OWASP Bricks Web application security learning platform. Built with PHP and MySQL. Open source and free. ‘Break the Bricks’ and learn.
Why Bricks? Simple, clean and friendly. Almost all levels can be solved using Mantra. Code can be reused to build CTFs. Perfect for lab demos.
OWASP Mantra Browser for penetration testing. Cross platform. Great UI and ready to use. Perfect tool for manual web app security analysis. www.getmantra.com
OWASP ZAP Proxy for web application analysis. Cross platform. The best tool for manual/semi automated and automated web application security analysis. owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project
Login pages Comes with security issues Can be breached using Mantra Login pages
File upload pages Comes with security issues Can be breached using Mantra File upload pages
Content pages Comes with security issues Can be breached using Mantra Content pages
Roadmap Maximum variations of common security issues Help people to learn the need of secure codding practices and SSDLC A test bed for analysing the performance of web application security scanners. Help people learn the manual method of testing the applications Demonstrate the possibilities of various security tools and techniques Become a platform to teach web application security in a class room/lab environment.
Be in touch https://www.owasp.org/index.php/OWASP_Bricks http://owaspbricks.blogspot.com/