Generate cross-site request forgery proof-of-concept HTML forms. Configure the target endpoint, method, parameters, and encoding. Click Generate to produce the HTML, then copy and save it as poc.html. Use only on authorized targets.
<!-- Configure the form above and click Generate -->
Generate HTML proof-of-concept forms for testing CSRF vulnerabilities. Create auto-submitting forms with custom parameters.
SameSite=Lax or Strict on session cookiesOrigin and Referer headers server-side