Completed
Single signon
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Keynote: Request Forgery on the Web - SSRF, CSRF and Clickjacking
Automatically move to the next video in the Classroom when playback concludes
- 1 Introduction
- 2 What is request forgery
- 3 Examples
- 4 Crosssite request forgery
- 5 Netflix request forgery
- 6 Single signon
- 7 Traditional Web Apps
- 8 Get Requests
- 9 Double Submit
- 10 Browser Standards
- 11 Same site lacks
- 12 Cookie defense
- 13 Check origin header
- 14 Control origin header
- 15 Crosssite scripting
- 16 Twitter attack
- 17 Crosssite request forgery cheat sheet
- 18 Serverside request forgery
- 19 Capital One case
- 20 From another angle
- 21 SSRF attack
- 22 How to fix
- 23 URL Encoding
- 24 SSRF
- 25 Summary
- 26 Questions
- 27 Web Frameworks
- 28 Service on request forgery
- 29 Clickjacking
- 30 XFrameOptions