Open in app

Sign in

Write

Sign in

Cross Site Request Forgery (CSRF)

Dhanuka lakshan
Apr 6, 2023

what is the CSRF attack ?

CSRF is an attack where the attacker causes the victim user yo carry out an action unintentionally while that user is authenticated.

CSRF Conditions

For a CSRF attack to be possible, three key conditions must in place

  1. A relevant action
  2. Cookie based session handling
  3. No unpredictable request parameters

Under this bolg I mention How to check CSRF vulnerability in @postSwigger

Lab #1

Vulnerable parameter — email change functionality

Goal — exploit the CSRF vulnerability and change email address

credentials — wiener:peter

Cybersecurity
Portswigger Lab
Web Vulnerabilities
Csrf Attack
Web Security

--

--

Dhanuka lakshan

Written by Dhanuka lakshan

11 Followers

I’m a Software engineering student who is currently studying @Institute_of_Java And Software Engineering(IJSE), I like coding and learn about new tech.

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams