Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Q and A on cross site request forgeries and breaking into sessions. It's one of the attacks that XSS enables and the attack of the future. For Session, fixations, hijacking, lockout, replay, session riding etc.... 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Lots of CSRF News
Posted by: ntp
Date: November 23, 2007 09:33PM

OWASP recently released a new project with code
* http://www.owasp.org/index.php/Category:OWASP_CSRFTester_Project

I wonder how this compares to the CSRF Dorks / CSRFDB
* http://csrf.0x000000.com/csrfdb.php

Or how it compares to using CSRF Redirectors, such as the ones by Shiflett and PDP
* http://shiflett.org/blog/2007/jul/csrf-redirector

.mario and team also released CSRFx
* http://php-ids.org/2007/11/19/csrfx-the-youngest-phpids-family-member/

Options: ReplyQuote


Sorry, only registered users may post in this forum.