Saturday, May 12, 2018

Bypassing referrer check with no script involved

No more to use scripting approach like https://github.com/knu/noreferrer

This useful meta tag helps for CSRF POC preparation when you come across an application that checks referrer header:
<meta name="referrer" content="no-referrer">

https://caniuse.com/#feat=referrer-policy

No comments:

Post a Comment

secure configurations for Laravel - The PHP Framework

This framework is makes security simple to achieve.  Out of all non-default settings, the little following can be set to achieve higher secu...