Csrf

Web application vulnerability assessment and penetration testing service

Training course on OWASP Top 10 web application security vulnerabilities

DAST tool for detecting web app vulnerabilities like SQL injection and XSS

A free and open-source tool for identifying vulnerabilities in Joomla-based websites.

CSRF crumb generation and validation tool for hapi framework.

XVWA is an intentionally vulnerable PHP/MySQL web application designed for security education, containing multiple common web vulnerabilities for hands-on learning and practice.

A Nuxt 3 security module that automatically implements OWASP security patterns through HTTP headers, middleware, and various protection mechanisms including CSP, XSS validation, CORS, and CSRF protection.

A Fastify plugin that provides utilities and middleware to protect web applications against Cross-Site Request Forgery (CSRF) attacks.

Detects and prevents SSRF attacks

A deliberately vulnerable web application containing DOM-based XSS, CSRF, and other web vulnerabilities for security testing and educational purposes.

A categorized collection of bug bounty write-ups that documents real-world vulnerability discoveries and exploitation techniques across various security flaw types.

An educational codelab that demonstrates web application vulnerabilities including XSS, XSRF, and code execution attacks along with their corresponding defensive measures.