Skip to content

Releases: 0xInfection/XSRFProbe

XSRFProbe v2.3.1

29 Jan 15:19
@0xInfection 0xInfection
v2.3.1
03b9a9b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
XSRFProbe v2.3.1 Latest
Latest

This release includes critical bug fixes for:

  • Line ending formatting bug when installing via pypi/pip.
  • Cookies and headers which were not being added to all requests.
  • CA verification switch which did not exclusively apply to all requests.
  • Other regular optimisation features.

Special thanks to @Freedzone.

Assets 2

XSRFProbe v2.2.0 - Improvement Release

16 Dec 19:33
@0xInfection 0xInfection
v2.2.0
0ad8f41
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
XSRFProbe v2.2.0 - Improvement Release

Here are some highlights about this release:

  • Precise fine tuning of various parameters and test conditions for detecting CSRF.
  • Proper cookie handling feature for parsed requests and custom requests.
  • Add full support of the --display switch to display both request as well as response headers.
  • A new switch --no-verify added to this release, so as to allow connection to web application with self signed CAs.
Assets 2

XSRFProbe v2.1.1 (Post Release)

03 Nov 12:20
@0xInfection 0xInfection
v2.1.1
11f45e7
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
XSRFProbe v2.1.1 (Post Release)

This release includes:

  • Fixes improper cookie handling feature.
  • Other changes for Pypi.

This is a minor post-release.

Assets 2

XSRFProbe v2.1

30 Oct 17:10
@0xInfection 0xInfection
v2.1.0
c82bb6a
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
XSRFProbe v2.1

Some significant changes in this version:

  • XSRFProbe now available as a package (aka can be installed via pip).
  • Added full support of cookies while making requests.
  • Fixed form-type bugs and added email type checks.
  • Tweaked some modules for more accuracy in CSRF detections.
  • Major bug fixes removing support for deprecated libraries.
  • Huge code optimizations (cleaning and stuff).
Assets 2

XSRFProbe v2.0 (Stable Release)

29 Dec 17:40
@0xInfection 0xInfection
v2.0.0
675cf0a
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
XSRFProbe v2.0 (Stable Release)

A HUGE update to XSRFProbe. Now its both a audit as well as an exploitation toolkit.

Noteworthy Facts:

  • XSRFProbe is the only toolkit all over GitHub on CSRF.
  • More new modules added for efficient and systematic CSRF detection.
  • Efficient request crafting and token tampering modules added.
  • XSRFProbe now can generate PoCs for vulnerabilities found.
  • This is a full complete stable release.
  • XSRFProbe has more improvised automated workflow.
Assets 2

XSRFProbe Release v2.0-beta.0

18 Nov 19:55
@0xInfection 0xInfection
v2.0-beta.0
320c312
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
XSRFProbe Release v2.0-beta.0 Pre-release
Pre-release

A HUGE update to version 2. This is a pre-release, stable release is yet to come.

Changelog:

  • Almost 100% code refactor.
  • Many new modules added for efficient CSRF vulnerabilities detection.
  • XSRFProbe got a new highly generalised, automated workflow.
  • Well documented code infrastructure. (Try going through source)
  • This release features improvised crawling engine with efficient form parsers.
Assets 2

XSRFProbe Release v1.1

20 Oct 16:37
@0xInfection 0xInfection
v1.1
437d111
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
XSRFProbe Release v1.1

A release featuring build supporting Python v3.

Changelog:

  • A new build with absolute engine support for Python v3.
  • Removed Python 2 version support.
  • Minor bug fixes and stuff.
Assets 2