Skills
.Work. You
Rest

csrf-cross-site-request-forgery

Official

Master CSRF testing and defense bypass techniques

Software Engineering#oauth#web-security#pentesting#csrf#security-testing#samesite#csrf-bypass
Authoryaklang
Version1.0.0
Installs0

System Documentation

What problem does it solve?

CSRF testing identifies weaknesses in web applications' protections against cross-site request forgery, helping security teams assess and strengthen state-changing workflows.

Core Features & Use Cases

  • Threat modeling and reconnaissance across login, account settings, and OAuth flows
  • Token bypass techniques and SameSite behavior analysis to detect weak defenses
  • Proof-of-concept testing with actionable steps and PoCs for JSON CSRF, token fixation, and CSRF-XSS combinations

Quick Start

Run the CSRF testing playbook against the target application to identify token bypasses, SameSite misconfigurations, and OAuth state weaknesses

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: csrf-cross-site-request-forgery
Download link: https://github.com/yaklang/hack-skills/archive/main.zip#csrf-cross-site-request-forgery

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.