/explore

Click through on any links that interest you or select the planets on the right to continue exploring the Outer Web.
You are here

www.michalspacek.com
| | educatedguesswork.org
4.5 parsecs away

Travel
| |
| | www.redotheweb.com
4.2 parsecs away

Travel
| | As we're reinventing web applications with SPAs and frontend frameworks, we need to reinvent web application security, too.
| | chefsecure.com
4.5 parsecs away

Travel
| | Learn hacking with this hands-on tutorial that shows you how YouTube could be exploited if it had an XSS vulnerability.
| | mathieu.fenniak.net
14.7 parsecs away

Travel
| Cross-site request forgery (CSRF) is a type of security exploit where a user's web browser is tricked by a third-party site into performing actions on websites that the user is logged into. It is often a difficult attack to pull off, as it requires a number of factors to line up at once. Protecting against it requires good discipline and good design practices, especially when it comes to protecting Web APIs. Here's a brief example of a fictitious CSRF attack against a bank: