Jump to content
Nytro

pinata-csrf-tool

By Nytro, in Programe hacking

Recommended Posts

Nytro Mentor

Nytro

Posted
Posted

pinata-csrf-tool

Pinata is a Python Script that will generate Proof of Concept CSRF HTML from HTTP request.

[h=2]Overview:[/h]-WARNING - THIS IS NOT A POINT AND CLICK TOOL. YOU SHOULD KNOW WHAT YOU ARE DOING TO USE THIS TOOL.

- The tool will generate proof of concept CSRF HTML given an HTTP request. It will automatically check whether it is a GET or a POST request and with further validation for standard POST and Multipart/form POST.

- The tool will then create an HTML corresponding to the type of the request.

- The GET CSRF HTML includes IMG tag with SRC set to the URL being tested.

- The POST CSRF HTML is created with auto submit java script form with names and values from the HTTP request.

Download: https://code.google.com/p/pinata-csrf-tool/

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...