[Owasp-ireland] A real bank with a CSRF flaw!

Kieran Tully kieran.tully at gmail.com
Tue Sep 30 12:21:02 EDT 2008


On Tue, Sep 30, 2008 at 15:39, davidrook <david.rook at realexpayments.com> wrote:

> I understand the kinds of steps needed to prevent it but I wondered if
> there are any automated ways to detect this yet or is it still a manual
> approach?

ratproxy isn't quite what you ask for, but looks interesting.

http://code.google.com/p/ratproxy/

-- 
Kieran Tully, Software Developer and Tenor, http://ktully.net


More information about the Owasp-ireland mailing list