Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Pluralsight

Web App Hacking: Cross-Site Request Forgery (CSRF)

via Pluralsight

Write review
University of the People Ad

Earn Your Business Degree, Tuition-Free, 100% Online!

Learn More → CourseHorse Ad

The Perfect Gift: Any Class, Never Expires

Learn More →

Overview

Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access


Cross-Site Request Forgery (CSRF) is one of the most prevalent attacks in modern web applications. In this course, Web App Hacking: Cross-Site Request Forgery (CSRF), you'll learn how to avoid the severe consequences of the CSRF attack. First, you'll discover how a CSRF attack works and how an attacker can take over a user's account with this attack. Next, you'll explore how the attacker can launch a CSRF attack as a result of insecure processing of an anti-CSRF token. Then, you'll learn how the attacker can switch a user to his account with a login CSRF attack. After that, you'll discover the importance of regeneration, and how the attacker can launch the CSRF attack when the anti-CSRF token is not regenerated at the time of authentication. Finally, you'll dive into an interesting case study of a CSRF attack. By the end of the course, you'll know how a CSRF attack works, how to test web applications for this attack, and how to prevent this attack from happening.

Taught by

Dawid Czagan

Reviews

3.8 rating at Pluralsight based on 75 ratings

Start your review of Web App Hacking: Cross-Site Request Forgery (CSRF)

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.