Hacking Resources
Hacking Resources
2023 Hacking
Resources
Name URL or Full Name Comments
GETTING STARTED
Reddit NetSec Getting Started https://www.reddit.com/r/netsec/wiki/start Historically a very good resource, but it
was last updated 4 years ago
Mubix’s curated list of Infosec
newbie resources https://gist.github.com/mubix/5737a066c8845d25
721ec4bf3139fd31#file-infosec_newbie-md @mubix (Rob Fuller), a is red teamer turned purple
teamer. He started his career in the United States
Marine Corps working with explosives and has
gone on to have a highly successful career in the
security industry working at companies like
Rapid7, GE, Uber, Cruise Automation and now
Black Hills Information Security
Drunkrhin0’s Medium article https://medium.com/heck-the-packet/a-graduates-
thoughts-how-to-get-started-in-information-security-and-
cyber-security-d01a1efaed0f
Cybrary https://www.cybrary.it/course/introduction-to-it-and-cybersecurity/
Coursera https://www.coursera.org/specializations/intro-cyber-security
Twitter https://twitter.com/search?q=infosec
Reddit https://www.reddit.com/r/netsec/
CHEAT SHEETS
https://github.com/armourinfosec/
Offensive-Pentesting-Host Penetration testing tools cheat sheet, a quick
reference high level overview for typical
penetration testing engagements. Convenient
commands for your pentesting / red-teaming
engagements, OSCP and CTFs.
Mobile Application Penetration
Testing Cheat Sheet https://github.com/tanprathan/MobileApp-
Pentest-Cheatsheet
omegaspard-pentest-cheat-sheet https://github.com/omegaspard/omegaspard-pentest-cheat-sheet
PENTEST LABS
WebGoat.NET https://github.com/jerryhoff/WebGoat.NET/
PentesterLab https://pentesterlab.com/
LAMPSecurity http://sourceforge.net/projects/lampsecurity/
WackoPicko https://github.com/adamdoupe/WackoPicko
BadStore http://www.badstore.net/
hackxor http://hackxor.sourceforge.net/cgi-bin/index.pl
SQLol https://github.com/SpiderLabs/SQLol
CryptOMG https://github.com/SpiderLabs/CryptOMG
XMLmao https://github.com/SpiderLabs/XMLmao
GameOver http://sourceforge.net/projects/null-gameover/
PuzzleMall http://code.google.com/p/puzzlemall/
VulnApp http://www.nth-dimension.org.uk/blog.php?id=88
sqli-labs https://github.com/Audi-1/sqli-labs
SocketToMe https://digi.ninja/projects/sockettome.php
HackThis http://www.hackthis.co.uk/
HackQuest http://www.hackquest.com/
Hack.me https://hack.me
Hacking-Lab https://www.hacking-lab.com
Hax.Tor http://hax.tor.hu/
OverTheWire http://www.overthewire.org/wargames/
Root Me http://www.root-me.org/?lang=en
ThisIsLegal http://thisislegal.com/
MOBILE APPS
CLOUD SECURITY
AWS https://aws.amazon.com/blogs/training-and-certification/
tag/free-training/ Learn from AWS experts. Advance your skills and
knowledge. Build your future in the AWS Cloud.
For free.
CONTAINERS
Docker https://www.udemy.com/courses/search/?price=
price-free&q=Docker&sort=relevance&src=ukw Docker Containers courses.
HOUDINI https://github.com/cybersecsi/HOUDINI
BUG BOUNTIES
Bugcrowd https://www.bugcrowd.com/bug-bounty-list/
HackerOne https://hackerone.com/bug-bounty-programs
Synack https://www.synack.com/
Facebook https://www.facebook.com/whitehat
GitHub https://bounty.github.com/
Microsoft https://www.microsoft.com/en-us/msrc/bounty
CERTIFICATIONS
CompTIA https://www.comptia.org/certifications/
IT Fundamentals Basic IT
A+ Core IT
Network+ IT Infrastructure
GIAC https://www.giac.org/
ISACA https://www.isaca.org/
EC-Council https://www.eccouncil.org/
BTL1 https://securityblue.team/why-btl1/
BTL2 https://securityblue.team/btl2/
ACTIVE DIRECTORY
Active Directory Security https://adsecurity.org/ Active directory & enterprise security, methods to
secure active directory, attack methods &
effective defenses, PowerShell, tech notes, &
geek trivia…
Collection https://cybersecurityguide.org/resources/veterans-guide-to-cybersecurity/
https://veteransec.org/
Collection https://cybersecurityguide.org/resources/women-in-cybersecurity/
CONFERENCES
Collection https://infosec-conferences.com/
ShmooCon
ThotCon
CactusCon
OWASP
BSides
DEFCON
BlackHat
Collection https://digitalguardian.com/blog/best-information-security-podcasts
Audible https://www.audible.com/pd/Hacking-into-Security-Career-Talks-Podcast/B08K57S4H1?qid=1641412127
Bash You can do quite a bit with command line tools and
a Bbash one-liner.
o365recon https://github.com/nyxgeek/o365recon
SOFT SKILLS
Speaking
https://learndigital.withgoogle.com/digitalgarage/course/
public-speaking
Writing
https://plextrac.com/direct-download-writing-a-killer-penetration-test-report/
https://blog.eccouncil.org/the-art-of-report-writing-by-penetration-testers/
PCI
FedRamp
CMMC
CCPA
FFIEC
CHECK/CREST
YOUTUBE
Nahamsec https://www.youtube.com/c/Nahamsec/videos?view=0&sort=p&flow=grid
IppSec https://www.youtube.com/c/ippsec/videos?view=0&sort=p&flow=grid
DC CyberSec https://www.youtube.com/c/DCcybersec/videos?view=0&sort=p&flow=grid
PwnFunction https://www.youtube.com/c/PwnFunction/videos?view=0&sort=p&flow=grid
Hak5 https://www.youtube.com/c/hak5/videos?view=0&sort=p&flow=grid
Cyberspatial https://www.youtube.com/c/Cyberspatial/videos?view=0&sort=p&flow=grid
InsiderPhD https://www.youtube.com/c/InsiderPhD/videos?view=0&sort=p&flow=grid
MrTurvey https://www.youtube.com/c/MrTurvey/videos?view=0&sort=p&flow=grid
Hacksplained https://www.youtube.com/c/Hacksplained/videos?view=0&sort=p&flow=grid
HackerSploit https://www.youtube.com/c/HackerSploit/videos?view=0&sort=p&flow=grid
NetworkChuck https://www.youtube.com/c/NetworkChuck/videos?view=0&sort=p&flow=grid
HacksForPancakes https://www.youtube.com/c/hacks4pancakes/videos?view=0&sort=p&flow=grid