Kali
LazyCSRF is a more useful CSRF PoC generator that runs on Burp Suite. Motivation Burp Suite is an intercepting HTTP Proxy, and it is the defacto tool for performing web application security testing. The feature of Burp Suite that I like the most is Generate CSRF PoC. However, the function to automatically determine the content of …
Continue reading “LazyCSRF : A More Useful CSRF PoC Generator”
CSRFER is a tool to generate csrf payloads, based on vulnerable requests. It parses supplied requests to generate either a form or a fetch request. The payload can then be embedded in an html template. Installation npm install -g csrfer Usage Usage: csrfer [options] Options:–version Show version number-r, –request Path to the request file to …
Continue reading “CSRFER : Tool To Generate CSRF Payloads Based On Vulnerable Requests”
Bolt is in beta phase of development which means there can be bugs. Any production use of this tool discouraged. Pull requests and issues are welcome. Also Read : PRETty : “PRinter Exploitation Toolkit” LAN Automation Tool Workflow Crawling Bolt crawls the target website to the specified depth and stores all the HTML forms found …
Continue reading “Bolt : Cross-Site Request Forgery Scanner”
