OWASP Mantra - An Introduction .pptx


Published on

OWASP Mantra - Free and Open Source Browser based Security Framework, is a collection of free and open source tools integrated into a web browser, which can become handy for penetration testers, web application developers, security professionals etc.

Published in: Technology
1 Like
  • Be the first to comment

No Downloads
Total Views
On Slideshare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide
  • REMEMBER… OWASP IS JUST PEOPLEYou are all probably familiar with OWASP, so I’d like to take this opportunity to share a few metrics and give you an idea of where OWASP is headed.I’ve been the volunteer chair of OWASP since 2004, and I’ve spent quite a lot of time, effort, and my own money developing the organization. Why do I do all this? Why do I care?AppSec is about not about tools or technology… it’s about people. OWASP is about community.______________
  • OWASP Mantra - An Introduction .pptx

    1. 1. OWASP Mantra - An Introduction<br />Prepared By<br />-Team Mantra-<br />contact@getmantra.com<br />
    2. 2. The Browser Evolution<br />2<br />
    3. 3. Netscape Navigator<br />1994<br />
    4. 4. Microsoft IE<br />1995<br />
    5. 5. Opera<br />1996<br />
    6. 6. 6<br />Safari<br />2003<br />
    7. 7. Mozilla Firefox<br />2004<br />
    8. 8. Google Chrome<br />2008<br />
    9. 9. 9<br />Why not a hack3r’s browser ?<br />Mantra<br />2010<br />
    10. 10. What ?<br />What is Mantra?<br />What Mantra is NOT?<br />What is the use?<br />
    11. 11. What is Mantra ?<br />11<br />Collection of Hacking Tools/ Add-ons<br />A security framework that can aid in exploit development <br />
    12. 12. 12<br />What is Mantra ?<br />Browser Based – Its built on top of Browser<br />But “not just a browser”<br />Cross platform & Flexible<br />
    13. 13. 13<br /><ul><li>Open Source</li></ul>Free as in “Free Beer” and “Free Speech”<br />
    14. 14. What is the use ?<br />Five <br />phases of attacks <br />
    15. 15. page 15<br />What Mantra is NOT?<br />Not an one click Pwnage tool <br />Not mature enough to suit a particular need<br />Don’t uninstall your Metasploit and W3af ;)<br />Not a replacement for your normal browser<br />Not completely integrated<br />
    16. 16. 16<br />Why Mantra ?<br /><ul><li>Plenty of extensions available officially and unofficially (Firesheep for instance )
    17. 17. Analyzing each and every add-on is a tedious task (Let us do it for you )
    18. 18. Many extensions going unnoticed
    19. 19. Security researchers should know the power of browser platform </li></li></ul><li>17<br />Mantra- Form the past to the Present<br /><ul><li>Started in October 2010
    20. 20. Released first public beta 0.52 at ClubHack Conference in December 2010
    21. 21. Became an OWASP project in March 2011
    22. 22. Integrated With other active projects (FireCAT, Open Pen Test Bookmarks etc )
    23. 23. Released second public beta 0.61 c0de named “Gandiva” on 15th June 2011 </li></li></ul><li>18<br />Mantra- Future ?<br />Add-ons – Let’s develop add-ons for Mantra <br /> (Yes, You can help us!)<br /> Framework – A fine tuned framework with collection of tools <br />and exploits (Beyond a browser! Beyond a toolkit!)<br />
    24. 24. 19<br />The Team<br />Abhi M Balakrishnan – Project Leader<br />Gokul C Gopinath – Team Leader<br />YasharthaChaturvedi – Project Manager<br />Gopu C Gopinath – Artworks<br />
    25. 25. 20<br />How Can I Contribute ?<br /><ul><li>Develop – Write add-ons/tools for Mantra
    26. 26. Pre/Post release testing – Report bugs and help us to fix it
    27. 27. Idea – Input your ideas to make Mantra better </li></ul>Code | Modify --> Extensions | Framework<br />
    28. 28. 21<br />Links<br />Website: http://www.getmantra.com/<br />Forums: http://www.getmantra.com/forums/<br />Blog: http://getmantra.tumblr.com/<br />Mantra on Facebook: https://www.facebook.com/getmantra<br />Mantra on Twitter :http://twitter.com/getmantra<br />Download Location:<br />http://www.getmantra.com/download/index.html<br />Other Links :<br />http://en.wikipedia.org/wiki/OWASP_Mantra_Security_Framework<br />https://www.owasp.org/index.php/OWASP_Mantra_-_Security_Framework<br />
    29. 29. 22<br />Thank You!<br />-Team Mantra-<br />