README
¶
CSRF Bypass
CSRF Bypass is a lightweight tool designed to handle CSRF tokens in forms and seamlessly send requests to target endpoints. While conducting ethical web application forensics, I found that bypassing forms protected by CSRF tokens can be quite a hassle. I'm sure there are plenty of tools out there that handle CSRF token bypassing, but instead of searching for one, I decided to build my own. This tool does exactly what I need — nothing more, nothing less.
Install
You can install CSRF Bypass using go install command.
go install github.com/enindu/csrf-bypass@latest
Usage
You can run CSRF Bypass using the following syntax.
csrf-bypass [flags]
To display version message:
csrf-bypass -v
To display help message:
csrf-bypass -h
License
This software is licensed under the GNU General Public License v3.0. You can view the full license here.
Documentation
¶
Overview ¶
CSRF Bypass is a lightweight tool designed to handle CSRF tokens in forms and seamlessly send requests to target endpoints.
Usage:
csrf-bypass [flags]
Available flags:
-iu # Define initial URL (required) -im # Define HTTP method for initial URL (default "GET") -ih # Define list of headers separated by commas for initial URL (ex "key:value,key:value") -ip # Define list of parameters separated by commas for initial URL (ex "variable=value,variable=value") -tu # Define target URL (required) -tm # Define HTTP method for target URL (default "POST") -th # Define list of headers separated by commas for target URL (ex "key:value,key:value") -tp # Define list of parameters separated by commas for target URL (ex "variable=value,variable=value") -v # View version message -h # View help message
Source Files