CSurfer

CSRF blocker

An extension that bypasses anti-CSRF tokens in web applications

A CSRF guard hiding extension that keeps track of the latest guard value per session and update new requests accordingly

GitHub

18 stars
2 watching
4 forks
Language: Java
last commit: about 9 years ago

Related projects:

Repository Description Stars
maxcountryman/flask-seasurf An extension that helps protect against cross-site request forgery attacks in web applications 190
fastify/csrf-protection Protects against Cross-Site Request Forgery (CSRF) attacks in Fastify applications. 153
ah8r/csrf A tool to scan websites for Cross-Site Request Forgery (CSRF) vulnerabilities and provide protection in Burp Suite Pro. 19
justinas/nosurf Protects against Cross-Site Request Forgery (CSRF) attacks in web applications by verifying user input 1,594
pillarjs/understanding-csrf An explanation of how CSRF attacks work and how to mitigate them in web applications. 1,402
0ang3el/easycsrf An extension that automatically modifies certain HTTP requests to reveal potential CSRF vulnerabilities in web applications. 159
0xinfection/xsrfprobe A toolkit designed to test and exploit Cross-Site Request Forgery vulnerabilities in websites. 1,109
hvqzao/burp-token-rewrite An extension for Burp Suite to automatically handle CSRF tokens in requests 16
koajs/csrf Provides CSRF protection in Koa applications 264
gorilla/csrf A middleware library providing protection against malicious requests through the use of tokens. 1,055
mozilla/django-session-csrf An alternative implementation of Django's CSRF protection that does not use cookies. 110
slimphp/slim-csrf A middleware solution to protect against Cross-Site Request Forgery attacks in HTTP requests 338
cspf-founder/dodovulnerablebank An educational Android app demonstrating common security vulnerabilities to aid in secure development practices 21
nccgroup/burpsuitehttpsmuggler A tool to bypass web application firewalls (WAFs) and test their effectiveness 709
compasssecurity/anti-csrf-token-from-referer Automatically replaces anti-CSRF tokens with values retrieved from the referer of an original request. 3