Chrome is a great browser.
But it can be made even better with extensions!

English

Български
বাংলা (বাংলাদেশ)
Català
Čeština
Dansk
Deutsch
Ελληνικά
English
Español
suomi
Français
magyar
Bahasa Indonesia
Italiano
日本語
한국어
Melayu
Nederlands
Polski
Português (do Brasil)
Português (Europeu)
Română
Русский
slovenčina
Slovenščina
Svenska
తెలుగు
ไทย
Türkçe
Українська
Tiếng Việt
中文 (简体)
正體中文 (繁體)

No-CSRF

Overview

★★★★★

295 users

No-CSRF :: Prevent cookies from being client-side sent cross-origin.

█

Version: 0.42

Updated: July 4, 2016

Available in the
Chrome Web Store

Install & Try Now!

NVIDIA RTX 3090 24GB Founders Edition W/Box - Electronics | Color: Silver

★★★★★

Donald Trump Novelty Presidential Toilet Paper

★★★★★

Dnc Workwear Mens Cordura Knee Patch Cargo Pants Comfortable Work 3324, Men's, Size: 132S

★★★★★

DMC 221 Very Dark Shell Pink - 6 Strand Embroidery Floss

★★★★★

Donald Trump 2024 Postcards

★★★★★

Dremel f013ms20jb Moto-Saw ms20-1/5 2-in-1 Compact Scroll Saw (70 W

★★★★★

Cross-Site Request Forgery is a major problem when it comes to browsing the web. If an attacker were to craft a request toward a server that performs an action, the request would contain any identifying cookies you have. As pointed out in academic literature, this can be used to empty bank accounts, change passwords, or anything in between.

This extension attempts to prevent Cross-Site Request Forgery by stripping cookies from any (non-GET) request that does not follow the same-origin policy. In this way, normal browsing remains uninterrupted while any possible CRSF attacks are blocked!

The extension is easily disabled and contains a small report of all requests which had cookies stripped.

This extension is open source and the source code is viewable at https://github.com/brandonio21 /no-csrf

This extension is based on a similar extension by avlidienbrunn