SDT 313 – Testing for (CSRF) Cross Site Request Forgery (UPDATED)
COURSE OVERVIEW
Cross-Site Request Forgery (CSRF) occurs when a web application does not, or can not, sufciently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request. This course introduces ways to identify and mitigate this security weakness, referenced as CWE-352 by the 2020 CWE Top 25.
Topics include:
- Recognizing the impact of this vulnerability
- Techniques for nding CSRF issues through code review
- Application of secure coding best practices to prevent these attacks
- Testing to detect this security weakness
Course Duration : 10 mins
COURSE OVERVIEW
Cross-Site Request Forgery (CSRF) occurs when a web application does not, or can not, sufciently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request. This course introduces ways to identify and mitigate this security weakness, referenced as CWE-352 by the 2020 CWE Top 25.
Topics include:
- Recognizing the impact of this vulnerability
- Techniques for nding CSRF issues through code review
- Application of secure coding best practices to prevent these attacks
- Testing to detect this security weakness
Course Duration : 10 mins
