Ecosyste.ms: Repos

An open API service providing repository metadata for many open source software ecosystems.

GitHub topics: xsrf

Repositories

gorilla/csrf

Package gorilla/csrf provides Cross Site Request Forgery (CSRF) prevention middleware for Go web applications & services 🔒

Language: Go - Size: 144 KB - Last synced: 4 days ago - Pushed: 3 months ago - Stars: 1,006 - Forks: 155

LeoniePhiline/axum-csrf-sync-pattern

A crate built on top of `axum-sessions`, implementing the CSRF Synchronizer Token Pattern

Language: Rust - Size: 106 KB - Last synced: 17 days ago - Pushed: 17 days ago - Stars: 11 - Forks: 6

0xInfection/XSRFProbe

The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.

Language: Python - Size: 597 KB - Last synced: 22 days ago - Pushed: about 1 month ago - Stars: 982 - Forks: 188

s0md3v/Bolt

CSRF Scanner

Language: Python - Size: 85.9 KB - Last synced: about 1 month ago - Pushed: 6 months ago - Stars: 497 - Forks: 118

itanex/AntiForgeryMiddleware

Antiforgery Middleware to solve the problem of client based web applications

Language: C# - Size: 8.79 KB - Last synced: about 2 months ago - Pushed: about 7 years ago - Stars: 0 - Forks: 1

fy0/fpage

Tornado project generator. Start a project with tornado, mako/jinjia2 and sqlalchemy/peewee in a minute.

Language: Python - Size: 71.3 KB - Last synced: about 1 month ago - Pushed: almost 6 years ago - Stars: 231 - Forks: 44

Laragear/Poke

Keep your forms alive, avoid `TokenMismatchException` by gently poking your Laravel app.

Language: PHP - Size: 175 KB - Last synced: 24 days ago - Pushed: 3 months ago - Stars: 17 - Forks: 2

jolmari/boilerplate-separated-aspnet-core-angular

Sample Angular-enabled ASP.NET Core application with separated backend and frontend structure

Language: TypeScript - Size: 75.2 KB - Last synced: 4 months ago - Pushed: about 7 years ago - Stars: 1 - Forks: 0

dneustadt/DneustadtCsrfCookieBundle

Symfony bundle that provides Cross Site Request Forgery (CSRF or XSRF) protection for client-side applications

Language: PHP - Size: 27.3 KB - Last synced: about 1 month ago - Pushed: 12 months ago - Stars: 12 - Forks: 7

epomatti/csrf-attack

Cross-Site Request Forgery (CSRF) attack

Language: Go - Size: 30.3 KB - Last synced: 8 months ago - Pushed: 8 months ago - Stars: 0 - Forks: 0

dunglas/DunglasAngularCsrfBundle 📦

Automatic CSRF protection for JavaScript apps using a Symfony API

Language: PHP - Size: 90.8 KB - Last synced: 11 days ago - Pushed: over 3 years ago - Stars: 149 - Forks: 33

catb0t/anticsrf

super simple, single-file anti-cross-site request forgery (CSRF) module for server APIs

Language: Python - Size: 39.1 KB - Last synced: 8 months ago - Pushed: over 6 years ago - Stars: 1 - Forks: 0

ianwalter/express-csrf 📦

Cross-Site Request Forgery (CSRF) middleware for Express

Language: JavaScript - Size: 269 KB - Last synced: 27 days ago - Pushed: 11 months ago - Stars: 2 - Forks: 0

OWASP/www-project-csrfprotector 📦

OWASP CSRFProtector Project Landing Page

Language: HTML - Size: 30.3 KB - Last synced: about 1 month ago - Pushed: about 1 year ago - Stars: 1 - Forks: 2

rvelhote/sniffr

A full web application that allows you to perform HTTP requests on demand.

Language: Python - Size: 46.9 KB - Last synced: about 1 year ago - Pushed: over 8 years ago - Stars: 0 - Forks: 0

atayahmet/react-axios-token-provider

React Axios Token Provider package is a make easy what repetitive processes.

Language: TypeScript - Size: 68.4 KB - Last synced: about 1 month ago - Pushed: about 1 year ago - Stars: 4 - Forks: 0

rjtch/book-library

Sample Rest-full API with ui in angular generated using openapi and backend in golang.

Language: Go - Size: 15.8 MB - Last synced: about 1 year ago - Pushed: over 2 years ago - Stars: 1 - Forks: 0

arruw/fri-1819-isp-seminar 📦

FRI - 2018/2019 - Information Security and Privacy - Mitigating Cross-Site Request Forgery Attacks

Language: TeX - Size: 147 KB - Last synced: over 1 year ago - Pushed: over 5 years ago - Stars: 0 - Forks: 0

msanvarov/php-security

🔐 basics on making php applications secure

Language: PHP - Size: 104 KB - Last synced: over 1 year ago - Pushed: over 4 years ago - Stars: 18 - Forks: 6

cluemediator/secure-auth-api-nodejs

Create secure authentication REST API in Node.js

Language: JavaScript - Size: 188 KB - Last synced: over 1 year ago - Pushed: over 1 year ago - Stars: 8 - Forks: 1

cluemediator/secure-login-app-reactjs

Implement secure login application in React using REST API

Language: JavaScript - Size: 344 KB - Last synced: over 1 year ago - Pushed: over 3 years ago - Stars: 8 - Forks: 3

ap-t/chattr-blog

A simple blog web app with emphasis on web security

Language: PHP - Size: 141 KB - Last synced: over 1 year ago - Pushed: almost 9 years ago - Stars: 0 - Forks: 0

daggerok/spring-security-examples

This repository contains spring-security playgroung projects https://daggerok.github.io/spring-security-examples/

Language: Java - Size: 738 KB - Last synced: about 1 year ago - Pushed: over 2 years ago - Stars: 1 - Forks: 4

vuro-framework/csrf-protector

[READ ONLY] Subtree split of the Vuro Csrf Protector component (see vuro-framework/vuro-framework)

Language: Hack - Size: 3.91 KB - Last synced: about 1 year ago - Pushed: about 3 years ago - Stars: 0 - Forks: 0

onodera-sf/AspNetCoreValidateAntiforgeryToken

ASP.NET Core でクロスサイトリクエストフォージェリ (XSRF/CSRF) 対策を行うサンプルです。

Language: HTML - Size: 667 KB - Last synced: about 1 year ago - Pushed: about 3 years ago - Stars: 0 - Forks: 0

Aryia-Behroziuan/Cross-site-request-forgery-CSRF-or-XSRF-

Cross-site request forgery is a common malicious exploit of websites. It occurs when unauthorised commands are transmitted from a user that a web application trusts. The user is usually logged into the website, so they have a higher level of privileges, allowing the hacker to transfer funds, obtain account information or gain access to sensitive information. There are many ways for hackers to transmit forged commands including hidden forms, AJAX, and image tags. The user is not aware that the command has been sent and the website believes that the command has come from an authenticated user. The main difference between an XSS and CSRF attack is that the user must be logged in and trusted by a website for a CSRF wesbite hacking attack to work. Website owners can prevent CSRF attacks by checking HTTP headers to verify where the request is coming from and check CSRF tokens in web forms. These checks will ensure that the request has come from a page inside the web application and not an external source.

Size: 1000 Bytes - Last synced: over 1 year ago - Pushed: over 3 years ago - Stars: 1 - Forks: 0

Related Keywords

xsrf 30 csrf 19 csrf-protection 4 angular 4 docker 4 php 4 security 4 asp-net-core 3 authentication 3 csharp 3 login 3 middleware 3 react 3 csrf-tokens 3 spring-security 2 axios 2 angular4 2 appveyor 2 vue 2 spring-mvc 2 python 2 chrome-headless 2 docker-compose 2 npm 2 angularjs 2 sql-injection 2 csrf-scanner 2 travis-ci 2 csrf-attacks 2 webpack2 2 jwt-authentication 2 rest-api 2 cookie 2 oauth2 2 web-api-2 1 openapi 1 xss 1 reactjs 1 openshift 1 zipkin 1 login-auth 1 secure-login 1 random-tokens 1 dotenv 1 xsfr 1 errors 1 exposing-directories 1 php-security 1 api-nodejs 1 xss-attacks 1 ssl-certificates 1 typescript 1 token-authetication 1 server-side-rendering 1 postgresql 1 entity-framework-core 1 bootstrap3 1 asp-net-identity 1 redux 1 logout 1 fetch 1 stripe-elements 1 stripe-checkout 1 braintree 1 autoprefixer 1 aspnetcoremvc 1 website-hacking-methods 1 tips 1 antiforgery 1 vuro 1 tokens 1 component 1 spring-boot 1 oauth2-githubclient 1 oauth2-facebook-login 1 oauth-github 1 spa 1 separation-logic 1 separated 1 https 1 boilerplate 1 aspnetcore 1 angular-cli 1 laravel 1 tornado 1 sqlalchemy 1 peewee 1 mako 1 fpage 1 token-generation 1 spider 1 csrf-poc 1 crawler 1 crafted-tokens 1 audit 1 synchronizer-token-pattern 1 http 1 cors 1 axum 1 api 1