This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP Mantra - Security Framework"

From OWASP
Jump to: navigation, search
Line 35: Line 35:
  
 
''
 
''
+'''Information Gathering'''<br/>
+
#'''Information Gathering'''<br/>
+'''Whois'''<br/>
+
##'''Whois'''<br/>
-''Flagfox''<br/>
+
###''Flagfox''<br/>
+'''Location Info'''<br/>
+
##'''Location Info'''<br/>
-''Flagfox''<br/>
+
###''Flagfox''<br/>
+'''Enumeration and Fingerprint'''<br/>
+
##'''Enumeration and Fingerprint'''<br/>
-''Host Spy''<br/>
+
###''Host Spy''<br/>
-''JSView''<br/>
+
###''JSView''<br/>
-''PassiveRecon''<br/>
+
###''PassiveRecon''<br/>
-''View Dependencies''<br/>
+
###''View Dependencies''<br/>
-''Wappalyzer''<br/>
+
###''Wappalyzer''<br/>
+'''Data Mining'''<br/>
+
##'''Data Mining'''<br/>
-''People Search Engine''<br/>
+
###''People Search Engine''<br/>
-''Facebook search''<br/>
+
###''Facebook search''<br/>
+'''Editors'''<br/>
+
#'''Editors'''<br/>
-''Cert Viewer Plus''<br/>
+
###''Cert Viewer Plus''<br/>
-''Firebug''<br/>
+
###''Firebug''<br/>
-''JSView''<br/>
+
###''JSView''<br/>
 
+
#'''Network Utilities'''<br/>
+'''Network Utilities'''<br/>
+
##'''Protocols and applications'''<br/>
+'''Protocols and applications'''<br/>
+
###''Fire FTP''<br/>
+'''FTP'''<br/>
+
###''DNS Cache''<br/>
-''Fire FTP''<br/>
+
###''SQLite Manager''<br/>
+'''DNS'''<br/>
+
##'''Sniffers'''<br/>
-''DNS Cache''<br/>
+
###''HTTP Fox''<br/>
+'''SQL'''<br/>
+
##'''Password'''<br/>
-''SQLite Manager''<br/>
+
###''CryptoFox 2.0''<br/>
+'''Sniffers'''<br/>
+
#'''Misc'''<br/>
-''HTTP Fox''<br/>
+
##'''Tweaks and Hacks'''<br/>
+'''Password'''<br/>
+
###''Greasemonkey''<br/>
-''CryptoFox 2.0''<br/>
+
###''Greasefir''<br/>
 
+
##'''Malware scanner'''<br/>
+'''Misc'''<br/>
+
###''Web of Trust''<br/>
+'''Tweaks and Hacks'''<br/>
+
##'''Automation'''<br/>
-''Greasemonkey''<br/>
+
###''iMacros''<br/>
+'''Scripts'''<br/>
+
##'''Others'''<br/>
-''Greasefir''<br/>
+
###''CacheToggle 0.6''<br/>
+'''Malware scanner'''<br/>
+
###''URL Flipper''<br/>
-''Web of Trust''<br/>
+
#'''Application Auditing'''<br/>
+'''Automation'''<br/>
+
###''Hackbar''<br/>
-''iMacros''<br/>
+
###''JavaScript Deobfuscator''<br/>
+'''Others'''<br/>
+
###''RESTClient''<br/>
-''CacheToggle 0.6''<br/>
+
###''Tamper Data''<br/>
-''URL Flipper''<br/>
+
###''Live HTTP Headers''<br/>
+'''Application Auditing'''<br/>
+
###''RefControl''<br/>
-''Hackbar''<br/>
+
###''User Agent Switcher''<br/>
-''JavaScript Deobfuscator''<br/>
+
###''Web Developer''<br/>
-''RESTClient''<br/>
+
###''DOM Inspector''<br/>
-''Tamper Data''<br/>
+
###''Inspect This''<br/>
-''Live HTTP Headers''<br/>
+
###''Formfox''<br/>
-''RefControl''<br/>
+
###'''Exploit Me'''<br/>
-''User Agent Switcher''<br/>
+
####''Access Me''<br/>
-''Web Developer''<br/>
+
####''SQL Inject Me''<br/>
-''DOM Inspector''<br/>
+
####''XSS Me''<br/>
-''Inspect This''<br/>
+
###'''Cookies'''<br/>
-''Formfox''<br/>
+
####''Cookies Manager+ 1.5.1''<br/>
+'''Exploit Me'''<br/>
+
####''Firecookie''<br/>
-''Access Me''<br/>
+
#'''Proxy'''<br/>
-''SQL Inject Me''<br/>
+
##''FoxyProxy Standard 2.22.6''<br/>
-''XSS Me''<br/>
+
##''HttpFox''<br/>''
+'''Cookies'''<br/>
 
-''Cookies Manager+ 1.5.1''<br/>
 
-''Firecookie''<br/>
 
 
 
+'''Proxy'''<br/>
 
-''FoxyProxy Standard 2.22.6''<br/>
 
-''HttpFox''<br/>''
 
  
  
Line 107: Line 100:
 
==== News ====
 
==== News ====
  
[http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]
+
[http://www.computerweekly.com/blogs/open-source-insider/2011/10/free-software-testing-on-usb-for-students-to-web-developers-with-mantra.html Computer Weekly Article]<br/>
[http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]
+
[http://getmantra.com/forums/Thread-owasp-mantra-c0c0n-11-and-appseclatam-11-release OWASP Mantra - c0c0n 11 and AppSecLatam 11 Release]<br/>
[http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]
+
[http://www.ekoparty.org/2011/workshops/owasp-mantra-security-framework.php Mantra at Ekoparty Security Conference]<br/>
[http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&bctid=1078245078001 Searchsecurity Screencast]
+
[http://link.brightcove.com/services/player/bcpid1078581830001?bclid=1077362296001&bctid=1078245078001 Searchsecurity Screencast]<br/>
[http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]
+
[http://getmantra.com/forums/Thread-mantra-in-matriux-upcoming-release-leaked Mantra in Matriux Security Distribution]<br/>
[http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]
+
[http://getmantra.com/forums/Thread-mantra-in-backtrack-5 Mantra in Backtrack 5 - Penetration Testing Distribution]<br/>
 
+
[http://www.facebook.com/photo.php?fbid=185544081485201&set=a.170788249627451.33033.170787489627527&type=1&ref=nf Mantra – Free and Open Source Security Framework' - published in India's first hacking magazine ClubHack Mag]<br/>
 +
[http://clubhack.com/2010/speakers/ ClubHACK 2010 Mantra release]
 
==== Contributors  ====
 
==== Contributors  ====
  

Revision as of 17:19, 18 October 2011

Main

OWASP Mantra Security Framework.jpg

  • Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software.
  • Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.
  1. Create an ecosystem for hackers based on browser
  2. To bring the attention of security people to the potential of a browser based security platform
  3. Provide easy to use and portable platform for demonstrating common web based attacks( read training )
  4. To associate with other security tools/products to make a better environment. Eg:
    1. It can be a nice addition to security distribution OSs like OWASP Live CD
    2. It can be used to solve basic levels of CTF contests
    3. It can associate with projects like DVWA to showcase attacks
    4. It can bring functions like crawler, SQL injection scanner etc by installing extensions.