Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Q and A on cross site request forgeries and breaking into sessions. It's one of the attacks that XSS enables and the attack of the future. For Session, fixations, hijacking, lockout, replay, session riding etc.... 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
Creating Referer header CSRF
Posted by: pazwant
Date: April 28, 2008 04:04PM

hi all,

We test CSRF within post requests, however the post request have a referrer control in itself.So I create a server site post request to my domain to vulnerable domain with using PhP-Curl and java socket(servlet) however i could not set referrer header to related other domain(that i post CSRF request) how could we create this referrer header with in request ?

Options: ReplyQuote
Re: Creating Referer header CSRF
Posted by: birdie
Date: May 10, 2008 10:39PM

<iframe src="javascript:'<form name=k method=post action=http://yay><input type=hidden name=id value=2 ><input type=submit></form><script>document.k.submit()</script>'"></iframe>

Not quite sure what you mean, whatever.
This will clean the referrer.
Have fun.

Options: ReplyQuote
Re: Creating Referer header CSRF
Posted by: Kyo
Date: May 11, 2008 02:28AM

you can also use this tool I made:

http://wocares.com/epf.php

This will do the same code as what birdie posted, except it's more comfortable to edit :P


I hope I could help.

Options: ReplyQuote
Re: Creating Referer header CSRF
Posted by: pazwant
Date: May 29, 2008 08:49AM

The problem is creating a referrer tag within iframe ? Think about the side is checking the referrer with each request, so my post data have to include referrer tag such as referrer=bla blba ..

With using iframe its not possible i mean with using php-curl or java socket it may ??

Options: ReplyQuote


Sorry, only registered users may post in this forum.