This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP Mantra - Security Framework"
Line 58: | Line 58: | ||
'''Project Leaders''': [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]] and [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]<br/> | '''Project Leaders''': [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]] and [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]<br/> | ||
'''Testing, artworks, translating and other works''': [[User:Gokul_C_Gopinath|Gokul C Gopinath]], [[User:Maximiliano_Soler|Maximiliano Soler]], [[User:Niraj T Mohite|Niraj Mohite]], [[User:Rahul Babu R|Rahul Babu R]], Gopu C Gopinath and Thomas Mackenzie | '''Testing, artworks, translating and other works''': [[User:Gokul_C_Gopinath|Gokul C Gopinath]], [[User:Maximiliano_Soler|Maximiliano Soler]], [[User:Niraj T Mohite|Niraj Mohite]], [[User:Rahul Babu R|Rahul Babu R]], Gopu C Gopinath and Thomas Mackenzie | ||
− | |||
− | |||
== Resources == | == Resources == | ||
'''Project Pamphlets''': [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1] | '''Project Pamphlets''': [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1] | ||
Line 66: | Line 64: | ||
[https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2] | [https://www.owasp.org/images/d/dc/OWASP-Mantra_BAires-Argentina.ppt Project Presentation 2] | ||
− | '''Text Tutorials''' | + | '''Tutorials''' |
− | [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]<br/> | + | {| |
− | [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]<br/> | + | |''Text Tutorials'' |
− | [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]<br/> | + | | |
− | [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]<br/> | + | |''Video Tutorials'' |
− | [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]<br/> | + | |- |
− | [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]<br/> | + | |[http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]<br/>[http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]<br/>[http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]<br/>[http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]<br/>[http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]<br/>[http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]<br/>[http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]<br/>[http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]<br/>[http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]<br/>[http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]<br/>[http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]<br/>[http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]<br/>[http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox] |
− | [http://getmantra.com/forums/Thread-how-to-use-moc-crawler How to use MoC crawler]<br/> | + | | |
− | [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]<br/> | + | |[http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&bctid=1078245078001 SearchSecurity Screencast]<br/>ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]<br/>[http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]<br/>[http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session Demonstration]<br/>[http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References Demonstration]<br/>[http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting Demonstration]<br/>[http://www.youtube.com/watch?v=p94ssETMbQ0& Introduction + How to use Mantra Security Toolkit]<br/>[http://www.youtube.com/watch?v=fxHlthnVJpA Introduction to Mantra (Arabic)]<br/> |
− | [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]<br/> | + | [http://www.youtube.com/watch?v=exyUAGseifI Introducing FoxyProxy (Arabic)]<br/>[http://www.youtube.com/watch?v=vFcY584Wmw0 OWASP Mantra - URL Shortener Script SQL Injection Vulnerability]<br/>[http://www.youtube.com/watch?v=CRJkGZlV6Vk OWASP Mantra and LAMP Security CTF 6]<br/> |
− | [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]<br/> | + | [http://www.youtube.com/watch?v=aPk5vCqh-2k OWASP Mantra and Who Wants to be a Millionaire]<br/>[http://www.youtube.com/watch?v=0lPz24Z7Q_4 OWASP Mantra - One File CMS - Failure to Restrict URL Access] |
− | [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]<br/> | + | |}</div> |
− | [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]<br/> | + | == Project About == |
− | [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]<br/> | + | {{:Projects/OWASP Mantra - Security Framework | Project About}} |
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
__NOTOC__ <headertabs /> | __NOTOC__ <headertabs /> | ||
[[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]] | [[Category:OWASP_Tool]] [[Category:OWASP_Alpha_Quality_Tool]] [[Category:OWASP_Project|Mantra - Security Framework]] | ||
[[Category:OWASP Download]]{{OWASP Breakers}} | [[Category:OWASP Download]]{{OWASP Breakers}} |
Revision as of 09:57, 24 January 2013
- A web application security testing framework built on top of a browser.
- Supports Windows, Linux(both 32 and 64 bit) and Macintosh.
- Can work with other software like ZAP using built in proxy management function which makes it much more convenient.
- Available in 9 languages: Arabic, Chinese - Simplified, Chinese - Traditional, English, French, Portuguese, Russian, Spanish and Turkish
- Comes installed with major security distributions including BackTrack and Matriux
Download Mantra | Watch videos | Know about tools | Questions and Answers | Artworks
Connect with Mantra on: Blog | Google+ | Twitter | Facebook | Ning
Track development on: Sourceforge | Google Code
What Mantra can do
Mantra is a browser especially designed for web application security testing. By having such a product, more people will come to know the easiness and flexibility of being able to follow basic testing procedures within the browser. Mantra believes that having such a portable, easy to use and yet powerful platform can be helpful for the industry.
Mantra has many built in tools to modify headers, manipulate input strings, replay GET/POST requests, edit cookies, quickly switch between multiple proxies, control forced redirects etc. This makes it a good software for performing basic security checks and sometimes, exploitation. Thus, Mantra can be used to solve basic levels of various web based CTFs, showcase security issues in vulnerable web applications etc.
Download
OWASP Mantra Security Toolkit - Beta 0.92 code named Janus
Linux 32 bit: | Mirror 1 Mirror 2 Torrent |
Linux 64 bit: | Mirror 1 Mirror 2 Torrent |
Windows: | Mirror 1 Mirror 2 Torrent |
Macintosh: | Mirror 1 Mirror 2 Torrent |
Source: | Mirror 1 |
News
Computer Weekly Article
OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release
Mantra at Ekoparty Security Conference
Mantra at OWASP LatamTour - Buenos Aires, Argentina
Getting secure with Mantra: An open source penetration testing kit - 1. Computer World 2. CIO 3. Tech World 4. CSO
Searchsecurity Screencast
Mantra in Matriux Security Distribution
Mantra in Backtrack 5 - Penetration Testing Distribution
Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag
ClubHACK 2010 Mantra release
OWASP Mantra page on Secpedia, the information security encyclopedia
Team Mantra
Project Leaders: Abhi M Balakrishnan and Yashartha Chaturvedi
Testing, artworks, translating and other works: Gokul C Gopinath, Maximiliano Soler, Niraj Mohite, Rahul Babu R, Gopu C Gopinath and Thomas Mackenzie
Resources
Project Pamphlets: Project Pamphlet 1
Project Presentations: Project Presentation 1 | Project Presentation 2
Tutorials
Project About
PROJECT INFO What does this OWASP project offer you? |
RELEASE(S) INFO What releases are available for this project? | |||||||||||||||||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|
This project is part of the OWASP Breakers community. Feel free to browse other projects within the Defenders, Builders, and Breakers communities. |