csrf.md

Bookmarks tagged [csrf]

www.codever.land/bookmarks/t/csrf

Prevent Attacks and Redirect Users with OAuth 2.0 State Parameters

^{https://auth0.com/docs/protocols/state-parameters}

Authorization protocols provide a state parameter that allows you to restore the previous state of your application. The state parameter preserves some state objects set by the client in the Autho...

• tags: oauth2, csrf

---

Cross Site Request Forgery (CSRF) | OWASP Foundation

^{https://owasp.org/www-community/attacks/csrf}

Cross-Site Request Forgery (CSRF) is an attack that forces an end user to execute unwanted actions on a web application in which they’re currently authenticated. With a little help of social engineeri...

• tags: security, csrf

---

Anatomy of a Cross-site Request Forgery Attack

^{https://haacked.com/archive/2009/04/02/anatomy-of-csrf-attack.aspx/}

A Cross-site request forgery attack, also known as CSRF or XSRF (pronounced sea-surf) is the less well known, but equally dangerous, cousin of the Cross Site Scripting (XSS) attack. Yeah, they come fr...

• :calendar: published on: 2009-04-02
• tags: security, csrf
• :octocat: source code

---