righettod / poc-csrfLinks
POC in order to materialize CSRF prevention concepts described in the following OWASP CSRF cheatsheet
☆30Updated 8 years ago
Alternatives and similar repositories for poc-csrf
Users that are interested in poc-csrf are comparing it to the libraries listed below
Sorting:
- The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens☆87Updated last week
- OWASP CSRFGuard 3.1.0☆162Updated 3 years ago
- Plattform to develop and experiment with existing java web attacks.☆31Updated 7 years ago
- Sample exploits of common vulnerabilities in Java librarires☆24Updated last year
- An intentionally-vulnerable web application, ported from https://github.com/jzheaux/terracotta-bank-spring☆41Updated 2 years ago
- Accompanying material needed for the workshop☆11Updated 2 years ago
- An insecure example application (Java)☆33Updated last week
- LFI/RFI Payload Tests Project☆38Updated 5 years ago
- Repository to showcase various configuration recipes with various technologies☆36Updated 2 years ago
- CVE, reports, research☆17Updated 4 years ago
- A very vulnerable implementation of a GraphQL API.☆61Updated 3 years ago
- psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…☆19Updated 7 years ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆47Updated 6 years ago
- A command-line tool for Cross-Site WebSocket Hijacking☆45Updated last year
- Spring-Boot app for demonstrating security vulnaribilities☆13Updated 6 years ago
- Vulnserver exploits☆15Updated 5 years ago
- ☆32Updated 6 years ago
- Highlighting different firefox containers in Burp Proxy☆12Updated 4 years ago
- Collection of different exploitation scenarios of JWT.☆21Updated 4 years ago
- It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect tha…☆16Updated last year
- Artwork for all official ZAP swag - posters, stickers, t-shirts etc☆14Updated last year
- ☆29Updated 8 years ago
- CVE-2020-9484 Mass Scanner, Scan a list of urls for Apache Tomcat deserialization (CVE-2020-9484) which could lead to RCE☆32Updated 5 years ago
- Simple website to guess API Key / OAuth Token☆48Updated 3 years ago
- Image Tragick Exploit Tool Using Burp Collaborator☆36Updated last year
- Simple python script to check against hypothetical JWT vulnerability.☆51Updated 4 years ago
- Wordlists for intelligent directory brute-forcing☆32Updated 3 years ago
- Deploy a Private Burpsuite Collaborator using boto3 Python Library☆58Updated 5 years ago
- ☆16Updated 2 years ago
- ☆23Updated 3 years ago