Mitigasi Pembangkitan Token Pada Kerentanan Cross Site Request Forgery dengan Pengujian Mutasi

In the digital era, software security is crucial to prevent financial losses and data theft due to cyber attacks such as Cross-Site Request Forgery (CSRF). Based on CVEdetails data, CSRF attacks increased significantly from 416 cases in 2020 to 1398 cases in 2023. This research explores the use of Static Application Security Testing (SAST) to detect and prevent CSRF attacks. In addition, anti-CSRF token and mutation testing are used to improve the quality of test cases in detecting CSRF vulnerabilities. The research results show that the mutation testing technique is effective in improving the quality of test cases, with the Mutation Score Index (MSI) value increasing from 50% to 100% after improvement. This research concludes that mutation testing can improve the quality of test cases, thereby providing better software protection against CSRF attacks.