Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Q and A on cross site request forgeries and breaking into sessions. It's one of the attacks that XSS enables and the attack of the future. For Session, fixations, hijacking, lockout, replay, session riding etc.... 
Go to Topic: PreviousNext
Go to: Forum ListMessage ListNew TopicSearchLog In
how i found a CSRF Bug ?
Posted by: the_master
Date: January 14, 2010 09:53AM

hi all,
i want to learn a CSRF,but i know it is.

but i dont know how is based..

thanks

Options: ReplyQuote
Re: how i found a CSRF Bug ?
Posted by: rvdh
Date: January 14, 2010 02:37PM

CSRF does not exist, it was all a joke to weed out signals from the n00b noize.

Options: ReplyQuote
Re: how i found a CSRF Bug ?
Posted by: thornmaker
Date: January 14, 2010 09:51PM

you just need to the server with a and when the user then your all done

Options: ReplyQuote
Re: how i found a CSRF Bug ?
Posted by: the_master
Date: January 17, 2010 07:10AM

ok, but all inputs/forms has no secure ?

Options: ReplyQuote
Re: how i found a CSRF Bug ?
Posted by: rvdh
Date: January 17, 2010 12:33PM

yes and no teh inpuds forms haz no secure wen c0de is nothing from securities eh?. But not sure about tho, but I know is it based on CEESURFING somhow.

Options: ReplyQuote
Re: how i found a CSRF Bug ?
Posted by: thrill
Date: January 17, 2010 01:39PM

@rvdh - you are suck. ;)

--thrill

---

It is not the degrees you hold, but the mind you possess. - thrill

Options: ReplyQuote
Re: how i found a CSRF Bug ?
Posted by: thornmaker
Date: January 18, 2010 09:25AM

http://www.owasp.org/index.php/Cross-Site_Request_Forgery_%28CSRF%29

Options: ReplyQuote


Sorry, only registered users may post in this forum.