WebApp Sec mailing list archives
Re: CSRF through POST
From: chr1x <chr1x () sectester net>
Date: Mon, 21 Dec 2009 21:59:17 -0600
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi Robin,
I went over your question and looks pretty interesting, so, as Boaz
said, the way that you can use is Javascript to do the job.
Take this example:
<form name="myform" action="handle-data.php">
Search: <input type='text' name='query' />
<a href="javascript: submitform()">Search</a>
</form>
<script type="text/javascript">
function submitform()
{
document.myform.submit();
}
</script>
Javascript uses a submit() method which is used for HTML Forms in
order to send data over HTTP POST method. In this case, you can
configure the Javascript given as example as you required.
Don't hesitate to contact me if you require more information and/or help
- ---
[CubilFelino Security Research Lab] http://chr1x.sectester.net
The computer security is an art form. It's the ultimate martial art."
New Forum at: http://www.sectester.net. Share your knowledge!
boaz.shunami () rsa com escribió:
You can also have a javascript event that will fire the submit button automatically and hence will send the post parameters. Thanks, Boaz -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Robin Wood Sent: Wednesday, December 16, 2009 6:47 PM To: arvind doraiswamy Cc: webappsec () securityfocus com Subject: Re: CSRF through POST 2009/12/16 arvind doraiswamy <arvind.doraiswamy () gmail com>:Hey Robin, You shouldn't worry about GET or POST. A CSRF will happen in both places. Its just that the GET is easier and more visible. For a POST you could either use OWASP's CSRF Tester to record and replay a request. Or you could create a HTML page manually with all hidden variables and just a button as a POC.It is this bit I was after info on, I could think of a way that I would attempt a POST but wanted to see research others had done. As it turns out I've had quite a few good leads passed across, thanks to everyone. Most work in a similar way but all have slight variations that are useful to know about when trying to work out the best way to attack a target. RobinCheers Arvind On Tue, Dec 15, 2009 at 6:27 AM, Robin Wood <dninja () gmail com> wrote:Hi Can anyone point me at any good papers on doing CSRF through POST parameters? I've found some sites with redirect scripts which help performing the attack but no good write-ups on different ways to perform it. Robin This list is sponsored by Cenzic -------------------------------------- Let Us Hack You. Before Hackers Do! It's Finally Here - The Cenzic Website HealthCheck. FREE. Request Yours Now! http://www.cenzic.com/2009HClaunch_Securityfocus --------------------------------------This list is sponsored by Cenzic -------------------------------------- Let Us Hack You. Before Hackers Do! It's Finally Here - The Cenzic Website HealthCheck. FREE. Request Yours Now! http://www.cenzic.com/2009HClaunch_Securityfocus -------------------------------------- This list is sponsored by Cenzic -------------------------------------- Let Us Hack You. Before Hackers Do! It's Finally Here - The Cenzic Website HealthCheck. FREE. Request Yours Now! http://www.cenzic.com/2009HClaunch_Securityfocus --------------------------------------
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQEcBAEBAgAGBQJLMEQVAAoJEENUkd83ZfT4FBoIAMKB0ZhzuSxySoCDUxkpjqLL XaFd9hOhh/V2B4SG61hVq4kXd6pkYTZoN8GhHjBnvJzBsa4K/6QXT9Be4Ebxj2n4 gDXHkNMXj2YPxgiR+YEnmn20N46j4BGvbL1H0ejfMxDakcKEMl4+AxUom70HyFEq lIjPoT2x8N572P6NErvWXrPQCJRixyMyLaJ1NahVasA81Ngn6XaFV+nM4Ltnx6nd J89K5mYr+Qy4GxSTkrgs52pBtICBbL9a6QwNrhZv1Ss78jeLr6QiD6bKt7/QVV6n o117m2y/LGzvZ66S0bhUoufQyWvO7sDca7ghCLubBqRJKLnHrww8WlbT2vukmqE= =27fB -----END PGP SIGNATURE----- This list is sponsored by Cenzic -------------------------------------- Let Us Hack You. Before Hackers Do! It's Finally Here - The Cenzic Website HealthCheck. FREE. Request Yours Now! http://www.cenzic.com/2009HClaunch_Securityfocus --------------------------------------
Current thread:
- CSRF through POST Robin Wood (Dec 15)
- Re: CSRF through POST arvind doraiswamy (Dec 16)
- Re: CSRF through POST Robin Wood (Dec 16)
- RE: CSRF through POST boaz.shunami (Dec 21)
- Re: CSRF through POST chr1x (Dec 21)
- Re: CSRF through POST Robin Wood (Dec 22)
- Re: CSRF through POST Robin Wood (Dec 16)
- Re: CSRF through POST Amish Shah (Dec 24)
- Re: CSRF through POST YGN Ethical Hacker Group (Dec 27)
- Re: CSRF through POST arvind doraiswamy (Dec 16)