Pages

Sunday, 17 June 2012

Browser For Hackers- Mantra Browser OWASP


Browser For Hackers- Mantra Browser OWASP

 
The Browser named “Mantra” is A Collection Of Open Source Tools Binded with a Browser To Make The Work Of Penetration Testers,Web Developers,Scurity Proffesional easier..
Its Loaded with Many Tools to Make the work Of Web Developers a lot easier..
Moreover its Portable ..just Download the browser and you can carry it in your pen drive and run it On Any Computer…
Mantra can be used for both offensive security and defensive security related tasks which makes it incredible.
Mantra is available on Backtrack 5, you can get it by click on Applications–>Backtrack–>Vulnerability assessment–>Vulnerability scanner–>Mantra
It is a user friendly,portable and GUI framework, you can carry it on flash drives and CD/DVD. It is a cross operating system framework that can be run on windows, Linux and MAC as well. It is a open source project so it is available on free of cost.
 Download URL:

http://www.getmantra.com/download/index.html

Download the required Version for required browser like Chrome or Firefox. You can also download Artworks (themes) for Mantra Browser.

LIST OF ALL TOOLS

Tools

The Mantra is a powerful set of tools to make the attacker’s task easier. The beta version of Mantra Security Toolkit contains following tools built onto it. You can also always suggest any tools/ scripts that you would like see in the next release.
  • Access Me
  • Add N Edit Cookies+
  • Chickenfoot
  • CookieSwap
  • DOM inspector
  • Domain Details
  • Firebug
  • Firebug Autocompleter
  • Firecookie
  • FireFTP
  • Firesheep
  • FormBug
  • FoxyProxy
  • Google Site Indexer
  • Greasemonkey
  • Groundspeed
  • HackBar
  • Host Spy
  • HttpFox
  • iMacros
  • JavaScript Deobfuscator
  • JSview
  • Key Manager
  • Library Detector
  • Live HTTP Headers
  • PassiveRecon
  • Poster
  • RefControl
  • Refspoof
  • RESTClient
  • RESTTest
  • Resurrect Pages
  • Selenium IDE
  • SQL Inject ME
  • Tamper Data
  • URL Flipper
  • User Agent Switcher
  • Vitzo WHOIS
  • Wappalyzer
  • Web Developer
  • XSS Me
Screenshot of the tools:-

Information Gathering


Flagfox
Flagfox
Displays a flag icon indicating the current webserver’s physical location with many additional features.

JSView
JSView
Get straight access to scripts and stylesheets included in the current web page.

PassiveRecon
PassiveRecon
Perform passive discovery of target resources utilizing publicly available information.

Wappalyzer
Wappalyzer
Uncovers underlying technologies used on websites like CMS, e-commerce systems, JavaScript frameworks, analytics tools etc..

View Dependencies
View Dependencies
Shows you all the files which were loaded to show the current page.

Link Sidebar
Link Sidebar
View, search and test hyperlinks in a web page.

Editors


JSView
JSView
Get straight access to scripts and stylesheets included in the current web page. View the source code external stylesheets and javascripts

Firebug
Firebug
Edit, debug, and monitor CSS, HTML, and JavaScript live in any web page.

Network Utilities


FireFTP
FireFTP
FTP/SFTP Client which provides intuitive access to FTP/SFTP servers.

DNS Cache
DNS Cache
Allows you to disable and enable the DNS Cache of Firefox

SQLite Manager
SQLite Manager
Manage any SQLite database on your computer.

HTTP Fox
HTTP Fox
Monitors and analyzes all incoming and outgoing HTTP traffic between the browser and the web servers.

FireSSH
FireSSH
SSH Client

Misc


Greasemonkey
Greasemonkey
Customize the way webpages look and function. A userscript manager for Firefox

Greasefire
Greasefire
Automatically finds Greasemonkey scripts on Userscripts.org.

CacheToggle
CacheToggle
Disable and optionally clear the browser cache with the flick of a switch.

URL Flipper
URL Flipper
Easily increment or decrement a portion of a URL without having to manually edit the text in the Location Bar.

Event Spy
Event Spy
DOM Event spy addon. Lets you watch JavaScript events as they occur.

Stacked Inspector
Stacked Inspector
Switch DOM Inspector to an over/under vertical layout instead of the usual side-by-side panel layout.

Scriptish
Scriptish
The greatest user script engine on the Internet (a fork of Greasemonkey).

Session Manager
Session Manager
Session Manager saves and restores the state of all windows. It can also automatically save the state of open windows individually.

Scriptish
Fire Encrypter
Encrypt, decrypt and hashing functions utility.

Application Auditing


Hackbar<
Hackbar
Simple security audit / Penetration test tool.

RESTClient
RESTClient
Visit and test RESTful/WebDav services.

Tamper Data
Tamper Data
Use tamperdata to view and modify HTTP/HTTPS headers and post parameters.

Live HTTP Headers
Live HTTP Headers
View HTTP headers of a page and while browsing.

RefControl
RefControl
Control what gets sent as the HTTP Referer on a per-site basis.

User Agent Switcher
User Agent Switcher
Easily switch the user agent of a browser.

Web Developer
Web Developer
Various web developer tools on browser.

DOM Inspector
DOM Inspector 
Inspect and edit the live DOM of any web document or XUL application.

Inspect This
Inspect This
Inspect the current element with the DOM Inspector.

Form Fox
Form Fox
Displays the form action, the site to which the information you’ve entered is being sent.

SQL Inject Me
SQL Inject Me
Test for SQL injection vulnerabilities which can cause a lot of damage to a web application.

XSS Me
XSS Me
Test for XSS vulnerabilities which can cause a lot of damage to a web application.

Cookies Manager+
Cookies Manager+
View, edit and create cookies.

Firecookie
Firecookie
View and manage cookies

Autofill Forms
Autofill Forms
Autofill Forms enables you to fill out web forms with one click or a keyboard shortcut.

Cookie Monster
Cookie Monster
Cookie Monster provides proactive cookie management on a site or domain level basis, including 3rd party cookies.

Fireforce
Fireforce
Brute-force attacks on GET or POST forms

Groundspeed
Groundspeed
Groundspeed is an add-on that allows security testers to manipulate the application user interface to eliminate annoying limitations and client-side controls that interfere with the web application penetration tests.

Http Requester
Http Requester
A tool for easily making HTTP requests (GET/PUT/POST/DELETE), viewing the responses, and keeping a history of transactions.

Modify Headers
Modify Headers
Add, modify and filter the HTTP request headers sent to web servers. This addon is particularly useful for Mobile web development, HTTP testing and privacy.

Poster
Poster
A developer tool for interacting with web services and other web resources that lets you make HTTP requests, set the entity body, and content type.

Ref Spoof
Ref Spoof
Easy spoofing of the URL referer (referrer) featuring a toolbar

SeleniumExpertSeleniumIDE
SeleniumExpertSeleniumIDE
This plugin is my attempt to bring the wonderful world of inspections, tips, hints, fixes and refactoring to Selenese!

SeleniumIDE
SeleniumIDE
This plugin is my attempt to bring the wonderful world of inspections, tips, hints, fixes and refactoring to Selenese!

NoRedirect
NoRedirect
Take control of web page redirects for fun and profit.

Websecurify
Websecurify
Websecurify is a powerful, cross-platform web security testing technology designed from the ground up with simplicity in mind.

Ra.2
Ra.2
Blackbox DOM-based XSS Scanner

Proxy


HTTP Fox
Monitors and analyzes all incoming and outgoing HTTP traffic between the browser and the web servers.

FoxyProxy
Advanced proxy management tool.

Proxy Tool
Powerful, yet User-friendly proxy tool to manage your proxies and anonymity needs, including: 46M+ user agents (world’s largest), 10 different spoofed HTTP referrers, auto-proxy rotation, plus many more.
And Many Many More Tools……

.::ScreenShots ::.

mantra
mantra1
mantra2
mantra3
mantra4
mantra5
mantra6
Watch The videos below for a better understanding:
Another awesome video…

0 comments:

Post a Comment