- OSCP Goldmine not clickbait | 0xc0ffee☕
- Beej's Guide to Network Programming
- ctfs.me - Registered at Namecheap.com
- A JavaScript Decompressor and deobfuscator
- FruityWiFi
- The Linux Command Line by William Shotts
- Reverse Shell Cheat Sheet | pentestmonkey
- External tutorials and articles -- hping network security tool
- cisco Ccent Exam Cram Study Guide
- Your first Curl scripts: curl_init , curl_setopt , curl_exec , curl_close Hacking with PHP - Practical PHP
- OllyDbg v1.10
- Statnet
- arsenal for the elite
- 247/CTF - The game never stops
- AntiScan.Me | Online Virus Scanner Without Result Distribution
- comp3321 NSA Python Training Document : NSA : Free Download, Borrow, and Streaming : Internet Archive
- Hal Pomeranz Linux Forensics Intro : Hal Pomeranz : Free Download, Borrow, and Streaming : Internet Archive
- Black Hat Python, Python Programming for Hackers.pdf PDFy mirror : Free Download, Borrow, and Streaming : Internet Archive
- The Web Application Hackers Handbook 2nd Edition : Dafydd Stuttard, Marcus Pinto : Free Download, Borrow, and Streaming : Internet Archive
- How I used Python to buy an out of stock Costco stand mixer and be a good boyfriend
- MITRE ATT&CK®
- Online JavaScript beautifier
- Introduction · Pwning OWASP Juice Shop
- Pwndrop - Self-hosting Your Red Team Payloads
- Build Your Own Botnet
- Hacking/OSCP cheatsheet :: Ceso Adventures
- Cheat Engine
- CS6038/CS5138 Malware Analysis, UC by ckane
- NSA Codebreaker Challenge
- CS106A Code in Place
- Code in Place Application
- KoreLogic John the Ripper Rules
- CS 225 | Lectures
- CrackStation - Online Password Hash Cracking - MD5, SHA1, Linux, Rainbow Tables, etc.
- SP 800-171 Rev. 1, Protecting CUI in Nonfederal Systems and Organizations | CSRC
- CTFtime.org / All about CTF Capture The Flag
- CVE Reference Map for Source - Microsoft Security Bulletin
- CVE - Common Vulnerabilities and Exposures CVE
- SANS Cyber Defense Whitepapers
- NetSecFocus Trophy Room - Google Sheets
- NetSecFocus Trophy Room - Google Sheets
- HackList by noobsec - Google Sheets
- google ctf at DuckDuckGo
- Duck ToolKit
- Exporting Nessus Results into a Database
- CentOS - Wikipedia
- Zabbix - Wikipedia
- ExifTool by Phil Harvey
- File Transfer Cheatsheet
2.
- Frida A world-class dynamic instrumentation framework
- Complete Web Application Pentesting Tools for Security Professonals 2019
- CyberChef
- Red Team Books · GitHub
- Git
- Git - Book
- GitHub - 0xd4d/dnSpy: .NET debugger and assembly editor
- GitHub - abhisharma404/vault_scanner: swiss army knife for hackers
- GitHub - aboul3la/Sublist3r: Fast subdomains enumeration tool for penetration testers
- GitHub - alandau/arpspoof: A simple ARP spoofer for Windows
- GitHub - alexxy/netdiscover: netdiscover
- GitHub - AonCyberLabs/Windows-Exploit-Suggester: This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.
- GitHub - BishopFox/bfdecrypt: Utility to decrypt App Store apps on jailbroken iOS 11.x
- GitHub - BishopFox/sliver: Implant framework
- GitHub - bitsadmin/wesng: Windows Exploit Suggester - Next Generation
- "GitHub - bkimminich/pwning-juice-shop: GitBook markdown content for the eBook ""Pwning OWASP Juice Shop"""
- GitHub - bluscreenofjeff/Red-Team-Infrastructure-Wiki: Wiki to collect Red Team infrastructure hardening resources
- GitHub - brimsec/brim: Desktop application to efficiently search large packet captures and Zeek logs.
- GitHub - caesar0301/awesome-pcaptools: A collection of tools developed by other researchers in the Computer Science area to process network traces. All the right reserved for the original authors.
- GitHub - cinerieus/as3nt: Another Subdomain ENumeration Tool
- GitHub - Ciphey/Ciphey: ⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
- GitHub - clarketm/proxy-list: A list of free, public, forward proxy servers. UPDATED DAILY!
- GitHub - CountablyInfinite/oscp_cheatsheet: Commands, snippets, exploits, tools, lists, collections and techniques I used on my journey to becoming an OSCP.
- GitHub - Cr0wTom/OSCP-PWK-Repo: The stuff I gathered during my time at the PWK labs and my OSCP exam.
- OSCP-Archives/README.md at master · CyDefUnicorn/OSCP-Archives · GitHub
- GitHub - cytopia/pwncat: pwncat - netcat on steroids with Firewall, IDS/IPS evasion, bind and reverse shell, self-injecting shell and port forwarding magic - and its fully scriptable with Python PSE
- GitHub - d1vious/git-wild-hunt: A tool to hunt for credentials in github wild AKA git*hunt
- SecLists/Passwords at master · danielmiessler/SecLists · GitHub
- GitHub - DarkSecDevelopers/HiddenEye: Modern Phishing Tool With Advanced Functionality And Multiple Tunnelling Services Android-Support-Available
- "GitHub - derv82/wifite2: Rewrite of the popular wireless network auditor, ""wifite"""
- GitHub - diego-treitos/linux-smart-enumeration: Linux enumeration tool for pentesting and CTFs with verbosity levels
- GitHub - drk1wi/Modlishka: Modlishka. Reverse Proxy.
- GitHub - droe/sslsplit: Transparent SSL/TLS interception
- GitHub - dylanaraps/pure-bash-bible: 📖 A collection of pure bash alternatives to external processes.
- GitHub - e-ago/bitcracker: BitCracker is the first open source password cracking tool for memory units encrypted with BitLocker
- free-programming-books/free-programming-books.md at master · EbookFoundation/free-programming-books · GitHub
- GitHub - ekalinin/github-markdown-toc: Easy TOC creation for GitHub README.md
- GitHub - enaqx/awesome-pentest: A collection of awesome penetration testing resources, tools and other shiny things
- "GitHub - EONRaider/blackhat-python3: Source code for the book ""Black Hat Python"" by Justin Seitz. The code has been fully converted to Python 3, reformatted to comply with PEP8 standards and refactored to eliminate issues of dependency resolution involving deprecated modules."
- GitHub - Flangvik/SharpCollection: Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
- GitHub - Gallopsled/pwntools: CTF framework and exploit development library
- GitHub - grafana/loki: Like Prometheus, but for logs.
- GitHub - guyinatuxedo/nightmare
- GitHub - Hack-with-Github/Windows: Awesome tools to exploit Windows !
- thc-tips-tricks-hacks-cheat-sheet/README.md at master · hackerschoice/thc-tips-tricks-hacks-cheat-sheet · GitHub
- GitHub - Hackndo/lsassy: Remotely parse lsass dumps and extract credentials
- Home · hak5darren/USB-Rubber-Ducky Wiki · GitHub
- Duckyscript · hak5darren/USB-Rubber-Ducky Wiki · GitHub
- Payloads · hak5darren/USB-Rubber-Ducky Wiki · GitHub
- GitHub - hakluke/hakrawler: Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
3.
- GitHub - hashcat/hashcat: World's fastest and most advanced password recovery utility
- hmaverickadams / Repositories · GitHub
- GitHub - idaholab/Malcolm: Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts PCAP files and Zeek logs.
- Red-Teaming-Toolkit/README.md at master · infosecn1nja/Red-Teaming-Toolkit · GitHub
- GitHub - j3ssie/Osmedeus: Fully automated offensive security framework for reconnaissance and vulnerability scanning
- external-sf--crunch-wordlist/charset.lst at master · jaalto/external-sf--crunch-wordlist · GitHub
- GitHub - jakejarvis/awesome-shodan-queries: 🔍 A collection of interesting, funny, and depressing search queries to plug into https://shodan.io/ 👩💻
- GitHub - jmk-foofus/medusa: Medusa is a speedy, parallel, and modular, login brute-forcer.
- GitHub - justinsteven/dostackbufferoverflowgood
- GitHub - k4m4/dymerge: 🔓 A dynamic dictionary merger for successful dictionary based attacks.
- GitHub - kgretzky/pwndrop: Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.
- GitHub - Kr0ff/pysho: Python based tool to perform Shodan queries via the Shodan API
- GitHub - kromtech/s3-inspector: Tool to check AWS S3 bucket permissions
- lotsa-mistakes | Github
- GitHub - luke-goddard/enumy: Linux post exploitation privilege escalation enumeration
- "GitHub - magnumripper/JohnTheRipper: This is the official repo for John the Ripper, ""Jumbo"" version. The ""bleeding-jumbo"" branch is based on 1.9.0-Jumbo-1 which was released on May 14, 2019. An import of the ""core"" version of john this jumbo was based on or newer is found in the ""master"" branch CVS: https://cvsweb.openwall.com/cgi/cvsweb.cgi/Owl/packages/john/john/src/ ."
- GitHub - MKLab-ITI/image-forensics
- GitHub - nicolargo/glances: Glances an Eye on your system. A top/htop alternative for GNU/Linux, BSD, Mac OS and Windows operating systems.
- GitHub - ninoseki/shodan-dojo: Learning Shodan through katas
- GitHub - nurupo/rootkit: Linux rootkit for Ubuntu 16.04 and 10.04 Linux Kernels 4.4.0 and 2.6.32 , both i386 and amd64
- wstg/checklist at master · OWASP/wstg · GitHub
- GitHub - philipwalton/solved-by-flexbox: A showcase of problems once hard or impossible to solve with CSS alone, now made trivially easy with Flexbox.
- GitHub - pomerium/awesome-zero-trust: A curated collection of awesome resources for the zero-trust security model.
- GitHub - projectdiscovery/subfinder: Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
- LinEnum/LinEnum.sh at master · rebootuser/LinEnum · GitHub
- GitHub - RustyShackleford221/OSCP-Prep: A comprehensive guide/material for anyone looking to get into infosec or take the OSCP exam
- GitHub - sa7mon/S3Scanner: Scan for open AWS S3 buckets and dump the contents
- GitHub - sajjadium/CTFium: A collection of pwn challenges from various CTFs.
- GitHub - Security-Onion-Solutions/security-onion: Linux distro for threat hunting, enterprise security monitoring, and log management
- GitHub - sindresorhus/awesome: 😎 Awesome lists about all kinds of interesting topics
- GitHub - Sliim/pentest-env: Pentest environment deployer kali linux + targets using vagrant and chef.
- GitHub - smikims/arpspoof: Performs an ARP spoofing attack using the Linux kernel's raw sockets
- GitHub - snoopysecurity/awesome-burp-extensions: A curated list of amazingly awesome Burp Extensions
- GitHub - Srinivas11789/PcapXray: PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highlight important communication and file extraction
- GitHub - stephenbradshaw/vulnserver: Vulnerable server used for learning software exploitation
- GitHub - swisskyrepo/PayloadsAllTheThings: A list of useful payloads and bypass for Web Application Security and Pentest/CTF
- PayloadsAllTheThings/Reverse Shell Cheatsheet.md at master · swisskyrepo/PayloadsAllTheThings · GitHub
- PayloadsAllTheThings/Windows - Privilege Escalation.md at master · swisskyrepo/PayloadsAllTheThings · GitHub
- GitHub - tayllan/awesome-algorithms: A curated list of awesome places to learn and/or practice algorithms.
- GitHub - thom-s/shodan-cli: Python command line wrapper for the shodan.io API
- ThreatLand · GitHub
- GitHub - Tib3rius/AutoRecon: AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
- GitHub - trimstray/the-book-of-secret-knowledge: A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.
- GitHub - vanhauser-thc/thc-hydra: hydra
- reverse-interview/README.md at master · viraptor/reverse-interview · GitHub
- GitHub - whoisflynn/OSCP-Exam-Report-Template: Modified template for the OSCP Exam and Labs. Used during my passing attempt
- GitHub - xMilkPowderx/OSCP: OSCP cheet sheet
- GitHub - xtr4nge/FruityWifi: FruityWiFi is a wireless network auditing tool. The application can be installed in any Debian based system Jessie adding the extra packages. Tested in Debian, Kali Linux, Kali Linux ARM Raspberry Pi , Raspbian Raspberry Pi , Pwnpi Raspberry Pi , Bugtraq, NetHunter.
- GitHub - ytisf/theZoo: A repository of LIVE malwares for your own joy and pleasure. theZoo is a project created to make the possibility of malware analysis open and available to the public.
- Downloads · zaproxy/zaproxy Wiki · GitHub
4.
- GitHub - zardus/ctf-tools: Some setup scripts for security research tools.
- GitHub - zmap/zgrab: DEPRECATED This project has been replaced by https://github.com/zmap/zgrab2
- Szilárd Pfeiffer / cryptolyzer · GitLab
- Index of /beta/ for Hashcat
- start hashcat wiki
- Hashes.org - All Hashlists
- Hashes.org - MDXfind
- MD5 Decrypter - Over 829.726 billion cracked MD5 hashes. MD5 Decryption, Free MD5 Decryptor, Online MD5 Cracker, MD5 Security
- Free Open Source Vulnerability Management Tools That Every Developer Should Know. - Hashnode
- Home of a Banned Hacker: How to Exercise Your Hacking Skills in a Controlled Environment
- Welcome to igraph's new home
- MSFVenom Reverse Shell Payload Cheatsheet with & without Meterpreter | Infinite Logins
- IppSec - Search
- 5 Ways to Take Screenshot in Linux GUI and Terminal
- OWASP Juice Shop
- PcapXray : Tool To Visualize A Packet Capture Offline
- Introduction To Modern Routing For Red Team Infrastructure - using Traefik, Metasploit, Covenant and Docker :: khast3x blog — Thoughts and notes on my side projects
- Curl in Bash Scripts by Example – Linux Hint
- Home | Linux Journey
- Buffer Overflow personal cheatsheet
- OSCP personal cheatsheet
- Pingdom – Live Map of Internet Downtime & Browser Data
- Unofficial OSCP Approved Tools. The following is a list of OSCP… | by FalconSpy | Medium
- Hook Line and Sinker : Learning to Phish - Erik Liddell - Medium
- Why you need you a Malware Analysis Lab and How to build it
- Hack The Box — Jarvis Writeup w/o Metasploit | by Rana Khalil | Medium
- Privilege Escalation in Windows for OSCP | Medium
- HacktheBox — Writeup - InfoSec Write-ups - Medium
- A Comprehensive Overview of the World’s Most Popular Online Course: ‘Learning How to Learn’ | by Ben A | The Innovation | Jul, 2020 | Medium
- Free Online Programming & Computer Science Courses You Can Start in February
- Embedded Security CTF
- The Missing Semester of Your CS Education · the missing semester of your cs education
- Pheonix stack-one write-up – Mjali
- Labtainers - Naval Postgraduate School
- Netcut - Download
- brute NSE Category
- A Comprehensive Web Server Security Guide
- A Pivot Cheatsheet for Pentesters
- NVD - 800-53
- Open Broadcaster Software | OBS
- index - hacking
- DHCP Snooping and Dynamic ARP Inspection - PacketLife.net
- NIST Special Publication 800-63B
- CatsMeowAlot's Pastebin - Pastebin.com
- Microsoft Security Update Guide
- Introducing BloodHound 3.0 - Posts By SpecterOps Team Members
- PwnDayCTF - Official
- Python Sentiment Analysis - Python Tutorial
- Flashcards Network+ N10-007 Acronym List | Quizlet
- radare
5.
- The Little ASP.NET Core Book
- How to pass the AWS Solutions Architect Exam the new/updated one! |
- Problem Solving with Algorithms and Data Structures using Python — Problem Solving with Algorithms and Data Structures
- Forest - Hack The Box · Sabe Barker
- Resolute - Hack The Box · Sabe Barker
- Samy Kamkar: MagSpoof - credit card/magstripe spoofer
- General examples — skimage v0.16.1 docs
- THC Hydra – SecTools Top Network Security Tools
- An A-Z Index of the Linux command line | SS64.com
- Data Structures — Stepik
- Cryptanalysis Cheatsheet :: Notes from Overthewire Krypton | Musings of Sumit Ghosh
- OSCP Certification Exam Guide - Offensive Security
- OSCP Certification Exam Guide - Offensive Security
- TG:HACK 2020
- Windows 10 Black Spider - Windows Based Pentesting OS
- THC-Hydra | Penetration Testing Tools
- Introduction · CTF Field Guide
- TryHackMe | Learn Cybersecurity
- Hacker Missions for Everyone! — For New Hackers & Developers | Learn More about Hacking with Us!
- Cyber Research Center - Data Sets | United States Military Academy West Point
- Windows Privilege Escalation Guide
- CompTIA PenTest+ Certification All-in-One Exam Guide Exam PT0-001 : Nutting, Raymond: 9781260135947: Amazon.com: Books
- Whois-RWS API Documentation - American Registry for Internet Numbers
- bettercap
- How to Build a C2 Infrastructure with Digital Ocean - Part 1 - Black Hills Information Security
- C2 Infrastructure Archives - Black Hills Information Security
- index of /
- Information Gathering with Metasploit: Shodan - Ceos3c
- DensityScout - CERT.at
- Hacking Case
- Nikto2 | CIRT.net
- Cybersecurity Specialist Career Path | Job Description & Salary | CompTIA
- Hydra: Password Cracking Tool Summary, Tutorial and Resources - Concise Courses
- Articles | Corelan Team
- Beautiful Soup: We called him Tortoise because he taught us.
- DABANGG.pdf
- Courses | Cyber Aces | Free online cybersecurity courses
- Search All the Linux Man Pages For a Particular Command or Text - nixCraft
- CyberSecLabs CTF | Login
- The Cyber Security Body of Knowledge UK
- Advanced Penetration Testing Course, Learn Online Security Training | Cybrary
- Git series 1/3: Understanding git for real by exploring the .git directory · daolf
- Regular Expressions regex
- Exploit Database - Exploits for Penetration Testers, Researchers, and Ethical Hackers
- Exploit Database SearchSploit Manual
- File Signatures
- Ghiro - automated digital image forensics tool
- Bug Bounty - Hacker Powered Security Testing | HackerOne
- Do Not Scan this IP Address Ranges
- Hack The Box :: Penetration Testing Labs
6.
- US GOV IP ADDRESSES YOU SHOULD NOT SCAN Article | Hellbound Hackers
- Hopper
- https://www.ietf.org/rfc/rfc2616.txt
- Password Managers: Under the Hood of Secrets Management - Independent Security Evaluators
- dotPeek: Free .NET Decompiler & Assembly Browser by JetBrains
- Malware-Traffic-Analysis.net
- Manning | Learn Windows PowerShell in a Month of Lunches, Third Edition
- NCL | National Cyber League | Ethical Hacking and Cyber Security
- Public PCAP files for download
- Public PCAP files for download
- The Journey to Try Harder: TJnull’s Preparation Guide for PWK/OSCP | NetSec Focus
- Cybersecurity Framework | NIST
- NLTK Book
- Offensive Security Certified Professional OSCP Certification and Training
- Oracle Cloud Free Tier | Oracle
- OWASP Juice Shop Project - OWASP
- OWASP Testing Guide v4 Table of Contents - OWASP
- Testing Checklist - OWASP
- Open Sourcing Tinkerbell - Packet Bare Metal Blog
- How to build a Threat Hunting platform using ELK Stack – Chiheb Chebbi
- Open Source Fuzzers list and other fuzzing tools – Claus Cramon Houmann
- PentesterLab: Learn Web Penetration Testing: The Right Way
- Breaking Tutorial on Hacking Metasploitable 2 with MetaSploit - PopLab Research
- PowerShell Gallery | Home
- PEP 8 -- Style Guide for Python Code | Python.org
- Legally Free Python Books List - Python Members Club
- Ways to review a URL? : AskNetsec
- Megathread What are your favorite resources for learning or keeping up to date with cybersecurity? : AskNetsec
- Hacking the Art of Exploitation 2nd Edition VMware setup : hacking
- How to start hacking? The ultimate two path guide to information security. : hacking
- Completely free hacking guide for TryHackMe : HowToHack
- "I'm seeing a lot of the ""How do I get started in InfoSec questions"" a lot, so I made a comprehensive list of resources and study direction. : ITCareerQuestions"
- Is there a list of tools somewhere to know for OSCP? : oscp
- I don't know who needs to hear this..Know Python : oscp
- Passed my 2nd Attempt w/ 100pts. Here is what I learned... : oscp
- How I Become The Youngest OSCP Holder in India | My OSCP Journey : oscp
- What are some good Discord communities that you can recommend for OSCP aspirants? : oscp
- Passed the OSCP with the help of the following Udemy Courses : oscp
- My little Pihole and DNS server still going strong 3 years on. : raspberry_pi
- Where could I find network datasets e.g., netflow, pcap files of an organization?
- Welcome Root Me : Hacking and Information Security learning platform
- Reading Room | SANS Institute
- Passive Reconnaissance Using OSINT
- Hackers Can Gain Active Directory Privileges Through New Vulnerability in Xerox Printers - Securicon
- SOHOpelessly Broken 2.0 - Independent Security Evaluators
- Downloads
- Local Network Attacks: LLMNR and NBT-NS Poisoning - Stern Security
- Internet Outages Map | ThousandEyes
- Sqrrl Archive
- index | TIOBE - The Software Quality Company
- Assembly Programming Tutorial - Tutorialspoint
- Intro to Data Structures and Algorithms | Udacity
- Free ESXi 6.5 – How to Download and get License Keys | Virten.net
- Virtual Hacking Labs | IT Security Training Labs & Courses
- Vulnerable By Design ~ VulnHub
- Brainpan: 1 ~ VulnHub master < 1hr for OSCP
- Resources ~ VulnHub
- Wappalyzer - Download & Install
- Wireshark · Go Deep.
- I want to be a hacker: How to prep for OSCP 2/2 - YouTube
- Bash Scripting Full Course 3 Hours - YouTube
- Zabbix - quick guide on how to create a simple map - YouTube
- The Bug Hunter's Methodology v4.0 - Recon Edition by @jhaddix #NahamCon2020! - YouTube
- Buffer Overflows Made Easy - Part 1: Introduction - YouTube
- "Google CTF - ""BEGINNER"" challenge Reverse Engineering Writeup - YouTube"
- These 3 tips have allowed my find the majority of my defects while bounty hunting bug bounty tips - YouTube
- Home : X-MAS GTF 2020 - X-MAS GTF 2020