OWASP Bricks - Web Application Security Learning Platform

Slide Note
Embed
Share

OWASP Bricks is a web application security learning platform built with PHP and MySQL. It offers a simple, clean, and friendly interface where users can break the bricks and learn security concepts. The platform is open source, free to use, and almost all levels can be solved using the OWASP Mantra tool. It's perfect for lab demos and can be reused to build Capture The Flag challenges. Additionally, it provides a roadmap for understanding common security issues and serves as a test bed for analyzing web application security scanners.

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. Download presentation by click this link. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

aleia
aleia Follow

Uploaded on Mar 08, 2024 | 0 Views

Presentation Transcript

  1. OWASP Bricks

  2. OWASP Bricks Web application security learning platform. Built with PHP and MySQL. Open source and free. Break the Bricks and learn.

  3. Why Bricks? Simple, clean and friendly. Almost all levels can be solved using Mantra. Code can be reused to build CTFs. Perfect for lab demos.

  4. OWASP Mantra Browser for penetration testing. Cross platform. Great UI and ready to use. Perfect tool for manual web app security analysis. www.getmantra.com

  5. OWASP ZAP Proxy for web application analysis. Cross platform. The best tool for manual/semi automated and automated web application security analysis. owasp.org/index.php/OWASP_Zed_Attack_Proxy_Project

  6. Login pages Comes with security issues Can be breached using Mantra Login pages

  7. File upload pages Comes with security issues Can be breached using Mantra File upload pages

  8. Content pages Comes with security issues Can be breached using Mantra Content pages

  9. Roadmap Maximum variations of common security issues Help people to learn the need of secure codding practices and SSDLC A test bed for analysing the performance of web application security scanners. Help people learn the manual method of testing the applications Demonstrate the possibilities of various security tools and techniques Become a platform to teach web application security in a class room/lab environment.

  10. Be in touch https://www.owasp.org/index.php/OWASP_Bricks http://owaspbricks.blogspot.com/

Related


Exploring OWASP: A Comprehensive Look at Application Security and Tools

Exploring OWASP: A Comprehensive Look at Application Security and Tools

kaiya
Sand-Lime Bricks: Advantages, Disadvantages & Applications

Sand-Lime Bricks: Advantages, Disadvantages & Applications

pippi
Modern Threat Modeling & Cloud Systems in OWASP Sacramento

Modern Threat Modeling & Cloud Systems in OWASP Sacramento

maven
Mobile Device and Platform Security in Spring 2017: Lecture Highlights

Mobile Device and Platform Security in Spring 2017: Lecture Highlights

jeremias
I02: Interactive Online Learning Environment

I02: Interactive Online Learning Environment

milla
Understanding the Role of Security Champions in Organizations

Understanding the Role of Security Champions in Organizations

irvin
National eVidhan Application

National eVidhan Application

keir
BCA 601(N): Computer Network Security

BCA 601(N): Computer Network Security

danna
BYOD Learning Platform for Flexible Education

BYOD Learning Platform for Flexible Education

nikodem
Understanding Amazon EC2: Elastic Compute Cloud Fundamentals

Understanding Amazon EC2: Elastic Compute Cloud Fundamentals

danae
Introduction to Web and HTTP Protocols in Data Communication Networks

Introduction to Web and HTTP Protocols in Data Communication Networks

luan
Enhancing Security Definitions for Functional Encryption

Enhancing Security Definitions for Functional Encryption

kalila
International Approaches to Enhance Nuclear Safety and Security

International Approaches to Enhance Nuclear Safety and Security

mazarine
UEKat Online Application System for Exchange Students: Step by Step Guide

UEKat Online Application System for Exchange Students: Step by Step Guide

snow
Modernizing Personnel Security Vetting for National Intelligence and Security

Modernizing Personnel Security Vetting for National Intelligence and Security

darius
CAMPUS SECURITY AUTHORITY (CSA) TRAINING CAMPUS SECURITY AUTHORITY (CSA) TRAINING

CAMPUS SECURITY AUTHORITY (CSA) TRAINING CAMPUS SECURITY AUTHORITY (CSA) TRAINING

croix
Cyber Security Toolkit for Boards: Comprehensive Briefings and Key Questions

Cyber Security Toolkit for Boards: Comprehensive Briefings and Key Questions

adalwolf
Migrant Education Program 2024-25 Online Application Training Overview

Migrant Education Program 2024-25 Online Application Training Overview

aida
Phriendly Phishing Training Solutions Overview

Phriendly Phishing Training Solutions Overview

damien
Python-Based Model for SQL Injection and Web Application Security

Python-Based Model for SQL Injection and Web Application Security

rebel
On the Job Website for Teachers, Parents & Students - Interactive Learning Platform

On the Job Website for Teachers, Parents & Students - Interactive Learning Platform

zhuri
National Digital Platform for Agriculture Extension

National Digital Platform for Agriculture Extension

abdullah
Pentesting with PowerShell by Rajganesh Pandurangan

Pentesting with PowerShell by Rajganesh Pandurangan

gus
Comprehensive Guide to UCAS Application Process

Comprehensive Guide to UCAS Application Process

kamden

More Related Content

Family Learning: Empowering Scotland's Learners Through Intergenerational Education
Family Learning: Empowering Scotland's Learners Through Intergenerational Education
Understanding Learning Disabilities: A Comprehensive Guide
Understanding Learning Disabilities: A Comprehensive Guide
Understanding Learning Disabilities and Supporting Individuals in Sheffield
Understanding Learning Disabilities and Supporting Individuals in Sheffield
Understanding Data Governance and Security in Higher Education Institutions
Understanding Data Governance and Security in Higher Education Institutions
Addressing Contemporary Challenges in Research Security Program Development
Addressing Contemporary Challenges in Research Security Program Development
Understanding Malicious Attacks, Threats, and Vulnerabilities in IT Security
Understanding Malicious Attacks, Threats, and Vulnerabilities in IT Security
Comprehensive IT & Security Solutions for Home and Business Needs
Comprehensive IT & Security Solutions for Home and Business Needs
Organizational Structure Overview of HSE and Security Functions
Organizational Structure Overview of HSE and Security Functions
Information Security and Machine-Level Security Concepts
Information Security and Machine-Level Security Concepts
Private Security Training: Law, Regulations, and Civil Liability
Private Security Training: Law, Regulations, and Civil Liability
2022 Thales Access Management Index
2022 Thales Access Management Index
Impact of Post-Harvest Equipment in Senegal on Rural Food Security
Impact of Post-Harvest Equipment in Senegal on Rural Food Security
Pre-Med Program Overview and Application Timelines
Pre-Med Program Overview and Application Timelines
Understanding Modern Phishing Techniques and Evilginx Framework
Understanding Modern Phishing Techniques and Evilginx Framework
DeepMainMast Tutorial: Protein Structure Modeling on Web Server and Google Colab
DeepMainMast Tutorial: Protein Structure Modeling on Web Server and Google Colab
Understanding CSS in Amity School of Engineering & Technology
Understanding CSS in Amity School of Engineering & Technology
Understanding Moodle: An Overview of the E-Learning Platform
Understanding Moodle: An Overview of the E-Learning Platform
Climbing to the Top of the Test Pyramid with Playwright
Climbing to the Top of the Test Pyramid with Playwright
21st Century Community Learning Centers Cohort 15 Overview
21st Century Community Learning Centers Cohort 15 Overview
Implementing National Security Education in the Junior Secondary English Language Curriculum
Implementing National Security Education in the Junior Secondary English Language Curriculum
Artificial Intelligence in Cyber Security: Enhancing Threat Detection and Response
Artificial Intelligence in Cyber Security: Enhancing Threat Detection and Response
MySaskHealthRecord Overview and Governance Details
MySaskHealthRecord Overview and Governance Details
Managing Power Platform Risk with an Environment Strategy by Frank Shink, Senior Power Platform Design Engineer at Ameriprise Financial
Managing Power Platform Risk with an Environment Strategy by Frank Shink, Senior Power Platform Design Engineer at Ameriprise Financial
AFRIS Collaborative Platform Quick Start Guide
AFRIS Collaborative Platform Quick Start Guide