Skip to content

auth0-blog/csrf-sample-app

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
public
public
 
 
templates
templates
 
 
views
views
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
attacker-server.js
attacker-server.js
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
server.js
server.js
 
 

Repository files navigation

This repository contains a sample web application with Cross-Site Request Forgery (CSRF) vulnerabilities and its attacker website.

The application is used to explain how CSRF attacks work and how to fix those vulnerabilities in the article Prevent Cross-Site Request Forgery (CSRF) Attacks

Technology

This project uses the following technologies:

Running the Application

To run this project, follow these steps:

  1. Clone this repository (git clone https://github.com/auth0-blog/csrf-sample-app.git)

  2. Move to the root folder of the project (csrf-sample-app) in your machine and install the dependencies by running the following command:

    npm install

  3. To launch the web application, run the following command:

    npm start

  4. Point your browser to http://localhost:3000 to access the sample web app.

  5. To launch the attacker website, run the following command:

    node attacker-server.js

  6. Point your browser to http://localhost:4000 to access the attacker website

Please, read Prevent Cross-Site Request Forgery (CSRF) Attacks to learn more about CSRF attacks and how to prevent them.

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

4 stars

Watchers

1 watching

Forks

6 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages