SDT 313 - Testing for (CSRF) Cross Site Request Forgery

Course Details

Course Number: SDT 313

Course Duration: 15 minutes

Course CPE Credits: .25

NICE Specialty Areas

Software Development (DEV)

Related Subject Matter

CWE
NICE
Software Development Testing

Foreign Languages Available:

English

Course Overview

Cross-Site Request Forgery (CSRF) occurs when a web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request. This course introduces ways to identify and mitigate this security weakness, referenced as CWE-352 by the 2020 CWE Top 25.

Topics include:

Recognizing the impact of this vulnerability
Techniques for finding CSRF issues through code review
Application of secure coding best practices to prevent these attacks
Testing to detect this security weakness

Ready to Demo this course? Questions? Contact Us!