Cross-site request forgery (also known as CSRF or XSRF) is a web security vulnerability that allows an attacker to induce users to perform actions, but how ??? How can an attacker make this happen through the user? There is a lot going on behind the scenes. Do you know CSRF is the most commonly asked question in Security interviews and also in Junior pentest roles? Read this zine, and learn CSRF the most easiest way ever.
Topics covered :
What is CSRF, How CSRF can be exploited, Why SOP cant prevent CSRF, What happens behind SOP with CSRF, What are the consequences of CSRF, How to fix CSRF?