Difference between revisions of "WebGoat Installation"

From OWASP
Jump to: navigation, search
 
Line 1: Line 1:
 +
[[WebGoat User Guide Table of Contents]]
 +
__TOC__
 +
 
WebGoat is a platform independent environment.
 
WebGoat is a platform independent environment.
 
It utilizes Apache Tomcat and the JAVA development environment.
 
It utilizes Apache Tomcat and the JAVA development environment.

Revision as of 13:46, 5 June 2006

WebGoat User Guide Table of Contents

Contents


WebGoat is a platform independent environment. It utilizes Apache Tomcat and the JAVA development environment. Installers are provided for Microsoft Windows and UN*X environments, together with notes for installation on other platforms.

Installing Java and Tomcat

  1. <This section may not be needed, update for v4>

Installing to Windows

  1. Unzip the Windows_WebGoat-x.x.zip to your working environment
  2. To start Tomcat, browse to the WebGoat directory unzipped above and double click "webgoat.bat"
  3. Start your browser and browse to: http://localhost/WebGoat/attack This link is case-sensitive. Make sure to use a large ‘W’ and ‘G’.

Installing to Linux

  • 1. Download and install Java JDK 1.5 from Sun (http://java.sun.com)
  • 2. Unzip the Unix_WebGoat-x.x.zip to your working directory
  • 3. Edit the following line in webgoat.sh, set JAVA_HOME to your JDK1.5 path.
 JAVA_HOME="SET ME TO YOUR JAVA 1.5 JDK PATH"
  • 4. Since the latest version runs on a privileged port, you will need to start/stop WebGoat as root.

sudo sh webgoat.sh start sudo sh webgoat.sh stop

Installing to OS X (Tiger 10.4+)

  1. Unzip the Unix_WebGoat-x.x.zip to your working directory
  2. Since the latest version runs on a privileged port, you will need to start/stop WebGoat as root.

sudo sh webgoat.sh start sudo sh webgoat.sh stop

Running

  1. Start your browser and browse to: http://localhost/WebGoat/attack. Notice the capital 'W' and 'G'
  2. Login in as: user = guest, password = guest

Building

Skip these steps if you just want to run WebGoat <this section is incomplete>


WebGoat User Guide Table of Contents

This article is a stub. You can help OWASP by expanding it or discussing it on its Talk page.