User Tools
wiki:resources
This is an old revision of the document!
Table of Contents
Resources
Full Programs
Capture the Flag Games
- DeadCTF (ironically dead)
- CTF 365 (dead)
- HardFlag Hardware CTF
- Cryptohack Cryptography focused
Programming/Coding
Generic / Multiple Languages
Tutorials
Challenges
University Content
Books
Miscellaneous Languages
Python
Tutorials
- Python Tutorials - Corey Schafer (Youtube) Comprehensive series that starts with basics and includes a dive into Flask and Django web frameworks.
Free Books
- Automate the Boring Stuff With Python by Al Sweigart.
- The Hitchhiker's Guide to Python by Kenneth Reitz and Tanya Schlusser.
- Think Python, 2nd Edition by Allen B. Downey. 2nd Edition uses Python 3. This book was previously called “How to Think Like a Computer Scientist: Learning with Python”.
Developer References
- Learn Python 3 in Y Minutes. Excellent for looking up syntax in a single page.
Podcasts
C / C++
Developer References
Tutorials
Books
- The C Programming Language (don't make this your first)
Java
Developer References
- Oracle Tutorials (they're pretty eh tbh)
Tutorials
Books
JavaScript
Random useful FAQ bits
Bash
Useful Tools and Articles
Tutorials
Free Books
Networking
- Computer Networking (PDF)
- Internetworking Technology Handbook (PDF)
- Professor Messer's CompTia Networks+ Course (Youtube)
- Computer Networking: A Top Down Approach
- Nmap Cookbook
- Networking All-In-One
- Port Forwarding Explanation
- Network Talk With Pyro
Hacking
Web
- OWASP Web Security Testing Guide
- BugCrowd University Webinars
- PortSwigger Web Security Academy
- Finding LFI and RFI (PDF)
- OWASP Top 10 2017 (PDF)
- Writing JIT-Spray Shellcode (PDF)
- Kettle SSTI (PDF)
- The Web Application Hacker's Handbook
- HackTricks Tips and Tricks
- Hacker101 Videos and Webinars
Exploitation
- Starting Reverse Engineering and Malware Analysis
- Escalating Privileges in Linux (PDF)
- Binary Hacking Course
- Introduction to Software Exploits (PDF)
- Smashing the Stack (PDF)
- Fuzzing (Repo)
- Shellcoder's Handbook
- Hacking: The Art of Exploitation
- LiveOverflow's Binary Exploitation / Memory Corruption Series (Youtube)
Reverse Engineering
- REing for Beginners (PDF)
- Binary Code Disassembly (PDF)
- Machine Level Programming (PDF)
- WIN32 RE Cheat Sheet (PDF)
- RE Malicious Code Tips (PDF)
- The Art of Memory Forensics
- Practical Reverse Engineering
- Nightmare Bin Exp/Reverse Engineering Intro
Password Cracking
- Modern Password Cracking (PDF)
- Hash Crack: Password Cracking Manual
- Directory of default passwords
- Directory of default router passwords
Post-Exploitation
- Transferring Files from Linux to Windows (Blog post)
Cryptography / Steganography
- Cracking Codes with Python (eBook)
- Introduction to Cryptography
- Cryptography Engineering, Design Principles and Practical Applications
- CryptoPals Crypto Challenges
- Handbook Of Applied Cryptography (All Chapters Free)
RTL-SDR & Radio
Operating Systems
Linux
- Brand new to Linux? Start here
- Linux Journey (Bare bones Linux)
- Linux Basics (Youtube)
- Linux Essentials (Youtube)
- The Linux Command Line (Free Book, PDF available)
- Webminal (GNU/Linux Online Terminal/Learning Platform)
- Passwordless Linux Tutorial
- Howdy - Windows Hello for Linux
- See also: BASH Resources
- Linux Kernel
Windows
- Powershell Command List
BSD
- BSD Resources for Newbies
- FreeBSD Handbook
Operating System Concepts and Execution
- OS Dev wiki
- Operating Systems: Three Easy Pieces (AKA The Comet Book)
- Operating System Concepts (AKA The Dinosaur Book)
- Modern Operating Systems (A good read after you're comfortable with the concepts)
- Operating Systems Design and Implementation (A book about and how to develop Minix)
- The Design and Implementation of the FreeBSD Operating System
- Think OS; A Brief Introduction to Operating Systems
- The little book about OS development
- Operating Systems: From 0 to 1 (incomplete book, but still worth a read)
Computer Architecture
- nand2tetris
- Intel 64 and IA-32 Architectures Developer's Manual
- AMD Documentation
- What Every Programmer Should Know About Memory (PDF)
- MIPS Assembly Track
- What's new in CPUs since the 80s?
- CS61C Berkley 2015 Lecture PDFs, exercises, and assignments
Open Source Intelligence (OSINT)
- TraceLabs Resources
- Search.org Investigative and Forensic Toolbar
- OSINT Framework
- OSINT 101
- OSINT 201
- OSINT Resources for 2019
- Intel Techniques
- Advanced OSINT Tools
- Advanced Social Media OSINT
- Network Fingerprinting With Maltego (Youtube)
- AlienVault Open Threat Exchange (Threat Intelligence sharing platform)
- Torrent download checking by IP Address.
- REST API service registration listing
- Profile Picture Generator (These people don't exist)
- European persons lookup tool
- LinkedIn web scraper
- Awesome OSINT research board
- Mapping tool with information of locations of cats
- Facebook extraction tool
- Venmo transaction logs (Open API)
OSINT Start Boards
- General OSINT starting point
- OSINT Web browser extensions
- Dating/Hook-up website listing and tools
- Online searchable databases
- Generic OSINT Board 1
- A list of OSINT/GEOINT/SIGINT/FOSINT tools
Social Engineering
- The Social-Engineer Podcast
- Software Engineering Toolkit (SET) User Manual (PDF)
- r/SocialEngineering Subreddit
- Social Engineering: The Art of Human Hacking
Blue Team / Defensive
- Ultimate List of SANS cheat sheets
- Awesome Sysadmin List
- Security Engineering: A guide to building dependable distributed systems
- Security Hardening for CentOS 7
- 13cubed
Dev Ops Testing
- SecureCodeBox Tool-chain for scanning software and orchestrating automated security testing.
Tools
Windows
- HardenTools Basic feature disablement tool
Unix/Linux
- JShielder L[A|E]MP deployer and CIS benchmarker
- CIS implementation Puppet Module
- Stonix Hardening Tool (Los Alamos)
MacOS
Multiple
- OpenSCAP Workbench
- NSA SIMP Systems automation and configuration management utilities
- Lynis Automated Security Auditing Tool w/ compliance testing (Linux/MacOS)
- Nessus Automated Auditing
Other (Cloud/Hypervisor)
- Zeus AWS Auditing Tool
- VMWare Hypervisor hardening
Online Tools
- Crackstation
- Hash Analyzer
- Hash Type Check Tool
- Reverse MD5 Lookup
- Reverse SHA1 Lookup
- Converter that supports many encodings/cyphers
- Repl.it Online development environment, supports multiple languages
- CyberChef Swiss Army Knife Code-breaking and parsing
- Online Interpreters
- Piet
- SSH Policy Scanner
- Cipher Policy Scanner
Tools
- StegHide
- NMAP
- Fiddler
- Wireshark
- Metasploit
- Nikto
- JTR
- Burp Suite
- OpenVAS
- Aircrack-NG
- Kismet
- SpiderFoot
- THC-Hydra
- PWNTools
- Clusterfuzz (Google's Web Fuzzer)
- Tulpar
- CypherScan
- SQLite Browser - graphical SQLite database viewer
- GoBuster, URI Fuzzer
- Zsteg
- SQL Map
- Hashcat, password cracker
- Maltego
- Ettercap MITM tool
- HxD Hex Editor
- ExifTool
- Link Finder Utility to parse all JS on a page for links
Other Maintained Blogs/Resource Dumps
- The InfoSec Institute
- Swissky's Payload All The Things
- IOT Security 101
- Free computer books, lectures, whitepapers, etc.
- “Awesome Lists”
- Master List
- Mobile Security
- Forensics
Miscellaneous
- The LHC Discord Server
- Five Things Every Pen Tester Should Know About Working with Lawyers
- Vuln Hub Boxes
- Don't Bother Using a VPN
- Security and Hacking Conferences
- Proof-of-Concept or GTFO
- An Introduction to Ray Tracing (Free Book)
- A challenge for wannabe Linux System Administrators
- Lowebrew's Lair of Resources
- Logic Design with Darkium
- File Formats and structure
wiki/resources.1633030424.txt.gz · Last modified: 2021/09/30 14:33 by admin