Explore >> Select a destination

You are here

 introvertmac.wordpress.com
Understanding CSRF attacks | what I'm breaking...
| | mathieu.fenniak.net
Is your Web API susceptible to a CSRF exploit? | Mathieu Fenniak
6.6 parsecs away

Travel
| | Cross-site request forgery (CSRF) is a type of security exploit where a user's web browser is tricked by a third-party site into performing actions on websites that the user is logged into. It is often a difficult attack to pull off, as it requires a number of factors to line up at once. Protecting against it requires good discipline and good design practices, especially when it comes to protecting Web APIs. Here's a brief example of a fictitious CSRF attack against a bank:
| | bogs.io
bogs.io | Complete Guide to CSRF
5.8 parsecs away

Travel
| | CSRF stands for Cross-Site Request Forgery and is one of the most "popular" web application vulnerabilities
| | fak3r.com
OWASP top 10 web application risks for 2013 - fak3r
9.1 parsecs away

Travel
| |
| | localghost.dev
Defending yourself against cross-site scripting attacks with Content-Security-Policy - localghost
44.5 parsecs away

Travel
| A guide to cross-site scripting (XSS) attacks and the HTTP Content-Security-Policy header, what it does, how to use it, and how it protects us.