2 Kicks

OWASP Top 10 for .NET developers part 5: Cross-Site Request Forgery(www.troyhunt.com)

submitted by troyhunttroyhunt(831) 1 year, 6 months ago

If you’re anything like me, your browser tab bar is probably flush with a bunch of different sites all presently authenticated to and sitting idly by waiting for your next HTTP instruction to update your status, accept your credit card or email your friends. And then there’s all those sites which, by virtue of the ubiquitous “remember me” checkbox, don’t appear open in any browser sessions yet remain willing and able to receive instruction on your behalf. This post looks at securing your .NET code against the risk of CSRF maliciously attacking authenticated web applications.

add a comment |category: |Views: 168

tags: another

new Add a live kick counter to your blog >> liveImage

You can even customize the image by choosing your own colors, and then clicking the button below to update the preview and the html code:

  • "Kick It" text
  • "Kick It" background
  • kick count text
  • kick count background
  • border

Simply copy and paste this HTML into your blog post.


Users who kicked this story:
siphilpsiphilp(919) - troyhunttroyhunt(831)
Comments:

No comments so far

information Login or create an account to comment on this story
Submit a Story
View upcoming stories
How else can I help?
Add our feeds to your site

Most Active Users

What's this?