What is CSRF Attack?
CSRF, which stands for Cross-Site Request Forgery, is a type of web security vulnerability where an attacker tricks a user's browser into performing an undesired action on a website on which the user is authenticated. CSRF attacks exploit the trust that a web application has in the user's browser and the fact that the browser automatically includes stored authentication credentials (like session cookies) with requests to the same site.
Who is this class for?
This class is designed for Bug Bounty unters, cybersecurity professionals, web developers, and individuals interested in understanding and mitigating the risks associated with Cross-Site Request Forgery attacks. Prior knowledge of basics web security concepts would be beneficial but is not mandatory.
Learning Objectives: By the end of the "Cross-Site Request Forgery (CSRF) Workshop," students will:
- Understanding CSRF Fundamentals:
- Recognizing CSRF Vulnerabilities:
- CSRF Attack Techniques:
- Mitigation Strategies:
- Hands-On Labs:
- Real-World Case Studies:
- Security Best Practices:
What Students Need to Bring: Participants are required to bring their own laptops and a modern web browser. Additionally, familiarity with basic web security concepts would be beneficial for hands-on exercises. A curious and analytical mindset is encouraged for active participation in discussions and practical labs