A powerful CSRF (Cross-Site Request Forgery) proof of concept generator plugin for Caido. This plugin helps security researchers and penetration testers quickly generate various types of CSRF payloads.
The plugin supports multiple CSRF payload types:
- Standard HTML Form
- URL-encoded form
- Multipart form
- Plain text form
- SVG-based CSRF
- XHR-based CSRF
- Iframe-based CSRF
- Meta Refresh CSRF
- WebSocket CSRF
- Data URI CSRF
- Install the plugin from Caido's plugin store
- Select a request in Caido
- Click on the CSRF Generator button
- Choose your desired CSRF payload type from the dropdown
- The plugin will automatically generate the appropriate CSRF proof of concept code
<!DOCTYPE html>
<html>
<head>
<title>CSRF PoC</title>
</head>
<body>
<h3>Standard CSRF PoC</h3>
<form action="https://caido.io/" method="get">
<!-- Form parameters will be automatically populated -->
</form>
</body>
</html>