cybersecurity resources

this file contains more general resources. for tools, courses, etc. that are specific to different subfields of security, check the respective markdown file in the repo.

articles

blogs

lists

  • awesome ctf - a curated list of ctf frameworks, libraries, resources and softwares
  • awesome-cybersec - a collection of awesome platforms, blogs, documents, books, resources and cool stuff about security
  • awesome hacking - a collection of various awesome lists for hackers, pentesters and security researchers
  • awesome-infosec - a curated list of awesome infosec courses and training resources.
  • awesome security - a collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
  • awesome security gists - a collection of various github gists for hackers, pentesters and security researchers
  • aws-hacking - this is an offensive guide to securing aws infrastructures. the hope is that by knowing how to take advantage of various types of aws weaknesses you will be verse enough to provide the correct countermeasures.
  • ctf candy - useful tools and cheat sheet for captures the flag (ctf) contests.
  • ctf-resources - a general collection of information, tools, and tips regarding ctfs and similar security competitions
  • ctf-tools - this is a collection of setup scripts to create an install of various security research tools.
  • h4cker - thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (dfir), vulnerability research, exploit development, reverse engineering, and more.
  • p0 tools - project zero docs and tools
  • powerful plugins - powerful plugins and add-ons for hackers for dburpsuite, chrome, firefox, ida, etc
  • printer hacking -
  • pycurity - python security scripts
  • seclists - seclists is the security tester's companion. it's a collection of multiple types of lists used during security assessments, collected in one place.
  • the hacker's choice tips and tricks

papers

posters

practice/wargames

  • 0x0539 - site with practice ctf problems
  • 247ctf - a 24/7 ctf
  • attackdefense - security labs
  • awesome cyber skills - list of different security practice sites
  • backdoor
  • counterhack hacker challenges
  • ctflearn - collection of ctf problems
  • damn vulnerable ios app - an app for users to test their ios penetration testing skills
  • defend the web - an interactive cyber security platform
  • game of hacks - this game was designed to test your application hacking skills. you will be presented with vulnerable pieces of code and your mission if you choose to accept it is to find which vulnerability exists in that code as quickly as possible
  • hackthissite - hackthissite.org is a free, safe and legal training ground for hackers to test and expand their ethical hacking skills with challenges, ctfs, and more.
  • hacker.org challenge
  • hacker gateway - we offer computer-related problems, also known as challenges, that span many categories, including cryptography, steganography, security, programming and more.
  • hacker test - "online hacker simulation"
  • hax.tor - old wargame
  • hellbound hackers - learn how hackers break in, and how to keep them out.
  • overthewire wargames - the wargames offered by the overthewire community can help you to learn and practice security concepts in the form of fun-filled games.
  • picoctf - beginner-level ctf with years worth of archives
  • practice ctf list - list of ctf practice sites
  • ringzer0ctf - ctf practice cite that requires writeups
  • smashthestack - the smash the stack wargaming network hosts several wargames.
  • tryhackme - collection of cybersecurity challenges
  • vulnhub - collection of intentionally vulnerable machines
  • w3challs - our community offers you security challenges to learn and practice hacking.
  • we chall - collection of ctf challenge sites

reference

  • cve details - database of cves and accompanying details
  • exploit database - exactly what is sounds like: a database of exploits
  • infocondb - welcome to infocondb, the site that catalogs and cross-references hacker and infosec conferences!

software

tools (general)

  • ctf-katana - automatic ctf challenge solver in python3
  • cyberchef - a web app for encryption, encoding, compression and data analysis
  • hacking tools
  • payload all the things - a list of useful payloads and bypass for web application security and pentest/ctf
  • pyck - a collection of useful python hacking scripts for beginners
  • red teaming toolkit - a collection of open source and commercial tools that aid in red team operations.
  • uscga tools - the purpose of this repository is to act as an archive of tools that either we uscga cyber team have built on our own or use.
  • weggli - semantic search tool to search c/c++ codebases

talks

videos

youtube channels

writeups

writeups that i like, or explained problems i didn't solve, or taught me something new