Explore a comprehensive approach to reliably detecting Cross-Site Request Forgery (CSRF) vulnerabilities in web applications in this 42-minute conference talk from AppSecUSA 2017. Analyze the shortcomings of current dynamic application security testing tools in identifying CSRF vulnerabilities, often resulting in false positives or negatives. Discover a new programmatic method for CSRF vulnerability scanning that overcomes these limitations, offering a simple, reliable, and easily integrated solution for automated application security testing. Learn from Umesh Salian, a Cybersecurity Architecture expert at Discover Financial Services, as he shares insights from his extensive experience in Java/J2EE development and application security testing automation in CI/CD pipelines.