Skip to content
/ cspt-lab Public

A simple lab for exploring and understanding how CSRF can be exploited via Client-Side Path Traversal (CSPT)

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

kulkansecurity/cspt-lab

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
app
app
 
 
frontend
frontend
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 

Repository files navigation

Getting Started

Prerequisites

  • Docker
  • Docker Compose

Setup

git clone https://github.com/<repo>.git
cd <repo>
docker compose up -d

The lab will be available at:

Usage

  • Register a new user and log in through the frontend.
  • Explore features like profile management and admin promotion.
  • Identify sources and sinks that can be chained to perform CSPT and simulate CSRF attacks.

For a full walkthrough of the attack and detailed explanations, check out the accompanying blog post:

About

A simple lab for exploring and understanding how CSRF can be exploited via Client-Side Path Traversal (CSPT)

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages