Skip to content
This repository was archived by the owner on Dec 15, 2021. It is now read-only.

appaegis/csrf-sample-app

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

This repository contains a sample web application with Cross-Site Request Forgery (CSRF) vulnerabilities and its attacker website.

The application is used to explain how CSRF attacks work and how to fix those vulnerabilities in the article Prevent Cross-Site Request Forgery (CSRF) Attacks


Technology

This project uses the following technologies:

Running the Application

To run this project, follow these steps:

  1. Clone this repository (git clone https://github.com/auth0-blog/csrf-sample-app.git)

  2. Move to the root folder of the project (csrf-sample-app) in your machine and install the dependencies by running the following command:

    npm install
  3. To launch the web application, run the following command:

    npm start
  4. Point your browser to http://localhost:3000 to access the sample web app.

  5. To launch the attacker website, run the following command:

    node attacker-server.js
  6. Point your browser to http://localhost:4000 to access the attacker website

Please, read Prevent Cross-Site Request Forgery (CSRF) Attacks to learn more about CSRF attacks and how to prevent them.

About

No description, website, or topics provided.

Resources

License

Stars

0 stars

Watchers

0 watching

Forks

Releases

No releases published

Packages

 
 
 

Contributors

Languages

  • HTML 63.7%
  • JavaScript 36.3%