Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and...

19
Mantra Security Framework Free and Open Source Browser based Security Framework

Transcript of Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and...

Page 1: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

Mantra – Security Framework

Free and Open Source Browser based Security Framework

Page 2: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

Netscape Navigator

1994-1995

Internet Explorer

Microsoft came up with IE

Then it was time of Opera

Even though it was paid software at that time

Then Firefox came

With lots of bells and whistles

Google ChromeGoogle’s own web browser

Page 3: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

Mantra

Hack3r’s browser.!!!

Page 4: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

W5HWhat, Where, When, Why, Who and How

Page 5: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

What?

• What is Mantra?

• What is the use?

• What Mantra is NOT?

Page 6: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

What is Mantra ?

• Collection of hacking tools / add-ons

Page 7: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

What is Mantra ?

• A security framework that can aid in exploit development

– Security toolkit as of now

• Its built on top of browser

Page 8: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

What is Mantra ?

• Cross platform and flexible

• Free as in “Free Beer” and “Free Speech”

• Open Source

Page 9: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

What is the use?

• All the five phases of attacks

– Reconnaissance

– Scanning and enumeration

– Gaining access

– Escalation of privileges

– Maintaining access and

– Covering tracks

Page 10: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

What Mantra is NOT?

• Not a one click Pwnage tool

• Not mature enough to suit a particular need

– Don’t uninstall your Metasploit and W3af

• Not a replacement for your normal browser

• Not completely integrated

Page 11: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

Why Mantra?

• Plenty of extensions available officially and un-officially

• Analyzing each and every extension is tedious task

• Many extensions going unnoticed

• Security researchers should know the power of browser platform

Page 12: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

When you will be needing Mantra?

• TIME

– Life is all about timing

Page 13: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

Where?

• Where you can find it– Website

• getmantra.com

• owasp.org/index.php/OWASP_Mantra_-_Security_Framework

• code.google.com/p/getmantra

• sourceforge.net/projects/getmantra/

– Forums• getmantra.com/forums/

– Social Network• twitter.com/getmantra

• facebook.com/getmantra

Page 14: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

Who all needs it?

• If you are into

– Auditing

– Penetration testing

– Vulnerability Assessment

– Training

Page 15: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

Who all needs it?

• If you are a

– Black Hat

– White Hat and/or

– Grey Hat

Page 16: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

Who all are behind it?

• Core Team

– Sheeba V Sudevan

– Shahin R Krishna

– Gokul C Gopinath

– Abhi M Balakrishnan

– Yashartha Chaturvedi

• Testers

– HackIT Team

Page 17: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

How I can contribute?

• Become part of the community

• Code | Modify --> Extensions | Framework

• Design

– Themes

– Artworks

Page 18: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

How it works, looks ?

• Let me show you a demo

http://clubhack.blip.tv/file/4782270/http://clubhack.blip.tv/file/4782285/

http://clubhack.blip.tv/file/4782289/

http://clubhack.blip.tv/file/4782270/
http://clubhack.blip.tv/file/4782270/
Page 19: Mantra Security Framework - OWASP · Why Mantra? •Plenty of extensions available officially and un-officially •Analyzing each and every extension is tedious task •Many extensions

THANK YOU.!!!So long and thanks for all the attention

Team MantraMail : [email protected]


Shakti as Mantra, The Power of Mantra Sounds

Shakti as Mantra, The Power of Mantra Sounds

MANTRA REGISTERED DEVICE SERVICE - Mantra …download.mantratecapp.com/StaticDownload/Mantra_RD...MANTRA REGISTERED DEVICE SERVICE MANTRA REGISTERED DEVICE SERVICE API 1.0 2 TABLE

MANTRA REGISTERED DEVICE SERVICE - Mantra …download.mantratecapp.com/StaticDownload/Mantra_RD...MANTRA REGISTERED DEVICE SERVICE MANTRA REGISTERED DEVICE SERVICE API 1.0 2 TABLE

Mantra Namgyalma

Mantra Namgyalma

Mantra Globus

Mantra Globus

Report Abroad Will I go abroad? A30 - Astrovidyaastrovidya.com/a30.pdf · GRAHA MANTRA S WITH MP3: ... Mantra s for Kuja Mantra s for Budha Mantra s for Guru Mantra s for Sukra Mantra

Report Abroad Will I go abroad? A30 - Astrovidyaastrovidya.com/a30.pdf · GRAHA MANTRA S WITH MP3: ... Mantra s for Kuja Mantra s for Budha Mantra s for Guru Mantra s for Sukra Mantra

Mantra Shakti

Mantra Shakti

Success Mantra

Success Mantra

Gyatri Mantra

Gyatri Mantra

Stone Restaurant & Bar, Mantra South ank Cook & Co, Mantra ... · • Tea lights, bon bons and Christmas table decorations. Stone Restaurant & Bar, Mantra South Bank Cook & Co, Mantra

Stone Restaurant & Bar, Mantra South ank Cook & Co, Mantra ... · • Tea lights, bon bons and Christmas table decorations. Stone Restaurant & Bar, Mantra South Bank Cook & Co, Mantra

Mantra Motion

Mantra Motion

Adrenal-ReCode-MantrasJUST BREATHE -Recode Mantra DIP WITHOUT DIVING -Recode Mantra EVOLVE OR REPEAT -Recode Mantra CORRECT & CONTINUE -Recode Mantra CONSISTENCY IS A JEWELPREP & PLAN

Adrenal-ReCode-MantrasJUST BREATHE -Recode Mantra DIP WITHOUT DIVING -Recode Mantra EVOLVE OR REPEAT -Recode Mantra CORRECT & CONTINUE -Recode Mantra CONSISTENCY IS A JEWELPREP & PLAN

Shlokas Mantra

Shlokas Mantra

Living Mantra: Mantra, Deity, and Visionary Experience Today

Living Mantra: Mantra, Deity, and Visionary Experience Today

Mantra Senses by Mantra Properties at Handewadi in Pune - 888829222

Mantra Senses by Mantra Properties at Handewadi in Pune - 888829222

Mantra Brouchre 22.09.2014 Final - The Times Group · MANTRA-1&2 LOCATION MAP MAHAGUN MANTRA-2 Pvt. MANTRA-I Pronlnlels PW. L 1.1. 44.4TH , - Mobile: mantra@mažlagunindžxcom e at

Mantra Brouchre 22.09.2014 Final - The Times Group · MANTRA-1&2 LOCATION MAP MAHAGUN MANTRA-2 Pvt. MANTRA-I Pronlnlels PW. L 1.1. 44.4TH , - Mobile: mantra@mažlagunindžxcom e at

Navagraha Mantra

Navagraha Mantra

Mantra Siddha Kavach - Yolagk.yolasite.com/resources/GURUTVA KARYALAY Mantra Siddha...Mantra Siddha Kavach Our Mantra Siddha Kawach prepared in Auspicious Muhurat (Shubh Mahurat) and

Mantra Siddha Kavach - Yolagk.yolasite.com/resources/GURUTVA KARYALAY Mantra Siddha...Mantra Siddha Kavach Our Mantra Siddha Kawach prepared in Auspicious Muhurat (Shubh Mahurat) and

Mantra insignia by Mantra Properties in Keshav Nagar Pune

Mantra insignia by Mantra Properties in Keshav Nagar Pune

Mantra Pushpam.pdf

Mantra Pushpam.pdf

Ganesh Mantra

Ganesh Mantra