CSRF explained
First random Last

164

1

11

#216 CSRF explained

Tim

Cross-Site Request Forgery (CSRF) is an interesting technique, i've wanted to make an explanation comic about it for quite a while but never got around to it. Here it is! Also picks up topics (very lightly) such as the Same Origin policy, CORS and CSRF tokens.


bawlsec explanation front-end hacking

Relevant comics

HTTP2 multiplexing explainedHTTP2 multiplexing explained
SQL InjectionSQL Injection
Website authenticationWebsite authentication

Some favorite comics

MirrorMirror
Kernel explainedKernel explained
C sharpC sharp
Space WhiskySpace Whisky
Interview roomInterview room
Pasta in codePasta in code
UninhabitedUninhabited
Two types of developersTwo types of developers
Back-endBack-end