The idea behind the Application Boundaries Enforcer (ABE) module is hardening the web application oriented protections already provided by NoScript, by developing a firewall-like component running inside the browser.
Microsoft ASP.NET version 2 also fights cross-site request forgeries with a MAC'ed token: