SameSite Cookies for Everyone - Cross Site Request Forgery Mitigations (follow up)

Поделиться
HTML-код
  • Опубликовано: 11 сен 2024
  • This video describes the SameSite attribute of cookies which aids in mitigating CSRF attacks.
    A server can set them via the Set-Cookie HTTP response and they will help mitigate Cross-Site Request Forgery attacks, a common web application attack which we discussed in a previous video.
    Many browsers now default cookies to SameSite=Lax. Watch this video to learn more!

Комментарии • 2

  • @LukmaansStack
    @LukmaansStack 10 месяцев назад +1

    in development environment the cookies are setting but in production environment the cookies are not setting what is the solution for this issue please help

    • @embracethered
      @embracethered  10 месяцев назад

      Thanks for watching! Seems like a developer question, it might be related to the domain or path properties of the cookies when they get set

Следующие
Автовоспроизведение
Find and Exploit Server-Side Request Forgery (SSRF)8:56Find and Exploit Server-Side Request Forgery (SSRF)
Find and Exploit Server-Side Request Forgery (SSRF)The Cyber Mentor
Просмотров 40 тыс.
Using IP Addresses with Integer Notation (Bug Bounty Tip for Server Side Request Forgery)0:30Using IP Addresses with Integer Notation (Bug Bounty Tip for Server Side Request Forgery)
Using IP Addresses with Integer Notation (Bug Bounty Tip for Server Side Request Forgery)Embrace The Red
Просмотров 1,1 тыс.
CSRF - Cross Site Request Forgery - What is CSRF? How does CSRF work?10:05CSRF - Cross Site Request Forgery - What is CSRF? How does CSRF work?
CSRF - Cross Site Request Forgery - What is CSRF? How does CSRF work?z3nsh3ll
Просмотров 9 тыс.
SATURDAY NIGHT - New Trailer (HD)02:23SATURDAY NIGHT - New Trailer (HD)
SATURDAY NIGHT - New Trailer (HD)Sony Pictures Entertainment
Просмотров 255 тыс.
Watch the full Second Presidential Debate Hosted by ABC1:45:00Watch the full Second Presidential Debate Hosted by ABC
Watch the full Second Presidential Debate Hosted by ABCCNN
Просмотров 3,2 млн
THE WEEKND - SÃO PAULO LIVESTREAM1:33:29THE WEEKND - SÃO PAULO LIVESTREAM
THE WEEKND - SÃO PAULO LIVESTREAMThe Weeknd
4 дня назад
Devara Part -1 Trailer (Telugu) | NTR | Saif Ali Khan | Janhvi | Koratala Siva | Anirudh | Sep 2702:40Devara Part -1 Trailer (Telugu) | NTR | Saif Ali Khan | Janhvi | Koratala Siva | Anirudh | Sep 27
Devara Part -1 Trailer (Telugu) | NTR | Saif Ali Khan | Janhvi | Koratala Siva | Anirudh | Sep 27NTR Arts
Просмотров 32 млн
Missing HTTP Security Headers - Bug Bounty Tips15:48Missing HTTP Security Headers - Bug Bounty Tips
Missing HTTP Security Headers - Bug Bounty TipsLiveOverflow
Просмотров 139 тыс.
Cross-Site Request Forgery (CSRF) Explained14:11Cross-Site Request Forgery (CSRF) Explained
Cross-Site Request Forgery (CSRF) ExplainedPwnFunction
Просмотров 447 тыс.
Exploring the Latest Dark Web Onion Sites13:15Exploring the Latest Dark Web Onion Sites
Exploring the Latest Dark Web Onion SitesJohn Hammond
Просмотров 715 тыс.
Difference between cookies, session and tokens11:53Difference between cookies, session and tokens
Difference between cookies, session and tokensValentin Despa
Просмотров 626 тыс.
Coding a Web Server in 25 Lines - Computerphile17:49Coding a Web Server in 25 Lines - Computerphile
Coding a Web Server in 25 Lines - ComputerphileComputerphile
Просмотров 336 тыс.
Find Vulnerable Services & Hidden Info Using Google Dorks [Tutorial]13:37Find Vulnerable Services & Hidden Info Using Google Dorks [Tutorial]
Find Vulnerable Services & Hidden Info Using Google Dorks [Tutorial]Null Byte
Просмотров 1,8 млн
CSRF Explained - What Is Cross Site Request Forgery - Build Expense Tracker App With PHP 820:29CSRF Explained - What Is Cross Site Request Forgery - Build Expense Tracker App With PHP 8
CSRF Explained - What Is Cross Site Request Forgery - Build Expense Tracker App With PHP 8Program With Gio
Просмотров 9 тыс.
SSH Agent Hijacking - Hacking technique for Linux and macOS explained7:26SSH Agent Hijacking - Hacking technique for Linux and macOS explained
SSH Agent Hijacking - Hacking technique for Linux and macOS explainedEmbrace The Red
Просмотров 3,1 тыс.
Terrified Russian soldier hides in a dugout as Ukraine drones hunt him down00:15Terrified Russian soldier hides in a dugout as Ukraine drones hunt him down
Terrified Russian soldier hides in a dugout as Ukraine drones hunt him downMail News
Просмотров 34 тыс.
Decompress small game, have time to play it!00:35Decompress small game, have time to play it!
Decompress small game, have time to play it!心宝一家
Просмотров 6 млн
iPhone 16 для НИЩЕБРОДОВ!00:51iPhone 16 для НИЩЕБРОДОВ!
iPhone 16 для НИЩЕБРОДОВ!ÉЖИ АКСЁНОВ
Просмотров 1,3 млн
🚫✨ Dive into these satisfying hacks that you should NOT try at home! #DontTryThis #SatisfyingHacks00:19🚫✨ Dive into these satisfying hacks that you should NOT try at home! #DontTryThis #SatisfyingHacks
🚫✨ Dive into these satisfying hacks that you should NOT try at home! #DontTryThis #SatisfyingHacksThat Little Puff
Просмотров 502 тыс.
В Актау офицер выстрелил солдату срочнику в лицо00:59В Актау офицер выстрелил солдату срочнику в лицо
В Актау офицер выстрелил солдату срочнику в лицоAIRAN
Просмотров 352 тыс.
Standoff 2 is a true horror! #standoff #horror #meme00:13Standoff 2 is a true horror! #standoff #horror #meme
Standoff 2 is a true horror! #standoff #horror #memeStandoff 2 Live
Просмотров 308 тыс.
ГИГАЧАД МЭЙКЕР В PLANTS VS ZOMBIES 2!00:49ГИГАЧАД МЭЙКЕР В PLANTS VS ZOMBIES 2!
ГИГАЧАД МЭЙКЕР В PLANTS VS ZOMBIES 2!IGRARIUM - Игровые обзоры
Просмотров 614 тыс.
Всегда проверяйте под кроватью00:59Всегда проверяйте под кроватью
Всегда проверяйте под кроватьюЯнчик
Просмотров 1,6 млн