare_Error.class
+++ b/String_Compare_Error/String_Compare_Error.class
--- a/Stringbuild_in_loop/Stringbuild_in_loop.class
+++ b/Stringbuild_in_loop/Stringbuild_in_loop.class
--- a/System_Information_Leak/System_Information_Leak.class
+++ b/System_Information_Leak/System_Information_Leak.class
--- a/Throws_Excepiton_in_Finally/Throws_Excepiton_in_Finally.class
+++ b/Throws_Excepiton_in_Finally/Throws_Excepiton_in_Finally.class
--- a/Trust_Boundary_Violation/Trust_Boundary_Violation.class
+++ b/Trust_Boundary_Violation/Trust_Boundary_Violation.class
--- a/Unchecked_Return_Value/Unchecked_Return_Value.class
+++ b/Unchecked_Return_Value/Unchecked_Return_Value.class
--- a/Unreleased_DB_Resource/Unreleased_DB_Resource.class
+++ b/Unreleased_DB_Resource/Unreleased_DB_Resource.class
--- a/Unreleased_Stream/Unreleased_Stream.class
+++ b/Unreleased_Stream/Unreleased_Stream.class
--- a/Unsafe_Hash_Algorithm/Unsafe_Hash_Algorithm.class
+++ b/Unsafe_Hash_Algorithm/Unsafe_Hash_Algorithm.class
--- a/Unsafe_Reflection/Unsafe_Reflection.class
+++ b/Unsafe_Reflection/Unsafe_Reflection.class
--- a/Unused_Filed/Unused_Filed.class
+++ b/Unused_Filed/Unused_Filed.class
--- a/Unused_Method/Unused_Method.class
+++ b/Unused_Method/Unused_Method.class
--- a/Unused_Variable/Unused_Variable.class
+++ b/Unused_Variable/Unused_Variable.class
--- a/Use_Float_For_Compute/Use_Float_For_Compute.class
+++ b/Use_Float_For_Compute/Use_Float_For_Compute.class
--- a/Weak_Encryption/Weak_Encryption.class
+++ b/Weak_Encryption/Weak_Encryption.class
--- a/XPath_Injection/XPath_Injection.class
+++ b/XPath_Injection/XPath_Injection.class