https://wiki.owasp.org/api.php?action=feedcontributions&feedformat=atom&user=Yashartha+Chaturvedi OWASP - User contributions [en] 2026-05-05T14:37:29Z User contributions MediaWiki 1.27.2 https://wiki.owasp.org/index.php?title=User:Yashartha_Chaturvedi&diff=155961 User:Yashartha Chaturvedi 2013-07-24T10:15:21Z <p>Yashartha Chaturvedi: </p> <hr /> <div>Driven by quest in technology - strongly believes that information security is a shared social responsibility. Project Leader [https://www.owasp.org/index.php/OWASP_Mantra_-_Security_Framework OWASP Mantra Security Framework], Team Member [http://matriux.com Matriux] - Debian based Security Distribution <br /> <br /> &lt;br&gt;<br /> [https://www.owasp.org/index.php/OWASP_Mantra_-_Security_Framework OWASP Mantra - Security Framework]<br /> &lt;br&gt;<br /> [http://matriux.sf.net/ Matriux - The Open Source Security Distribution for Ethical Hackers and Penetration Testers]<br /> &lt;br&gt;</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=142650 OWASP Mantra - Security Framework 2013-01-22T16:49:54Z <p>Yashartha Chaturvedi: </p> <hr /> <div>== Overview ==<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> &lt;br&gt;<br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> == Project Goals ==<br /> &lt;br&gt;<br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> == Tools ==<br /> <br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> [[Image:OWASP Mantra Security Framework in Ubuntu 11.png|thumb|300px|right|OWASP Mantra Security Framework running under Ubuntu 11 environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework in MAC Environment.png|thumb|300px|right|OWASP Mantra Security Framework running in MAC Environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework Screenshot.jpeg|thumb|300px|right|OWASP Mantra Security Framework Screenshot : under Windows 7 environment]]<br /> <br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''[http://wappalyzer.com Wappalyzer]''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Stacked Inspector''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''FireEncrypter''&lt;br/&gt;<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Form Fox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''NoRedirect''&lt;br/&gt;<br /> - ''Websecurify''&lt;br/&gt;<br /> - ''Ra.2''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''Http Fox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> == News ==<br /> <br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]&lt;br/&gt;<br /> [http://secpedia.net/wiki/OWASP_Mantra_Security_Framework OWASP Mantra page on Secpedia, the information security encyclopedia]<br /> <br /> == Contributors ==<br /> <br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> &lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> [[User:Niraj T Mohite|Niraj Mohite]]&lt;br/&gt;<br /> [[User:Rahul Babu R|Rahul Babu R]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> Thomas Mackenzie&lt;br/&gt;<br /> <br /> <br /> <br /> == Download ==<br /> <br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.92 code named Janus'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> <br /> |'''Links'''<br /> <br /> |-<br /> |'''Linux 32 bit'''<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Janus%20-%200.92%20Beta/OWASP%20Mantra%20Janus%20Linux%2032.tar.gz/download Mirror 1] [http://code.google.com/p/getmantra/downloads/detail?name=OWASP%20Mantra%20Janus%20Linux%2032.tar.gz Mirror 2] [http://burnbit.com/download/233734/OWASP_Mantra_Janus_Linux_32_tar_gz Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Janus%20-%200.92%20Beta/OWASP%20Mantra%20Janus%20Linux%2064.tar.gz/download Mirror 1] [http://code.google.com/p/getmantra/downloads/detail?name=OWASP%20Mantra%20Janus%20Linux%2064.tar.gz Mirror 2] [http://burnbit.com/download/233735/OWASP_Mantra_Janus_Linux_64_tar_gz Torrent]<br /> |-<br /> |'''Windows'''<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Janus%20-%200.92%20Beta/OWASP%20Mantra%20Janus.exe/download Mirror 1] [http://code.google.com/p/getmantra/downloads/detail?name=OWASP%20Mantra%20Janus.exe Mirror 2] [http://burnbit.com/download/233648/OWASP_Mantra_Janus_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Janus%20-%200.92%20Beta/OWASP%20Mantra%20Janus.mpkg.zip/download Mirror 1] [http://code.google.com/p/getmantra/downloads/detail?name=OWASP%20Mantra%20Janus.mpkg.zip Mirror 2] [http://burnbit.com/download/233736/OWASP_Mantra_Janus_mpkg_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |[http://code.google.com/p/getmantra/downloads/detail?name=OWASP%20Mantra%20Janus.mpkg.zip Mirror 1]<br /> |}<br /> <br /> &lt;br/&gt; <br /> ''Above given download links are only for Mantra in English- for other languages please check official website at''&lt;br/&gt; http://www.getmantra.com/download/mantra-security-toolkit.html<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> == Project About ==<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> == Resources ==<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vFcY584Wmw0 OWASP Mantra - URL Shortener Script SQL Injection Vulnerability]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=CRJkGZlV6Vk OWASP Mantra and LAMP Security CTF 6]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=aPk5vCqh-2k OWASP Mantra and Who Wants to be a Millionaire]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=0lPz24Z7Q_4 OWASP Mantra - One File CMS - Failure to Restrict URL Access]<br /> <br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> [http://mantralooks.blogspot.in/ Artworks]<br /> [http://mantragallery.blogspot.com/ Wallpapers]<br /> <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]{{OWASP Breakers}}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework/Releases/OWASP_Mantra_Janus_-_Beta_0.92&diff=142649 Projects/OWASP Mantra - Security Framework/Releases/OWASP Mantra Janus - Beta 0.92 2013-01-22T16:43:18Z <p>Yashartha Chaturvedi: Created page with &quot;{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt; | project_name = OWASP Mantra - Security Framework | project_home_page = OWASP Mantra - Se...&quot;</p> <hr /> <div>{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt;<br /> <br /> | project_name = OWASP Mantra - Security Framework<br /> <br /> | project_home_page = OWASP Mantra - Security Framework<br /> <br /> | release_name = OWASP Mantra Janus - Beta 0.92<br /> <br /> | release_date = 22 January 2013<br /> <br /> | release_description =<br /> Sixth public beta release of OWASP Mantra Security Toolkit - Beta 0.92 code named [http://blog.getmantra.com/2013/01/owasp-mantra-janus-092.html Janus]&lt;br&gt; <br /> <br /> | release_license =<br /> [http://www.gnu.org/copyleft/fdl.html GNU Free Documentation 1.2 for documents] &amp; [http://www.gnu.org/licenses/gpl-3.0.html GPL v3 for source code] <br /> <br /> | release_download_link = http://www.getmantra.com/download.html<br /> <br /> | leader_name1 = Abhi M BalaKrishnan <br /> | leader_email1 = abhi@getmantra.com<br /> | leader_username1 = Abhi_M_Balakrishnan<br /> <br /> | contributor_name1 = Yashartha Chaturvedi <br /> | contributor_email1 = yashartha@getmantra.com<br /> | contributor_username1 = Yashartha_Chaturvedi<br /> <br /> | release_notes = http://blog.getmantra.com/2013/01/owasp-mantra-janus-092.html<br /> <br /> | links_url1 =<br /> | links_name1 =<br /> }}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework/Releases/Current&diff=142648 Projects/OWASP Mantra - Security Framework/Releases/Current 2013-01-22T16:41:28Z <p>Yashartha Chaturvedi: Redirected page to Projects/OWASP Mantra - Security Framework/Releases/Mantra Security Toolkit - 0.92</p> <hr /> <div>#REDIRECT [[Projects/OWASP Mantra - Security Framework/Releases/Mantra_Security_Toolkit_-_0.92]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework/Releases/Mantra_Security_Toolkit_-_0.92&diff=142647 Projects/OWASP Mantra - Security Framework/Releases/Mantra Security Toolkit - 0.92 2013-01-22T16:39:07Z <p>Yashartha Chaturvedi: Created page with &quot;{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt; | project_name = OWASP Mantra - Security Framework | project_home_page = OWASP Mantra - Se...&quot;</p> <hr /> <div>{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt;<br /> <br /> | project_name = OWASP Mantra - Security Framework<br /> <br /> | project_home_page = OWASP Mantra - Security Framework<br /> <br /> | release_name = OWASP Mantra Janus - Beta 0.92<br /> <br /> | release_date = 22 January 2013<br /> <br /> | release_description =<br /> Sixth public beta release of OWASP Mantra Security Toolkit - Beta 0.92 code named [http://blog.getmantra.com/2013/01/owasp-mantra-janus-092.html Janus]&lt;br&gt; <br /> <br /> | release_license =<br /> [http://www.gnu.org/copyleft/fdl.html GNU Free Documentation 1.2 for documents] &amp; [http://www.gnu.org/licenses/gpl-3.0.html GPL v3 for source code] <br /> <br /> | release_download_link = http://www.getmantra.com/download.html<br /> <br /> | leader_name1 = Abhi M BalaKrishnan <br /> | leader_email1 = abhi@getmantra.com<br /> | leader_username1 = Abhi_M_Balakrishnan<br /> <br /> | contributor_name1 = Yashartha Chaturvedi <br /> | contributor_email1 = yashartha@getmantra.com<br /> | contributor_username1 = Yashartha_Chaturvedi<br /> <br /> | release_notes = http://blog.getmantra.com/2013/01/owasp-mantra-janus-092.html<br /> <br /> | links_url1 =<br /> | links_name1 =<br /> }}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=142646 OWASP Mantra - Security Framework 2013-01-22T16:33:09Z <p>Yashartha Chaturvedi: </p> <hr /> <div>== Overview ==<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> &lt;br&gt;<br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> == Project Goals ==<br /> &lt;br&gt;<br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> == Tools ==<br /> <br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> [[Image:OWASP Mantra Security Framework in Ubuntu 11.png|thumb|300px|right|OWASP Mantra Security Framework running under Ubuntu 11 environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework in MAC Environment.png|thumb|300px|right|OWASP Mantra Security Framework running in MAC Environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework Screenshot.jpeg|thumb|300px|right|OWASP Mantra Security Framework Screenshot : under Windows 7 environment]]<br /> <br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''[http://wappalyzer.com Wappalyzer]''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Stacked Inspector''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''FireEncrypter''&lt;br/&gt;<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Form Fox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''NoRedirect''&lt;br/&gt;<br /> - ''Websecurify''&lt;br/&gt;<br /> - ''Ra.2''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''Http Fox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> == News ==<br /> <br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]&lt;br/&gt;<br /> [http://secpedia.net/wiki/OWASP_Mantra_Security_Framework OWASP Mantra page on Secpedia, the information security encyclopedia]<br /> <br /> == Contributors ==<br /> <br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> &lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> [[User:Niraj T Mohite|Niraj Mohite]]&lt;br/&gt;<br /> [[User:Rahul Babu R|Rahul Babu R]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> Thomas Mackenzie&lt;br/&gt;<br /> <br /> <br /> <br /> == Download ==<br /> <br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.92 code named Janus'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Janus%20-%200.92%20Beta/OWASP%20Mantra%20Janus%20Linux%2032.tar.gz/download Mirror 1] [http://code.google.com/p/getmantra/downloads/detail?name=OWASP%20Mantra%20Janus%20Linux%2032.tar.gz Mirror 2] [http://burnbit.com/download/233734/OWASP_Mantra_Janus_Linux_32_tar_gz Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Janus%20-%200.92%20Beta/OWASP%20Mantra%20Janus%20Linux%2064.tar.gz/download Mirror 1] [http://code.google.com/p/getmantra/downloads/detail?name=OWASP%20Mantra%20Janus%20Linux%2064.tar.gz Mirror 2] [http://burnbit.com/download/233735/OWASP_Mantra_Janus_Linux_64_tar_gz Torrent]<br /> |-<br /> |'''Windows'''<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Janus%20-%200.92%20Beta/OWASP%20Mantra%20Janus.exe/download Mirror 1] [http://code.google.com/p/getmantra/downloads/detail?name=OWASP%20Mantra%20Janus.exe Mirror 2] [http://burnbit.com/download/233648/OWASP_Mantra_Janus_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Janus%20-%200.92%20Beta/OWASP%20Mantra%20Janus.mpkg.zip/download Mirror 1] [http://code.google.com/p/getmantra/downloads/detail?name=OWASP%20Mantra%20Janus.mpkg.zip Mirror 2] [http://burnbit.com/download/233736/OWASP_Mantra_Janus_mpkg_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |[http://code.google.com/p/getmantra/downloads/detail?name=OWASP%20Mantra%20Janus.mpkg.zip Mirror 1]<br /> |}<br /> <br /> &lt;br/&gt; <br /> ''Above given download links are only for Mantra in English- for other languages please check official website at''&lt;br/&gt; http://www.getmantra.com/download/mantra-security-toolkit.html<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> == Project About ==<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> == Resources ==<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vFcY584Wmw0 OWASP Mantra - URL Shortener Script SQL Injection Vulnerability]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=CRJkGZlV6Vk OWASP Mantra and LAMP Security CTF 6]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=aPk5vCqh-2k OWASP Mantra and Who Wants to be a Millionaire]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=0lPz24Z7Q_4 OWASP Mantra - One File CMS - Failure to Restrict URL Access]<br /> <br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> [http://mantralooks.blogspot.in/ Artworks]<br /> [http://mantragallery.blogspot.com/ Wallpapers]<br /> <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]{{OWASP Breakers}}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=User:Yashartha_Chaturvedi&diff=134905 User:Yashartha Chaturvedi 2012-08-28T04:09:59Z <p>Yashartha Chaturvedi: </p> <hr /> <div>Driven by quest in technology - strongly believes that information security is a shared social responsibility. Project Leader [https://www.owasp.org/index.php/OWASP_Mantra_-_Security_Framework OWASP Mantra Security Framework], Team Member [http://matriux.com Matriux] - Debian based Security Distribution , Information Security Consultant at [http://slybulwark.com Slybulwark]<br /> <br /> &lt;br&gt;<br /> [https://www.owasp.org/index.php/OWASP_Mantra_-_Security_Framework OWASP Mantra - Security Framework]<br /> &lt;br&gt;<br /> [http://matriux.sf.net/ Matriux - The Open Source Security Distribution for Ethical Hackers and Penetration Testers]<br /> &lt;br&gt;<br /> [http://www.is-ra.org/index.html Information Security Research Association]<br /> &lt;br&gt;</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=132573 OWASP Mantra - Security Framework 2012-07-04T15:41:26Z <p>Yashartha Chaturvedi: </p> <hr /> <div>[[File:OWASP_Logo_Web.jpg|600px|center|link=http://www.owasp.org/index.php/OWASP_InfoSec_Conference_2012]]<br /> <br /> == Overview ==<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> &lt;br&gt;<br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> == Project Goals ==<br /> &lt;br&gt;<br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> == Tools ==<br /> <br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> [[Image:OWASP Mantra Security Framework in Ubuntu 11.png|thumb|300px|right|OWASP Mantra Security Framework running under Ubuntu 11 environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework in MAC Environment.png|thumb|300px|right|OWASP Mantra Security Framework running in MAC Environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework Screenshot.jpeg|thumb|300px|right|OWASP Mantra Security Framework Screenshot : under Windows 7 environment]]<br /> <br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Wappalyzer''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Stacked Inspector''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''FireEncrypter''&lt;br/&gt;<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Form Fox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''NoRedirect''&lt;br/&gt;<br /> - ''Websecurify''&lt;br/&gt;<br /> - ''Ra.2''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''Http Fox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> == News ==<br /> <br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]&lt;br/&gt;<br /> [http://secpedia.net/wiki/OWASP_Mantra_Security_Framework OWASP Mantra page on Secpedia, the information security encyclopedia]<br /> <br /> == Contributors ==<br /> <br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> Thomas Mackenzie&lt;br/&gt;<br /> Niraj Mohite&lt;br/&gt;<br /> Rahul Babu R&lt;br/&gt;<br /> <br /> <br /> == Download ==<br /> <br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.91 code named Lexicon'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 54784b658a0ad08ad6f7cfd18ea0a3d7<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Lin32%20EN.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Lin32%20EN.tar.bz2 Mirror 2] [http://burnbit.com/torrent/200586/Mantra_Lexicon_Lin32_EN_tar_bz2 Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: e4ffc6686c58e9dc3a38e89fb63e6b63<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Lin64%20EN.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Lin64%20EN.tar.bz2 Mirror 2] [http://burnbit.com/torrent/200520/Mantra_Lexicon_Lin64_EN_tar_bz2 Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: db7a6f4a15667965c59296663e58a343<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Win%20EN.exe/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Win%20EN.exe Mirror 2] [http://burnbit.com/torrent/200339/Mantra_Lexicon_Win_EN_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: 9c69fe858fc9709156d54676072d9281<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Mac%20EN.zip/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Mac%20EN.zip Mirror 2] [http://burnbit.com/torrent/200487/Mantra_Lexicon_Mac_EN_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: 7814e494504c4227411adb34b8fe2227<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/Mantra%20Lexicon%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Source.7z Mirror 2] [http://burnbit.com/torrent/200588/Mantra_Lexicon_Source_7z Torrent] <br /> |}<br /> <br /> &lt;br/&gt; <br /> ''Above given download links are only for Mantra in English- for other languages please check official website at''&lt;br/&gt; http://www.getmantra.com/download/mantra-security-toolkit.html<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> == Project About ==<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> == Resources ==<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vFcY584Wmw0 OWASP Mantra - URL Shortener Script SQL Injection Vulnerability]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=CRJkGZlV6Vk OWASP Mantra and LAMP Security CTF 6]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=aPk5vCqh-2k OWASP Mantra and Who Wants to be a Millionaire]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=0lPz24Z7Q_4 OWASP Mantra - One File CMS - Failure to Restrict URL Access]<br /> <br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> [http://mantralooks.blogspot.in/ Artworks]<br /> [http://mantragallery.blogspot.com/ Wallpapers]<br /> <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]{{OWASP Breakers}}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=130135 OWASP Mantra - Security Framework 2012-05-20T15:32:45Z <p>Yashartha Chaturvedi: </p> <hr /> <div><br /> == Overview ==<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> &lt;br&gt;<br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> == Project Goals ==<br /> &lt;br&gt;<br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> == Tools ==<br /> <br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> [[Image:OWASP Mantra Security Framework in Ubuntu 11.png|thumb|300px|right|OWASP Mantra Security Framework running under Ubuntu 11 environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework in MAC Environment.png|thumb|300px|right|OWASP Mantra Security Framework running in MAC Environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework Screenshot.jpeg|thumb|300px|right|OWASP Mantra Security Framework Screenshot : under Windows 7 environment]]<br /> <br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Wappalyzer''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Stacked Inspector''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''FireEncrypter''&lt;br/&gt;<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Form Fox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''NoRedirect''&lt;br/&gt;<br /> - ''Websecurify''&lt;br/&gt;<br /> - ''Ra.2''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''Http Fox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> == News ==<br /> <br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> == Contributors ==<br /> <br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> Thomas Mackenzie&lt;br/&gt;<br /> Niraj Mohite&lt;br/&gt;<br /> Rahul Babu R&lt;br/&gt;<br /> <br /> <br /> == Download ==<br /> <br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.91 code named Lexicon'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 54784b658a0ad08ad6f7cfd18ea0a3d7<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Lin32%20EN.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Lin32%20EN.tar.bz2 Mirror 2] [http://burnbit.com/torrent/200586/Mantra_Lexicon_Lin32_EN_tar_bz2 Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: e4ffc6686c58e9dc3a38e89fb63e6b63<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Lin64%20EN.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Lin64%20EN.tar.bz2 Mirror 2] [http://burnbit.com/torrent/200520/Mantra_Lexicon_Lin64_EN_tar_bz2 Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: db7a6f4a15667965c59296663e58a343<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Win%20EN.exe/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Win%20EN.exe Mirror 2] [http://burnbit.com/torrent/200339/Mantra_Lexicon_Win_EN_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: 9c69fe858fc9709156d54676072d9281<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Mac%20EN.zip/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Mac%20EN.zip Mirror 2] [http://burnbit.com/torrent/200487/Mantra_Lexicon_Mac_EN_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: 7814e494504c4227411adb34b8fe2227<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/Mantra%20Lexicon%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Source.7z Mirror 2] [http://burnbit.com/torrent/200588/Mantra_Lexicon_Source_7z Torrent] <br /> |}<br /> <br /> &lt;br/&gt; <br /> ''Above given download links are only for Mantra in English- for other languages please check official website at''&lt;br/&gt; http://www.getmantra.com/download/mantra-security-toolkit.html<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> == Project About ==<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> == Resources ==<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> [http://www.youtube.com/watch?v=vFcY584Wmw0 OWASP Mantra - URL Shortener Script SQL Injection Vulnerability]<br /> [http://www.youtube.com/watch?v=CRJkGZlV6Vk OWASP Mantra and LAMP Security CTF 6]<br /> [http://www.youtube.com/watch?v=aPk5vCqh-2k OWASP Mantra and Who Wants to be a Millionaire]<br /> [http://www.youtube.com/watch?v=0lPz24Z7Q_4 OWASP Mantra - One File CMS - Failure to Restrict URL Access]<br /> <br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> [http://mantralooks.blogspot.in/ Artworks]<br /> [http://mantragallery.blogspot.com/ Wallpapers]<br /> <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=130134 OWASP Mantra - Security Framework 2012-05-20T15:27:23Z <p>Yashartha Chaturvedi: </p> <hr /> <div><br /> == Overview ==<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> &lt;br&gt;<br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> == Project Goals ==<br /> &lt;br&gt;<br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> == Tools ==<br /> <br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> [[Image:OWASP Mantra Security Framework in Ubuntu 11.png|thumb|300px|right|OWASP Mantra Security Framework running under Ubuntu 11 environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework in MAC Environment.png|thumb|300px|right|OWASP Mantra Security Framework running in MAC Environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework Screenshot.jpeg|thumb|300px|right|OWASP Mantra Security Framework Screenshot : under Windows 7 environment]]<br /> <br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Wappalyzer''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Stacked Inspector''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''FireEncrypter''&lt;br/&gt;<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Form Fox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''NoRedirect''&lt;br/&gt;<br /> - ''Websecurify''&lt;br/&gt;<br /> - ''Ra.2''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''Http Fox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> == News ==<br /> <br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> == Contributors ==<br /> <br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> Thomas Mackenzie&lt;br/&gt;<br /> Niraj Mohite&lt;br/&gt;<br /> Rahul Babu R&lt;br/&gt;<br /> <br /> <br /> == Download ==<br /> <br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.91 code named Lexicon'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 54784b658a0ad08ad6f7cfd18ea0a3d7<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Lin32%20EN.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Lin32%20EN.tar.bz2 Mirror 2] [http://burnbit.com/torrent/200586/Mantra_Lexicon_Lin32_EN_tar_bz2 Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: e4ffc6686c58e9dc3a38e89fb63e6b63<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Lin64%20EN.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Lin64%20EN.tar.bz2 Mirror 2] [http://burnbit.com/torrent/200520/Mantra_Lexicon_Lin64_EN_tar_bz2 Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: db7a6f4a15667965c59296663e58a343<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Win%20EN.exe/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Win%20EN.exe Mirror 2] [http://burnbit.com/torrent/200339/Mantra_Lexicon_Win_EN_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: 9c69fe858fc9709156d54676072d9281<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Mac%20EN.zip/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Mac%20EN.zip Mirror 2] [http://burnbit.com/torrent/200487/Mantra_Lexicon_Mac_EN_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: 7814e494504c4227411adb34b8fe2227<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/Mantra%20Lexicon%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Source.7z Mirror 2] [http://burnbit.com/torrent/200588/Mantra_Lexicon_Source_7z Torrent] <br /> |}<br /> <br /> &lt;br/&gt; <br /> ''Above given download links are only for Mantra in English- for other languages please check official website at''&lt;br/&gt; http://www.getmantra.com/download/mantra-security-toolkit.html<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> == Project About ==<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> == Resources ==<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> [http://www.youtube.com/watch?v=vFcY584Wmw0 OWASP Mantra - URL Shortener Script SQL Injection Vulnerability]<br /> [http://www.youtube.com/watch?v=CRJkGZlV6Vk OWASP Mantra and LAMP Security CTF 6]<br /> [http://www.youtube.com/watch?v=aPk5vCqh-2k OWASP Mantra and Who Wants to be a Millionaire]<br /> [http://www.youtube.com/watch?v=0lPz24Z7Q_4 OWASP Mantra - One File CMS - Failure to Restrict URL Access]<br /> <br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> [http://mantralooks.blogspot.in/ Artworks]<br /> [http://mantragallery.blogspot.com/ Wallpapers]<br /> <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]] [[Category:OWASP Project|Mantra - Security Framework]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework&diff=129557 Projects/OWASP Mantra - Security Framework 2012-05-10T15:19:22Z <p>Yashartha Chaturvedi: </p> <hr /> <div>{{Template:&lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Project About&lt;/noinclude&gt;<br /> | project_name = OWASP Mantra - Security Framework<br /> | project_home_page = OWASP Mantra - Security Framework<br /> | project_description =Mantra is a security framework which can be very helpful in performing all the five phases of attacks including reconnaissance, scanning and enumeration, gaining access, escalation of privileges,maintaining access, and covering tracks. Apart from that it also contains a set of tools targeted for web developers and code debuggers which makes it handy for both offensive security and defensive security related tasks.<br /> <br /> <br /> | project_license =[http://www.gnu.org/copyleft/fdl.html GNU Free Documentation 1.2 for documents] &amp; [http://www.gnu.org/licenses/gpl-3.0.html GPL v3 for source code] <br /> <br /> <br /> | leader_name1 = Abhi M BalaKrishnan <br /> | leader_email1 = abhi@getmantra.com<br /> | leader_username1 = Abhi_M_Balakrishnan<br /> <br /> | maintainer_name1 = Yashartha Chaturvedi <br /> | maintainer_email1 = yashartha@getmantra.com<br /> | maintainer_username1 = Yashartha_Chaturvedi<br /> <br /> | pamphlet_link = http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf<br /> <br /> | presentation_link = http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx<br /> <br /> | mailing_list_name = https://lists.owasp.org/mailman/listinfo/owasp-mantra<br /> <br /> | project_road_map = http://www.owasp.org/index.php/OWASP_Mantra_-_Security_Framework/Roadmap<br /> <br /> | links_url1 = http://getmantra.com<br /> | links_name1 = http://getmantra.com<br /> <br /> <br /> | links_url6 = <br /> | links_name6 = <br /> <br /> <br /> | release_1 = Mantra Security Toolkit - 0.52<br /> | release_2 = Mantra Security Toolkit - 0.61<br /> | release_3 = Mantra Security Toolkit - 0.71<br /> | release_4 = Mantra Security Toolkit - 0.81<br /> | release_5 = Mantra Security Toolkit - 0.91<br /> | release_6 =<br /> <br /> &lt;!--- The line below is for GPC usage only. Please do not edit it ---&gt;<br /> | project_about_page = Projects/OWASP Mantra - Security Framework<br /> <br /> }}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework/Releases/OWASP_Mantra_Lexicon_-_Beta_0.91&diff=129556 Projects/OWASP Mantra - Security Framework/Releases/OWASP Mantra Lexicon - Beta 0.91 2012-05-10T15:17:41Z <p>Yashartha Chaturvedi: Created page with &quot;{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt; | project_name = OWASP Mantra - Security Framework | project_home_page = OWASP Mantra - Se...&quot;</p> <hr /> <div>{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt;<br /> <br /> | project_name = OWASP Mantra - Security Framework<br /> <br /> | project_home_page = OWASP Mantra - Security Framework<br /> <br /> | release_name = OWASP Mantra Lexicon - Beta 0.91<br /> <br /> | release_date = 10th May 2012 <br /> <br /> | release_description =<br /> Fifth public beta release of OWASP Mantra Security Toolkit - Beta 0.91 code named [http://getmantra.com/ Lexicon]&lt;br&gt; <br /> <br /> | release_license =<br /> [http://www.gnu.org/copyleft/fdl.html GNU Free Documentation 1.2 for documents] &amp; [http://www.gnu.org/licenses/gpl-3.0.html GPL v3 for source code] <br /> <br /> | release_download_link = http://www.getmantra.com/download/index.html<br /> <br /> | leader_name1 = Abhi M BalaKrishnan <br /> | leader_email1 = abhi@getmantra.com<br /> | leader_username1 = Abhi_M_Balakrishnan<br /> <br /> | contributor_name1 = Yashartha Chaturvedi <br /> | contributor_email1 = yashartha@getmantra.com<br /> | contributor_username1 = Yashartha_Chaturvedi<br /> <br /> | release_notes = http://getmantra.com/forums/Thread-OWASP-Mantra-Security-Toolkit-0-91-Beta-Lexicon?pid=350#pid350<br /> <br /> | links_url1 =<br /> | links_name1 =<br /> }}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=129555 OWASP Mantra - Security Framework 2012-05-10T15:16:56Z <p>Yashartha Chaturvedi: </p> <hr /> <div><br /> == Overview ==<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> &lt;br&gt;<br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> == Project Goals ==<br /> &lt;br&gt;<br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> == Tools ==<br /> <br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> [[Image:OWASP Mantra Security Framework in Ubuntu 11.png|thumb|300px|right|OWASP Mantra Security Framework running under Ubuntu 11 environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework in MAC Environment.png|thumb|300px|right|OWASP Mantra Security Framework running in MAC Environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework Screenshot.jpeg|thumb|300px|right|OWASP Mantra Security Framework Screenshot : under Windows 7 environment]]<br /> <br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Wappalyzer''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Stacked Inspector''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''FireEncrypter''&lt;br/&gt;<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Form Fox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''NoRedirect''&lt;br/&gt;<br /> - ''Websecurify''&lt;br/&gt;<br /> - ''Ra.2''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''Http Fox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> == News ==<br /> <br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> == Contributors ==<br /> <br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> Thomas Mackenzie&lt;br/&gt;<br /> Niraj Mohite&lt;br/&gt;<br /> Rahul Babu R&lt;br/&gt;<br /> <br /> <br /> == Download ==<br /> <br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.91 code named Lexicon'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 54784b658a0ad08ad6f7cfd18ea0a3d7<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Lin32%20EN.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Lin32%20EN.tar.bz2 Mirror 2] [http://burnbit.com/torrent/200586/Mantra_Lexicon_Lin32_EN_tar_bz2 Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: e4ffc6686c58e9dc3a38e89fb63e6b63<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Lin64%20EN.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Lin64%20EN.tar.bz2 Mirror 2] [http://burnbit.com/torrent/200520/Mantra_Lexicon_Lin64_EN_tar_bz2 Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: db7a6f4a15667965c59296663e58a343<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Win%20EN.exe/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Win%20EN.exe Mirror 2] [http://burnbit.com/torrent/200339/Mantra_Lexicon_Win_EN_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: 9c69fe858fc9709156d54676072d9281<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Mac%20EN.zip/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Mac%20EN.zip Mirror 2] [http://burnbit.com/torrent/200487/Mantra_Lexicon_Mac_EN_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: 7814e494504c4227411adb34b8fe2227<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/Mantra%20Lexicon%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Source.7z Mirror 2] [http://burnbit.com/torrent/200588/Mantra_Lexicon_Source_7z Torrent] <br /> |}<br /> <br /> &lt;br/&gt; <br /> ''Above given download links are only for Mantra in English- for other languages please check official website at''&lt;br/&gt; http://www.getmantra.com/download/mantra-security-toolkit.html<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> == Project About ==<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> == Resources ==<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> [http://www.youtube.com/watch?v=vFcY584Wmw0 OWASP Mantra - URL Shortener Script SQL Injection Vulnerability]<br /> [http://www.youtube.com/watch?v=CRJkGZlV6Vk OWASP Mantra and LAMP Security CTF 6]<br /> [http://www.youtube.com/watch?v=aPk5vCqh-2k OWASP Mantra and Who Wants to be a Millionaire]<br /> [http://www.youtube.com/watch?v=0lPz24Z7Q_4 OWASP Mantra - One File CMS - Failure to Restrict URL Access]<br /> <br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> [http://mantralooks.blogspot.in/ Artworks]<br /> [http://mantragallery.blogspot.com/ Wallpapers]<br /> <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework/Releases/Current&diff=129554 Projects/OWASP Mantra - Security Framework/Releases/Current 2012-05-10T15:03:04Z <p>Yashartha Chaturvedi: Redirected page to Projects/OWASP Mantra - Security Framework/Releases/Mantra Security Toolkit - 0.91</p> <hr /> <div>#REDIRECT [[Projects/OWASP Mantra - Security Framework/Releases/Mantra_Security_Toolkit_-_0.91]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework/Releases/Mantra_Security_Toolkit_-_0.91&diff=129551 Projects/OWASP Mantra - Security Framework/Releases/Mantra Security Toolkit - 0.91 2012-05-10T14:57:27Z <p>Yashartha Chaturvedi: Created page with &quot;{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt; | project_name = OWASP Mantra - Security Framework | project_home_page = OWASP Mantra - Se...&quot;</p> <hr /> <div>{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt;<br /> <br /> | project_name = OWASP Mantra - Security Framework<br /> <br /> | project_home_page = OWASP Mantra - Security Framework<br /> <br /> | release_name = OWASP Mantra Lexicon - Beta 0.91<br /> <br /> | release_date = 10th May 2012 <br /> <br /> | release_description =<br /> Fifth public beta release of OWASP Mantra Security Toolkit - Beta 0.91 code named [http://getmantra.com/ Lexicon]&lt;br&gt; <br /> <br /> | release_license =<br /> [http://www.gnu.org/copyleft/fdl.html GNU Free Documentation 1.2 for documents] &amp; [http://www.gnu.org/licenses/gpl-3.0.html GPL v3 for source code] <br /> <br /> | release_download_link = http://www.getmantra.com/download/index.html<br /> <br /> | leader_name1 = Abhi M BalaKrishnan <br /> | leader_email1 = abhi@getmantra.com<br /> | leader_username1 = Abhi_M_Balakrishnan<br /> <br /> | contributor_name1 = Yashartha Chaturvedi <br /> | contributor_email1 = yashartha@getmantra.com<br /> | contributor_username1 = Yashartha_Chaturvedi<br /> <br /> | release_notes = http://getmantra.com/forums/Thread-OWASP-Mantra-Security-Toolkit-0-91-Beta-Lexicon?pid=350#pid350<br /> <br /> | links_url1 =<br /> | links_name1 =<br /> }}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=129549 OWASP Mantra - Security Framework 2012-05-10T14:26:04Z <p>Yashartha Chaturvedi: </p> <hr /> <div><br /> == Overview ==<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> &lt;br&gt;<br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> == Project Goals ==<br /> &lt;br&gt;<br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> == Tools ==<br /> <br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> [[Image:OWASP Mantra Security Framework in Ubuntu 11.png|thumb|300px|right|OWASP Mantra Security Framework running under Ubuntu 11 environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework in MAC Environment.png|thumb|300px|right|OWASP Mantra Security Framework running in MAC Environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework Screenshot.jpeg|thumb|300px|right|OWASP Mantra Security Framework Screenshot : under Windows 7 environment]]<br /> <br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Wappalyzer''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Stacked Inspector''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''FireEncrypter''&lt;br/&gt;<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Form Fox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''NoRedirect''&lt;br/&gt;<br /> - ''Websecurify''&lt;br/&gt;<br /> - ''Ra.2''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''Http Fox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> == News ==<br /> <br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> == Contributors ==<br /> <br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> Thomas Mackenzie&lt;br/&gt;<br /> <br /> <br /> == Download ==<br /> <br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.91 code named Lexicon'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 54784b658a0ad08ad6f7cfd18ea0a3d7<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Lin32%20EN.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Lin32%20EN.tar.bz2 Mirror 2] [http://burnbit.com/torrent/200586/Mantra_Lexicon_Lin32_EN_tar_bz2 Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: e4ffc6686c58e9dc3a38e89fb63e6b63<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Lin64%20EN.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Lin64%20EN.tar.bz2 Mirror 2] [http://burnbit.com/torrent/200520/Mantra_Lexicon_Lin64_EN_tar_bz2 Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: db7a6f4a15667965c59296663e58a343<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Win%20EN.exe/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Win%20EN.exe Mirror 2] [http://burnbit.com/torrent/200339/Mantra_Lexicon_Win_EN_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: 9c69fe858fc9709156d54676072d9281<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Mac%20EN.zip/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Mac%20EN.zip Mirror 2] [http://burnbit.com/torrent/200487/Mantra_Lexicon_Mac_EN_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: 7814e494504c4227411adb34b8fe2227<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/Mantra%20Lexicon%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Source.7z Mirror 2] [http://burnbit.com/torrent/200588/Mantra_Lexicon_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> == Project About ==<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> == Resources ==<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> [http://www.youtube.com/watch?v=vFcY584Wmw0 OWASP Mantra - URL Shortener Script SQL Injection Vulnerability]<br /> [http://www.youtube.com/watch?v=CRJkGZlV6Vk OWASP Mantra and LAMP Security CTF 6]<br /> [http://www.youtube.com/watch?v=aPk5vCqh-2k OWASP Mantra and Who Wants to be a Millionaire]<br /> [http://www.youtube.com/watch?v=0lPz24Z7Q_4 OWASP Mantra - One File CMS - Failure to Restrict URL Access]<br /> <br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> [http://mantralooks.blogspot.in/ Artworks]<br /> [http://mantragallery.blogspot.com/ Wallpapers]<br /> <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=129524 OWASP Mantra - Security Framework 2012-05-10T13:41:52Z <p>Yashartha Chaturvedi: </p> <hr /> <div><br /> == Overview ==<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> &lt;br&gt;<br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> == Project Goals ==<br /> &lt;br&gt;<br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> == Tools ==<br /> <br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> [[Image:OWASP Mantra Security Framework in Ubuntu 11.png|thumb|300px|right|OWASP Mantra Security Framework running under Ubuntu 11 environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework in MAC Environment.png|thumb|300px|right|OWASP Mantra Security Framework running in MAC Environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework Screenshot.jpeg|thumb|300px|right|OWASP Mantra Security Framework Screenshot : under Windows 7 environment]]<br /> <br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Wappalyzer''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Stacked Inspector''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Form Fox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''NoRedirect''&lt;br/&gt;<br /> - ''Websecurify''&lt;br/&gt;<br /> - ''Ra.2''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''Http Fox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> == News ==<br /> <br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> == Contributors ==<br /> <br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> Thomas Mackenzie&lt;br/&gt;<br /> <br /> <br /> == Download ==<br /> <br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.91 code named Lexicon'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 54784b658a0ad08ad6f7cfd18ea0a3d7<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Lin32%20EN.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Lin32%20EN.tar.bz2 Mirror 2] [http://burnbit.com/torrent/200586/Mantra_Lexicon_Lin32_EN_tar_bz2 Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: e4ffc6686c58e9dc3a38e89fb63e6b63<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Lin64%20EN.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Lin64%20EN.tar.bz2 Mirror 2] [http://burnbit.com/torrent/200520/Mantra_Lexicon_Lin64_EN_tar_bz2 Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: db7a6f4a15667965c59296663e58a343<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Win%20EN.exe/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Win%20EN.exe Mirror 2] [http://burnbit.com/torrent/200339/Mantra_Lexicon_Win_EN_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: 9c69fe858fc9709156d54676072d9281<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/en-US/Mantra%20Lexicon%20Mac%20EN.zip/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Mac%20EN.zip Mirror 2] [http://burnbit.com/torrent/200487/Mantra_Lexicon_Mac_EN_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: 7814e494504c4227411adb34b8fe2227<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Lexicon%20-%200.91%20Beta/Mantra%20Lexicon%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/Mantra%20Lexicon%20Source.7z Mirror 2] [http://burnbit.com/torrent/200588/Mantra_Lexicon_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> == Project About ==<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> == Resources ==<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> [http://www.youtube.com/watch?v=vFcY584Wmw0 OWASP Mantra - URL Shortener Script SQL Injection Vulnerability]<br /> [http://www.youtube.com/watch?v=CRJkGZlV6Vk OWASP Mantra and LAMP Security CTF 6]<br /> [http://www.youtube.com/watch?v=aPk5vCqh-2k OWASP Mantra and Who Wants to be a Millionaire]<br /> [http://www.youtube.com/watch?v=0lPz24Z7Q_4 OWASP Mantra - One File CMS - Failure to Restrict URL Access]<br /> <br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> [http://mantralooks.blogspot.in/ Artworks]<br /> [http://mantragallery.blogspot.com/ Wallpapers]<br /> <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=129523 OWASP Mantra - Security Framework 2012-05-10T13:27:27Z <p>Yashartha Chaturvedi: </p> <hr /> <div><br /> == Overview ==<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> &lt;br&gt;<br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> == Project Goals ==<br /> &lt;br&gt;<br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> == Tools ==<br /> <br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> [[Image:OWASP Mantra Security Framework in Ubuntu 11.png|thumb|300px|right|OWASP Mantra Security Framework running under Ubuntu 11 environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework in MAC Environment.png|thumb|300px|right|OWASP Mantra Security Framework running in MAC Environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework Screenshot.jpeg|thumb|300px|right|OWASP Mantra Security Framework Screenshot : under Windows 7 environment]]<br /> <br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Wappalyzer''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Stacked Inspector''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''FireEncrypter''&lt;br/&gt;<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Form Fox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''NoRedirect''&lt;br/&gt;<br /> - ''Websecurify''&lt;br/&gt;<br /> - ''Ra.2''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''Http Fox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> == News ==<br /> <br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> == Contributors ==<br /> <br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> Thomas Mackenzie&lt;br/&gt;<br /> <br /> <br /> == Download ==<br /> <br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.81 code named Armada'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: e4c94e433a2e99cad0d8bea4aaf9fc08<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux%20fixed.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux%20fixed.zip Mirror 2] [http://burnbit.com/torrent/184854/OWASP_Mantra_Armada_32_bit_Linux_fixed_zip Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: 8e16d3fede90168e23fbd0489c58b80f<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux%20fixed.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux%20fixed.zip Mirror 2] [http://burnbit.com/torrent/184851/OWASP_Mantra_Armada_64_bit_Linux_fixed_zip Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 80450610eb86871e68f410335cae5f01<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Win.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Win.exe Mirror 2] [http://burnbit.com/download/183928/OWASP_Mantra_Armada_Win_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: f256cf80a94ce960a90c441eb4b00ce0<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Mac.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Mac.zip Mirror 2] [http://burnbit.com/download/183927/OWASP_Mantra_Armada_Mac_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: af9a3b960b56a94a7c6227d62d674bea<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Source.7z Mirror 2] [http://burnbit.com/torrent/183979/OWASP_Mantra_Armada_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> == Project About ==<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> == Resources ==<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> [http://www.youtube.com/watch?v=vFcY584Wmw0 OWASP Mantra - URL Shortener Script SQL Injection Vulnerability]<br /> [http://www.youtube.com/watch?v=CRJkGZlV6Vk OWASP Mantra and LAMP Security CTF 6]<br /> [http://www.youtube.com/watch?v=aPk5vCqh-2k OWASP Mantra and Who Wants to be a Millionaire]<br /> [http://www.youtube.com/watch?v=0lPz24Z7Q_4 OWASP Mantra - One File CMS - Failure to Restrict URL Access]<br /> <br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> [http://mantralooks.blogspot.in/ Artworks]<br /> [http://mantragallery.blogspot.com/ Wallpapers]<br /> <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=129521 OWASP Mantra - Security Framework 2012-05-10T13:04:21Z <p>Yashartha Chaturvedi: </p> <hr /> <div><br /> == Overview ==<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> &lt;br&gt;<br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> == Project Goals ==<br /> &lt;br&gt;<br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> == Tools ==<br /> <br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> [[Image:OWASP Mantra Security Framework in Ubuntu 11.png|thumb|300px|right|OWASP Mantra Security Framework running under Ubuntu 11 environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework in MAC Environment.png|thumb|300px|right|OWASP Mantra Security Framework running in MAC Environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework Screenshot.jpeg|thumb|300px|right|OWASP Mantra Security Framework Screenshot : under Windows 7 environment]]<br /> <br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Wappalyzer''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Stacked Inspector''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Form Fox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''NoRedirect''&lt;br/&gt;<br /> - ''Websecurify''&lt;br/&gt;<br /> - ''Ra.2''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''Http Fox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> == News ==<br /> <br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> == Contributors ==<br /> <br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> Thomas Mackenzie&lt;br/&gt;<br /> <br /> <br /> == Download ==<br /> <br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.81 code named Armada'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: e4c94e433a2e99cad0d8bea4aaf9fc08<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux%20fixed.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux%20fixed.zip Mirror 2] [http://burnbit.com/torrent/184854/OWASP_Mantra_Armada_32_bit_Linux_fixed_zip Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: 8e16d3fede90168e23fbd0489c58b80f<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux%20fixed.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux%20fixed.zip Mirror 2] [http://burnbit.com/torrent/184851/OWASP_Mantra_Armada_64_bit_Linux_fixed_zip Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 80450610eb86871e68f410335cae5f01<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Win.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Win.exe Mirror 2] [http://burnbit.com/download/183928/OWASP_Mantra_Armada_Win_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: f256cf80a94ce960a90c441eb4b00ce0<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Mac.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Mac.zip Mirror 2] [http://burnbit.com/download/183927/OWASP_Mantra_Armada_Mac_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: af9a3b960b56a94a7c6227d62d674bea<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Source.7z Mirror 2] [http://burnbit.com/torrent/183979/OWASP_Mantra_Armada_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> == Project About ==<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> == Resources ==<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> [http://www.youtube.com/watch?v=vFcY584Wmw0 OWASP Mantra - URL Shortener Script SQL Injection Vulnerability]<br /> [http://www.youtube.com/watch?v=CRJkGZlV6Vk OWASP Mantra and LAMP Security CTF 6]<br /> [http://www.youtube.com/watch?v=aPk5vCqh-2k OWASP Mantra and Who Wants to be a Millionaire]<br /> [http://www.youtube.com/watch?v=0lPz24Z7Q_4 OWASP Mantra - One File CMS - Failure to Restrict URL Access]<br /> <br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> [http://mantralooks.blogspot.in/ Artworks]<br /> [http://mantragallery.blogspot.com/ Wallpapers]<br /> <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=User:Yashartha_Chaturvedi&diff=127996 User:Yashartha Chaturvedi 2012-04-17T17:36:17Z <p>Yashartha Chaturvedi: </p> <hr /> <div>Driven by quest in technology - strongly believes that information security is a shared social responsibility. A [http://en.wikipedia.org/wiki/User:Yashartha_Chaturvedi Wikipedian], Project Leader [https://www.owasp.org/index.php/OWASP_Mantra_-_Security_Framework OWASP Mantra Security Framework], Team Member [http://matriux.com Matriux] - Debian based Security Distribution , Information Security Consultant at [http://slybulwark.com Slybulwark]<br /> <br /> &lt;br&gt;<br /> [https://www.owasp.org/index.php/OWASP_Mantra_-_Security_Framework OWASP Mantra - Security Framework]<br /> &lt;br&gt;<br /> [http://en.wikipedia.org/wiki/OWASP_Mantra_Security_Framework Mantra - Browser based security framework]<br /> &lt;br&gt;<br /> [http://en.wikipedia.org/wiki/Matriux Matriux - The Open Source Security Distribution for Ethical Hackers and Penetration Testers] <br /> &lt;br&gt;<br /> [http://matriux.sf.net/ Matriux Sourceforge.net Download]<br /> &lt;br&gt;<br /> [http://www.is-ra.org/index.html Information Security Research Association]<br /> &lt;br&gt;</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=127995 OWASP Mantra - Security Framework 2012-04-17T17:13:30Z <p>Yashartha Chaturvedi: </p> <hr /> <div><br /> == Overview ==<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> &lt;br&gt;<br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> == Project Goals ==<br /> &lt;br&gt;<br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> == Tools ==<br /> <br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> [[Image:OWASP Mantra Security Framework in Ubuntu 11.png|thumb|300px|right|OWASP Mantra Security Framework running under Ubuntu 11 environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework in MAC Environment.png|thumb|300px|right|OWASP Mantra Security Framework running in MAC Environment]]<br /> &lt;br/&gt;<br /> [[Image:OWASP Mantra Security Framework Screenshot.jpeg|thumb|300px|right|OWASP Mantra Security Framework Screenshot : under Windows 7 environment]]<br /> <br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Facebook search''&lt;br/&gt;<br /> - ''People Search Engine''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Firebug Autocompleter''&lt;br/&gt;<br /> - ''FirePHP''&lt;br/&gt;<br /> - ''FireRainbow''&lt;br/&gt;<br /> - ''Flashbug''&lt;br/&gt;<br /> - ''Illuminations for Developers''&lt;br/&gt;<br /> - ''In line Code Finder for Firebug''&lt;br/&gt;<br /> - ''Inspect Context''&lt;br/&gt;<br /> - ''Inspector Widget''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''Stacked Inspector''<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Formfox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''SOAClient''&lt;br/&gt;<br /> - ''Websecurify''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''HttpFox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> == News ==<br /> <br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> == Contributors ==<br /> <br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> Thomas Mackenzie&lt;br/&gt;<br /> <br /> <br /> == Download ==<br /> <br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.81 code named Armada'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: e4c94e433a2e99cad0d8bea4aaf9fc08<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux%20fixed.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux%20fixed.zip Mirror 2] [http://burnbit.com/torrent/184854/OWASP_Mantra_Armada_32_bit_Linux_fixed_zip Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: 8e16d3fede90168e23fbd0489c58b80f<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux%20fixed.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux%20fixed.zip Mirror 2] [http://burnbit.com/torrent/184851/OWASP_Mantra_Armada_64_bit_Linux_fixed_zip Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 80450610eb86871e68f410335cae5f01<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Win.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Win.exe Mirror 2] [http://burnbit.com/download/183928/OWASP_Mantra_Armada_Win_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: f256cf80a94ce960a90c441eb4b00ce0<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Mac.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Mac.zip Mirror 2] [http://burnbit.com/download/183927/OWASP_Mantra_Armada_Mac_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: af9a3b960b56a94a7c6227d62d674bea<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Source.7z Mirror 2] [http://burnbit.com/torrent/183979/OWASP_Mantra_Armada_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> == Project About ==<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> == Resources ==<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> [http://www.youtube.com/watch?v=vFcY584Wmw0 OWASP Mantra - URL Shortener Script SQL Injection Vulnerability]<br /> [http://www.youtube.com/watch?v=CRJkGZlV6Vk OWASP Mantra and LAMP Security CTF 6]<br /> [http://www.youtube.com/watch?v=aPk5vCqh-2k OWASP Mantra and Who Wants to be a Millionaire]<br /> [http://www.youtube.com/watch?v=0lPz24Z7Q_4 OWASP Mantra - One File CMS - Failure to Restrict URL Access]<br /> <br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> [http://mantralooks.blogspot.in/ Artworks]<br /> [http://mantragallery.blogspot.com/ Wallpapers]<br /> <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=File:OWASP_Mantra_Security_Framework_Screenshot.jpeg&diff=127994 File:OWASP Mantra Security Framework Screenshot.jpeg 2012-04-17T17:11:01Z <p>Yashartha Chaturvedi: OWASP Mantra Security Framework Screenshot : under Windows 7 environment</p> <hr /> <div>OWASP Mantra Security Framework Screenshot : under Windows 7 environment</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=File:OWASP_Mantra_Security_Framework_in_MAC_Environment.png&diff=127993 File:OWASP Mantra Security Framework in MAC Environment.png 2012-04-17T17:04:31Z <p>Yashartha Chaturvedi: OWASP Mantra Security Framework running in MAC Environment</p> <hr /> <div>OWASP Mantra Security Framework running in MAC Environment</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=File:OWASP_Mantra_Security_Framework_in_Ubuntu_11.png&diff=127992 File:OWASP Mantra Security Framework in Ubuntu 11.png 2012-04-17T16:55:00Z <p>Yashartha Chaturvedi: OWASP Mantra Security Framework running in Ubuntu 11</p> <hr /> <div>OWASP Mantra Security Framework running in Ubuntu 11</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=127991 OWASP Mantra - Security Framework 2012-04-17T16:45:50Z <p>Yashartha Chaturvedi: </p> <hr /> <div><br /> == Overview ==<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> &lt;br&gt;<br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> == Project Goals ==<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> == Tools ==<br /> <br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> <br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Facebook search''&lt;br/&gt;<br /> - ''People Search Engine''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Firebug Autocompleter''&lt;br/&gt;<br /> - ''FirePHP''&lt;br/&gt;<br /> - ''FireRainbow''&lt;br/&gt;<br /> - ''Flashbug''&lt;br/&gt;<br /> - ''Illuminations for Developers''&lt;br/&gt;<br /> - ''In line Code Finder for Firebug''&lt;br/&gt;<br /> - ''Inspect Context''&lt;br/&gt;<br /> - ''Inspector Widget''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''Stacked Inspector''<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Formfox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''SOAClient''&lt;br/&gt;<br /> - ''Websecurify''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''HttpFox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> == News ==<br /> <br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> == Contributors ==<br /> <br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> Thomas Mackenzie&lt;br/&gt;<br /> <br /> <br /> == Download ==<br /> <br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.81 code named Armada'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: e4c94e433a2e99cad0d8bea4aaf9fc08<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux%20fixed.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux%20fixed.zip Mirror 2] [http://burnbit.com/torrent/184854/OWASP_Mantra_Armada_32_bit_Linux_fixed_zip Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: 8e16d3fede90168e23fbd0489c58b80f<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux%20fixed.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux%20fixed.zip Mirror 2] [http://burnbit.com/torrent/184851/OWASP_Mantra_Armada_64_bit_Linux_fixed_zip Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 80450610eb86871e68f410335cae5f01<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Win.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Win.exe Mirror 2] [http://burnbit.com/download/183928/OWASP_Mantra_Armada_Win_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: f256cf80a94ce960a90c441eb4b00ce0<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Mac.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Mac.zip Mirror 2] [http://burnbit.com/download/183927/OWASP_Mantra_Armada_Mac_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: af9a3b960b56a94a7c6227d62d674bea<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Source.7z Mirror 2] [http://burnbit.com/torrent/183979/OWASP_Mantra_Armada_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> == Project About ==<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> == Resources ==<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> [http://www.youtube.com/watch?v=vFcY584Wmw0 OWASP Mantra - URL Shortener Script SQL Injection Vulnerability]<br /> [http://www.youtube.com/watch?v=CRJkGZlV6Vk OWASP Mantra and LAMP Security CTF 6]<br /> [http://www.youtube.com/watch?v=aPk5vCqh-2k OWASP Mantra and Who Wants to be a Millionaire]<br /> [http://www.youtube.com/watch?v=0lPz24Z7Q_4 OWASP Mantra - One File CMS - Failure to Restrict URL Access]<br /> <br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> [http://mantralooks.blogspot.in/ Artworks]<br /> [http://mantragallery.blogspot.com/ Wallpapers]<br /> <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=127807 OWASP Mantra - Security Framework 2012-04-13T07:07:48Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> == Main Links ==<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> = Tools =<br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> == Tools ==<br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Facebook search''&lt;br/&gt;<br /> - ''People Search Engine''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Firebug Autocompleter''&lt;br/&gt;<br /> - ''FirePHP''&lt;br/&gt;<br /> - ''FireRainbow''&lt;br/&gt;<br /> - ''Flashbug''&lt;br/&gt;<br /> - ''Illuminations for Developers''&lt;br/&gt;<br /> - ''In line Code Finder for Firebug''&lt;br/&gt;<br /> - ''Inspect Context''&lt;br/&gt;<br /> - ''Inspector Widget''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''Stacked Inspector''<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Formfox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''SOAClient''&lt;br/&gt;<br /> - ''Websecurify''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''HttpFox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> <br /> = News =<br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> = Contributors =<br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> <br /> = Download =<br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.81 code named Armada'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: e4c94e433a2e99cad0d8bea4aaf9fc08<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux%20fixed.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux%20fixed.zip Mirror 2] [http://burnbit.com/torrent/184854/OWASP_Mantra_Armada_32_bit_Linux_fixed_zip Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: 8e16d3fede90168e23fbd0489c58b80f<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux%20fixed.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux%20fixed.zip Mirror 2] [http://burnbit.com/torrent/184851/OWASP_Mantra_Armada_64_bit_Linux_fixed_zip Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 80450610eb86871e68f410335cae5f01<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Win.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Win.exe Mirror 2] [http://burnbit.com/download/183928/OWASP_Mantra_Armada_Win_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: f256cf80a94ce960a90c441eb4b00ce0<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Mac.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Mac.zip Mirror 2] [http://burnbit.com/download/183927/OWASP_Mantra_Armada_Mac_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: af9a3b960b56a94a7c6227d62d674bea<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Source.7z Mirror 2] [http://burnbit.com/torrent/183979/OWASP_Mantra_Armada_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> = Project About =<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> = Resources =<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> [http://www.youtube.com/watch?v=vFcY584Wmw0 OWASP Mantra - URL Shortener Script SQL Injection Vulnerability]<br /> [http://www.youtube.com/watch?v=CRJkGZlV6Vk OWASP Mantra and LAMP Security CTF 6]<br /> [http://www.youtube.com/watch?v=aPk5vCqh-2k OWASP Mantra and Who Wants to be a Millionaire]<br /> [http://www.youtube.com/watch?v=0lPz24Z7Q_4 OWASP Mantra - One File CMS - Failure to Restrict URL Access]<br /> <br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> [http://mantralooks.blogspot.in/ Artworks]<br /> [http://mantragallery.blogspot.com/ Wallpapers]<br /> <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=122723 OWASP Mantra - Security Framework 2012-01-13T06:50:05Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> == Main Links ==<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> = Tools =<br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> == Tools ==<br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Facebook search''&lt;br/&gt;<br /> - ''People Search Engine''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Firebug Autocompleter''&lt;br/&gt;<br /> - ''FirePHP''&lt;br/&gt;<br /> - ''FireRainbow''&lt;br/&gt;<br /> - ''Flashbug''&lt;br/&gt;<br /> - ''Illuminations for Developers''&lt;br/&gt;<br /> - ''In line Code Finder for Firebug''&lt;br/&gt;<br /> - ''Inspect Context''&lt;br/&gt;<br /> - ''Inspector Widget''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''Stacked Inspector''<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Formfox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''SOAClient''&lt;br/&gt;<br /> - ''Websecurify''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''HttpFox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> <br /> = News =<br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> = Contributors =<br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> <br /> = Download =<br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.81 code named Armada'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: e4c94e433a2e99cad0d8bea4aaf9fc08<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux%20fixed.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux%20fixed.zip Mirror 2] [http://burnbit.com/torrent/184854/OWASP_Mantra_Armada_32_bit_Linux_fixed_zip Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: 8e16d3fede90168e23fbd0489c58b80f<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux%20fixed.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux%20fixed.zip Mirror 2] [http://burnbit.com/torrent/184851/OWASP_Mantra_Armada_64_bit_Linux_fixed_zip Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 80450610eb86871e68f410335cae5f01<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Win.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Win.exe Mirror 2] [http://burnbit.com/download/183928/OWASP_Mantra_Armada_Win_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: f256cf80a94ce960a90c441eb4b00ce0<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Mac.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Mac.zip Mirror 2] [http://burnbit.com/download/183927/OWASP_Mantra_Armada_Mac_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: af9a3b960b56a94a7c6227d62d674bea<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Source.7z Mirror 2] [http://burnbit.com/torrent/183979/OWASP_Mantra_Armada_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> = Project About =<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> = Resources =<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=122722 OWASP Mantra - Security Framework 2012-01-13T06:08:22Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> == Main Links ==<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> = Tools =<br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> == Tools ==<br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Facebook search''&lt;br/&gt;<br /> - ''People Search Engine''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Firebug Autocompleter''&lt;br/&gt;<br /> - ''FirePHP''&lt;br/&gt;<br /> - ''FireRainbow''&lt;br/&gt;<br /> - ''Flashbug''&lt;br/&gt;<br /> - ''Illuminations for Developers''&lt;br/&gt;<br /> - ''In line Code Finder for Firebug''&lt;br/&gt;<br /> - ''Inspect Context''&lt;br/&gt;<br /> - ''Inspector Widget''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''Stacked Inspector''<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Formfox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''SOAClient''&lt;br/&gt;<br /> - ''Websecurify''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''HttpFox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> <br /> = News =<br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> = Contributors =<br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> <br /> = Download =<br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.81 code named Armada'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: e4c94e433a2e99cad0d8bea4aaf9fc08<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux%20fixed.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux%20fixed.zip Mirror 2] [http://burnbit.com/torrent/184854/OWASP_Mantra_Armada_32_bit_Linux_fixed_zip Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: 2b39fcaf4ad7a57d9f4b8992938430a8<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux.zip Mirror 2] [http://burnbit.com/download/183926/OWASP_Mantra_Armada_64_bit_Linux_zip Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 80450610eb86871e68f410335cae5f01<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Win.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Win.exe Mirror 2] [http://burnbit.com/download/183928/OWASP_Mantra_Armada_Win_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: f256cf80a94ce960a90c441eb4b00ce0<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Mac.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Mac.zip Mirror 2] [http://burnbit.com/download/183927/OWASP_Mantra_Armada_Mac_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: af9a3b960b56a94a7c6227d62d674bea<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Source.7z Mirror 2] [http://burnbit.com/torrent/183979/OWASP_Mantra_Armada_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> = Project About =<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> = Resources =<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=122045 OWASP Mantra - Security Framework 2011-12-30T20:43:51Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> == Main Links ==<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> = Tools =<br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> == Tools ==<br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Facebook search''&lt;br/&gt;<br /> - ''People Search Engine''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Firebug Autocompleter''&lt;br/&gt;<br /> - ''FirePHP''&lt;br/&gt;<br /> - ''FireRainbow''&lt;br/&gt;<br /> - ''Flashbug''&lt;br/&gt;<br /> - ''Illuminations for Developers''&lt;br/&gt;<br /> - ''In line Code Finder for Firebug''&lt;br/&gt;<br /> - ''Inspect Context''&lt;br/&gt;<br /> - ''Inspector Widget''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''Stacked Inspector''<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Formfox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''SOAClient''&lt;br/&gt;<br /> - ''Websecurify''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''HttpFox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> <br /> = News =<br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> = Contributors =<br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> <br /> = Download =<br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra Security Toolkit - Beta 0.81 code named Armada'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 2b1db2251b98e4aecb9d741548deafbe<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux.zip Mirror 2] [http://burnbit.com/download/183925/OWASP_Mantra_Armada_32_bit_Linux_zip Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: 2b39fcaf4ad7a57d9f4b8992938430a8<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux.zip Mirror 2] [http://burnbit.com/download/183926/OWASP_Mantra_Armada_64_bit_Linux_zip Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 80450610eb86871e68f410335cae5f01<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Win.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Win.exe Mirror 2] [http://burnbit.com/download/183928/OWASP_Mantra_Armada_Win_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: f256cf80a94ce960a90c441eb4b00ce0<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Mac.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Mac.zip Mirror 2] [http://burnbit.com/download/183927/OWASP_Mantra_Armada_Mac_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: af9a3b960b56a94a7c6227d62d674bea<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Source.7z Mirror 2] [http://burnbit.com/torrent/183979/OWASP_Mantra_Armada_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> = Project About =<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> = Resources =<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework/Releases/Mantra_Security_Toolkit_-_0.81&diff=122043 Projects/OWASP Mantra - Security Framework/Releases/Mantra Security Toolkit - 0.81 2011-12-30T18:12:33Z <p>Yashartha Chaturvedi: </p> <hr /> <div>{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt;<br /> <br /> | project_name = OWASP Mantra - Security Framework<br /> <br /> | project_home_page = OWASP Mantra - Security Framework<br /> <br /> | release_name = OWASP Mantra Armada - Beta 0.81<br /> <br /> | release_date = 30th December 2011 <br /> <br /> | release_description =<br /> forth public beta release of OWASP Mantra Security Toolkit - Beta 0.81 code named [http://getmantra.com/forums/Thread-OWASP-Mantra-Armada-0-81-Beta-Release?pid=296#pid296 Armada ]&lt;br&gt; <br /> <br /> | release_license =<br /> [http://www.gnu.org/copyleft/fdl.html GNU Free Documentation 1.2 for documents] &amp; [http://www.gnu.org/licenses/gpl-3.0.html GPL v3 for source code] <br /> <br /> | release_download_link = http://www.getmantra.com/download/index.html<br /> <br /> | leader_name1 = Abhi M BalaKrishnan <br /> | leader_email1 = abhi@getmantra.com<br /> | leader_username1 = Abhi_M_Balakrishnan<br /> <br /> | contributor_name1 = Yashartha Chaturvedi <br /> | contributor_email1 = yashartha@getmantra.com<br /> | contributor_username1 = Yashartha_Chaturvedi<br /> <br /> | release_notes = http://getmantra.com/forums/Thread-OWASP-Mantra-Armada-0-81-Beta-Release?pid=296#pid296<br /> <br /> | links_url1 =<br /> | links_name1 =<br /> }}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework&diff=122042 Projects/OWASP Mantra - Security Framework 2011-12-30T18:09:43Z <p>Yashartha Chaturvedi: </p> <hr /> <div>{{Template:&lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Project About&lt;/noinclude&gt;<br /> | project_name = OWASP Mantra - Security Framework<br /> | project_home_page = OWASP Mantra - Security Framework<br /> | project_description =Mantra is a security framework which can be very helpful in performing all the five phases of attacks including reconnaissance, scanning and enumeration, gaining access, escalation of privileges,maintaining access, and covering tracks. Apart from that it also contains a set of tools targeted for web developers and code debuggers which makes it handy for both offensive security and defensive security related tasks.<br /> <br /> <br /> | project_license =[http://www.gnu.org/copyleft/fdl.html GNU Free Documentation 1.2 for documents] &amp; [http://www.gnu.org/licenses/gpl-3.0.html GPL v3 for source code] <br /> <br /> <br /> | leader_name1 = Abhi M BalaKrishnan <br /> | leader_email1 = abhi@getmantra.com<br /> | leader_username1 = Abhi_M_Balakrishnan<br /> <br /> | maintainer_name1 = Yashartha Chaturvedi <br /> | maintainer_email1 = yashartha@getmantra.com<br /> | maintainer_username1 = Yashartha_Chaturvedi<br /> <br /> | pamphlet_link = http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf<br /> <br /> | presentation_link = http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx<br /> <br /> | mailing_list_name = https://lists.owasp.org/mailman/listinfo/owasp-mantra<br /> <br /> | project_road_map = http://www.owasp.org/index.php/OWASP_Mantra_-_Security_Framework/Roadmap<br /> <br /> | links_url1 = http://getmantra.com<br /> | links_name1 = http://getmantra.com<br /> <br /> <br /> | links_url6 = <br /> | links_name6 = <br /> <br /> <br /> | release_1 = Mantra Security Toolkit - 0.52<br /> | release_2 = Mantra Security Toolkit - 0.61<br /> | release_3 = Mantra Security Toolkit - 0.71<br /> | release_4 = Mantra Security Toolkit - 0.81<br /> | release_5 =<br /> &lt;!--- The line below is for GPC usage only. Please do not edit it ---&gt;<br /> | project_about_page = Projects/OWASP Mantra - Security Framework<br /> <br /> }}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework/Releases/Current&diff=122041 Projects/OWASP Mantra - Security Framework/Releases/Current 2011-12-30T18:07:19Z <p>Yashartha Chaturvedi: Redirected page to Projects/OWASP Mantra - Security Framework/Releases/Mantra Security Toolkit - 0.81</p> <hr /> <div>#REDIRECT [[Projects/OWASP Mantra - Security Framework/Releases/Mantra_Security_Toolkit_-_0.81]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework/Releases/OWASP_Mantra_Armada_-_Beta_0.81&diff=122040 Projects/OWASP Mantra - Security Framework/Releases/OWASP Mantra Armada - Beta 0.81 2011-12-30T18:04:05Z <p>Yashartha Chaturvedi: Created page with &quot;{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt; | project_name = OWASP Mantra - Security Framework | project_home_page = OWASP Mantra - Se...&quot;</p> <hr /> <div>{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt;<br /> <br /> | project_name = OWASP Mantra - Security Framework<br /> <br /> | project_home_page = OWASP Mantra - Security Framework<br /> <br /> | release_name = OWASP Mantra Armada - Beta 0.81<br /> <br /> | release_date = 30th December 2011 <br /> <br /> | release_description =<br /> forth public beta release of OWASP Mantra Security Toolkit - Beta 0.81 code named [http://www.getmantra.com/ Armada ]&lt;br&gt; <br /> <br /> | release_license =<br /> [http://www.gnu.org/copyleft/fdl.html GNU Free Documentation 1.2 for documents] &amp; [http://www.gnu.org/licenses/gpl-3.0.html GPL v3 for source code] <br /> <br /> | release_download_link = http://www.getmantra.com/download/index.html<br /> <br /> | leader_name1 = Abhi M BalaKrishnan <br /> | leader_email1 = abhi@getmantra.com<br /> | leader_username1 = Abhi_M_Balakrishnan<br /> <br /> | contributor_name1 = Yashartha Chaturvedi <br /> | contributor_email1 = yashartha@getmantra.com<br /> | contributor_username1 = Yashartha_Chaturvedi<br /> <br /> | release_notes = http://getmantra.com/forums/Thread-OWASP-Mantra-Armada-0-81-Beta-Release?pid=296#pid296<br /> <br /> | links_url1 =<br /> | links_name1 =<br /> }}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework/Releases/Mantra_Security_Toolkit_-_0.81&diff=122039 Projects/OWASP Mantra - Security Framework/Releases/Mantra Security Toolkit - 0.81 2011-12-30T18:03:45Z <p>Yashartha Chaturvedi: Created page with &quot;{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt; | project_name = OWASP Mantra - Security Framework | project_home_page = OWASP Mantra - Se...&quot;</p> <hr /> <div>{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt;<br /> <br /> | project_name = OWASP Mantra - Security Framework<br /> <br /> | project_home_page = OWASP Mantra - Security Framework<br /> <br /> | release_name = OWASP Mantra Armada - Beta 0.81<br /> <br /> | release_date = 30th December 2011 <br /> <br /> | release_description =<br /> forth public beta release of OWASP Mantra Security Toolkit - Beta 0.81 code named [http://www.getmantra.com/ Armada ]&lt;br&gt; <br /> <br /> | release_license =<br /> [http://www.gnu.org/copyleft/fdl.html GNU Free Documentation 1.2 for documents] &amp; [http://www.gnu.org/licenses/gpl-3.0.html GPL v3 for source code] <br /> <br /> | release_download_link = http://www.getmantra.com/download/index.html<br /> <br /> | leader_name1 = Abhi M BalaKrishnan <br /> | leader_email1 = abhi@getmantra.com<br /> | leader_username1 = Abhi_M_Balakrishnan<br /> <br /> | contributor_name1 = Yashartha Chaturvedi <br /> | contributor_email1 = yashartha@getmantra.com<br /> | contributor_username1 = Yashartha_Chaturvedi<br /> <br /> | release_notes = http://getmantra.com/forums/Thread-OWASP-Mantra-Armada-0-81-Beta-Release?pid=296#pid296<br /> <br /> | links_url1 =<br /> | links_name1 =<br /> }}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework/Releases/Mantra_Security_Toolkit_-_0.71&diff=122038 Projects/OWASP Mantra - Security Framework/Releases/Mantra Security Toolkit - 0.71 2011-12-30T18:01:13Z <p>Yashartha Chaturvedi: </p> <hr /> <div>{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt;<br /> <br /> | project_name = OWASP Mantra - Security Framework<br /> <br /> | project_home_page = OWASP Mantra - Security Framework<br /> <br /> | release_name = OWASP Mantra Armada - Beta 0.81<br /> <br /> | release_date = 30th December 2011 <br /> <br /> | release_description =<br /> forth public beta release of OWASP Mantra Security Toolkit - Beta 0.81 code named [http://www.getmantra.com/ Armada ]&lt;br&gt; <br /> <br /> | release_license =<br /> [http://www.gnu.org/copyleft/fdl.html GNU Free Documentation 1.2 for documents] &amp; [http://www.gnu.org/licenses/gpl-3.0.html GPL v3 for source code] <br /> <br /> | release_download_link = http://www.getmantra.com/download/index.html<br /> <br /> | leader_name1 = Abhi M BalaKrishnan <br /> | leader_email1 = abhi@getmantra.com<br /> | leader_username1 = Abhi_M_Balakrishnan<br /> <br /> | contributor_name1 = Yashartha Chaturvedi <br /> | contributor_email1 = yashartha@getmantra.com<br /> | contributor_username1 = Yashartha_Chaturvedi<br /> <br /> | release_notes = http://getmantra.com/forums/Thread-OWASP-Mantra-Armada-0-81-Beta-Release?pid=296#pid296<br /> <br /> | links_url1 =<br /> | links_name1 =<br /> }}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=122037 OWASP Mantra - Security Framework 2011-12-30T17:45:35Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> == Main Links ==<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> = Tools =<br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> == Tools ==<br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Facebook search''&lt;br/&gt;<br /> - ''People Search Engine''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Firebug Autocompleter''&lt;br/&gt;<br /> - ''FirePHP''&lt;br/&gt;<br /> - ''FireRainbow''&lt;br/&gt;<br /> - ''Flashbug''&lt;br/&gt;<br /> - ''Illuminations for Developers''&lt;br/&gt;<br /> - ''In line Code Finder for Firebug''&lt;br/&gt;<br /> - ''Inspect Context''&lt;br/&gt;<br /> - ''Inspector Widget''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''Stacked Inspector''<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Formfox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''SOAClient''&lt;br/&gt;<br /> - ''Websecurify''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''HttpFox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> <br /> = News =<br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> = Contributors =<br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> <br /> = Download =<br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra c0c0n 11 and AppSecLatam 11 Release ( 0.71 Beta )'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 2b1db2251b98e4aecb9d741548deafbe<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux.zip Mirror 2] [http://burnbit.com/download/183925/OWASP_Mantra_Armada_32_bit_Linux_zip Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: 2b39fcaf4ad7a57d9f4b8992938430a8<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux.zip Mirror 2] [http://burnbit.com/download/183926/OWASP_Mantra_Armada_64_bit_Linux_zip Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 80450610eb86871e68f410335cae5f01<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Win.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Win.exe Mirror 2] [http://burnbit.com/download/183928/OWASP_Mantra_Armada_Win_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: f256cf80a94ce960a90c441eb4b00ce0<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Mac.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Mac.zip Mirror 2] [http://burnbit.com/download/183927/OWASP_Mantra_Armada_Mac_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: af9a3b960b56a94a7c6227d62d674bea<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Source.7z Mirror 2] [http://burnbit.com/torrent/183979/OWASP_Mantra_Armada_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> = Project About =<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> = Resources =<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=122036 OWASP Mantra - Security Framework 2011-12-30T17:44:12Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> == Main Links ==<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> = Tools =<br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> == Tools ==<br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Facebook search''&lt;br/&gt;<br /> - ''People Search Engine''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Firebug Autocompleter''&lt;br/&gt;<br /> - ''FirePHP''&lt;br/&gt;<br /> - ''FireRainbow''&lt;br/&gt;<br /> - ''Flashbug''&lt;br/&gt;<br /> - ''Illuminations for Developers''&lt;br/&gt;<br /> - ''In line Code Finder for Firebug''&lt;br/&gt;<br /> - ''Inspect Context''&lt;br/&gt;<br /> - ''Inspector Widget''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''Stacked Inspector''<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Formfox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''SOAClient''&lt;br/&gt;<br /> - ''Websecurify''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''HttpFox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> <br /> = News =<br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> = Contributors =<br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> <br /> = Download =<br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra c0c0n 11 and AppSecLatam 11 Release ( 0.71 Beta )'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 2b1db2251b98e4aecb9d741548deafbe<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2032%20bit%20Linux.zip Mirror 2] [http://burnbit.com/download/183925/OWASP_Mantra_Armada_32_bit_Linux_zip Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: 2b39fcaf4ad7a57d9f4b8992938430a8<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%2064%20bit%20Linux.zip Mirror 2] [http://burnbit.com/download/183926/OWASP_Mantra_Armada_64_bit_Linux_zip]<br /> |-<br /> |'''Windows'''<br /> |MD5: 80450610eb86871e68f410335cae5f01<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Win.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Win.exe Mirror 2] [http://burnbit.com/download/183928/OWASP_Mantra_Armada_Win_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: f256cf80a94ce960a90c441eb4b00ce0<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Mac.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Mac.zip Mirror 2] [http://burnbit.com/download/183927/OWASP_Mantra_Armada_Mac_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: af9a3b960b56a94a7c6227d62d674bea<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/Armada%20-%200.81%20Beta/OWASP%20Mantra%20-%20Armada%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20Armada%20Source.7z Mirror 2] [http://burnbit.com/torrent/183979/OWASP_Mantra_Armada_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> = Project About =<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> = Resources =<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=122035 OWASP Mantra - Security Framework 2011-12-30T17:32:07Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> == Main Links ==<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> <br /> &lt;br&gt; <br /> <br /> = Tools =<br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> == Tools ==<br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Facebook search''&lt;br/&gt;<br /> - ''People Search Engine''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Firebug Autocompleter''&lt;br/&gt;<br /> - ''FirePHP''&lt;br/&gt;<br /> - ''FireRainbow''&lt;br/&gt;<br /> - ''Flashbug''&lt;br/&gt;<br /> - ''Illuminations for Developers''&lt;br/&gt;<br /> - ''In line Code Finder for Firebug''&lt;br/&gt;<br /> - ''Inspect Context''&lt;br/&gt;<br /> - ''Inspector Widget''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''Stacked Inspector''<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Formfox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''SOAClient''&lt;br/&gt;<br /> - ''Websecurify''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''HttpFox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> <br /> = News =<br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> = Contributors =<br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> <br /> = Download =<br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra c0c0n 11 and AppSecLatam 11 Release ( 0.71 Beta )'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 8e874e6d4e119111bf3dbcbe0f9a1c69<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Linux%2032%20bit/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20i686%20Release.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20i686%20Release.tar.bz2 Mirror 2] [http://burnbit.com/torrent/178063/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_i686_Release_tar_bz2 Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: d0ed8fce30a20ad907a97047985e8c05<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Linux%2064%20bit/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20-%20x86_64.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20-%20x86_64.tar.bz2 Mirror 2] [http://burnbit.com/torrent/178679/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_x86_64_tar_bz2 Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 98517c9f61561d8c656a2d2436f2333d<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Windows/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release.exe Mirror 2] [http://burnbit.com/torrent/178065/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_Release_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: 949808a8f75fa0bcc5730cdcf73f7844<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Macintosh/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011.zip Mirror 2] [http://burnbit.com/torrent/178066/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: 6fdb5e9408261d741f24cb83df4b4066<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Source/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release%20Source.7z Mirror 2] [http://burnbit.com/torrent/178067/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_Release_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> = Project About =<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> = Resources =<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=122034 OWASP Mantra - Security Framework 2011-12-30T17:30:48Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> == Main Links ==<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> = Tools =<br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> == Tools ==<br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Facebook search''&lt;br/&gt;<br /> - ''People Search Engine''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Firebug Autocompleter''&lt;br/&gt;<br /> - ''FirePHP''&lt;br/&gt;<br /> - ''FireRainbow''&lt;br/&gt;<br /> - ''Flashbug''&lt;br/&gt;<br /> - ''Illuminations for Developers''&lt;br/&gt;<br /> - ''In line Code Finder for Firebug''&lt;br/&gt;<br /> - ''Inspect Context''&lt;br/&gt;<br /> - ''Inspector Widget''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''Stacked Inspector''<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Formfox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''SOAClient''&lt;br/&gt;<br /> - ''Websecurify''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''HttpFox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> <br /> = News =<br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> = Contributors =<br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> <br /> = Download =<br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra c0c0n 11 and AppSecLatam 11 Release ( 0.71 Beta )'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 8e874e6d4e119111bf3dbcbe0f9a1c69<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Linux%2032%20bit/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20i686%20Release.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20i686%20Release.tar.bz2 Mirror 2] [http://burnbit.com/torrent/178063/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_i686_Release_tar_bz2 Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: d0ed8fce30a20ad907a97047985e8c05<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Linux%2064%20bit/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20-%20x86_64.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20-%20x86_64.tar.bz2 Mirror 2] [http://burnbit.com/torrent/178679/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_x86_64_tar_bz2 Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 98517c9f61561d8c656a2d2436f2333d<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Windows/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release.exe Mirror 2] [http://burnbit.com/torrent/178065/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_Release_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: 949808a8f75fa0bcc5730cdcf73f7844<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Macintosh/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011.zip Mirror 2] [http://burnbit.com/torrent/178066/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: 6fdb5e9408261d741f24cb83df4b4066<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Source/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release%20Source.7z Mirror 2] [http://burnbit.com/torrent/178067/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_Release_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> = Project About =<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> = Resources =<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=122033 OWASP Mantra - Security Framework 2011-12-30T17:30:01Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> = Main Links =<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> = Tools =<br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> == Tools ==<br /> +'''Information Gathering'''<br /> <br /> - ''Flagfox''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> - ''PassiveRecon''&lt;br/&gt;<br /> - ''Facebook search''&lt;br/&gt;<br /> - ''People Search Engine''&lt;br/&gt;<br /> - ''View Dependencies''&lt;br/&gt;<br /> - ''Link Sidebar''<br /> <br /> +'''Editors'''<br /> <br /> - ''JSView''&lt;br/&gt;<br /> - ''Firebug''<br /> <br /> +'''Network Utilities'''<br /> <br /> - ''FireFTP''&lt;br/&gt;<br /> - ''DNS Cache''&lt;br/&gt;<br /> - ''SQLite Manager''&lt;br/&gt;<br /> - ''HTTP Fox''&lt;br/&gt;<br /> - ''FireSSH''<br /> <br /> +'''Miscellaneous'''<br /> <br /> - ''Greasemonkey''&lt;br/&gt;<br /> - ''Greasefire''&lt;br/&gt;<br /> - ''CacheToggle''&lt;br/&gt;<br /> - ''URL Flipper''&lt;br/&gt;<br /> - ''Event Spy''&lt;br/&gt;<br /> - ''Firebug Autocompleter''&lt;br/&gt;<br /> - ''FirePHP''&lt;br/&gt;<br /> - ''FireRainbow''&lt;br/&gt;<br /> - ''Flashbug''&lt;br/&gt;<br /> - ''Illuminations for Developers''&lt;br/&gt;<br /> - ''In line Code Finder for Firebug''&lt;br/&gt;<br /> - ''Inspect Context''&lt;br/&gt;<br /> - ''Inspector Widget''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Scriptish''&lt;br/&gt;<br /> - ''Session Manager''&lt;br/&gt;<br /> - ''Stacked Inspector''<br /> <br /> +'''Application Auditing'''<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Formfox''&lt;br/&gt;<br /> - ''SQL Inject Me''&lt;br/&gt;<br /> - ''XSS Me''&lt;br/&gt;<br /> - ''Cookies Manager+''&lt;br/&gt;<br /> - ''Firecookie''&lt;br/&gt;<br /> - ''Autofill Forms''&lt;br/&gt;<br /> - ''Cookie Monster''&lt;br/&gt;<br /> - ''Fireforce''&lt;br/&gt;<br /> - ''Groundspeed''&lt;br/&gt;<br /> - ''Http Requester''&lt;br/&gt;<br /> - ''Modify Headers''&lt;br/&gt;<br /> - ''Poster''&lt;br/&gt;<br /> - ''Ref Spoof''&lt;br/&gt;<br /> - ''SeleniumExpertSeleniumIDE''&lt;br/&gt;<br /> - ''SeleniumIDE''&lt;br/&gt;<br /> - ''SOAClient''&lt;br/&gt;<br /> - ''Websecurify''<br /> <br /> +'''Proxy'''<br /> <br /> - ''FoxyProxy''&lt;br/&gt;<br /> - ''HttpFox''&lt;br/&gt;''<br /> - ''Proxy Tool''<br /> <br /> <br /> <br /> <br /> = News =<br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> = Contributors =<br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> <br /> = Download =<br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra c0c0n 11 and AppSecLatam 11 Release ( 0.71 Beta )'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 8e874e6d4e119111bf3dbcbe0f9a1c69<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Linux%2032%20bit/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20i686%20Release.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20i686%20Release.tar.bz2 Mirror 2] [http://burnbit.com/torrent/178063/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_i686_Release_tar_bz2 Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: d0ed8fce30a20ad907a97047985e8c05<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Linux%2064%20bit/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20-%20x86_64.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20-%20x86_64.tar.bz2 Mirror 2] [http://burnbit.com/torrent/178679/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_x86_64_tar_bz2 Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 98517c9f61561d8c656a2d2436f2333d<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Windows/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release.exe Mirror 2] [http://burnbit.com/torrent/178065/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_Release_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: 949808a8f75fa0bcc5730cdcf73f7844<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Macintosh/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011.zip Mirror 2] [http://burnbit.com/torrent/178066/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: 6fdb5e9408261d741f24cb83df4b4066<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Source/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release%20Source.7z Mirror 2] [http://burnbit.com/torrent/178067/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_Release_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> = Project About =<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> = Resources =<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=121763 OWASP Mantra - Security Framework 2011-12-21T14:56:21Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> = Main Links =<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> = Tools =<br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> #'''Information Gathering'''&lt;br/&gt;<br /> ##'''Whois'''&lt;br/&gt;<br /> ###''Flagfox''&lt;br/&gt;<br /> ##'''Location Info'''&lt;br/&gt;<br /> ###''Flagfox''&lt;br/&gt;<br /> ##'''Enumeration and Fingerprint'''&lt;br/&gt;<br /> ###''Host Spy''&lt;br/&gt;<br /> ###''JSView''&lt;br/&gt;<br /> ###''PassiveRecon''&lt;br/&gt;<br /> ###''View Dependencies''&lt;br/&gt;<br /> ###''Wappalyzer''&lt;br/&gt;<br /> ##'''Data Mining'''&lt;br/&gt;<br /> ###''People Search Engine''&lt;br/&gt;<br /> ###''Facebook search''&lt;br/&gt;<br /> #'''Editors'''&lt;br/&gt;<br /> ###''Cert Viewer Plus''&lt;br/&gt;<br /> ###''Firebug''&lt;br/&gt;<br /> ###''JSView''&lt;br/&gt;<br /> #'''Network Utilities'''&lt;br/&gt;<br /> ##'''Protocols and applications'''&lt;br/&gt;<br /> ###''Fire FTP''&lt;br/&gt;<br /> ###''DNS Cache''&lt;br/&gt;<br /> ###''SQLite Manager''&lt;br/&gt;<br /> ##'''Sniffers'''&lt;br/&gt;<br /> ###''HTTP Fox''&lt;br/&gt;<br /> ##'''Password'''&lt;br/&gt;<br /> ###''CryptoFox 2.0''&lt;br/&gt;<br /> #'''Misc'''&lt;br/&gt;<br /> ##'''Tweaks and Hacks'''&lt;br/&gt;<br /> ###''Greasemonkey''&lt;br/&gt;<br /> ###''Greasefire''&lt;br/&gt;<br /> ##'''Malware scanner'''&lt;br/&gt;<br /> ###''Web of Trust''&lt;br/&gt;<br /> ##'''Automation'''&lt;br/&gt;<br /> ###''iMacros''&lt;br/&gt;<br /> ##'''Others'''&lt;br/&gt;<br /> ###''CacheToggle 0.6''&lt;br/&gt;<br /> ###''URL Flipper''&lt;br/&gt;<br /> #'''Application Auditing'''&lt;br/&gt;<br /> ###''Hackbar''&lt;br/&gt;<br /> ###''JavaScript Deobfuscator''&lt;br/&gt;<br /> ###''RESTClient''&lt;br/&gt;<br /> ###''Tamper Data''&lt;br/&gt;<br /> ###''Live HTTP Headers''&lt;br/&gt;<br /> ###''RefControl''&lt;br/&gt;<br /> ###''User Agent Switcher''&lt;br/&gt;<br /> ###''Web Developer''&lt;br/&gt;<br /> ###''DOM Inspector''&lt;br/&gt;<br /> ###''Inspect This''&lt;br/&gt;<br /> ###''Formfox''&lt;br/&gt;<br /> ###'''Exploit Me'''&lt;br/&gt;<br /> ####''Access Me''&lt;br/&gt;<br /> ####''SQL Inject Me''&lt;br/&gt;<br /> ####''XSS Me''&lt;br/&gt;<br /> ###'''Cookies'''&lt;br/&gt;<br /> ####''Cookies Manager+ 1.5.1''&lt;br/&gt;<br /> ####''Firecookie''&lt;br/&gt;<br /> #'''Proxy'''&lt;br/&gt;<br /> ##''FoxyProxy Standard 2.22.6''&lt;br/&gt;<br /> ##''HttpFox''&lt;br/&gt;<br /> <br /> <br /> <br /> = News =<br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> = Contributors =<br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> <br /> = Download =<br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra c0c0n 11 and AppSecLatam 11 Release ( 0.71 Beta )'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 8e874e6d4e119111bf3dbcbe0f9a1c69<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Linux%2032%20bit/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20i686%20Release.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20i686%20Release.tar.bz2 Mirror 2] [http://burnbit.com/torrent/178063/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_i686_Release_tar_bz2 Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: d0ed8fce30a20ad907a97047985e8c05<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Linux%2064%20bit/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20-%20x86_64.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20-%20x86_64.tar.bz2 Mirror 2] [http://burnbit.com/torrent/178679/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_x86_64_tar_bz2 Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 98517c9f61561d8c656a2d2436f2333d<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Windows/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release.exe Mirror 2] [http://burnbit.com/torrent/178065/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_Release_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: 949808a8f75fa0bcc5730cdcf73f7844<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Macintosh/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011.zip Mirror 2] [http://burnbit.com/torrent/178066/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: 6fdb5e9408261d741f24cb83df4b4066<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Source/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release%20Source.7z Mirror 2] [http://burnbit.com/torrent/178067/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_Release_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> = Project About =<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> = Resources =<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=121762 OWASP Mantra - Security Framework 2011-12-21T14:53:03Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> = Main Links =<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> ==== Tools ====<br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> #'''Information Gathering'''&lt;br/&gt;<br /> ##'''Whois'''&lt;br/&gt;<br /> ###''Flagfox''&lt;br/&gt;<br /> ##'''Location Info'''&lt;br/&gt;<br /> ###''Flagfox''&lt;br/&gt;<br /> ##'''Enumeration and Fingerprint'''&lt;br/&gt;<br /> ###''Host Spy''&lt;br/&gt;<br /> ###''JSView''&lt;br/&gt;<br /> ###''PassiveRecon''&lt;br/&gt;<br /> ###''View Dependencies''&lt;br/&gt;<br /> ###''Wappalyzer''&lt;br/&gt;<br /> ##'''Data Mining'''&lt;br/&gt;<br /> ###''People Search Engine''&lt;br/&gt;<br /> ###''Facebook search''&lt;br/&gt;<br /> #'''Editors'''&lt;br/&gt;<br /> ###''Cert Viewer Plus''&lt;br/&gt;<br /> ###''Firebug''&lt;br/&gt;<br /> ###''JSView''&lt;br/&gt;<br /> #'''Network Utilities'''&lt;br/&gt;<br /> ##'''Protocols and applications'''&lt;br/&gt;<br /> ###''Fire FTP''&lt;br/&gt;<br /> ###''DNS Cache''&lt;br/&gt;<br /> ###''SQLite Manager''&lt;br/&gt;<br /> ##'''Sniffers'''&lt;br/&gt;<br /> ###''HTTP Fox''&lt;br/&gt;<br /> ##'''Password'''&lt;br/&gt;<br /> ###''CryptoFox 2.0''&lt;br/&gt;<br /> #'''Misc'''&lt;br/&gt;<br /> ##'''Tweaks and Hacks'''&lt;br/&gt;<br /> ###''Greasemonkey''&lt;br/&gt;<br /> ###''Greasefire''&lt;br/&gt;<br /> ##'''Malware scanner'''&lt;br/&gt;<br /> ###''Web of Trust''&lt;br/&gt;<br /> ##'''Automation'''&lt;br/&gt;<br /> ###''iMacros''&lt;br/&gt;<br /> ##'''Others'''&lt;br/&gt;<br /> ###''CacheToggle 0.6''&lt;br/&gt;<br /> ###''URL Flipper''&lt;br/&gt;<br /> #'''Application Auditing'''&lt;br/&gt;<br /> ###''Hackbar''&lt;br/&gt;<br /> ###''JavaScript Deobfuscator''&lt;br/&gt;<br /> ###''RESTClient''&lt;br/&gt;<br /> ###''Tamper Data''&lt;br/&gt;<br /> ###''Live HTTP Headers''&lt;br/&gt;<br /> ###''RefControl''&lt;br/&gt;<br /> ###''User Agent Switcher''&lt;br/&gt;<br /> ###''Web Developer''&lt;br/&gt;<br /> ###''DOM Inspector''&lt;br/&gt;<br /> ###''Inspect This''&lt;br/&gt;<br /> ###''Formfox''&lt;br/&gt;<br /> ###'''Exploit Me'''&lt;br/&gt;<br /> ####''Access Me''&lt;br/&gt;<br /> ####''SQL Inject Me''&lt;br/&gt;<br /> ####''XSS Me''&lt;br/&gt;<br /> ###'''Cookies'''&lt;br/&gt;<br /> ####''Cookies Manager+ 1.5.1''&lt;br/&gt;<br /> ####''Firecookie''&lt;br/&gt;<br /> #'''Proxy'''&lt;br/&gt;<br /> ##''FoxyProxy Standard 2.22.6''&lt;br/&gt;<br /> ##''HttpFox''&lt;br/&gt;<br /> <br /> <br /> <br /> ==== News ====<br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> <br /> = Contributors =<br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> <br /> = Download =<br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra c0c0n 11 and AppSecLatam 11 Release ( 0.71 Beta )'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 8e874e6d4e119111bf3dbcbe0f9a1c69<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Linux%2032%20bit/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20i686%20Release.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20i686%20Release.tar.bz2 Mirror 2] [http://burnbit.com/torrent/178063/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_i686_Release_tar_bz2 Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: d0ed8fce30a20ad907a97047985e8c05<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Linux%2064%20bit/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20-%20x86_64.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20-%20x86_64.tar.bz2 Mirror 2] [http://burnbit.com/torrent/178679/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_x86_64_tar_bz2 Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 98517c9f61561d8c656a2d2436f2333d<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Windows/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release.exe Mirror 2] [http://burnbit.com/torrent/178065/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_Release_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: 949808a8f75fa0bcc5730cdcf73f7844<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Macintosh/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011.zip Mirror 2] [http://burnbit.com/torrent/178066/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: 6fdb5e9408261d741f24cb83df4b4066<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Source/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release%20Source.7z Mirror 2] [http://burnbit.com/torrent/178067/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_Release_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> = Project About =<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> = Resources =<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=119403 OWASP Mantra - Security Framework 2011-10-20T12:03:17Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> = Main Links =<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> ==== Tools ====<br /> &lt;br/&gt;&quot; A sword never kills anybody; it is a tool in the killer's hand.&quot; - Lucius Annaeus Seneca&lt;br/&gt;&lt;br/&gt;<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.&lt;br/&gt;<br /> <br /> #'''Information Gathering'''&lt;br/&gt;<br /> ##'''Whois'''&lt;br/&gt;<br /> ###''Flagfox''&lt;br/&gt;<br /> ##'''Location Info'''&lt;br/&gt;<br /> ###''Flagfox''&lt;br/&gt;<br /> ##'''Enumeration and Fingerprint'''&lt;br/&gt;<br /> ###''Host Spy''&lt;br/&gt;<br /> ###''JSView''&lt;br/&gt;<br /> ###''PassiveRecon''&lt;br/&gt;<br /> ###''View Dependencies''&lt;br/&gt;<br /> ###''Wappalyzer''&lt;br/&gt;<br /> ##'''Data Mining'''&lt;br/&gt;<br /> ###''People Search Engine''&lt;br/&gt;<br /> ###''Facebook search''&lt;br/&gt;<br /> #'''Editors'''&lt;br/&gt;<br /> ###''Cert Viewer Plus''&lt;br/&gt;<br /> ###''Firebug''&lt;br/&gt;<br /> ###''JSView''&lt;br/&gt;<br /> #'''Network Utilities'''&lt;br/&gt;<br /> ##'''Protocols and applications'''&lt;br/&gt;<br /> ###''Fire FTP''&lt;br/&gt;<br /> ###''DNS Cache''&lt;br/&gt;<br /> ###''SQLite Manager''&lt;br/&gt;<br /> ##'''Sniffers'''&lt;br/&gt;<br /> ###''HTTP Fox''&lt;br/&gt;<br /> ##'''Password'''&lt;br/&gt;<br /> ###''CryptoFox 2.0''&lt;br/&gt;<br /> #'''Misc'''&lt;br/&gt;<br /> ##'''Tweaks and Hacks'''&lt;br/&gt;<br /> ###''Greasemonkey''&lt;br/&gt;<br /> ###''Greasefire''&lt;br/&gt;<br /> ##'''Malware scanner'''&lt;br/&gt;<br /> ###''Web of Trust''&lt;br/&gt;<br /> ##'''Automation'''&lt;br/&gt;<br /> ###''iMacros''&lt;br/&gt;<br /> ##'''Others'''&lt;br/&gt;<br /> ###''CacheToggle 0.6''&lt;br/&gt;<br /> ###''URL Flipper''&lt;br/&gt;<br /> #'''Application Auditing'''&lt;br/&gt;<br /> ###''Hackbar''&lt;br/&gt;<br /> ###''JavaScript Deobfuscator''&lt;br/&gt;<br /> ###''RESTClient''&lt;br/&gt;<br /> ###''Tamper Data''&lt;br/&gt;<br /> ###''Live HTTP Headers''&lt;br/&gt;<br /> ###''RefControl''&lt;br/&gt;<br /> ###''User Agent Switcher''&lt;br/&gt;<br /> ###''Web Developer''&lt;br/&gt;<br /> ###''DOM Inspector''&lt;br/&gt;<br /> ###''Inspect This''&lt;br/&gt;<br /> ###''Formfox''&lt;br/&gt;<br /> ###'''Exploit Me'''&lt;br/&gt;<br /> ####''Access Me''&lt;br/&gt;<br /> ####''SQL Inject Me''&lt;br/&gt;<br /> ####''XSS Me''&lt;br/&gt;<br /> ###'''Cookies'''&lt;br/&gt;<br /> ####''Cookies Manager+ 1.5.1''&lt;br/&gt;<br /> ####''Firecookie''&lt;br/&gt;<br /> #'''Proxy'''&lt;br/&gt;<br /> ##''FoxyProxy Standard 2.22.6''&lt;br/&gt;<br /> ##''HttpFox''&lt;br/&gt;<br /> <br /> <br /> <br /> ==== News ====<br /> &lt;br/&gt;<br /> [http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]&lt;br/&gt;<br /> [http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Mantra at OWASP LatamTour - Buenos Aires, Argentina]&lt;br/&gt;<br /> Getting secure with Mantra: An open source penetration testing kit - 1. [http://www.computerworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss Computer World] 2. [http://www.cio.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ CIO] 3. [http://www.techworld.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/ Tech World] 4. [http://www.cso.com.au/article/392346/getting_secure_mantra_an_open_source_penetration_testing_kit/?uts_source=taxonomyfeed&amp;utm_medium=rss CSO]&lt;br/&gt;<br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 Searchsecurity Screencast]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]&lt;br/&gt;<br /> [http://www.facebook.com/photo.php?fbid=185544081485201&amp;set=a.170788249627451.33033.170787489627527&amp;type=1&amp;ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]&lt;br/&gt;<br /> [http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]<br /> ==== Contributors ====<br /> &lt;br/&gt;<br /> &quot;It is purpose that created us, purpose that connects us, purpose that pulls us, that guides us, that drives us, that binds us, it is purpose that defines us.&quot; - Agent Smith&lt;br/&gt;&lt;br/&gt;<br /> '''Project Leaders'''&lt;br/&gt;<br /> [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]&lt;br/&gt;<br /> [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]&lt;br/&gt;<br /> [[User:Gokul_C_Gopinath|Gokul C Gopinath]]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Other Members'''&lt;br/&gt;<br /> [[User:Maximiliano_Soler|Maximiliano Soler]]&lt;br/&gt;<br /> Gopu C Gopinath&lt;br/&gt;<br /> <br /> ==== Download ====<br /> &lt;br/&gt;<br /> &quot; All things are difficult before they are easy.&quot; - Thomas Fuller &lt;br/&gt;&lt;br/&gt;<br /> '''OWASP Mantra c0c0n 11 and AppSecLatam 11 Release ( 0.71 Beta )'''&lt;br/&gt;<br /> <br /> {|<br /> |'''Platform'''<br /> |'''Details'''<br /> |'''Links'''<br /> |-<br /> |'''Linux 32 bit'''<br /> |MD5: 8e874e6d4e119111bf3dbcbe0f9a1c69<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Linux%2032%20bit/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20i686%20Release.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20i686%20Release.tar.bz2 Mirror 2] [http://burnbit.com/torrent/178063/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_i686_Release_tar_bz2 Torrent]<br /> |-<br /> |'''Linux 64 bit'''<br /> |MD5: d0ed8fce30a20ad907a97047985e8c05<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Linux%2064%20bit/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20-%20x86_64.tar.bz2/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20-%20x86_64.tar.bz2 Mirror 2] [http://burnbit.com/torrent/178679/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_x86_64_tar_bz2 Torrent]<br /> |-<br /> |'''Windows'''<br /> |MD5: 98517c9f61561d8c656a2d2436f2333d<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Windows/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release.exe/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release.exe Mirror 2] [http://burnbit.com/torrent/178065/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_Release_exe Torrent]<br /> |-<br /> |'''Macintosh'''<br /> |MD5: 949808a8f75fa0bcc5730cdcf73f7844<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Macintosh/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011.zip/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011.zip Mirror 2] [http://burnbit.com/torrent/178066/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_zip Torrent]<br /> |-<br /> |'''Source'''<br /> |MD5: 6fdb5e9408261d741f24cb83df4b4066<br /> |[http://sourceforge.net/projects/getmantra/files/Mantra%20Security%20Toolkit/c0c0n%2011%20and%20AppSecLatam%2011/Source/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release%20Source.7z/download Mirror 1] [http://getmantra.googlecode.com/files/OWASP%20Mantra%20-%20c0c0n%2011%20and%20AppSecLatam%2011%20Release%20Source.7z Mirror 2] [http://burnbit.com/torrent/178067/OWASP_Mantra_c0c0n_11_and_AppSecLatam_11_Release_Source_7z Torrent] <br /> |}<br /> <br /> [[Category:OWASP_Download]]<br /> <br /> <br /> ==== Project About ====<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> <br /> ==== Resources ====<br /> &lt;br/&gt;<br /> <br /> '''Project Pamphlets'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Project Presentations'''&lt;br/&gt;<br /> <br /> [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]&lt;br/&gt;<br /> [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Text Tutorials'''&lt;br/&gt;<br /> <br /> [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]&lt;br/&gt;<br /> [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]&lt;br/&gt;&lt;br/&gt;<br /> <br /> '''Video Tutorials'''&lt;br/&gt;<br /> <br /> [http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&amp;bctid=1078245078001 SearchSecurity Screencast]&lt;br/&gt;<br /> ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=p94ssETMbQ0&amp; Introduction + How to use Mantra Security Toolkit]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]&lt;br/&gt;<br /> [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br /> <br /> ==== Links ====<br /> &lt;br/&gt;<br /> [http://www.getmantra.com/index.html Main Website]&lt;br/&gt;<br /> [http://www.getmantra.com/forums/ Discussion Forums]&lt;br/&gt;<br /> [http://www.facebook.com/getmantra/ Facebook Page]&lt;br/&gt;<br /> [http://getmantra.tumblr.com/ Tumblr]&lt;br/&gt;<br /> [http://twitter.com/getmantra Twitter]&lt;br/&gt;<br /> [http://vimeo.com/getmantra Vimeo]&lt;br/&gt;<br /> [http://sourceforge.net/projects/getmantra/ Sourceforge]&lt;br/&gt;<br /> [http://code.google.com/p/getmantra/ Google Code]&lt;br/&gt;<br /> [http://www.youtube.com/getmantra Youtube]<br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]<br /> [[Category:OWASP Download]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework/Releases/Current&diff=118884 Projects/OWASP Mantra - Security Framework/Releases/Current 2011-10-11T15:36:42Z <p>Yashartha Chaturvedi: Redirected page to Projects/OWASP Mantra - Security Framework/Releases/Mantra Security Toolkit - 0.71</p> <hr /> <div>#REDIRECT [[Projects/OWASP Mantra - Security Framework/Releases/Mantra_Security_Toolkit_-_0.71]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework&diff=118883 Projects/OWASP Mantra - Security Framework 2011-10-11T15:34:08Z <p>Yashartha Chaturvedi: </p> <hr /> <div>{{Template:&lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Project About&lt;/noinclude&gt;<br /> | project_name = OWASP Mantra - Security Framework<br /> | project_home_page = OWASP Mantra - Security Framework<br /> | project_description =Mantra is a security framework which can be very helpful in performing all the five phases of attacks including reconnaissance, scanning and enumeration, gaining access, escalation of privileges,maintaining access, and covering tracks. Apart from that it also contains a set of tools targeted for web developers and code debuggers which makes it handy for both offensive security and defensive security related tasks.<br /> <br /> <br /> | project_license =[http://www.gnu.org/copyleft/fdl.html GNU Free Documentation 1.2 for documents] &amp; [http://www.gnu.org/licenses/gpl-3.0.html GPL v3 for source code] <br /> <br /> <br /> | leader_name1 = Abhi M BalaKrishnan <br /> | leader_email1 = abhi@getmantra.com<br /> | leader_username1 = Abhi_M_Balakrishnan<br /> <br /> | maintainer_name1 = Yashartha Chaturvedi <br /> | maintainer_email1 = yashartha@getmantra.com<br /> | maintainer_username1 = Yashartha_Chaturvedi<br /> <br /> | pamphlet_link = http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf<br /> <br /> | presentation_link = http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx<br /> <br /> | mailing_list_name = https://lists.owasp.org/mailman/listinfo/owasp-mantra<br /> <br /> | project_road_map = http://www.owasp.org/index.php/OWASP_Mantra_-_Security_Framework/Roadmap<br /> <br /> | links_url1 = http://getmantra.com<br /> | links_name1 = http://getmantra.com<br /> <br /> <br /> | links_url6 = <br /> | links_name6 = <br /> <br /> <br /> | release_1 = Mantra Security Toolkit - 0.52<br /> | release_2 = Mantra Security Toolkit - 0.61<br /> | release_3 = Mantra Security Toolkit - 0.71<br /> | release_4 =<br /> &lt;!--- The line below is for GPC usage only. Please do not edit it ---&gt;<br /> | project_about_page = Projects/OWASP Mantra - Security Framework<br /> <br /> }}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework/Releases/Mantra_Security_Toolkit_-_0.71&diff=118882 Projects/OWASP Mantra - Security Framework/Releases/Mantra Security Toolkit - 0.71 2011-10-11T15:28:37Z <p>Yashartha Chaturvedi: Created page with &quot;{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt; | project_name = OWASP Mantra - Security Framework | project_home_page = OWASP Mantra - Securi...&quot;</p> <hr /> <div>{{Template: &lt;includeonly&gt;{{{1}}}&lt;/includeonly&gt;&lt;noinclude&gt;Release About&lt;/noinclude&gt;<br /> | project_name = OWASP Mantra - Security Framework<br /> <br /> | project_home_page = OWASP Mantra - Security Framework<br /> <br /> | release_name = Mantra Security Toolkit - 0.71<br /> <br /> | release_date = 8th October 2011 <br /> <br /> | release_description =<br /> third public beta release of Mantra Security Toolkit 0.71 release named [http://www.getmantra.com/ c0c0n 11 and AppSecLatam 11 release ]&lt;br&gt; <br /> <br /> | release_license =<br /> [http://www.gnu.org/copyleft/fdl.html GNU Free Documentation 1.2 for documents] &amp; [http://www.gnu.org/licenses/gpl-3.0.html GPL v3 for source code] <br /> <br /> | release_download_link = http://www.getmantra.com/download/index.html<br /> <br /> | leader_name1 = Abhi M BalaKrishnan <br /> | leader_email1 = abhi@getmantra.com<br /> | leader_username1 = Abhi_M_Balakrishnan<br /> <br /> | contributor_name1 = Yashartha Chaturvedi <br /> | contributor_email1 = yashartha@getmantra.com<br /> | contributor_username1 = Yashartha_Chaturvedi<br /> <br /> | release_notes = https://www.owasp.org/index.php/Projects/OWASP_Mantra_-_Security_Framework/Releases/Mantra_Security_Toolkit_-_0.71/Notes<br /> <br /> | links_url1 =<br /> | links_name1 =<br /> }}</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=Projects/OWASP_Mantra_-_Security_Framework/Releases/Mantra_Security_Toolkit_-_0.71/Notes&diff=118881 Projects/OWASP Mantra - Security Framework/Releases/Mantra Security Toolkit - 0.71/Notes 2011-10-11T15:24:11Z <p>Yashartha Chaturvedi: Created page with &quot;== The beta version of OWASP Mantra Security Toolkit Beta 0.71 contains following category of add-ons/tools, suggest any tool or script that you would like see in the next releas...&quot;</p> <hr /> <div>== The beta version of OWASP Mantra Security Toolkit Beta 0.71 contains following category of add-ons/tools, suggest any tool or script that you would like see in the next release. ==<br /> <br /> the complete list is available at http://www.getmantra.com/ayudha/index.html<br /> <br /> == Tools ==<br /> <br /> ''<br /> +'''Information Gathering'''&lt;br/&gt;<br /> <br /> - ''Whois''&lt;br/&gt;<br /> - ''Location Info''&lt;br/&gt;<br /> - ''Enumeration and Fingerprint''&lt;br/&gt;<br /> - ''Data Mining''&lt;br/&gt;<br /> <br /> +'''Editors'''&lt;br/&gt;<br /> <br /> - ''Cert Viewer Plus''&lt;br/&gt;<br /> - ''Firebug''&lt;br/&gt;<br /> - ''JSView''&lt;br/&gt;<br /> <br /> +'''Network Utilities'''&lt;br/&gt;<br /> <br /> - ''Protocols and applications''&lt;br/&gt;<br /> - ''Sniffers''&lt;br/&gt;<br /> - ''Password''&lt;br/&gt;<br /> <br /> +'''Miscellaneous'''&lt;br/&gt;<br /> <br /> - ''Tweaks and Hacks''&lt;br/&gt;<br /> - ''Malware scanner''&lt;br/&gt;<br /> - ''Automation''&lt;br/&gt;<br /> - ''Others''&lt;br/&gt;<br /> <br /> +'''Application Auditing'''&lt;br/&gt;<br /> <br /> - ''Hackbar''&lt;br/&gt;<br /> - ''JavaScript Deobfuscator''&lt;br/&gt;<br /> - ''RESTClient''&lt;br/&gt;<br /> - ''Tamper Data''&lt;br /&gt;<br /> - ''Live HTTP Headers''&lt;br/&gt;<br /> - ''RefControl''&lt;br/&gt;<br /> - ''User Agent Switcher''&lt;br/&gt;<br /> - ''Web Developer''&lt;br/&gt;<br /> - ''DOM Inspector''&lt;br/&gt;<br /> - ''Inspect This''&lt;br/&gt;<br /> - ''Formfox''&lt;br/&gt;<br /> - ''Exploit Me''&lt;br/&gt;<br /> - ''Cookies''&lt;br/&gt;<br /> <br /> +'''Proxy'''&lt;br/&gt;<br /> <br /> - ''FoxyProxy Standard 2.22.6''&lt;br/&gt;<br /> - ''HttpFox''&lt;br/&gt;''</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=114031 OWASP Mantra - Security Framework 2011-07-17T11:14:54Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> = Main Links =<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> ==== Project About ====<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> <br /> ==== Ayudha ====<br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.<br /> <br /> ''<br /> +'''Information Gathering'''&lt;br/&gt;<br /> +'''Whois'''&lt;br/&gt;<br /> -''Flagfox''&lt;br/&gt;<br /> +'''Location Info'''&lt;br/&gt;<br /> -''Flagfox''&lt;br/&gt;<br /> +'''Enumeration and Fingerprint'''&lt;br/&gt;<br /> -''Host Spy''&lt;br/&gt;<br /> -''JSView''&lt;br/&gt;<br /> -''PassiveRecon''&lt;br/&gt;<br /> -''View Dependencies''&lt;br/&gt;<br /> -''Wappalyzer''&lt;br/&gt;<br /> +'''Data Mining'''&lt;br/&gt;<br /> -''People Search Engine''&lt;br/&gt;<br /> -''Facebook search''&lt;br/&gt;<br /> +'''Editors'''&lt;br/&gt;<br /> -''Cert Viewer Plus''&lt;br/&gt;<br /> -''Firebug''&lt;br/&gt;<br /> -''JSView''&lt;br/&gt;<br /> <br /> +'''Network Utilities'''&lt;br/&gt;<br /> +'''Protocols and applications'''&lt;br/&gt;<br /> +'''FTP'''&lt;br/&gt;<br /> -''Fire FTP''&lt;br/&gt;<br /> +'''DNS'''&lt;br/&gt;<br /> -''DNS Cache''&lt;br/&gt;<br /> +'''SQL'''&lt;br/&gt;<br /> -''SQLite Manager''&lt;br/&gt;<br /> +'''Sniffers'''&lt;br/&gt;<br /> -''HTTP Fox''&lt;br/&gt;<br /> +'''Password'''&lt;br/&gt;<br /> -''CryptoFox 2.0''&lt;br/&gt;<br /> <br /> +'''Misc'''&lt;br/&gt;<br /> +'''Tweaks and Hacks'''&lt;br/&gt;<br /> -''Greasemonkey''&lt;br/&gt;<br /> +'''Scripts'''&lt;br/&gt;<br /> -''Greasefir''&lt;br/&gt;<br /> +'''Malware scanner'''&lt;br/&gt;<br /> -''Web of Trust''&lt;br/&gt;<br /> +'''Automation'''&lt;br/&gt;<br /> -''iMacros''&lt;br/&gt;<br /> +'''Others'''&lt;br/&gt;<br /> -''CacheToggle 0.6''&lt;br/&gt;<br /> -''URL Flipper''&lt;br/&gt;<br /> +'''Application Auditing'''&lt;br/&gt;<br /> -''Hackbar''&lt;br/&gt;<br /> -''JavaScript Deobfuscator''&lt;br/&gt;<br /> -''RESTClient''&lt;br/&gt;<br /> -''Tamper Data''&lt;br/&gt;<br /> -''Live HTTP Headers''&lt;br/&gt;<br /> -''RefControl''&lt;br/&gt;<br /> -''User Agent Switcher''&lt;br/&gt;<br /> -''Web Developer''&lt;br/&gt;<br /> -''DOM Inspector''&lt;br/&gt;<br /> -''Inspect This''&lt;br/&gt;<br /> -''Formfox''&lt;br/&gt;<br /> +'''Exploit Me'''&lt;br/&gt;<br /> -''Access Me''&lt;br/&gt;<br /> -''SQL Inject Me''&lt;br/&gt;<br /> -''XSS Me''&lt;br/&gt;<br /> +'''Cookies'''&lt;br/&gt;<br /> -''Cookies Manager+ 1.5.1''&lt;br/&gt;<br /> -''Firecookie''&lt;br/&gt;<br /> <br /> +'''Proxy'''&lt;br/&gt;<br /> -''FoxyProxy Standard 2.22.6''&lt;br/&gt;<br /> -''HttpFox''&lt;br/&gt;''<br /> <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Download]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=114030 OWASP Mantra - Security Framework 2011-07-17T10:15:07Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> = Main Links =<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> ==== Project About ====<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> <br /> ==== Ayudha ====<br /> <br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.<br /> <br /> ''<br /> +'''Information Gathering'''&lt;br/&gt;<br /> +'''Whois'''&lt;br/&gt;<br /> -''Flagfox''&lt;br/&gt;<br /> +'''Location Info'''&lt;br/&gt;<br /> -''Flagfox''&lt;br/&gt;<br /> +'''Enumeration and Fingerprint'''&lt;br/&gt;<br /> -''Host Spy''&lt;br/&gt;<br /> -''JSView''&lt;br/&gt;<br /> -''PassiveRecon''&lt;br/&gt;<br /> -''View Dependencies''&lt;br/&gt;<br /> -''Wappalyzer''&lt;br/&gt;<br /> +'''Data Mining'''&lt;br/&gt;<br /> -''People Search Engine''&lt;br/&gt;<br /> -''Facebook search''&lt;br/&gt;<br /> +'''Editors'''&lt;br/&gt;<br /> -''Cert Viewer Plus''&lt;br/&gt;<br /> -''Firebug''&lt;br/&gt;<br /> -''JSView''&lt;br/&gt;<br /> <br /> +'''Network Utilities'''&lt;br/&gt;<br /> +'''Protocols and applications'''&lt;br/&gt;<br /> +'''FTP'''&lt;br/&gt;<br /> -''Fire FTP''&lt;br/&gt;<br /> +'''DNS'''&lt;br/&gt;<br /> -''DNS Cache''&lt;br/&gt;<br /> +'''SQL'''&lt;br/&gt;<br /> -''SQLite Manager''&lt;br/&gt;<br /> +'''Sniffers'''&lt;br/&gt;<br /> -''HTTP Fox''&lt;br/&gt;<br /> +'''Password'''&lt;br/&gt;<br /> -''CryptoFox 2.0''&lt;br/&gt;<br /> <br /> +'''Misc'''&lt;br/&gt;<br /> +'''Tweaks and Hacks'''&lt;br/&gt;<br /> -''Greasemonkey''&lt;br/&gt;<br /> +'''Scripts'''&lt;br/&gt;<br /> -''Greasefir''&lt;br/&gt;<br /> +'''Malware scanner'''&lt;br/&gt;<br /> -''Web of Trust''&lt;br/&gt;<br /> +'''Automation'''&lt;br/&gt;<br /> -''iMacros''&lt;br/&gt;<br /> +'''Others'''&lt;br/&gt;<br /> -''CacheToggle 0.6''&lt;br/&gt;<br /> -''URL Flipper''&lt;br/&gt;<br /> +'''Application Auditing'''&lt;br/&gt;<br /> -''Hackbar''&lt;br/&gt;<br /> -''JavaScript Deobfuscator''&lt;br/&gt;<br /> -''RESTClient''&lt;br/&gt;<br /> -''Tamper Data''&lt;br/&gt;<br /> -''Live HTTP Headers''&lt;br/&gt;<br /> -''RefControl''&lt;br/&gt;<br /> -''User Agent Switcher''&lt;br/&gt;<br /> -''Web Developer''&lt;br/&gt;<br /> -''DOM Inspector''&lt;br/&gt;<br /> -''Inspect This''&lt;br/&gt;<br /> -''Formfox''&lt;br/&gt;<br /> +'''Exploit Me'''&lt;br/&gt;<br /> -''Access Me''&lt;br/&gt;<br /> -''SQL Inject Me''&lt;br/&gt;<br /> -''XSS Me''&lt;br/&gt;<br /> +'''Cookies'''&lt;br/&gt;<br /> -''Cookies Manager+ 1.5.1''&lt;br/&gt;<br /> -''Firecookie''&lt;br/&gt;<br /> <br /> +'''Proxy'''&lt;br/&gt;<br /> -''FoxyProxy Standard 2.22.6''&lt;br/&gt;<br /> -''HttpFox''&lt;br/&gt;''<br /> <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Download]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]</div> Yashartha Chaturvedi https://wiki.owasp.org/index.php?title=OWASP_Mantra_-_Security_Framework&diff=114029 OWASP Mantra - Security Framework 2011-07-17T10:13:52Z <p>Yashartha Chaturvedi: </p> <hr /> <div>==== Main ====<br /> <br /> = Overview =<br /> <br /> [[Image:OWASP Mantra Security Framework.jpg|right|200px|OWASP Mantra Security Framework.jpg]]&lt;br&gt; <br /> <br /> *Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software. <br /> *Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.<br /> <br /> = Project Goals =<br /> <br /> #Create an ecosystem for hackers based on browser <br /> #To bring the attention of security people to the potential of a browser based security platform <br /> #Provide easy to use and portable platform for demonstrating common web based attacks( read training ) <br /> #To associate with other security tools/products to make a better environment. Eg: <br /> ##It can be a nice addition to security distribution OSs like OWASP Live CD <br /> ##It can be used to solve basic levels of CTF contests <br /> ##It can associate with projects like DVWA to showcase attacks <br /> ##It can bring functions like crawler, SQL injection scanner etc by installing extensions.<br /> <br /> = Main Links =<br /> <br /> '''[http://getmantra.com/download/index.html Download Mantra - Security Framework]'''&lt;br&gt; <br /> <br /> *[http://www.youtube.com/watch?v=GBFxVAM3DLQ Conference Video 1] <br /> *[http://www.youtube.com/watch?v=bKACEDWKeyM Conference Video 2] <br /> *[http://www.youtube.com/watch?v=qpVHWVOPHTk Conference Video 3]<br /> <br /> *[http://chmag.in/article/feb2011/mantra-%E2%80%93-free-and-open-source-security-framework Article/Publication ]<br /> <br /> &lt;br&gt; <br /> <br /> ==== Project About ====<br /> <br /> {{:Projects/OWASP Mantra - Security Framework | Project About}} <br /> <br /> __NOTOC__ &lt;headertabs /&gt; <br /> <br /> <br /> ====Ayudha====<br /> <br /> Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of [http://firecat.fr/ FireCAT ] which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.<br /> <br /> ''<br /> +'''Information Gathering'''&lt;br/&gt;<br /> +'''Whois'''&lt;br/&gt;<br /> -''Flagfox''&lt;br/&gt;<br /> +'''Location Info'''&lt;br/&gt;<br /> -''Flagfox''&lt;br/&gt;<br /> +'''Enumeration and Fingerprint'''&lt;br/&gt;<br /> -''Host Spy''&lt;br/&gt;<br /> -''JSView''&lt;br/&gt;<br /> -''PassiveRecon''&lt;br/&gt;<br /> -''View Dependencies''&lt;br/&gt;<br /> -''Wappalyzer''&lt;br/&gt;<br /> +'''Data Mining'''&lt;br/&gt;<br /> -''People Search Engine''&lt;br/&gt;<br /> -''Facebook search''&lt;br/&gt;<br /> +'''Editors'''&lt;br/&gt;<br /> -''Cert Viewer Plus''&lt;br/&gt;<br /> -''Firebug''&lt;br/&gt;<br /> -''JSView''&lt;br/&gt;<br /> <br /> +'''Network Utilities'''&lt;br/&gt;<br /> +'''Protocols and applications'''&lt;br/&gt;<br /> +'''FTP'''&lt;br/&gt;<br /> -''Fire FTP''&lt;br/&gt;<br /> +'''DNS'''&lt;br/&gt;<br /> -''DNS Cache''&lt;br/&gt;<br /> +'''SQL'''&lt;br/&gt;<br /> -''SQLite Manager''&lt;br/&gt;<br /> +'''Sniffers'''&lt;br/&gt;<br /> -''HTTP Fox''&lt;br/&gt;<br /> +'''Password'''&lt;br/&gt;<br /> -''CryptoFox 2.0''&lt;br/&gt;<br /> <br /> +'''Misc'''&lt;br/&gt;<br /> +'''Tweaks and Hacks'''&lt;br/&gt;<br /> -''Greasemonkey''&lt;br/&gt;<br /> +'''Scripts'''&lt;br/&gt;<br /> -''Greasefir''&lt;br/&gt;<br /> +'''Malware scanner'''&lt;br/&gt;<br /> -''Web of Trust''&lt;br/&gt;<br /> +'''Automation'''&lt;br/&gt;<br /> -''iMacros''&lt;br/&gt;<br /> +'''Others'''&lt;br/&gt;<br /> -''CacheToggle 0.6''&lt;br/&gt;<br /> -''URL Flipper''&lt;br/&gt;<br /> +'''Application Auditing'''&lt;br/&gt;<br /> -''Hackbar''&lt;br/&gt;<br /> -''JavaScript Deobfuscator''&lt;br/&gt;<br /> -''RESTClient''&lt;br/&gt;<br /> -''Tamper Data''&lt;br/&gt;<br /> -''Live HTTP Headers''&lt;br/&gt;<br /> -''RefControl''&lt;br/&gt;<br /> -''User Agent Switcher''&lt;br/&gt;<br /> -''Web Developer''&lt;br/&gt;<br /> -''DOM Inspector''&lt;br/&gt;<br /> -''Inspect This''&lt;br/&gt;<br /> -''Formfox''&lt;br/&gt;<br /> +'''Exploit Me'''&lt;br/&gt;<br /> -''Access Me''&lt;br/&gt;<br /> -''SQL Inject Me''&lt;br/&gt;<br /> -''XSS Me''&lt;br/&gt;<br /> +'''Cookies'''&lt;br/&gt;<br /> -''Cookies Manager+ 1.5.1''&lt;br/&gt;<br /> -''Firecookie''&lt;br/&gt;<br /> <br /> +'''Proxy'''&lt;br/&gt;<br /> -''FoxyProxy Standard 2.22.6''&lt;br/&gt;<br /> -''HttpFox''&lt;br/&gt;''<br /> <br /> <br /> [[Category:OWASP_Tool]] [[Category:OWASP_Download]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]]</div> Yashartha Chaturvedi