Tool to generate a CSRF POC similar to Burp Suite Pro
tedjames
Member Posts: 1,182 ■■■■■■■■□□
in Pentesting
Are there any free/open source tools that can do this? Unfortunately, I do not get Burp Suite Pro at work. If you know of anything, please let me know.
If you don't know what I'm talking about, check out this video: https://www.youtube.com/watch?v=CXyrGQ8D1tU
Thanks!
Comments
-
tedjames
Member Posts: 1,182 ■■■■■■■■□□
Turns out OWASP-ZAP will do it and do a great job of it. And unlike Burp Suite Pro, ZAP is free!
-
tedjames
Member Posts: 1,182 ■■■■■■■■□□
I learned how to do this in this free course from Udemy: https://www.udemy.com/course/owasp-zap-from-scratch/
-
tedjames
Member Posts: 1,182 ■■■■■■■■□□
By the way, you can get some more free ZAP training here: https://www.zaproxy.org/zap-in-ten/
-
stryder144
Member Posts: 1,684 ■■■■■■■■□□
Excellent resources. Thank you for sharing.The easiest thing to be in the world is you. The most difficult thing to be is what other people want you to be. Don't let them put you in that position. ~ Leo Buscaglia
Connect With Me || My Blog Site || Follow Me -
bigdogz
Member Posts: 881 ■■■■■■■■□□
Thanks.I use Burp Suite Pro because it was a good investment for not too much money. I will start looking into this tool and may add it to my toolbox. -
tedjames
Member Posts: 1,182 ■■■■■■■■□□
bigdogz said:Thanks.I use Burp Suite Pro because it was a good investment for not too much money. I will start looking into this tool and may add it to my toolbox.
If my office would pay for it, I'd get Burp Suite Pro. I agree that it's really not that expensive. State government budgets and all... I can't really justify the expense of paying for it myself to use at home, though. If it was a one-time fee, I would easily.
