Owasp mantra os
1 / 14

OWASP Mantra-OS - PowerPoint PPT Presentation

  • Uploaded on

OWASP Mantra-OS. Because the world is cruel. About Me. Attended United Stated Air Force Institute of Technology Defense Acquisition University Platform Security Engineer at. What is Mantra-OS?.

I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
Download Presentation

PowerPoint Slideshow about ' OWASP Mantra-OS' - ikia

An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.

- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
Owasp mantra os

  • Because the world is cruel

About me
About Me

  • Attended United Stated Air Force Institute of Technology

  • Defense Acquisition University

  • Platform Security Engineer at

What is mantra os
What is Mantra-OS?

  • Mantra-OS is a virtualized attack platform designed around Mantra Security toolkit and OWASP WTE repository.

What was mantra os developed for
What was Mantra-OS developed for?

  • SCAP testing and professional pen-testing environment optimized for virtual environments. Such as vSphere, XenDesketop, OpenStack, oVirt.

  • Installation media iso and deployable ovf/ova.

Mantra os hytrust
Mantra-OS & HyTrust

  • Mantra-OS was implemented into HyTrust QA cycle

  • It is used for SCAP testing and Vulnerability verification testing.

  • Is deployed through vCenter.

Mantra os virtualization and security kernel
Mantra-OS Virtualization and Security Kernel

  • GrSecurity Kernel patch and OpenVZ Kernel patch.

  • Ganeti for Virtual Cluster

  • KVM implementation as secondary layer of virtualization.

Mantra os containers and sandboxing
Mantra-OSContainers and Sandboxing

  • OpenVZ is used as container controller and lxc with arkose d-bus hook to sandbox desktop.

  • Libvirtd is used as a job handler for virtualization with glib hook.

Mantra os virtual core
Mantra-OSVirtual Core

Mantra os enhanced security
Mantra-OSEnhanced Security

  • IDS protection with suricata

  • Artillery and honeyd for IPS protection

  • Container based sandboxing

  • AppArmor, SElinux

Mantra os security audit tools
Mantra-OSSecurity Audit Tools

  • OWASP Zap

  • Burp

  • Maltego

  • Metasploit & Armitage

  • Zenmap

Mantra os packet capture
Mantra-OSPacket Capture

  • Ettercap

  • Wireshark

Mantra os web application scanners
Mantra-OSWeb Application Scanners

  • Skipfish

  • Nikto

  • Gruyere

Mantra os sql injection
Mantra-OSSQL Injection

  • Sqlbrute

  • Sqlmap

  • Sqlmap intergration with Zap

Mantra os intel collection
Mantra-OSIntel Collection

  • Maltego