We had spoken about our three best liveCD’s here. There are a lot of discussions involving 10 best LiveCD’s et all. But, few make a mention of the OWASP LiveCD.
The livecd has had three releases as of now, all in a span of two years; since 2007. The latest version was released in Feb 2009 this year.
The Open Web Application Security Project (OWASP) is a worldwide free and open community focused on improving the security of application software. One of the project goals of this project is to provide the best, freely distributable application security tools in an easy to use package. This and coupling it with an alignment to the OWASP Testing guide, the project seems promising and worth trying out. As of now, the livecd does not have many applications like the BackTrack. It has only 26 applications. The list is as follows:
1 OWASP WebScarab
2 OWASP WebGoat
3 OWASP CAL9000
4 OWASP JBroFuzz
5 Paros Proxy
6 nmap & Zenmap
7 Wireshark
8 tcpdump
9 Firefox 3
10 Burp Suite
11 Grenedel-Scan
12 OWASP DirBuster
13 OWASP SQLiX
14 OWASP WSFuzzer
15 Metasploit 3
16 w3af & GTK GUI for w3af
17 Netcats collection
18 OWASP Wapiti
19 Nikto
20 Fierce Domain Scaner
21 Maltego CE
22 Httprint
23 SQLBrute
24 Spike Proxy
25 Rat Proxy
26 Webshag
Most of the OWASP applications have been included in the livecd. But, considering the other objective of this project that this project should be focused on just web application testing – not general Pen Testing, these many applications and a few more would do great.
You can download the livecd and its variants from here.
Related External Links
- » Hive Five Winner for Best Live CD: Backtrack [Hive Five Followup …
- BackTrack 4.0 Download :: | :: Mogi on BlogMood.2
- Working Session on SAMM at OWASP EU Summit | OpenSAMM
- OWASP Software Assurance Day Infosec Conference Event …
- SAMM Presentation at OWASP NYC 2008 | OpenSAMM
- Top Tools For Penetration Testing (Security Analysis/Hacking …
owasp live cd 2010, OWASP Live CD Project, owasp sqlix tuto
Comments on this entry are closed.