Tuesday, October 5, 2021

JMeter - Regular Expression Extractor - CSRF Token Login - Django and Laravel Login with JMeter

CSRF Token is a common practice to prevent the Cross Site Request Forgery Attacks. If you are testing such web applications where a CSRF token is sent with the http request, you might find difficult to achieve the results with JMeter.

Most common hurdle is the Login Page because this is the place where you find CSRF token parameter with username and password. Actually CSRF Token should be used with every request where data is getting inserted in the database but generally developers do not use in the other web forms.

So How to Log into the application which has CSRF token implemented in the login page.

Here is the complete guide to handle the CSRF Tokens in the JMeter.



No comments:

Post a Comment