Presentation is loading. Please wait.

Presentation is loading. Please wait.

OWASP Bricks. Web application security learning platform. Built with PHP and MySQL. Open source and free. ‘Break the Bricks’ and learn.

Published byMilton Douglas Modified over 8 years ago

Similar presentations

Presentation on theme: "OWASP Bricks. Web application security learning platform. Built with PHP and MySQL. Open source and free. ‘Break the Bricks’ and learn."— Presentation transcript:

1 OWASP Bricks

2 Web application security learning platform. Built with PHP and MySQL. Open source and free. ‘Break the Bricks’ and learn.

3 Why Bricks? Simple, clean and friendly. Almost all levels can be solved using Mantra. Code can be reused to build CTFs. Perfect for lab demos.

4 OWASP Mantra Browser for penetration testing. Cross platform. Great UI and ready to use. Perfect tool for manual web app security analysis. www.getmantra.com

5 OWASP ZAP Proxy for web application analysis. Cross platform. The best tool for manual/semi automated and automated web application security analysis. owasp.org/index.php/OWASP_Zed_Attack_Proxy_Proje ct

6 Login pages Comes with security issues Can be breached using Mantra

7 File upload pages Comes with security issues Can be breached using Mantra

8 Content pages Comes with security issues Can be breached using Mantra

9 Roadmap Maximum variations of common security issues Help people to learn the need of secure codding practices and SSDLC A test bed for analysing the performance of web application security scanners. Help people learn the manual method of testing the applications Demonstrate the possibilities of various security tools and techniques Become a platform to teach web application security in a class room/lab environment.

10 Be in touch https://www.owasp.org/index.php/OWASP_Bricks http://owaspbricks.blogspot.com/

Download ppt "OWASP Bricks. Web application security learning platform. Built with PHP and MySQL. Open source and free. ‘Break the Bricks’ and learn."

Similar presentations

The OWASP Foundation Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under.

The OWASP Foundation Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under.
Testing Web Applications. Applications Architecture Client Server Architecture.

Testing Web Applications. Applications Architecture Client Server Architecture.
Research Notes Tool Chuck Connell, Tufts Univ.. Tufts University Computer Science22 Two Research Problems References… Many types – books, articles, web.

Research Notes Tool Chuck Connell, Tufts Univ.. Tufts University Computer Science22 Two Research Problems References… Many types – books, articles, web.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
The OWASP Foundation Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under.

The OWASP Foundation Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under.
The OWASP Foundation AppSec DC Learning by Breaking A New Project for Insecure Web Apps Chuck Willis Technical Director MANDIANT

The OWASP Foundation AppSec DC Learning by Breaking A New Project for Insecure Web Apps Chuck Willis Technical Director MANDIANT
The OWASP Foundation Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under.

The OWASP Foundation Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under.
Static Analysis for Dynamic Assessments Greg Patton | September 2014.

Static Analysis for Dynamic Assessments Greg Patton | September 2014.
1 CS428 Web Engineering Lecture 18 Introduction (PHP - I)

1 CS428 Web Engineering Lecture 18 Introduction (PHP - I)
The iPlant Collaborative Community Cyberinfrastructure for Life Science Tools and Services Workshop Discovery Environment Overview.

The iPlant Collaborative Community Cyberinfrastructure for Life Science Tools and Services Workshop Discovery Environment Overview.
SYST 28043 Web Technologies SYST 28043 Web Technologies Installing a Web Server (XAMPP)

SYST Web Technologies SYST Web Technologies Installing a Web Server (XAMPP)
Security Scanning OWASP Education Nishi Kumar Computer based training

Security Scanning OWASP Education Nishi Kumar Computer based training
Office 365 Platform Flexible Tools App Manifest Web Page HTML/CSS/JS App.

Office 365 Platform Flexible Tools App Manifest Web Page HTML/CSS/JS App.
The complete resource tool online for the conference, meeting and event industry.

The complete resource tool online for the conference, meeting and event industry.
Board As An Instructional Tool. The SMARTboard allows you to: Navigate by touching the screen (pointer and keyboard tools) Write on the screen (pen tools)

Board As An Instructional Tool. The SMARTboard allows you to: Navigate by touching the screen (pointer and keyboard tools) Write on the screen (pen tools)
Introduction to Application Penetration Testing

Introduction to Application Penetration Testing
PhoneGap Development How to make an app using PhoneGap Build ? Presentation By MobilePundits.

PhoneGap Development How to make an app using PhoneGap Build ? Presentation By MobilePundits.
Joel Bapaga on Web Design Strategies Technologies Commercial Value.

Joel Bapaga on Web Design Strategies Technologies Commercial Value.
Mohan Kumar Puttasiddaiah

Mohan Kumar Puttasiddaiah
CPanel Introduction Todd S. Thuma. cPanel: What is it? Backend administration of web-based content Provides web site management tools through a web-based,

CPanel Introduction Todd S. Thuma. cPanel: What is it? Backend administration of web-based content Provides web site management tools through a web-based,

Similar presentations

Ads by Google