Keynote: Request Forgery on the Web - SSRF, CSRF and Clickjacking

Keynote: Request Forgery on the Web - SSRF, CSRF and Clickjacking

OWASP Foundation via YouTube Direct link

Web Frameworks

27 of 30

27 of 30

Web Frameworks

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Keynote: Request Forgery on the Web - SSRF, CSRF and Clickjacking

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Introduction
  2. 2 What is request forgery
  3. 3 Examples
  4. 4 Crosssite request forgery
  5. 5 Netflix request forgery
  6. 6 Single signon
  7. 7 Traditional Web Apps
  8. 8 Get Requests
  9. 9 Double Submit
  10. 10 Browser Standards
  11. 11 Same site lacks
  12. 12 Cookie defense
  13. 13 Check origin header
  14. 14 Control origin header
  15. 15 Crosssite scripting
  16. 16 Twitter attack
  17. 17 Crosssite request forgery cheat sheet
  18. 18 Serverside request forgery
  19. 19 Capital One case
  20. 20 From another angle
  21. 21 SSRF attack
  22. 22 How to fix
  23. 23 URL Encoding
  24. 24 SSRF
  25. 25 Summary
  26. 26 Questions
  27. 27 Web Frameworks
  28. 28 Service on request forgery
  29. 29 Clickjacking
  30. 30 XFrameOptions

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.