Home>JSP source code>Other categories
Download

This is a list of Information Security resources and tools I've found useful at some time during my study of security and I hope that others will too.

This list is will be updated whenever I've found something awesome to add.

Contents

  • Recon
  • Web
  • Vulnerable Web Applications
  • Linux
  • Exploit Development
  • Cryptography
  • Privilege Escalation
  • Scripting
  • Courses
  • Labs
  • CTF
  • Wargames
  • OSCP
  • Penetration Testing
  • Binary Exploitation
  • Reverse Engineering
  • Malware Samples
  • Bug Bounty
  • Hacker Blogs
  • Controls

Recon

  • DNS Dumpster
  • SecLists
  • Sublist3r
  • Subfinder
  • Amass
  • httprobe
  • dirsearch
  • webscreenshot
  • cc.py
  • @ITSecurityguard Visual Recon Guide

Web

  • Web Application Hacker’s Handbook 2nd Edition
  • The Tangled Web
  • OWASP Top 10 - 2017
  • OWASP Top 10 - 2013
  • Portswigger Web Security Blog
  • detectify Web Security Blog
  • HTTP Status Codes
  • Dave Kukfa - Web Application Cheat Sheet

Vulnerable Web Applications

  • Damn Vulnerable Web Application (DVWA)
  • OWASP Mutillidae 2
  • OWASP WebGoat
  • Rapid7 Hackazon
  • Google Gruyere

Linux

  • Linux Journey

Exploit Development

  • Exploit Exercises
  • LiveOverflow - Binary Hacking Playlist

Cryptography

  • A Stick Figure Guide to AES
  • Cryptopals Challenges
  • The Manga Guide to Cryptography
  • Crypto 101

Privilege Escalation

  • g0tmi1k's Basic Linux Privilege Escalation
  • unix-privesc-check

Scripting

  • Shell Scripting Tutorial
  • Bash Academy

Courses

  • OSCP
  • Hacker101
  • Bugcrowd University
  • Cybrary
  • Pluralsight - Information and Cyber Security

Labs

  • PentesterLab
  • Hack The Box
  • AttackDefense Labs
  • VulnHub

CTF

  • Hacker101 CTF
  • PicoCTF
  • Google CTF
  • CTF Time

Wargames

  • OverTheWire
  • SmashTheStack
  • HackThisSite

OSCP

  • Jeremy Chisamore's Zero to OSCP in 292 Days
  • Tulpa Security - Prep Guide for Offsec's PWK

Penetration Testing

  • Penetration Testing - A Systematic Approach
  • The Red Team Field Manual (RTFM)
  • The Hacker Playbook
  • IppSec - Hack The Box Walkthrough Videos

Binary Exploitation

  • Pwnable.tw
  • Pwnable.kr
  • Exploit-Exercises

Reverse Engineering

  • malwareunicorn - How to start reverse engineering malware
  • malwareunicorn - RE101
  • Ophir Harpaz - Reverse Engineering for Beginners
  • Reversing.Kr

Malware Samples

  • VirusBay
  • contagio malware dump
  • VirusShare
  • Malware.lu
  • MalShare

Bug Bounty

  • Bug Bounty Forum
  • Bug Bounty World
  • Bug Bounty Notes
  • Pentester Land - List of bug bounty writeups
  • FireBounty
  • Improving your reports - Google Bughunter University
  • Facebook Bounty Hunter's Guide
  • Breaking into Information Security: Learning the Ropes 101
  • Web Hacking 101
  • jhaddix - The Bug Hunters Methodology

Hacker Blogs

  • zseano
  • Alyssa Herrera
  • Jonathan Bouman
  • LiveOverflow

Controls

  • SANS CIS Top 20
Expand
Additional Information
Related Applications
Recommended for You
Related Information All