The 13th public release of OWASP Bricks : OWASP Bricks - 2.2 Tuivai. This new release brings along a new challenge.
OWASP Bricks - 2.1 Mora release
The 12th public release of OWASP Bricks - OWASP Bricks - 2.1 Mora is here. This new release brings along a new challenge.
OWASP Bricks - 2.0 Dakatua release
The 11th public release of OWASP Bricks - OWASP Bricks - 2.0 Dakatua is here. This new release brings along a new challenge.
OWASP Bricks - 1.9 Barak release
The tenth public release of OWASP Bricks - OWASP Bricks - 1.9 Barak is here. This new release brings along a new challenge.
OWASP Bricks - 1.8 Atrai release
The ninth public release of OWASP Bricks - OWASP Bricks - 1.8 Atrai is here. This new release brings along new colors and a new challenge.
OWASP Bricks - 1.7 Phalgu release
The eighth public release of OWASP Bricks - OWASP Bricks - 1.7 Phalgu is releasing just a week after the previous release. The main reason behind a quick successive version to Raidak is to address a bug in the OWASP Bricks code which affected almost all GNU/Linux users. However, this release also comes up with a new challenge.
OWASP Bricks - 1.6 Raidak release
Almost three weeks after the Lachen release, here we are with a new challenge. This is the seventh public release of Bricks, OWASP Bricks 1.6, named Raidak.
OWASP Bricks 1.5 Lachen
Two week after the last release and here we are with a new challenge. This is the sixth public release of Bricks, OWASP Bricks 1.5, code named Lachen.
OWASP Bricks - How to solve log in page #3
Log in page #3, the 7th challenge, is vulnerable to SQL injection attacks and can be exploited easily.
OWASP Bricks 1.4 Punpun
It has been almost after the last release and it's time to present you with a new challenge. This is the fifth public release of Bricks, OWASP Bricks 1.4, code named Punpun.
OWASP Bricks 1.3 Torsa
We are proud to announce the immediate release of OWASP Bricks 1.3 Torsa. This is the fourth public release of Bricks. A new challenge has been added to the file upload pages section.
Solving OWASP Bricks Challenge #3 using SQLMap and Havij
A post on RajHackingArticles about solving OWASP Bricks challenge #3 using SQLMap and Havij.
Read the article: hackingarticles.in/solving-owasp-bricks-challenge-3-using-sqlmap-and-havij/
Read the article: hackingarticles.in/solving-owasp-bricks-challenge-3-using-sqlmap-and-havij/
How to solve the second challenge: File upload page #1
Well, it was one the easy levels ever. Just upload any PHP shell and you are in.
Documentation are available on: sechow.com/bricks/docs/file-upload-1.html
How to solve the first challenge: Log in page #1
Solving the first challenge i.e. Login page #1 was pretty much easy as both user name field and password field are vulnerable to SQL injection attacks.
One method is try each and every SQL injection code from SQL injection sheet. However, the smartest way is to look at the executed command and try to balance the equation by cleverly putting appropriate strings.
You can see the documentation here.
How to install OWASP Bricks
Installing Bricks is easy. But, a having a helping hand is always nice.
Read how to get started
Read how to install Bricks
If you like videos better, then you can watch the following videos:
UWAMP on Windows:
Installing OWASP Bricks:
Read how to get started
Read how to install Bricks
If you like videos better, then you can watch the following videos:
UWAMP on Windows:
Installing OWASP Bricks:
OWASP Bricks 1.0 - Narmada release
OWASP Bricks 1.0 - Narmada release
We are proud to announce the first public release of OWASP Bricks. This is OWASP Bricks version 1.0 code named 'Narmada'. There are three sections: Log in pages, File upload pages and Content pages with one page each in the section. All the three pages have minimum or almost no security, thus making it very easy to break.
Download it right now and start exploring it.
Documentations are available both online and offline.
We are proud to announce the first public release of OWASP Bricks. This is OWASP Bricks version 1.0 code named 'Narmada'. There are three sections: Log in pages, File upload pages and Content pages with one page each in the section. All the three pages have minimum or almost no security, thus making it very easy to break.
Download it right now and start exploring it.
Documentations are available both online and offline.
Are you ready to break the Bricks?
Ever wondered about what those web pages has to tell you? From the log in pages of your bank to simple web pages that fetches information from database and displays it back to you.
Ever wondered about the lives of web admins? From implementing big firewalls to making a security theater just to show a drama for the user.
Ever wondered about the ninjas who believe in making their own way if they can't find one? From the accidental break-in to the long-planned and executed break-through.
OWASP Bricks will be going through all the above. Covering the history and life cycles of web around us. Security myths and practices that went wrong in the long run. Bricks will re-create those cases and scenarios to see what happened. It's a wonderful coincidence that Bricks is launching in the week of Safe Internet Day 2013.
Subscribe to:
Posts (Atom)