Csrf

django-session-csrf is an alternative implementation of Django's CSRF protection that does not use cookies. Instead, it maintains the CSRF token on the server using Django's session backend. The csrf token must still be included in all POST requests (either with csrfmiddlewaretoken in the form or...

ServerDefender Vulnerability Protection (VP) Web application firewall is a strong application designed to provide immediate PCI compliant protection for Web sites and applications running on the Microsoft IIS Web server by blocking Web attacks including buffer overflows, SQL injection, cross-site...

Java-based Open Source WAF (Web Application Firewall) to include inside a web application in order to protect it against attacks like SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), Parameter Manipulation and many more.


Platforms: Windows, Mac, Linux

RequestPolicy is an extension for Mozilla browsers that improves the privacy and security of your browsing by giving you control over when cross-site requests are allowed by webpages you visit. It is the first comprehensive client-side protection against CSRF attacks and the first tool to enable...


Platforms: Mac

eXlent2k7 is a CMS based on the most modern technologies (XHTML 1.1, CSS 2.1, PHP 5 objects, PDO, XML, DOM) with good security (CSRF protection, XSS prevention in template system, JavaScript can be disabled, SQL injection prevention in database class).


Platforms: Windows, Mac, *nix, PHP, BSD Solaris

eXlent2k7 is a CMS based on the most modern technologies (XHTML 1.1, CSS 2.1, PHP 5 objects, PDO, XML, DOM) with good security (CSRF protection, XSS prevention in template system, javascript can be disabled, SQL injection prevention in database class).


Platforms: PHP

The CsFire extension enhance your security towards the, so-called, Cross-Site Request Forgery (CSRF). CSRF is very prevalent and dangerous, as stated by the OWASP top 10, as well as the CWE/SANS top 25 programming errors.


Platforms: Mac

Just when developers are starting to run in circles over Cross Site Scripting, the 'sleeping giant' awakes for yet another web-catastrophe. Cross-Site Request Forgery (CSRF) is an attack whereby the victim is tricked into loading information from or submitting information to a web application for...


Platforms: Mac

RequestPolicy is an extension for Mozilla browsers that improves the privacy and security of your browsing by giving you control over when cross-site requests are allowed by webpages you visit. It is the first comprehensive client-side protection against CSRF attacks and the first tool to enable...


Platforms: *nix

RequestPolicy is an extension for Mozilla browsers that improves the privacy and security of your browsing by giving you control over when cross-site requests are allowed by webpages you visit. It is the first comprehensive client-side protection against CSRF attacks and the first tool to enable...


Platforms: *nix

The Flask-WTF module offfers simple integration of Flask and WTForms, including CSRF validation. Links: - documentation: http://packages.python.org/Flask-WTF - development version: http://bitbucket.org/danjac/flask-wtf/get/tip.gz#egg=Flask-WTF #md5=4c61b7696dbdcbf25d87c256a5ed0988


Platforms: *nix

Django honeypot field utilities django-honeypot is a Django plugin that provides utilities for preventing automated form spam. Provides template tags, view decorators, and middleware to add and verify honeypot fields to forms. Installation To install run python setup.py install which will...


Platforms: *nix