OWASP Mantra Security Framework
Encyclopedia
Mantra is a free and open source
security toolkit with a collection of hacking tools, add-ons and scripts based on Firefox intended for penetration test
ers, web application developers and security professionals etc.
, Linux
or in Macintosh
.
project in March 2011 and included in BackTrack
5 Linux security distribution in May 2011 soon after its first public beta 0.52 ClubHack release in December 2010. On 15 June 2011 FireCat officially integrated with Mantra. Matriux
Krypton released it as part of their Arsenal on 15 August 2011.
Team Mantra have released a pre-alpha version of MoC that is based on Google Chrome
on the 2nd day of September 2011
- Whois
- Location Info
- Enumeration and Fingerprint
- Data Mining
+Editors
- Cert Viewer Plus
- Firebug
- JSView
+Network Utilities
- Protocols and applications
- Sniffers
- Password
+Miscellaneous
- Tweaks and Hacks
- Malware scanner
- Automation
- Others
+Application Auditing
- Hackbar
- JavaScript Deobfuscator
- RESTClient
- Tamper Data
- Live HTTP Headers
- RefControl
- User Agent Switcher
- Web Developer
- DOM Inspector
- Inspect This
- Formfox
- Exploit Me
- Cookies
+Proxy
- FoxyProxy Standard 2.22.6
- HttpFox
Gokul C Gopinath - Team Leader
Yashartha Chaturvedi - Project Manager
Gopu C Gopinath - Design Head
Matriux OS
ClubHack 2010
ClubHack Magazine
Mantra official page
Mantra at Sourceforge.net
Mantra at Google Code
Free and open source software
Free and open-source software or free/libre/open-source software is software that is liberally licensed to grant users the right to use, study, change, and improve its design through the availability of its source code...
security toolkit with a collection of hacking tools, add-ons and scripts based on Firefox intended for penetration test
Penetration test
A penetration test, occasionally pentest, is a method of evaluating the security of a computer system or network by simulating an attack from malicious outsiders and malicious insiders...
ers, web application developers and security professionals etc.
Purpose
The intention behind developing Mantra was to provide security professionals a platform for manual web application penetration testing environment by utilizing the power of open source software specially the lesser known add-ons by using day to day updated large number of exploit that don't use to be easy to include in any automated vulnerability scanner.Platform Supported
Mantra is cross platform and flexible allows freedom to be used on Microsoft WindowsMicrosoft Windows
Microsoft Windows is a series of operating systems produced by Microsoft.Microsoft introduced an operating environment named Windows on November 20, 1985 as an add-on to MS-DOS in response to the growing interest in graphical user interfaces . Microsoft Windows came to dominate the world's personal...
, Linux
Linux
Linux is a Unix-like computer operating system assembled under the model of free and open source software development and distribution. The defining component of any Linux system is the Linux kernel, an operating system kernel first released October 5, 1991 by Linus Torvalds...
or in Macintosh
Macintosh
The Macintosh , or Mac, is a series of several lines of personal computers designed, developed, and marketed by Apple Inc. The first Macintosh was introduced by Apple's then-chairman Steve Jobs on January 24, 1984; it was the first commercially successful personal computer to feature a mouse and a...
.
History
Seeing the significance for such a toolkit for penetration testing and vulnerability assessment, Abhi M Balakrishnan initialised the project in October 2010 with Gokul C Gopinath.It became listed as an OWASPOWASP
The Open Web Application Security Project is an open-source application security project. The OWASP community includes corporations, educational organizations, and individuals from around the world. This community works to create freely-available articles, methodologies, documentation, tools, and...
project in March 2011 and included in BackTrack
BackTrack
BackTrack is an operating system based on the Ubuntu GNU/Linux distribution aimed at digital forensics and penetration testing use. It is named after backtracking, a search algorithm...
5 Linux security distribution in May 2011 soon after its first public beta 0.52 ClubHack release in December 2010. On 15 June 2011 FireCat officially integrated with Mantra. Matriux
Matriux
Matriux is a GNU/Linux Ubuntu/Debian based Security Distribution designed for Penetration Testing and Cyber Forensic investigations,can be used as a Live DVD It allows the user to include customizable scripts, additional tools and configurable kernels in personalized distributions.The Matriux...
Krypton released it as part of their Arsenal on 15 August 2011.
Team Mantra have released a pre-alpha version of MoC that is based on Google Chrome
Google Chrome
Google Chrome is a web browser developed by Google that uses the WebKit layout engine. It was first released as a beta version for Microsoft Windows on September 2, 2008, and the public stable release was on December 11, 2008. The name is derived from the graphical user interface frame, or...
on the 2nd day of September 2011
Tools
+Information Gathering- Whois
- Location Info
- Enumeration and Fingerprint
- Data Mining
+Editors
- Cert Viewer Plus
- Firebug
- JSView
+Network Utilities
- Protocols and applications
- Sniffers
- Password
+Miscellaneous
- Tweaks and Hacks
- Malware scanner
- Automation
- Others
+Application Auditing
- Hackbar
- JavaScript Deobfuscator
- RESTClient
- Tamper Data
- Live HTTP Headers
- RefControl
- User Agent Switcher
- Web Developer
- DOM Inspector
- Inspect This
- Formfox
- Exploit Me
- Cookies
+Proxy
- FoxyProxy Standard 2.22.6
- HttpFox
Team
Abhi M Balakrishnan - Project LeaderGokul C Gopinath - Team Leader
Yashartha Chaturvedi - Project Manager
Gopu C Gopinath - Design Head
See also
BackTrack 5Matriux OS
ClubHack 2010
ClubHack Magazine
External links
Download OWASP Mantra Security FrameworkMantra official page
Mantra at Sourceforge.net
Mantra at Google Code