Top disclosed reports from HackerOne

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.

CSRF Scanner

Stateless implementation of Cross-Site Request Forgery (XSRF) Protection by using Double Submit Cookie mitigation pattern

Deemon is a tool to detect CSRF in web applications. Deemon has been used for the paper "Deemon: Detecting CSRF with Dynamic Analysis and Property Graphs" by G. Pellegrino, M. Johns, S. Koch, M. Backes, and C. Rossow.

Starlette middleware implementing Double Submit Cookie technique to mitigate CSRF

ASGI middleware for protecting against CSRF attacks

Use Django To Introduce CSRF and Cookies , Session 📝

Automatic Web Vulnerability Scanner.

PoC for CVE-2022-24342: account takeover via CSRF in GitHub authentication

Dead simple CSRF security middleware for Starlette ⭐ and FastAPI ⚡

Django is great! Here are some ways to make it safer

Awesome auth library for Flask and Bottle web apps

An AI-powered web application vulnerability scanner that automates the detection of common security flaws and provides AI-driven insights for impact assessment and remediation suggestions.

Massive Vulnerability scanner

CSRF Proof of Concept script generator webapp 💻🔒

XSerum is a powerful web attack payload generator designed for red teamers, ethical hackers, and researchers. It supports a wide range of attack types including XSS, CSRF, HTML Injection, CSP Bypass, and more — with advanced obfuscation techniques and customizable output formats.

Django React Integration with Session Authentication, CORS, CSRF Mechanism & Cookies Handling.

The (to-be) Definitive CSRF Website Creator