Build software better, together

Hacker0x01 / hacker101

Hacker101

education hacking security hackerone hacker101 xss clickjacking csrf web-security session-fixation unchecked-redirects sql-injection

CSS Updated Apr 22, 2019

evilcos / xssor2

1.6k

XSS'OR - Hack with JavaScript.

probe pentest-tool xss csrf encoding hacking-tool pentest hack

JavaScript Updated Feb 3, 2019

expressjs / csurf

1.6k

CSRF token middleware

javascript nodejs middleware expressjs csrf

JavaScript Updated Apr 23, 2019

justinas / nosurf

962

CSRF protection middleware for Go.

csrf go security middleware

Go Updated Apr 24, 2019

symfony / security-csrf

589

The Security CSRF (cross-site request forgery) component provides a class CsrfTokenManager for generating and validat…

php symfony component symfony-component security csrf

PHP Updated Jul 2, 2019

s0md3v / Blazy

524

Blazy is a modern login bruteforcer which also tests for CSRF, Clickjacking, Cloudflare and WAF .

brute-force bruteforce csrf clickjacking scanner cloudflare waf detector sql-injection

Python Updated May 5, 2019

1N3 / BlackWidow

488

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Python Updated Nov 8, 2018

gorilla / csrf

426

gorilla/csrf provides Cross Site Request Forgery (CSRF) prevention middleware for Go web applications & services.

csrf-protection gorilla middleware golang security csrf xsrf

Go Updated Jul 15, 2019

softwaremill / akka-http-session

390

Web & mobile client-side akka-http sessions, with optional JWT support

akka-http scala akka session java session-management csrf session-cookie

Java Updated Jul 4, 2019

blaCCkHatHacEEkr / PENTESTING-BIBLE

276

This repository was created and developed by Ammar Amer @cry__pto Only. Updates to this repository will continue to a…

Updated Jul 16, 2019

0xInfection / XSRFProbe

215

The Prime Cross Site Request Forgery Audit and Exploitation Toolkit.

csrf crawler csrf-attacks token-generation csrf-scanner crafted-tokens spider csrf-tokens csrf-poc xsrf

Python Updated Jun 15, 2019

pillarjs / csrf

181

Logic behind CSRF token creation and verification.

javascript nodejs csrf tokens

JavaScript Updated Apr 10, 2019

auraphp / Aura.Session

170

Tools for managing sessions, including session segments and read-once messages

session-segment php flash csrf aura session

PHP Updated May 11, 2018

s0md3v / Bolt

144

CSRF Scanner

csrf csrf-scanner xsrf

Python Updated May 5, 2019

dunglas / DunglasAngularCsrfBundle

143

Automatic CSRF protection for JavaScript apps using a Symfony API

symfony symfony-bundle csrf csrf-protection csrf-attacks xsrf php angularjs angular react axios vue jquery

PHP Updated Jul 12, 2019

mebjas / CSRF-Protector-PHP

135

CSRF Protector library: standalone library for CSRF mitigation

csrf-protector php standalone-library security csrf owasp

PHP Updated Jul 9, 2019

electrode-io / electrode-csrf-jwt

127

Stateless Cross-Site Request Forgery (CSRF) protection with JWT

stateless csrf jwt security csrf-jwt cookie jwt-tokens electrode koa hapi uuid express

JavaScript Updated Jun 15, 2019

mike-works / web-security-fundamentals

125

👨‍🏫 Mike's Web Security Course

web-security xss cors csrf clickjacking security course

JavaScript Updated Jul 17, 2019

RickWong / fetch-plus

114

🐕 Fetch+ is a convenient Fetch API replacement with first-class middleware support.

nodejs fetch isomorphic fetch-plus json xml rest immutablejs csrf user-agent ajax http promises

JavaScript Updated Jul 11, 2019

ring-clojure / ring-anti-forgery

100

Ring middleware to prevent CSRF attacks

ring clojure middleware csrf security http

Forked from weavejester/ring-anti-forgery Clojure Updated Aug 1, 2018

Gregwar / Formidable

98

The PHP pragmatic forms library

php-form php constraints csrf html-form forms php-library captcha

PHP Updated May 24, 2019

oktadeveloper / okta-spring-boot-react-crud-example

86

Simple CRUD with React and Spring Boot 2.0

reactjs spring-boot crud jpa csrf-protection csrf authentication oidc

JavaScript Updated Apr 19, 2019

skiptomyliu / solutions-bwapp

77

In progress rough solutions to bWAPP / bee-box

xss sql-injection bwapp appsec csrf directory-traversal html-injection xpath-injection

HTML Updated Nov 30, 2016

zadewg / LIVEBOX-0DAY

65

Arcadyan ARV7519RW22-A-L T VR9 1.2 Multiple security vulnerabilities affecting latest firmware release on ORANGE Live…

0day csrf privacy router

HTML Updated Dec 28, 2018

dschadow / JavaSecurity

65

Java web and command line applications demonstrating various security topics

java-security java java-web spring-security google-tink csrf xss csp spring-boot cryptography

Java Updated Jul 5, 2019

nextras / secured-links

56

CSRF protection for Nette Framework presenters' signals.

php csrf nextras nette-component security

PHP Updated Apr 9, 2019

TYRMars / WebSafe-StepPitGuide

49

Web前后端漏洞分析与防御-知识梳理📖

xss csrf

JavaScript Updated Nov 19, 2017

tgianko / deemon

49

Deemon is a tool to detect CSRF in web applications. Deemon has been used for the paper "Deemon: Detecting CSRF with …

csrf vulnerability-detection security-testing

Python Updated Jun 6, 2018

dappur / framework

44

A stylish PHP application framework crafted using Slim, Twig, Eloquent and Sentinel designed to get you from clone to…

slim-micro-framework slim database-migrations phinx admin-dashboard php bootstrap-admin twig csrf blog-platform framework-php bootstrap php-micro-framework cloudinary-api blog seo-optimization seo sentinel 2fa

PHP Updated Jul 17, 2019

twtrubiks / CSRF-tutorial

44

Use Django To Introduce CSRF and Cookies , Session 📝

csrf cookie session django synchronizer-token-pattern double-cookie-submit

Python Updated Mar 27, 2018

csrf

Repositories 176