OWASP CSRFGuard: Understanding and Preventing Cross-Site Request Forgery

OWASP CSRFGuard: Understanding and Preventing Cross-Site Request Forgery

OWASP Foundation via YouTube Direct link

Intro

1 of 21

1 of 21

Intro

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

OWASP CSRFGuard: Understanding and Preventing Cross-Site Request Forgery

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 What is Cross-Site Request Forgery
  3. 3 The classic example
  4. 4 More recent CSRF Attack
  5. 5 Relaxing the SOP (1)
  6. 6 Anything else? Yes, ofCORS!
  7. 7 When it's safe to fly?
  8. 8 CORS Server side headers
  9. 9 Real world CSRF attack payloads
  10. 10 Searching for CSRF exploits
  11. 11 Searching for recent CSRF exploits
  12. 12 How to prevent it?
  13. 13 SameSite - the game changer
  14. 14 So when would you need CSRF Guaru..
  15. 15 CSRF Guard flow (2)
  16. 16 What's new in CSRF Guard 4.x
  17. 17 CSRF Guard JSP Tag support
  18. 18 Conclusions and recommendations
  19. 19 Automation with nuclei templates
  20. 20 Nuclei detect CSRFGuard defaults
  21. 21 References

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.