How to do it...

  1. Ensure the owaspbwa VM is running. Select the OWASP WebGoat application from the initial landing page of the VM. The landing page will be configured to an IP address specific to your machine.
  2. After you click the OWASP WebGoat link, you will be prompted for login credentials. Use these credentials: username: guest; password: guest.
  3. After authentication, click the Start WebGoat button to access the application exercises.
  1. Click Malicious Execution | Malicious File Execution from the left-hand menu. You are presented with a file upload functionality page. The instructions state that only images are allowed for upload:

  1. Browse ...

Get Burp Suite Cookbook now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.