Two-Stage CSRF Prompt Bypass Generator (GET-based) 

This generator is mainly dedicated to WebGoat lessons. But who knows you can apply it in real-world applications?

First URL to be loaded: 

Second URL to be loaded: 

Hidden Frames:

 

Code: 






Suggest/Request new test pages to pentest @ yehg dot net.
Thanks!