This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP Mantra - Security Framework"
| Line 113: | Line 113: | ||
'''Project Leaders'''<br/> | '''Project Leaders'''<br/> | ||
[[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]<br/> | [[User:Abhi_M_Balakrishnan|Abhi M Balakrishnan]]<br/> | ||
| − | [[User: | + | [[User:Yashartha_Chaturvedi|Yashartha Chaturvedi]]<br/> |
Gokul C Gopinath<br/><br/> | Gokul C Gopinath<br/><br/> | ||
| Line 160: | Line 160: | ||
==== Resources ==== | ==== Resources ==== | ||
| − | + | '''Project Pamphlets'''<br/> | |
| + | |||
| + | [http://www.owasp.org/images/e/e4/OWASP_Mantra-An_Introduction.pdf Project Pamphlet 1]<br/><br/> | ||
| + | |||
| + | '''Project Presentations'''<br/> | ||
| + | |||
| + | [http://www.owasp.org/index.php/File:OWASP_Mantra-An_Introduction.pptx Project Presentation 1]<br/><br/> | ||
| + | |||
| + | '''Text Tutorials'''<br/> | ||
| + | |||
| + | [http://getmantra.com/forums/Thread-introducing-passiverecon-by-justin-morehouse Introducing PassiveRecon by Justin Morehouse]<br/> | ||
| + | [http://getmantra.com/forums/Thread-introducing-groundspeed-by-felipe Introducing Groundspeed by Felipe]<br/> | ||
| + | [http://getmantra.com/forums/Thread-introducing-link-sidebar-by-varun-n Introducing Link Sidebar by Varun N]<br/> | ||
| + | [http://getmantra.com/forums/Thread-introducing-proxytool-by-robert-rade Introducing ProxyTool by Robert Rade]<br/> | ||
| + | [http://getmantra.com/forums/Thread-introducing-httpfox-by-martin-theimer Introducing HttpFox by Martin Theimer]<br/> | ||
| + | [http://getmantra.com/forums/Thread-how-to-make-your-own-search-bar-item How to make your own search bar item]<br/> | ||
| + | [http://getmantra.com/forums/Thread-switching-between-languages-and-locales Switching between languages and locales]<br/> | ||
| + | [http://getmantra.com/forums/Thread-running-mantra-and-firefox-together Running Mantra and Firefox together]<br/> | ||
| + | [http://getmantra.com/forums/Thread-login-form-bypass-using-mantra-security-toolkit Login Form Bypass using Mantra Security Toolkit]<br/> | ||
| + | [http://getmantra.com/forums/Thread-advanced-sql-injection-tutorial-complete-website-rooting Advanced SQL Injection Tutorial - Complete website rooting]<br/> | ||
| + | [http://getmantra.com/forums/Thread-manual-crawling Manual Crawling]<br/> | ||
| + | [http://getmantra.com/forums/Thread-introducing-flagfox Introducing Flagfox]<br/><br/> | ||
| + | |||
| + | '''Video Tutorials'''<br/> | ||
| + | |||
| + | ClubHACK 2010 - [http://www.youtube.com/watch?v=GBFxVAM3DLQ 1] [http://www.youtube.com/watch?v=bKACEDWKeyM 2] [http://www.youtube.com/watch?v=qpVHWVOPHTk 3]<br/> | ||
| + | [http://www.youtube.com/watch?v=yTbB42sR208 Broken Authentication Demonstration]<br/> | ||
| + | [http://www.youtube.com/watch?v=o1WVx6eYE-M Broken Session]<br/> | ||
| + | [http://www.youtube.com/watch?v=vvPeskadF-s Insecure Direct Object References]<br/> | ||
| + | [http://www.youtube.com/watch?v=NK3S-nwiGwA Cross Site Scripting] | ||
==== Links ==== | ==== Links ==== | ||
Revision as of 16:52, 18 October 2011
Main
- Mantra is a collection of free and open source tools integrated into a web browser, which can become handy for students, penetration testers, web application developers,security professionals etc. It is portable, ready-to-run, compact and follows the true spirit of free and open source software.
- Mantra is lite, flexible, portable and user friendly with a nice graphical user interface. You can carry it in memory cards, flash drives, CD/DVDs, etc. It can be run natively on Linux, Windows and Mac platforms. It can also be installed on to your system within minutes. Mantra is absolutely free of cost and takes no time for you to set up.
- Create an ecosystem for hackers based on browser
- To bring the attention of security people to the potential of a browser based security platform
- Provide easy to use and portable platform for demonstrating common web based attacks( read training )
- To associate with other security tools/products to make a better environment. Eg:
- It can be a nice addition to security distribution OSs like OWASP Live CD
- It can be used to solve basic levels of CTF contests
- It can associate with projects like DVWA to showcase attacks
- It can bring functions like crawler, SQL injection scanner etc by installing extensions.
Download Mantra - Security Framework
Tools
Mantra is a powerful set of tools to make the attacker's task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. Moreover Mantra follows the guidelines and structure of FireCAT which makes it even more accessible. You can also always suggest any tools/ scripts that you would like see in the next release.
+Information Gathering
+Whois
-Flagfox
+Location Info
-Flagfox
+Enumeration and Fingerprint
-Host Spy
-JSView
-PassiveRecon
-View Dependencies
-Wappalyzer
+Data Mining
-People Search Engine
-Facebook search
+Editors
-Cert Viewer Plus
-Firebug
-JSView
+Network Utilities
+Protocols and applications
+FTP
-Fire FTP
+DNS
-DNS Cache
+SQL
-SQLite Manager
+Sniffers
-HTTP Fox
+Password
-CryptoFox 2.0
+Misc
+Tweaks and Hacks
-Greasemonkey
+Scripts
-Greasefir
+Malware scanner
-Web of Trust
+Automation
-iMacros
+Others
-CacheToggle 0.6
-URL Flipper
+Application Auditing
-Hackbar
-JavaScript Deobfuscator
-RESTClient
-Tamper Data
-Live HTTP Headers
-RefControl
-User Agent Switcher
-Web Developer
-DOM Inspector
-Inspect This
-Formfox
+Exploit Me
-Access Me
-SQL Inject Me
-XSS Me
+Cookies
-Cookies Manager+ 1.5.1
-Firecookie
+Proxy
-FoxyProxy Standard 2.22.6
-HttpFox
News
Contributors
Project Leaders
Abhi M Balakrishnan
Yashartha Chaturvedi
Gokul C Gopinath
Other Members
Gopu C Gopinath
Maximiliano Soler
Download
OWASP Mantra c0c0n 11 and AppSecLatam 11 Release ( 0.71 Beta )
| Platform | Details | Links |
| Linux 32 bit | MD5: 8e874e6d4e119111bf3dbcbe0f9a1c69 | Mirror 1 Mirror 2 Torrent |
| Linux 64 bit | MD5: d0ed8fce30a20ad907a97047985e8c05 | Mirror 1 Mirror 2 Torrent |
| Windows | MD5: 98517c9f61561d8c656a2d2436f2333d | Mirror 1 Mirror 2 Torrent |
| Macintosh | MD5: 949808a8f75fa0bcc5730cdcf73f7844 | Mirror 1 Mirror 2 Torrent |
| Source | MD5: 6fdb5e9408261d741f24cb83df4b4066 | Mirror 1 Mirror 2 Torrent |
Project About
| PROJECT INFO What does this OWASP project offer you? |
RELEASE(S) INFO What releases are available for this project? | |||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
| |||||||||||||||||||||||||||||||||||||||||||||||
Resources
Project Pamphlets
Project Presentations
Text Tutorials
Introducing PassiveRecon by Justin Morehouse
Introducing Groundspeed by Felipe
Introducing Link Sidebar by Varun N
Introducing ProxyTool by Robert Rade
Introducing HttpFox by Martin Theimer
How to make your own search bar item
Switching between languages and locales
Running Mantra and Firefox together
Login Form Bypass using Mantra Security Toolkit
Advanced SQL Injection Tutorial - Complete website rooting
Manual Crawling
Introducing Flagfox
Video Tutorials
ClubHACK 2010 - 1 2 3
Broken Authentication Demonstration
Broken Session
Insecure Direct Object References
Cross Site Scripting
Links
Main Website
Discussion Forums
Facebook Page
Tumblr
Twitter
Vimeo
Sourceforge
Google Code
Youtube
