Cross-Site Request Forgery (CSRF) | Complete Guide

preview_player
Показать описание
In this video, we cover the theory behind Cross-Site Request Forgery (CSRF) vulnerabilities, how to find these types of vulnerabilities from both a white box and black box perspective, how to exploit them and how to prevent them.

▬ 🌟 Video Sponsor 🌟 ▬▬▬▬▬▬▬▬▬▬

▬ ✨ Support Me ✨ ▬▬▬▬▬▬▬▬▬▬

▬ 📖 Contents of this video 📖 ▬▬▬▬▬▬▬▬▬▬
00:00 - Introduction
01:24 - Agenda
02:12 – What is a CSRF vulnerability?
19:14 – How to find CSRF vulnerabilities?
26:07 – How to exploit CSRF vulnerabilities?
32:50 – How to prevent CSRF vulnerabilities?
47:15 – Resources
47:57 - Thank You

▬ 🔗 Links 🔗 ▬▬▬▬▬▬▬▬▬▬
  1. Rana Khalil
  2. security
  3. web security
  4. owasp
  5. open web application security project
  6. portswigger
Рекомендации по теме
Cross-Site Request Forgery 0:14:11

Cross-Site Request Forgery (CSRF) Explained

Cross Site Request 0:03:07

Cross Site Request Forgery (CSRF or XSRF)

Cross-Site Request Forgery 0:06:31

Cross-Site Request Forgery (CSRF) Explained And Demonstrated By A Pro Hacker!

Cross Site Request 0:09:20

Cross Site Request Forgery - Computerphile

Cross-Site Request Forgery 0:11:59

Cross-Site Request Forgery (CSRF) Explained

What is CSRF? 0:02:26

What is CSRF?

Cross-Site Request Forgery 0:48:11

Cross-Site Request Forgery (CSRF) | Complete Guide

Penetration Testing - 0:07:33

Penetration Testing - Cross Site Request Forgery (CSRF)

Intro to Cross-Site 0:17:29

Intro to Cross-Site Scripting (XSS) Attacks | Lab - 1 @itspyguru

Your App Is 0:09:57

Your App Is NOT Secure If You Don’t Use CSRF Tokens

Web App Penetration 0:22:51

Web App Penetration Testing - #13 - CSRF (Cross Site Request Forgery)

Cross-site Request Forgery 0:02:53

Cross-site Request Forgery (CSRF) Attack Demo

CSRF Explained | 0:09:22

CSRF Explained | Understanding Cross Site Request Forgery | What is XSRF?

Cross-site request forgery 0:17:20

Cross-site request forgery | How csrf Token Works

Cross-site Request Forgery 0:02:48

Cross-site Request Forgery - CompTIA Security+ SY0-501 - 1.2

Cross-Site Request Forgery 0:04:14

Cross-Site Request Forgery Demonstrated!

CSRF Hack - 0:07:02

CSRF Hack - Erklärung, Beispiel und Schutz vor Cross-Site-Request-Forgery

CSRF Tutorial - 0:14:03

CSRF Tutorial - A Guide to Better Understand and Defend Against Cross-Site Request Forgery (CSRF)

Cross Site Request 0:03:56

Cross Site Request Forgery (CSRF) | Owasp Top 10 Explainer Video | Secure Code Warrior

3 - Cross 0:23:51

3 - Cross Site Request Forgery (CSRF) (low/med/high) - Damn Vulnerable Web Application (DVWA)

Learn Cross-Site Request 0:13:04

Learn Cross-Site Request Forgery (CSRF) From Scratch + FREE Training

Finding Your First 0:21:10

Finding Your First Bug: Cross-Site Request Forgery (CSRF)

CSRF (доска) 0:09:52

CSRF (доска)

Cross Site Request 0:12:23

Cross Site Request Forgery vs Server Side Request Forgery Explained

Комментарии
Автор

Your teaching style is the best. Really difficult to find teachers like you 😭. I'm having difficulties in XSS. Hope you will make videos on that too ❤️❤️

robot
Автор

This is gotta be the best video on the Internet. I'm a fan now.

salimzavedkarim
Автор

7:55 and this is the best explanation i've heard yet. Well done. Very clear

devinosborne
Автор

For some reason, I really like listening u explain stuff. This reminds me of the science tv shows I used to watched as a kid :)

govind
Автор

i don't even know how to put things into words the way how you explain, it's an amazing mam..we need such playlist more in the future..

rajanrawal
Автор

Best video on this topic. This is gold. Thanks so much for this.

tanmaybhayani
Автор

You explain everything clearly and concisely without over complicating the topic. Please make some Udemy courses! Thank you from Canada 🇨🇦

deepcoolclear
Автор

44:45 "Of course, you need to use [SameSite] in addition to CSRF tokens and not as a defence on its own." This cannot be repeated enough 👏👏👏

jubbs
Автор

Great explanation. All my confusion related to CSRF are gone now... Thank you so much for creating such content.

saneyalam
Автор

Ohh mam, after so long time. Waiting the new topic after being master in sql😁

thesecuritypoint
Автор

Awesome tutorial ever. First complete SQLi and now CSRF 👍😎

th
Автор

السلام عليكم
ما شاء الله
هذا أحسن شرح في الموضوع
جزاك الله خيرا

DaggerSecurity
Автор

Oh, my God, how well you explain this

rmzhmd
Автор

Hey rana Khalil good to see u.. please do other topics as soon as possible.. because u have an outstanding ability to train.

abidkhan
Автор

Awesome Explanation 🙌💥✌✌Thanks ma'am !
(Finally Landed on the BEST CSRF EXPLANATION TUTORIAL on Youtube) This channel Deserves Millions of Subscribers ...after somedays this playlists will also hit millions.🔥

xada
Автор

Im in XSS by The PortSwigger learning Path. Ansious to cath The next chapter CSRF to whatch The Best Teacher. Tnx👍

paulojr
Автор

God, how wanderful and detailed you can explain! Thaaaanks!!

yevhendidenko
Автор

Rana thank you very much. CSRF is my best bug class..

bertrandfossung
Автор

im from india mam u are a very good teacher i wish i could have u as my cybersecurity mentor

electrowizard
Автор

I like the way you explain the topics very minutely you explain it’s very easy to understand .Hoping you to upload all the labs of portswigger soon.

swamimzaman