Next:
Contents
Contents
Contents
Intro
History
Browsers flexibility put into questions
Difference between XSS and CSRF
Examples
Google
Auto Logout
DDOS using XSS and CSRF
Attacks
CSRF and Json
Hosting the CSRF
How to use XSS to host CSRFs
Common ways
How to make a website CSRF safe ?
The tokens solution
The referer solution
Browser-side solution
Proof of concept - Epitech Intranet
About this document ...
2008-04-30
