This is a demo Go application that uses a vulnerable version of the gorilla/csrf library.
Navigate to attack.csrf.patrickod.com to view the CSRF attack page and details.
NB: If you encounter "CSRF token invalid" errors after having used the CSRF attack demo, make sure to clear your cookies for the domain csrf.patrickod.com before reloading this page.