Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Q and A on cross site request forgeries and breaking into sessions. It's one of the attacks that XSS enables and the attack of the future. For Session, fixations, hijacking, lockout, replay, session riding etc.... 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
csrf dorks?
Posted by: tehryan
Date: May 05, 2007 02:37PM

has anyone thought of this? I was thinking about creating a platform like the google hacking db but for csrf urls... it raises some full disclosure ethics questions so gimme some feedback

Options: ReplyQuote
Re: csrf dorks?
Date: May 05, 2007 07:15PM

As in a database of URLs containing strings like "&logout=true" that are accessible via GET?


Awesome AnDrEw - That's The Sound Of Your Brain Crackin'
http://www.awesomeandrew.net/

Options: ReplyQuote
Re: csrf dorks?
Posted by: tehryan
Date: May 08, 2007 10:06AM

Yeah, a database of urls containing control variables for web apps that don't implement any csrf protection. I have quite a few for browser based php mmorpgs.

Options: ReplyQuote
Re: csrf dorks?
Posted by: rsnake
Date: May 08, 2007 07:43PM

I think it's a really good idea, actually. If nothing else it would help the scanning community to help start detecting this sort of thing - or at least make it a informational "check by hand" sort of flag.

- RSnake
Gotta love it. http://ha.ckers.org

Options: ReplyQuote
Re: csrf dorks?
Posted by: FR3DC3RV
Date: May 09, 2007 01:27PM

Good idea!!
There are plenty of sites vulnerable to CSRF and most of them don't care about it.

-------------------------------
http://fr3dc3rv.blogspot.com

Options: ReplyQuote
Re: csrf dorks?
Posted by: tehryan
Date: May 09, 2007 02:03PM

Great. I can design the UI/storage/retrieval, the whole shabang... but i don't have hosting, anybody feel like sharing? pwettypwettypwease.

Options: ReplyQuote
Re: csrf dorks?
Posted by: Anonymous User
Date: May 09, 2007 09:18PM

I can share some hosting, it can be a subdomain on my server like: CSRF.0x000000.COM or use it as a mirror with full FTP access. Anyway I like the idea and am interested to contribute to it.

Options: ReplyQuote
Re: csrf dorks?
Posted by: tehryan
Date: May 14, 2007 12:33PM

The code for this is almost done. Just a question, what would you all consider to be a good size for the varchar field storing the csrf url. My first inclination was to use 2083 which is the maximum length of a url in IE, but thats pretty big. Any suggestions?

Options: ReplyQuote
Re: csrf dorks?
Posted by: Anonymous User
Date: May 14, 2007 10:23PM

Usually I use longtext with no value, for anything bigger then 255 chars.

Options: ReplyQuote


Sorry, only registered users may post in this forum.