# \[CSRF Exploitation]

- [Same-Origin Policy & CORS](/pentesting-notes/certification-preparation/cwee-prep/introduction-1/csrf-exploitation/same-origin-policy-and-cors.md)
- [CORS Misconfigurations](/pentesting-notes/certification-preparation/cwee-prep/introduction-1/csrf-exploitation/cors-misconfigurations.md)
- [Bypassing CSRF Tokens via CORS](/pentesting-notes/certification-preparation/cwee-prep/introduction-1/csrf-exploitation/bypassing-csrf-tokens-via-cors-misconfigurations.md)
- [Misc CSRF Exploitation](/pentesting-notes/certification-preparation/cwee-prep/introduction-1/csrf-exploitation/misc-csrf-exploitation.md)
- [CSRF Prevention](/pentesting-notes/certification-preparation/cwee-prep/introduction-1/csrf-exploitation/csrf-vulnerability-prevention.md)