Outer Web | Explore

Explore >> Select a destination

You are here		neilmadden.blog XSS doesn't have to be game over - Neil Madden
\|	\|	www.sjoerdlangkemper.nl Cross site request forgery (CSRF)	7.7 parsecs away Travel
\|	\|	This article describes how cross site request forgery works, how sites defend against it and how to bypass these defenses.	7.7 parsecs away Travel
\|	\|	chefsecure.com Hacking YouTube Likes with JavaScript: XSS Attack Chef Secure	8.0 parsecs away Travel
\|	\|	Learn hacking with this hands-on tutorial that shows you how YouTube could be exploited if it had an XSS vulnerability.	8.0 parsecs away Travel
\|	\|	mathieu.fenniak.net Is your Web API susceptible to a CSRF exploit? \| Mathieu Fenniak	7.4 parsecs away Travel
\|	\|	Cross-site request forgery (CSRF) is a type of security exploit where a user's web browser is tricked by a third-party site into performing actions on websites that the user is logged into. It is often a difficult attack to pull off, as it requires a number of factors to line up at once. Protecting against it requires good discipline and good design practices, especially when it comes to protecting Web APIs. Here's a brief example of a fictitious CSRF attack against a bank:	7.4 parsecs away Travel
\|	\|	blog.gsmarena.com Safari 7 goes official at WWDC	56.7 parsecs away Travel
\|			56.7 parsecs away Travel