Kabylzhan Ainur Tuleubay Zhaniya What is OWASP?

Скачать презентацию Kabylzhan Ainur Tuleubay Zhaniya  What is OWASP? Скачать презентацию Kabylzhan Ainur Tuleubay Zhaniya What is OWASP?

presentation-mantra_-_security_framework.ppt

  • Размер: 2.7 Mегабайта
  • Количество слайдов: 25

Описание презентации Kabylzhan Ainur Tuleubay Zhaniya What is OWASP? по слайдам

Kabylzhan Ainur Tuleubay Zhaniya Kabylzhan Ainur Tuleubay Zhaniya

What is OWASP? The OWASP Foundaton came online on December 1 st 2001. OWASP is anWhat is OWASP? The OWASP Foundaton came online on December 1 st 2001. OWASP is an internatonal organizaton and the OWASP Foundaton supports OWASP efforts around the world. OWASP is an open community dedicated to enabling organizatons to conceive, develop, acquire, operate, and maintain applicatons that can be trusted. All of the OWASP tools, documents, forums, and chapters are free and open to anyone interested in improving applicaton security.

Internet Explorer Microsoft came up with IENetscape Navigator 1994 -1995 Internet Explorer Microsoft came up with IENetscape Navigator 1994 —

Then it was time of Opera Even though it was paid software at that tme ThenThen it was time of Opera Even though it was paid software at that tme Then Firefox came With lots of bells and whistles

Google Chrome Google’s own web browser Mantra Hack 3 r’s browser. !!! Google Chrome Google’s own web browser Mantra Hack 3 r’s browser. !!!

W 5 H What , Where, When, Why, Who and How WHAT? What is Mantra? WhatW 5 H What , Where, When, Why, Who and How WHAT? What is Mantra? What is the use? What Mantra is NOT?

What is Mantra ?  • Free and Open Source Browser based Security Framework • CollectonWhat is Mantra ? • Free and Open Source Browser based Security Framework • Collecton of hacking tools / add-ons

What is Mantra ?  • A security framework that can aid in exploit development –What is Mantra ? • A security framework that can aid in exploit development – Security toolkit as of now

What is Mantra ?  • Its built on top of browser  • Cross platformWhat is Mantra ? • Its built on top of browser • Cross platform and flexible • Can work with other software like ZAP using built in proxy management functon which makes it much more convenient.

What is Mantra ?  • Free as in “Free Beer” and “Free Speech”  •What is Mantra ? • Free as in “Free Beer” and “Free Speech” • Open Source • Supports Windows, Linux(both 32 and 64 bit) and Macintosh. • Available in 9 languages: Arabic, Chinese — Simplified, Chinese — Traditonal, English, French, Portuguese, Russian, Spanish and Turkish

What is the use?  • All the five phases of attacks – Reconnaissance – ScanningWhat is the use? • All the five phases of attacks – Reconnaissance – Scanning and enumeraton – Gaining access – Escalaton of privileges – Maintaining access and – Covering tracks

What Mantra is NOT?  • Not a one click Pwnage tool • Not mature enoughWhat Mantra is NOT? • Not a one click Pwnage tool • Not mature enough to suit a partcular need – Don’t uninstall your Metasploit and W 3 af • Not a replacement for your normal browser • Not completely integrated

W 5 HWhat, Where, When,  Why , Who and How Why Mantra?  • PlentyW 5 HWhat, Where, When, Why , Who and How Why Mantra? • Plenty of extensions available officially and un-officially • Analyzing each and every extension is tedious task • Many extensions going unnoticed • Security researchers should know the power of browser platform

W 5 HWhat, Where,  When , Why, Who and How When you will be needingW 5 HWhat, Where, When , Why, Who and How When you will be needing Mantra? TIME • Life is all about tming

 • Where you can find it – Website • getmantra. com • owasp. org/index. php/OWASP_Mantra_-_Security_Framewo • Where you can find it – Website • getmantra. com • owasp. org/index. php/OWASP_Mantra_-_Security_Framewo rk • code. google. com/p/getmantra • sourceforge. net/projects/getmantra/ – Forums • getmantra. com/forums/ – Social Network • twitter. com/getmantra • facebook. com/getmantra W 5 H • What, Where , When, Why, Who and How

 • Who all needs it?  • Who all are behind it? W 5 H • Who all needs it? • Who all are behind it? W 5 H • What, Where, When, Why, Who and How

Who all needs it?  • If you are into – Auditng – Penetraton testng –Who all needs it? • If you are into – Auditng – Penetraton testng – Vulnerability Assessment – Training

Who all needs it?  • If you are a – Black Hat – White HatWho all needs it? • If you are a – Black Hat – White Hat and/or – Grey Hat

Who all are behind it?  • Core Team – Sheeba V Sudevan – Shahin RWho all are behind it? • Core Team – Sheeba V Sudevan – Shahin R Krishna – Gokul C Gopinath – Abhi M Balakrishnan – Yashartha Chaturvedi • Testers – Hack. IT Team

 • How I can contribute • How it works, look etc. W 5 HWhat, Where, • How I can contribute • How it works, look etc. W 5 HWhat, Where, When, Why, Who and How

How I can contribute?  • Become part of the community • Code | Modify --How I can contribute? • Become part of the community • Code | Modify —> Extensions | Framework • Design – Themes – Artworks

How it works, looks ?  • Let me show you a demo   http:How it works, looks ? • Let me show you a demo http: //clubhack. blip. tv/file/4782270/ http: //clubhack. blip. tv/file/4782285/ http: //clubhack. blip. tv/file/4782289 /

THANK YOU!!! THANK YOU!!!