Lots of CSRF News

sla.ckers.org is
ha.ckers sla.cking

Q and A on cross site request forgeries and breaking into sessions. It's one of the attacks that XSS enables and the attack of the future. For Session, fixations, hijacking, lockout, replay, session riding etc....

Go to Topic: Previous•Next

Go to: Forum List•Message List•New Topic•Search•Log In

Lots of CSRF News

Posted by: ntp

Date: November 23, 2007 09:33PM

OWASP recently released a new project with code
* http://www.owasp.org/index.php/Category:OWASP_CSRFTester_Project

I wonder how this compares to the CSRF Dorks / CSRFDB
* http://csrf.0x000000.com/csrfdb.php

Or how it compares to using CSRF Redirectors, such as the ones by Shiflett and PDP
* http://shiflett.org/blog/2007/jul/csrf-redirector

.mario and team also released CSRFx
* http://php-ids.org/2007/11/19/csrfx-the-youngest-phpids-family-member/

Options: Reply•Quote

Go to: Forum List•Message List•Search•Log In

Sorry, only registered users may post in this forum.

Click here to login