Objectives:

1. Conduct a CSRF attack for the url /lab/webapp/csrf/1?ch1=3dfe45
2. Assume the Pentester can lure the user to a website controlled by him
3. The challenge might be solvable using other techniques but only CSRF is allowed
4. Remember to refresh this page after you think you've conducted a successful CSRF
5. Click here to Reset Challenge if you need to!