XSS & CSRF: Browser-Based Network Attacks is part of the Pro tier — advanced networking topics including BGP routing, Zero Trust, DDoS attacks, QUIC, TLS certificate chains, and more.
This scenario covers
How XSS and CSRF exploit the browser's trust model — stored XSS exfiltrating cookies via network requests, CSRF exploiting implicit credential sending, SameSite cookies as defense, and the Same-Origin Policy that contains the damage.
Sign in first, then unlock Pro
See what's included in Pro →