csrf-attacks

There are 0 repository under csrf-attacks topic.

• 0xInfection / XSRFProbe

  The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.

  auditcrafted-tokenscrawlercsrfcsrf-attackscsrf-poccsrf-scannercsrf-tokensspidertoken-generationxsrf
  Language:Python 1247

• dunglas / DunglasAngularCsrfBundle

  Automatic CSRF protection for JavaScript apps using a Symfony API

  symfonysymfony-bundlecsrfcsrf-protectioncsrf-attacksxsrfphpangularjsangularreactaxiosvuejquery
  Language:PHP 148
• app

  csrfshark / app

  🚀 CSRFShark - a utility for manipulating cross-site request forgery attacks

  csrf-attackscsrf-pocbugbountygeneratorpentestcsrfsecuritytoolspentest-tool
  Language:CSS 33
• cookies-sniffer

  SystemVll / cookies-sniffer

  This app is an advanced XSS panel, this is used for session grabbing with XSS exploit and <img src="grabber_url">

  csrf-attacksweb-hackingvuln-tool
  Language:JavaScript 30

• vzhou842 / definitely-secure-bank

  A definitely (read: not) secure online banking site. Built for demo purposes as an example of common security vulnerabilities / what NOT to do.

  csrfcsrf-attackscsrf-preventiondemosecurityweb-security
  Language:JavaScript 25

• cypherpunk-symposium / csrf-apache-modsecurity-rb

  👾 monitor web server's log files against CSRF attacks (a modification of apache's mod_security to log these attacks)

  csrf-attackscapache
  Language:HTML 14

• robjtede / webpwn

  Hackable website for teaching/training purposes. Includes my undergraduate thesis.

  nodejshackingsql-injectionxss-exploitationcsrfxsssqlpassword-strengthauthorizationauthenticationcsrf-attacks
  Language:JavaScript 14

• AyemunHossain / CSRF-vulnerability-detection

  Automated Blackbox CSRF vulnerability detection tools

  csrfcsrf-attackscsrf-protectioncsrf-scannercsrf-tokencsrf-tokens
  Language:Python 7

• hack-with-ethics / csrf_google

  (csrf) google just got a idea to bypass or manipulate the 2fa in gmail service but was successfull in bypassing the device name in gmail 2fa

  bypasscross-site-request-forgerycsrfcsrf-attacksgoogle-buggoogle-csrfrequest-forgery
  6

• toggio / SecureTokenizer

  A PHP Library for Cryptographically Secure Token Generation and Management

  cryptographyjavascriptphprandomreplay-attacksecuresql-injection-attackstokencsrfcsrf-attackscsrf-protectioncsrf-tokensxssajaxtokenizerxss-detection
  Language:PHP 6

• LinuxUser255 / Web-Security-Academy-Series

  Exploit Code, notes, and resources to accompany PortSwiggers' WebAcademy Labs.

  authenticationburpsuitebusiness-logicclickjackingcommand-injectioncsrf-attacksexploitsfileuploadinformation-disclosurepentest-scriptspython3ssrf-toolwebappwebapphackingwebapppentestingxss-exploitationxxe-injectionportswigger-labsportswigger
  Language:Python 5

• enriquetomasmb / bruteforce-bypass

  Bruteforce HTTP POST with CSRF token bypass (anti-CSRF)

  bruteforcebruteforce-protectionbruteforce-wordlistcsrf-attackshttp-requestsoffensive-security
  Language:Python 4

• julfiker / csrf-php

  A service to handle csrf on POST|PULL\DELETE request for php application

  csrfcsrf-attackscsrf-preventioncsrf-protectionopensourcephp
  Language:PHP 3

• phanatagama / Web-CTF-Cheatsheet

  Web CTF CheatSheet 🐈

  phpsstixss-exploitationsqlinjectionssrf-payloadcsrf-attacksgraphqlcheatsheet
  Language:Ruby 3

• zakirullin / csrf-middleware

  A PSR-15 compatible middleware that is designed to simplify CSRF verifcation process

  csrfcsrf-attackscsrf-protectionpsr-15psr-7verification
  Language:PHP 3

• Charlot-DEDJINOU / CSRF-attack

  This project is an educational example of a CSRF (Cross-Site Request Forgery) attack to demonstrate how a web application can be vulnerable to this type of attack.

  csrfcsrf-attacksexpressjsmongodbnodejs
  Language:JavaScript 2

• FREAKYBOBr / Basic-Penetration-Testing-Report-Ethical-Hacking

  This repository contains a basic penetration testing report focusing on ethical hacking techniques and methodologies. It includes findings, analysis, and recommendations to improve the security posture of the tested system.

  basic-pentestingbrute-force-attackscsrf-attacksethical-hackinghashing-passwordsidor-attackman-in-the-middle-attackprepared-queriesreplay-attacksql-injection-attacksxss-attacks
  2

• Pawel-Kica / csrf-university-project-starter

  📔 Simple blog project vulnerable to CSRF attacks

  csrf-attackscsrf-protectionejs-templatesexpressjavascriptnodejs
  Language:JavaScript 2

• roflcer / Cross-Site-Request-Forgery-Attack

  A CSRF attack involves a victim user, a trusted site, and a malicious site. The victim user holds an active session with a trusted site and simultaneously visits a malicious site. The malicious site injects a HTTP request for the trusted site into the victim user session compromising its integrity. In this lab, you will be attacking a web-based message board system using CSRF attacks. We modi- fied an open-source message board application called phpBB to make it vulnerable to CSRF attacks. The original application has implemented several countermeasures for avoiding CSRF attacks

  csrf-attackshttphttp-requestsphpbbweb-security
  2

• AmerSurkovic / DrvenijaOnline

  Online service application for book trading. Application was originally developed for 'Web Technologies' course @ETF_Sarajevo. After that, I have created XSS and CSRF omissions in the application in order to present how are mentioned attacks done on the web application.

  phphtml5cssjavascriptxss-exploitationcsrf-attacks
  Language:PHP 1

• ankushlakhani3 / Ethical-Hacking-Security-Application

  It is a desktop application made in PYQT5 and various python libraries, basically it is a kind of GUI version of lazyhack. It also contains advance backdoor and can perform various attack.

  attackbackdoor-attackscsrf-attacksddos-attackshackinghacking-toolmitm-attackspenetration-testingpentestingreverse-shellvulnerability-scannersxss-vulnerability
  Language:Python 1

• DevExpress-Examples / asp-net-core-dashboard-antiforgery

  How to apply antiforgery request validation to the ASP.NET Core Dashboard control.

  business-intelligenceasp-net-coreweb-dashboarddashboard-for-asp-net-corecsrfcsrf-protectioncsrf-tokenscsrf-attacksantiforgery
  Language:C# 1

• lucianoscarpaci / Pen-Testing-Live-Targets

  Immerse yourself in a practical hacking exercise to gain valuable experience with prevalent security exploits. Explore six key vulnerabilities, including SQL injection, session hijacking, username enumeration, IDOR, XSS, and CSRF, for a comprehensive cybersecurity learning experience.

  csrf-attackscybersecurityethical-hackingidor-attackpenetration-testingpractical-hacking-frameworksession-hijackingsqli-injectionusername-enumerationvulnerability-assessmentweb-application-securityxss-attacks
  Language:HTML 1

• MarcinHoppe / AspNetCore.Csrf.Sample

  A sample application that shows three ways to mitigate CSRF attacks in ASP.NET Core applications

  asp-netasp-net-corecsrf-attackscookiehttpsecurity
  Language:C# 1

• rohitajariwal / web-app-security-scanner

  A web crawler and vulnerability scanner tool developed by Rohit Ajariwal

  clickjackingcommandinjectioncrosssitescriptingcsrfcsrf-attacksldaplfi-exploitationlfi-scannerlfi-vulnerabilitysql-injectionsql-injection-exploitationssrfssrf-exploitssrf-payloadssrf-scannervulnerability-scannerswebcrawlerxxexxe-injectionxxe-payloads
  Language:Python 1

• RudigerMorinDocter / CSRF-Attender

  CSRF Attender is a Burp Suite extension that illustrates a PoC for automatically generating CSRF attacks on a WebSite (works only for GET requests and HTTP1.1)

  csrfcsrf-preventioncsrf-attackscsrf-poc
  Language:Java 1

• Sitaras / eClass-Penetration-Testing

  🔒| Evaluating the security (exploiting and fixing vulnerabilities) of Open eClass 2.3 (University of Athens) platform.

  defense-methodsxssxss-attacksxss-detectionxss-vulnerabilitycsrf-attackscsrf-preventioncsrf-protectioncsrf-tokensphpsqlinjectionpenetration-testingeclassrfivulnerability-detection
  Language:PHP 1

• Subangkar / Computer-Security-CSE-406-BUET

  Demonstration of some attacks exploiting security vulnerabilities of websites and OSs as tasks of Computer Security LAB, CSE 406 in Level-4, Term-1 of CSE, BUET

  des-encryptiondes-ciphersubstitution-cipherdes-decryptbuffer-overflow-attackbuffer-overflow-vulnerabilitybuffer-overflow-exploitxss-vulnerabilityxss-exploitationxss-attackscsrf-attacksip-spoofingping-spoofingraw-socketssniffingsniffercse-buetbuetseedlab
  Language:Python 1

• thayeeb9211 / ortho-secure

  Orthosecure: Secure Dentistry Appointment Booking and Management System. It is designed to be robust and secure application with enhanced security and compliance checks within containerized environments. It leverages cutting-edge technologies to monitor, analyze, and secure workloads in real-time.

  cicdcsrf-attacksddos-attacksdevsecopsdocker-composedocker-imagegitlabsecurityxss-attacksxss-vulnerability
  Language:JavaScript 1

• thewarpaint / hyperlogout

  Hyperlogout!

  csrfcsrf-attacksgulpreact
  Language:JavaScript 1

• Yo7cc / Basic-Penetration-Testing-Report-Ethical-Hacking

  Basic Penetration Testing Report for Ethical Hacking covering key findings and recommendations for improving cybersecurity defenses. Detailed analysis of vulnerabilities identified during the testing process and steps to enhance overall security posture.

  basic-pentestingbrute-force-attackscsrf-attacksethical-hackinghashing-passwordsidor-attackman-in-the-middle-attackprepared-queriesreplay-attacksql-injection-attacksxss-attacks
  1

• FaisalAhmed21 / Basic-Penetration-Testing-Report-Ethical-Hacking

  basic-pentestingbrute-force-attackscsrf-attacksethical-hackinghashing-passwordsidor-attackman-in-the-middle-attackprepared-queriesreplay-attacksql-injection-attacksxss-attacks
  0

• fatin-farhan / Capture-The-Flag

  Five CTF challenges, two easy, two medium, one hard

  blind-sql-injectioncommand-injection-attackcsrf-attackssqli-attackxss-attack
  Language:JavaScript 0

• sal00ma / Client-side-attacks.

  “Hi, I’m Salma Muhamed, and in this write-up, I’ll be going through client-side attack techniques. This write-up isn’t unique; many people may find better resources elsewhere, but it’s more of a personal note for myself. I’ve shared it with you, and I hope you find it useful.”

  client-sidecorscsrf-attacksxss-vulnerability
  0

• deblunt / Basic-Penetration-Testing-Report-Ethical-Hacking

  This repository contains a basic penetration testing report focusing on ethical hacking practices. It provides insights into identifying vulnerabilities and improving overall security measures.

  basic-pentestingbrute-force-attackscsrf-attacksethical-hackinghashing-passwordsidor-attackman-in-the-middle-attackprepared-queriesreplay-attacksql-injection-attacksxss-attacks

• SANTHOSH4508 / Basic-Penetration-Testing-Report-Ethical-Hacking

  🛡️ Identify and report vulnerabilities in the TechEcommerce Project through structured penetration testing to enhance application security.

  basic-pentestingblockchain-hackingbrute-force-attackscsrf-attackscybersecurityethereum-securityethical-hackinghackathon-projectshashing-passwordsidor-attackman-in-the-middle-attacknetwork-scanningphishing-simulationprepared-queriessql-injectionsql-injection-attacksweb-app-testingxss-attacks