Credits

Inspiration to develop this site will not be possible without tremendous contribution of pioneers and brilliant minds in security. Thank you to all individual researchers who share their knowledge via Tubes/Blogs/Medium/Twitters/Books/Conferences/Meetups. Such sharing has let us go further with ever increasing knowledge built upon existing knowledge. There are so many resources to fit within this page. If I failed to mention about your masterpiece of thought work, please accept my apology and shoot a tweet; I am more than happy to give due credit.

Loading...

  Source   Category
Attack&DefenseLab - https://attackdefense.com/ Labs
HackTheBox - https://www.hackthebox.eu/ Labs
PentesterLab - https://pentesterlab.com/referral/U2dFPhLRr2JDaA Labs
OWASP SKF Labs - https://github.com/blabla1337/skf-labs - https://owasp-skf.gitbook.io/asvs-write-ups/ Labs
Lesser Known Attack Labs - https://github.com/weev3/LKWA Labs
VulnHub - https://www.vulnhub.com/ Labs
Android Reverse Engineering Lab - https://maddiestone.github.io/AndroidAppRE/ Labs
CTFTimes - https://ctftime.org/ctfs Labs
Secure Code Warrior - https://securecodewarrior.com/ Labs
Immersive Labs - https://immersivelabs.online/ Labs
Practical Pentest Labs - https://practicalpentestlabs.com/ Labs
Virtual Hacking Labs - https://www.virtualhackinglabs.com/specials/virtual-hacking-labs/ Labs
SparcFLOW labs - https://www.hacklikeapornstar.com/learn-hacking-one-day/ Labs
Ubeeri Labs - https://www.ubeeri.com/preconfig-labs Labs
SANS Netwars Labs - https://www.sans.org/netwars/ Labs
HackingDojo Labs - https://hackingdojo.com/lab/ Labs
Mile2 Cyber Range Labs - https://mile2.com/cyber-range.html Labs
CTF365 Lab - https://ctf365.com/ Labs
Root-Me Lab - https://www.root-me.org/?lang=en Labs
InfoSec Ninja lab - https://www.infosec-ninjas.com/lab Labs
Hacking-Lab.com - https://www.hacking-lab.com/ Labs
PentestIt.RU Labs - https://lab.pentestit.ru/ Labs
gh0st Lab - http://www.gh0st.net/wiki/index.php?title=Main_Page Labs
Overthewires Wargames - https://overthewire.org/wargames/ Labs
Google Gruyere : http://google-gruyere.appspot.com/part1 Labs: Free Online
DOMXSS Lab - http://www.domxss.com/domxss/domxss.php Labs: Free Online
PortSwigger Lab - https://portswigger.net/web-security Labs: Free Online
WebScan Test - https://www.webscantest.com/ Labs: Free Online
VulnWeb PHP - http://testphp.vulnweb.com/ Labs: Free Online
VulnWeb ASP - http://testasp.vulnweb.com/ Labs: Free Online
VulnWeb ASPX - http://testaspnet.vulnweb.com/ Labs: Free Online
VulnWeb HTML5 - http://testhtml5.vulnweb.com/ Labs: Free Online
CrackMe - http://crackme.cenzic.com/ Labs: Free Online
Hackyourself First - http://hack-yourself-first.com/ Labs: Free Online
TestFire - http://demo.testfire.net/ Labs: Free Online
Zero Bank - http://zero.webappsecurity.com/ Labs: Free Online
ATT&CK Knowledgebase - https://attack.mitre.org/ - https://collaborate.mitre.org/attackics/index.php/Main_Page - https://attack.mitre.org/resources/training/ Awesome Libraries
SANS Reading Room - https://www.sans.org/reading-room/ Awesome Libraries
PentesterAcademy - https://www.pentesteracademy.com/ Awesome Libraries
OpenSecurityTraining - http://opensecuritytraining.info/ Awesome Libraries
Online ebook library - https://www.oreilly.com/online-learning/ (Best for research, building up technical foundations - inclusive of https://packtpub.com/) Awesome Libraries
RawSec Massive Inventory - https://inventory.rawsec.ml/ Awesome Libraries
Technology learning libraries - https://www.w3schools.com/ - https://www.tutorialspoint.com/ Awesome Libraries
ICS-CERT Virtual Learning Portal (VLP) - https://ics-cert-training.inl.gov/ Awesome Libraries
Cybrary - https://www.cybrary.it/ Awesome Libraries
Wikiversity - https://en.wikiversity.org/ Awesome Libraries
Microsoft TechNet Library - https://gallery.technet.microsoft.com/ Awesome Libraries
LiveOverflow - https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w Awesome Tubes
InfoSecInstitutes - https://www.youtube.com/user/InfoSecInstitute/videos Awesome Tubes
Pentest Workshop - https://www.youtube.com/channel/UCTlHy5I13anUl4-MCkRY7hg/videos Awesome Tubes
IronGeek - https://www.youtube.com/user/irongeek/playlists Awesome Tubes
Red Canary - https://www.youtube.com/channel/UCulDoWwoy0vNvRwl2tVX3-w/videos Awesome Tubes
SANS - https://www.youtube.com/channel/UCP28F4uf9s2V1_SQwnJST_A/videos Awesome Tubes
PentesterAcademy TV - https://www.youtube.com/channel/UChjC1q6Ami7W0E71TzPZELA/playlists Awesome Tubes
OWASP - https://www.youtube.com/user/OWASPGLOBAL/playlists Awesome Tubes
Host Unknowns [Edutainment purpose] - https://www.youtube.com/user/HostUnknownTV/videos Awesome Tubes
Blackhat - https://www.youtube.com/user/BlackHatOfficialYT/videos Awesome CONs
DEFCON - https://www.youtube.com/user/DEFCONConference/videos Awesome CONs
HITB CON - https://www.youtube.com/user/hitbsecconf Awesome CONs
MITRE ATT&CKCON - https://www.youtube.com/user/mitrecorp/search?query=ATT%26CK Awesome CONs
CRESTCon - https://www.youtube.com/user/CRESTadvocate/videos Awesome CONs
CONFidence CON - https://www.youtube.com/user/PROIDEAconferences/search?query=CONFidence Awesome CONs
Shmoocon - https://www.youtube.com/results?search_query=shmoocon Awesome CONs
Cooper - https://www.youtube.com/channel/UCI6B0zYvK-7FdM0Vgh3v3Tg/playlists Awesome CONs
Hacktivity - https://www.youtube.com/user/hacktivity/playlists Awesome CONs
ZeroNights - https://www.youtube.com/channel/UCtQ0fPmP4fCGBkYWMxnjh6A/playlists Awesome CONs
BruCon - https://www.youtube.com/user/brucontalks/playlists Awesome CONs
ToorCon - https://www.youtube.com/channel/UCnzjmL0xkTBYwFZD7agHGWw/playlists Awesome CONs
Ekoparty CON - https://www.youtube.com/channel/UCiVNwNkoMapaeyr9o6XEonA/videos Awesome CONs
Rooted CON - https://www.youtube.com/user/rootedconmadrid/videos Awesome CONs
BalCCon - https://www.youtube.com/channel/UCoHypmu8rxlB5Axh5JxFZsA/playlists Awesome CONs
SetCT CON - https://www.youtube.com/user/SECTDirector/playlists Awesome CONs
x33fCON - https://www.youtube.com/channel/UC8wesSvHdlNXVZgSy_UU_Ug/videos Awesome CONs
BlackAlps CON - https://www.youtube.com/channel/UCkCV_HJUkI8PsFrX4wpPX4A/videos Awesome CONs
Security Onion CON - https://www.youtube.com/channel/UCNBFTyYCdjT5hnm7uW25vGQ/featured Awesome CONs
SyScan CON - https://www.youtube.com/channel/UCx5hZiie0VzFvV-u376v7DQ/videos Awesome CONs
Hack In Paris - https://www.youtube.com/user/hackinparis/videos Awesome CONs
NorthSec - https://www.youtube.com/channel/UCqVhMzTdQK5VAosAGkMtpJw/videos Awesome CONs
Con Archives - https://infocon.org/cons/ Awesome CONs
Cure53 - https://cure53.de/#publications Corporate Research
Duo - https://duo.com/labs Corporate Research
F-Secure/MWR - https://labs.f-secure.com/ - https://github.com/FSecureLABS Corporate Research
NCC - https://labs.nccgroup.trust/ Corporate Research
Aon - https://github.com/AonCyberLabs/ Corporate Research
Veracode - https://www.veracode.com/resources Corporate Research
SecurityInnovation - https://www.securityinnovation.com/resources/ Corporate Research
TrustedSec - https://github.com/trustedsec Corporate Research
Awesome Vulnerable Apps - https://github.com/vavkamil/awesome-vulnerable-apps/ Awesome Gits
Awesome-CTF - https://github.com/apsdehal/awesome-ctf Awesome Gits
Github Damn Vulnerable Apps - https://github.com/search?q=damn+vulnerable+apps Awesome Gits
Awesome CTF Wargame - https://github.com/2O2L2H/awesome-ctf-wargame Awesome Gits
Awesome Crypto - https://github.com/7Hxz233/awesome-ctf-crypto Awesome Gits
Awesome RedTeaming - https://github.com/yeyintminthuhtut/Awesome-Red-Teaming Awesome Gits
awesome-CTF - https://github.com/AntiverX/awesome-CTF Awesome Gits
BugBountyWorld - https://github.com/bugbountyworld/BugBountyWorld Awesome Gits
Bounty Cheatsheet - https://github.com/EdOverflow/bugbounty-cheatsheet Awesome Gits
Awesome Infosec - https://github.com/edwardqiu/awesome-infosec Awesome Gits
Awesome-Ethical-Hacking-Resources - https://github.com/husnainfareed/Awesome-Ethical-Hacking-Resources Awesome Gits
RedTeaming Toolkit - https://github.com/infosecn1nja/Red-Teaming-Toolkit Awesome Gits
Awesome Windows Redteam - https://github.com/marcosValle/awesome-windows-red-team Awesome Gits
Awesome Sec Conference Talks - https://github.com/PaulSec/awesome-sec-talks/ Awesome Gits
Awesome Repo - https://github.com/ov3rclocked/Awesome-Repositories Awesome Gits
Secret KB - https://github.com/trimstray/the-book-of-secret-knowledge Awesome Gits
Awesome Hacking - https://github.com/vitalysim/Awesome-Hacking-Resources Awesome Gits
Phonexicum's InfoSec Notes - https://phonexicum.github.io/infosec/ Awesome Gits
Pentesterlab Walk-through https://github.com/crhystamils/pentesterlab01 Awesome Gits
pentesterlab walkthrough screenshots - https://github.com/cemberkongay/WebPentest Awesome Gits
Pentest Reports - https://github.com/juliocesarfort/public-pentesting-reports Awesome Gits
Bitvijays - Infrastructure Pentest Series - https://bitvijays.github.io/index.html#infrastructure-pentest-series Awesome Gits
Awesome Pentest - https://github.com/enaqx/awesome-pentest Awesome Gits
HarmJ0y - https://gist.github.com/HarmJ0y Awesome Gits
League of Bounties - https://discord.gg/VnhW5x5 Awesome Discords
Malware Tech - https://discord.gg/698CH7x Awesome Discords
Virtual Hacking Labs - https://discord.gg/wDh8GwD Awesome Discords
CyberXploit - https://disboard.org/server/join/572004140587417610 Awesome Discords
Brute Logic's XSS Cheat Sheet - https://brutelogic.com.br/blog/ebook/xss-cheat-sheet/ Books.AppSec
CSSLP CBK - https://www.isc2.org/Certifications/CSSLP Books.AppSec
Hacking Exposed: Web Application 3rd edition - https://amzn.to/2OGMqjC Books.AppSec
HackNotes(tm) Web Security Pocket Reference - https://www.amazon.com/dp/0072227842/ Books.AppSec
Mastering Modern Web Penetration Testing - https://www.packtpub.com/networking-and-servers/mastering-modern-web-penetration-testing Books.AppSec
Real-World Bug Hunting - https://nostarch.com/bughunting Books.AppSec
Security Testing Handbook for Banking Applications Books.AppSec
Web Application Hacker Handbook 2nd edition - https://amzn.to/2OGUK2V Books.AppSec
Web Hacking 101 - https://leanpub.com/web-hacking-101 Books.AppSec
XSS Attacks: Cross Site Scripting Exploits and Defense - https://amzn.to/2ABBCAp Books.AppSec
Advanced Penetration Testing: Red Team - by Mr Richard Knowell Books.RedTeam
Cybersecurity: Attack & Defense Strategies (Red & Blue Team) Books.RedTeam
Hack Like Series - https://www.amazon.com/Sparc-FLOW/e/B06WW4TL8H Books.RedTeam
Hands-On Penetration Testing on Windows - Packt Publishing Books.RedTeam
Hands-On Red Team Tactics Books.RedTeam
Next Generation Red Teaming Books.RedTeam
NoStarch - Blackhat Series - https://nostarch.com/catalog/security Books.RedTeam
Professional Red Teaming: Conducting Successful Cybersecurity Engagements Books.RedTeam
RTFM - Red Team Field Manual - https://www.amazon.com/Rtfm-Red-Team-Field-Manual/dp/1494295504 Books.RedTeam
APISecurity - https://apisecurity.io/ Amazing Webs
AppSec Wiki - https://appsecwiki.com Amazing Webs
Bounty Hunter methodology and notes - http://bit.ly/338QvUx Amazing Webs
CAPEC™ - https://capec.mitre.org/ Amazing Webs
iRed.Team - https://ired.team/ Amazing Webs
CWE™ - https://cwe.mitre.org/ Amazing Webs
HackerOne Hackitivity - https://hackerone.com/hacktivity Amazing Webs
http://ghostlulz.com Amazing Webs
https://blog.securitee.org/ Amazing Webs
https://pentester.land/ Amazing Webs
https://pielco11.ovh/ Amazing Webs
https://securityidiots.com Amazing Webs
Product Vendor Blog - https://www.acunetix.com/blog/ Amazing Webs
https://www.hahwul.com Amazing Webs
Medium - Bugbounty writeups - https://medium.com/bugbountywriteup/ Amazing Webs
Medium - HTB Lab Challenge Write-ups - https://medium.com/search?q=hackthebox Amazing Webs
Medium - VulnHub Challenge Write-ups - https://medium.com/search?q=vulnhub Amazing Webs
Open Web Application Security Project - https://owasp.org/ Amazing Webs
Reddit - NetSec - https://www.reddit.com/r/netsec/ Amazing Webs
Reddit - RedTeamSec - https://www.reddit.com/r/redteamsec/new/ Amazing Webs
Reddit - SecurityCTF - https://www.reddit.com/r/securityCTF/ Amazing Webs
Reddit WebSecResearch - https://www.reddit.com/r/websecurityresearch/ Amazing Webs
SANS Pen-testing Blog - https://pen-testing.sans.org/ Amazing Webs
Yearly Top 10 Web Vulnerabilities - http://bit.ly/2Nv7RUZ Amazing Webs
IPPSEC - https://ippsec.rocks/ Amazing Webs
Windows Commandline - https://www.windows-commandline.com/ Amazing Webs
Red Canary - https://redcanary.com/ Amazing Webs
CISO MindMap - https://www.sans.org/security-resources/posters/security-leadership-poster/135/download Amazing Webs
Data Breach Infographics - https://www.informationisbeautiful.net/visualizations/worlds-biggest-data-breaches-hacks/ Amazing Webs
# Dr.-Ing. Mario Heiderich, a pioneer in discovering and sharing back fantastic web attack vectors - https://cure53.de/ Pioneers of Web Security
@# Gareth Heyes, a pioneer in discovering and sharing back fantastic web attack vectors - http://www.thespanner.co.uk/ - garethheyes - # Gareth Heyes, a pioneer in discovering and sharing back fantastic web attack vectors - http://www.thespanner.co.uk/ - https://twitter.com/garethheyes Pioneers of Web Security
# Jeremiah, a pioneer in discovering and sharing back fantastic web attack vectors - https://blog.jeremiahgrossman.com/ Pioneers of Web Security
@# RSnake, a pioneer in discovering and sharing back fantastic web attack vectors - rsnake - # RSnake, a pioneer in discovering and sharing back fantastic web attack vectors - https://twitter.com/rsnake Pioneers of Web Security
https://medium.com/@filipvitas for his https://medium.com/@filipvitas/how-to-bypass-slider-captcha-with-js-and-puppeteer-cd5e28105e3c Awesome Twitters
@0ktavandi - https://twitter.com/0ktavandi Awesome Twitters
@_sawzeeyy - https://twitter.com/_sawzeeyy Awesome Twitters
@_ttffdd_ - https://twitter.com/_ttffdd_ Awesome Twitters
@Agarri_FR - https://twitter.com/Agarri_FR Awesome Twitters
@albinowax - https://twitter.com/albinowax Awesome Twitters
@apisecurityio - https://twitter.com/apisecurityio Awesome Twitters
@brutelogic - https://twitter.com/brutelogic Awesome Twitters
@bugbountyforum - https://twitter.com/bugbountyforum Awesome Twitters
@bughuntercat - https://twitter.com/bughuntercat Awesome Twitters
@chybeta - https://twitter.com/chybeta Awesome Twitters
@chybeta/ - https://twitter.com/chybeta/ Awesome Twitters
@cry__pto - https://twitter.com/cry__pto Awesome Twitters
@dhakal_ananda - https://twitter.com/dhakal_ananda Awesome Twitters
@ghostlulz1337 - https://twitter.com/ghostlulz1337 Awesome Twitters
@HudelC - https://twitter.com/HudelC Awesome Twitters
@HusseiN98D - https://twitter.com/HusseiN98D Awesome Twitters
@IAmMandatory - https://twitter.com/IAmMandatory Awesome Twitters
@Jhaddix - https://twitter.com/Jhaddix Awesome Twitters
@justin_gardner - https://twitter.com/justin_gardner Awesome Twitters
@karna__1 - https://twitter.com/karna__1 Awesome Twitters
@KassihMouhssine/ - https://twitter.com/KassihMouhssine/ Awesome Twitters
@LooseSecurity - https://twitter.com/LooseSecurity Awesome Twitters
@Mahmoud0x00 - https://twitter.com/Mahmoud0x00 Awesome Twitters
@not_aardvark - https://twitter.com/not_aardvark Awesome Twitters
@osamaavvan - https://twitter.com/osamaavvan Awesome Twitters
@PanegavSharan - https://twitter.com/PanegavSharan Awesome Twitters
@PentesterLab - https://twitter.com/PentesterLab Awesome Twitters
@PortSwiggerRes - https://twitter.com/PortSwiggerRes Awesome Twitters
@PranayB2511 - https://twitter.com/PranayB2511 Awesome Twitters
@prateek_0490 - https://twitter.com/prateek_0490 Awesome Twitters
@rotem_reiss - https://twitter.com/rotem_reiss Awesome Twitters
@SecuAudit - https://twitter.com/SecuAudit Awesome Twitters
@secuninja - https://twitter.com/secuninja Awesome Twitters
@smaury92 - https://twitter.com/smaury92 Awesome Twitters
@snyff - https://twitter.com/snyff Awesome Twitters
@SpiderSec - https://twitter.com/SpiderSec Awesome Twitters
@spyerror/ - https://twitter.com/spyerror/ Awesome Twitters
@stealthybugs - https://twitter.com/stealthybugs Awesome Twitters
@stueotue - https://twitter.com/stueotue Awesome Twitters
@stvemillertime/ - https://twitter.com/stvemillertime/ Awesome Twitters
@Sunilkande1137 - https://twitter.com/Sunilkande1137 Awesome Twitters
@vickieli7 - https://twitter.com/vickieli7 Awesome Twitters
@yaworsk - https://twitter.com/yaworsk Awesome Twitters
@Zombiehelp54 - https://twitter.com/Zombiehelp54 Awesome Twitters
@ZrariAnas - https://twitter.com/ZrariAnas Awesome Twitters
@https://www.twitter.com/ironfisto - https://www.twitter.com/ironfisto Awesome Twitters
@https://www.twitter.com/knoxss_me - https://www.twitter.com/knoxss_me Awesome Twitters
@https://www.twitter.com/rvrshell - https://www.twitter.com/rvrshell Awesome Twitters
@YogoshaOfficial - https://twitter.com/YogoshaOfficial Awesome Twitters
Twitter #bugbountytips - http://bit.ly/2NBiOnY Awesome Twitters
@https://mobile.twitter.com/maddiestone - https://mobile.twitter.com/maddiestone Awesome Twitters
Marriot Hotel data breach - https://www.youtube.com/watch?v=2u68rVGDSg4&t=10s Hearings
IRS Data Breach - https://www.hsgac.senate.gov/templates/watch.cfm?id=4145AFAD-5056-A032-52BE-B457F12AF3C6 Hearings
OPM Data Breach - https://www.hsgac.senate.gov/templates/watch.cfm?id=23C3D282-5056-A032-5289-536EA0BBADEA Hearings
Facebook Data Breach - https://www.youtube.com/watch?v=mGpPHZB_fvI Hearings
Equifax Data Breach - https://www.youtube.com/watch?v=2u68rVGDSg4 Hearings
Target Data Breach - https://www.youtube.com/watch?v=dj3lxOk7v40 - https://www.youtube.com/watch?v=SmiEIGccrGY Hearings
Google Android Data Collection - https://www.youtube.com/watch?v=d3XwpStkZiI Hearings
Better Evernote replacement - Confluence - https://atlassian.com/ Information Management
Easy reminder with SMS support - https://followupthen.com Information Management
https://getpocket.com - Bookmark manager with permanent copies of bookmarked links Information Management
Automation - https://integromat.com/ Information Management
Goals/Project/Tasks tracking - https://monday.com Information Management
Better Dradis Replacement - Pentest Workspace - https://pentest.ws Information Management
Visualisation made Easy - https://public.tableau.com/en-gb/gallery/ Information Management
Best Mind Mapping Software (life-time trial usage available) - https://www.xmind.net/ Information Management
Background images are from Google image results using terms : Hacker, BlockChain, IRON Man,Kali Graphics
Icons are from https://fontawesome.com/ Graphics