#

csrf-attacks

Here are 56 public repositories matching this topic...

0xInfection / XSRFProbe

The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.

crawler spider audit csrf csrf-tokens xsrf token-generation csrf-attacks csrf-poc crafted-tokens csrf-scanner

UpdatedFeb 4, 2025
Python

dunglas / DunglasAngularCsrfBundle

Automatic CSRF protection for JavaScript apps using a Symfony API

react angularjs jquery php angular symfony vue symfony-bundle axios csrf csrf-protection xsrf csrf-attacks

UpdatedDec 28, 2020
PHP

app

csrfshark / app

🚀 CSRFShark - a utility for manipulating cross-site request forgery attacks

security tools generator csrf bugbounty pentest pentest-tool csrf-attacks csrf-poc

UpdatedSep 12, 2023
CSS

cookies-sniffer

SystemVll / cookies-sniffer

This app is an advanced XSS panel, this is used for session grabbing with XSS exploit and <img src="grabber_url">

web-hacking csrf-attacks vuln-tool

UpdatedAug 8, 2022
JavaScript

vzhou842 / definitely-secure-bank

A definitely (read: not) secure online banking site. Built for demo purposes as an example of common security vulnerabilities / what NOT to do.

security demo csrf web-security csrf-attacks csrf-prevention

UpdatedApr 24, 2025
JavaScript

robjtede / webpwn

Hackable website for teaching/training purposes. Includes my undergraduate thesis.

nodejs sql authentication hacking xss authorization password-strength sql-injection csrf xss-exploitation csrf-attacks

UpdatedMar 7, 2018
JavaScript

autistic-symposium / csrf-apache-modsecurity-rb

👾 monitor web server's log files against CSRF attacks (a modification of apache's mod_security to log these attacks)

c apache csrf-attacks

UpdatedOct 15, 2024
HTML

AyemunHossain / CSRF-vulnerability-detection

Automated Blackbox CSRF vulnerability detection tools

csrf csrf-protection csrf-tokens csrf-attacks csrf-token csrf-scanner

UpdatedJun 2, 2022
Python

toggio / SecureTokenizer

A PHP Library for Cryptographically Secure Token Generation and Management

javascript php cryptography random tokenizer ajax xss secure csrf token csrf-protection csrf-tokens xss-detection csrf-attacks replay-attack sql-injection-attacks

UpdatedJun 12, 2024
PHP

LinuxUser255 / Web-Security-Academy-Series

Exploit Code, notes, and resources to accompany PortSwiggers' WebAcademy Labs.

authentication python3 webapp exploits fileupload business-logic xss-exploitation clickjacking pentest-scripts burpsuite command-injection csrf-attacks xxe-injection information-disclosure portswigger ssrf-tool portswigger-labs webapppentesting webapphacking

UpdatedMar 27, 2025
Python

enriquetomasmb / bruteforce-bypass

Bruteforce HTTP POST with CSRF token bypass (anti-CSRF)

bruteforce http-requests offensive-security csrf-attacks bruteforce-protection bruteforce-wordlist

UpdatedJul 25, 2021
Python

hack-with-ethics / csrf_google

(csrf) google just got a idea to bypass or manipulate the 2fa in gmail service but was successfull in bypassing the device name in gmail 2fa

csrf bypass csrf-attacks cross-site-request-forgery request-forgery google-bug google-csrf

UpdatedJan 9, 2024

phanatagama / Web-CTF-Cheatsheet

Web CTF CheatSheet 🐈

graphql php cheatsheet xss-exploitation sqlinjection csrf-attacks ssti ssrf-payload

UpdatedFeb 7, 2019
Ruby

julfiker / csrf-php

A service to handle csrf on POST|PULL\DELETE request for php application

php opensource csrf csrf-protection csrf-attacks csrf-prevention

UpdatedMar 23, 2018
PHP

zakirullin / csrf-middleware

A PSR-15 compatible middleware that is designed to simplify CSRF verifcation process

verification psr-7 csrf psr-15 csrf-protection csrf-attacks

UpdatedNov 8, 2019
PHP

Pawel-Kica / csrf-university-project-starter

📔 Simple blog project vulnerable to CSRF attacks

nodejs javascript express csrf-protection ejs-templates csrf-attacks

UpdatedJan 4, 2023
JavaScript

roflcer / Cross-Site-Request-Forgery-Attack

A CSRF attack involves a victim user, a trusted site, and a malicious site. The victim user holds an active session with a trusted site and simultaneously visits a malicious site. The malicious site injects a HTTP request for the trusted site into the victim user session compromising its integrity. In this lab, you will be attacking a web-based …

http phpbb http-requests web-security csrf-attacks

UpdatedJun 12, 2018

FREAKYBOBr / Basic-Penetration-Testing-Report-Ethical-Hacking

This repository contains a basic penetration testing report focusing on ethical hacking techniques and methodologies. It includes findings, analysis, and recommendations to improve the security posture of the tested system.

brute-force-attacks ethical-hacking xss-attacks prepared-queries csrf-attacks hashing-passwords man-in-the-middle-attack replay-attack sql-injection-attacks basic-pentesting idor-attack

UpdatedMar 23, 2025

thayeeb9211 / ortho-secure

Orthosecure: Secure Dentistry Appointment Booking and Management System. It is designed to be robust and secure application with enhanced security and compliance checks within containerized environments. It leverages cutting-edge technologies to monitor, analyze, and secure workloads in real-time.

security gitlab docker-compose docker-image ddos-attacks xss-vulnerability cicd xss-attacks devsecops csrf-attacks

UpdatedMar 7, 2025
JavaScript

RudigerMorinDocter / CSRF-Attender

CSRF Attender is a Burp Suite extension that illustrates a PoC for automatically generating CSRF attacks on a WebSite (works only for GET requests and HTTP1.1)

csrf csrf-attacks csrf-prevention csrf-poc

UpdatedOct 22, 2021
Java

Improve this page

Add a description, image, and links to the csrf-attacks topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the csrf-attacks topic, visit your repo's landing page and select "manage topics."