CSRF POC GENERATOR
// Generate proof-of-concept payloads for Cross-Site Request Forgery vulnerabilities
// TARGET CONFIGURATION
// PARAMETERS
// Add request parameters — name/value pairs
// OPTIONS
// IMPORT FROM BURP SUITE
// Standard HTML form — works against most CSRF vulnerabilities with form-based endpoints
csrf_poc.html
// 0 lines
0 bytes
// LIVE PREVIEW
about:blank
⚠ Sandbox mode — form submission disabled in preview
// CSRF CHECKLIST
□
No CSRF token in request
□
SameSite cookie not set / Lax
□
Origin / Referer not validated
□
State-changing operation
□
Session cookie auto-sent by browser
□
Custom headers not required