x0prc's notes

Tag: csrf

13 items with this tag.

Feb 03, 2026
CSRF where Referer validation depends on header being present
- ps-wsa-labs
- csrf
Feb 03, 2026
CSRF where token is duplicated in cookie
- ps-wsa-labs
- csrf
Feb 03, 2026
CSRF where token is not tied to user session
- ps-wsa-labs
- csrf
Feb 03, 2026
CSRF where token is tied to non-session cookie
- ps-wsa-labs
- csrf
Feb 03, 2026
CSRF where token validation depends on request method
- ps-wsa-labs
- csrf
Feb 03, 2026
CSRF where token validation depends on token being present
- ps-wsa-labs
- csrf
Feb 03, 2026
CSRF with broken Referer validation
- ps-wsa-labs
- csrf
Feb 03, 2026
CSRF with no defenses
- ps-wsa-labs
- csrf
Feb 03, 2026
CSRF
- ps-wsa-labs
- csrf
Feb 03, 2026
SameSite Lax bypass via cookie refresh
- ps-wsa-labs
- csrf
Feb 03, 2026
SameSite Lax bypass via method override
- ps-wsa-labs
- csrf
Feb 03, 2026
SameSite Strict bypass via client-side redirect
- ps-wsa-labs
- csrf
Feb 03, 2026
SameSite Strict bypass via sibling domain
- ps-wsa-labs
- csrf

Created with Quartz v4.5.2 © 2026

GitHub
Discord Community