OWASP Bricks - 2.2 Tuivai release

The 13th public release of OWASP Bricks : OWASP Bricks - 2.2 Tuivai. This new release brings along a new challenge.

OWASP Bricks - 2.1 Mora release

The 12th public release of OWASP Bricks - OWASP Bricks - 2.1 Mora is here. This new release brings along a new challenge.

OWASP Bricks - 2.0 Dakatua release

The 11th public release of OWASP Bricks - OWASP Bricks - 2.0 Dakatua is here. This new release brings along a new challenge.

OWASP Bricks - 1.9 Barak release

The tenth public release of OWASP Bricks - OWASP Bricks - 1.9 Barak is here. This new release brings along a new challenge.

OWASP Bricks - 1.8 Atrai release

The ninth public release of OWASP Bricks - OWASP Bricks - 1.8 Atrai is here. This new release brings along new colors and a new challenge.

OWASP Bricks - 1.7 Phalgu release

The eighth public release of OWASP Bricks - OWASP Bricks - 1.7 Phalgu is releasing just a week after the previous release. The main reason behind a quick successive version to Raidak is to address a bug in the OWASP Bricks code which affected almost all GNU/Linux users. However, this release also comes up with a new challenge.

OWASP Bricks - 1.6 Raidak release

Almost three weeks after the Lachen release, here we are with a new challenge. This is the seventh public release of Bricks, OWASP Bricks 1.6, named Raidak.

OWASP Bricks 1.5 Lachen

Two week after the last release and here we are with a new challenge. This is the sixth public release of Bricks, OWASP Bricks 1.5, code named Lachen.

OWASP Bricks - How to solve log in page #3

Log in page #3, the 7th challenge, is vulnerable to SQL injection attacks and can be exploited easily.

OWASP Bricks 1.4 Punpun

It has been almost after the last release and it's time to present you with a new challenge. This is the fifth public release of Bricks, OWASP Bricks 1.4, code named Punpun.

OWASP Bricks - How to solve file upload page #2

OWASP Bricks 1.3 Torsa

We are proud to announce the immediate release of OWASP Bricks 1.3 Torsa. This is the fourth public release of Bricks. A new challenge has been added to the file upload pages section.

How to solve the first challenge: Log in page #1




How to install OWASP Bricks

Installing Bricks is easy. But, a having a helping hand is always nice.

Read how to get started
Read how to install Bricks

If you like videos better, then you can watch the following videos:

UWAMP on Windows:


Installing OWASP Bricks:





OWASP Bricks 1.0 - Narmada release

OWASP Bricks 1.0 - Narmada release

OWASP Bricks


We are proud to announce the first public release of OWASP Bricks. This is OWASP Bricks version 1.0 code named 'Narmada'. There are three sections: Log in pages, File upload pages and Content pages with one page each in the section. All the three pages have minimum or almost no security, thus making it very easy to break.

Download it right now and start exploring it.
Documentations are available both online and offline.

Are you ready to break the Bricks?



Ever wondered about what those web pages has to tell you? From the log in pages of your bank to simple web pages that fetches information from database and displays it back to you.

Ever wondered about the lives of web admins? From implementing big firewalls to making a security theater just to show a drama for the user.

Ever wondered about the ninjas who believe in making their own way if they can't find one? From the accidental break-in to the long-planned and executed break-through.



OWASP Bricks will be going through all the above. Covering the history and life cycles of web around us. Security myths and practices that went wrong in the long run. Bricks will re-create those cases and scenarios to see what happened. It's a wonderful coincidence that Bricks is launching in the week of Safe Internet Day 2013.