killchain-compendium/Exploits/Web/CSRF.md

# CSRF

## Protection

* May be a hidden field with an encoded value
```html
    <input type="hidden" name="csrf_protect" value="eyJk..n0=">
```
* This field need to be removed in order to do some csrf shenanigans
* Decode the value to reproduce some valid content.
restructured Exploits 2022-11-13 22:38:01 +01:00			`# CSRF`

			`## Protection`

			`* May be a hidden field with an encoded value`
			```html
			`<input type="hidden" name="csrf_protect" value="eyJk..n0=">`
			```
			`* This field need to be removed in order to do some csrf shenanigans`
			`* Decode the value to reproduce some valid content.`