Why a CSRF attack is dangerousĬSRF attack can be very dangerous, especially when we will mix it with the XSS one. It's more focused on change the internal state of the app than push data out to the attacker. If you prefer video, here is the youtube version: What is CSRF attackĬSRF is a type of security vulnerability that allows an attacker to perform any action on another application.Įspecially in a situation, the one where the victim is authenticated, and we would like to make him any action for us. Next, we will discuss how to make a CSRF attack and how to secure the app. You will learn what a CSRF attack is and why the CSRF attack can be dangerous. It's especially dangerous because many websites and applications are vulnerable to this attack. Today we will focus on something else, but still dangerous, and quite easy to do. Link is here: SQL Injection attack tutorial for beginners In the first post about web security, we were talking about hacking a bank app by SQL Injection. In this tutorial, I will show you how, and we will hack an online casino together! Today we will talk about what is CSRF attack.ĭid you know somebody can steal your money by using just a simple image?
This article was originally published at:
