Skip to content

ProfessionallyEvil/SameSiteAttackDemo

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
client
client
 
 
static
static
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
app.js
app.js
 
 
nonworking_poc.html
nonworking_poc.html
 
 
package.json
package.json
 
 
poc.html
poc.html
 
 
rollup.config.js
rollup.config.js
 
 
yarn.lock
yarn.lock
 
 

Repository files navigation

SameSiteAttackDemo

A simple demo web app built with Svelte + Restify that is meant to demonstrate security aspects regarding the SameSite cookie flag.

Original Blog Post

Usage

  1. Clone the repo and install the deps yarn install
  2. Run thing API_URL=/api BASE_URL=/app yarn dev

a. Optional - Add 127.0.0.1 muney.dosh to your hosts file b. Navigate your browser to either 127.0.0.1:8000 or whatever you put into your hosts file 4. That's it really...

FAQ

Should I use this as a good Svelte sample app?

No. Just go learn Svelte from the people who made it.

Will you be adding new stuff to this demo app?

Maybe. Idk, it might serve as a decent place to implement some future demo attacks, etc.

About

A simple demo web app built with Svelte + Restify that is meant to demonstrate security aspects regarding the SameSite cookie flag.

Resources

Readme
Activity
Custom properties

Stars

5 stars

Watchers

4 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages