Bricks is a deliberately vulnerable web application built on PHP and MySQL. The project focuses on variations of commonly seen application security vulnerabilities and exploits. Each 'brick' has some sort of vulnerability which can be exploited using tools (Mantra and ZAP). The mission is to 'break the bricks' and thus learn the various aspects of web application security.
Demonstrate maximum variations of most common vulnerabilities
Help people to learn the need of secure codding practices and SSDLC
Attract people to design more bricks
Become a test bed for analyzing the performance of web application security scanners.
Help people learn the manual method of testing the applications
Demonstrate the possibilities of various security tools and techniques
Become a platform to teach web application security in a class room/lab environment.
PROJECT INFO What does this OWASP project offer you?
RELEASE(S) INFO What releases are available for this project?
is this project?
Name: OWASP Bricks (home page)
Purpose: Bricks, a deliberately vulnerable web application built on PHP & MySQL focuses on variations of commonly seen application security vulnerabilities & exploits, which can be exploited using tools (Mantra & ZAP). The mission is to 'break the bricks'.
License: Apache 2.0 License (fewest restrictions, even allowing proprietary modifications and proprietary forks of your project)