vitalysim / Awesome-Hacking-Resources

Awesome Hacking Resources A collection of hacking / penetration testing resources to make you better! **Let's make it the biggest resource repository for our community.** **You are welcome to fork and contribute.** We started a new tools list, come and contribute Table of Contents • Learning the Skills • YouTube Channels • Companies • Conferences • NEWS • Sharpening Your Skills • Reverse Engineering, Buffer Overflow and Exploit Development • Privilege Escalation • Network Scanning / Reconnaissance • Malware Analysis • Vulnerable Web Application • Vulnerable OS • Exploits • Forums • Archived Security Conference Videos • Online Communities • Online News Sources • Linux Penetration Testing OS Learning the Skills Name | Description ---- | ---- CS 642: Intro to Computer Security | academic content, full semester course, includes assigned readings, homework and github refs for exploit examples. NO VIDEO LECTURES. CyberSec WTF | CyberSec WTF Web Hacking Challenges from Bounty write-ups Cybrary | coursera style website, lots of user-contributed content, account required, content can be filtered by experience level Free Cyber Security Training | Academic content, 8 full courses with videos from a quirky instructor sam, links to research, defcon materials and other recommended training/learning Hak5 | podcast-style videos covering various topics, has a forum, "metasploit-minute" video series could be useful Hopper's Roppers Security Training | Four free self-paced courses on Computing Fundamentals, Security, Capture the Flags, and a Practical Skills Bootcamp that help beginners build a strong base of foundational knowledge. Designed to prepare for students for whatever they need to learn next. Learning Exploitation with Offensive Computer Security 2.0 | blog-style instruction, includes: slides, videos, homework, discussion. No login required. Mind Maps | Information Security related Mind Maps MIT OCW 6.858 Computer Systems Security | academic content, well organized, full-semester course, includes assigned readings, lectures, videos, required lab files. OffensiveComputerSecurity | academic content, full semester course including 27 lecture videos with slides and assign readings OWASP top 10 web security risks | free courseware, requires account SecurityTube | tube-styled content, "megaprimer" videos covering various topics, no readable content on site. Seed Labs | academic content, well organized, featuring lab videos, tasks, needed code files, and recommended readings TryHackMe | Designed prebuilt challenges which include virtual machines (VM) hosted in the cloud ready to be deployed YouTube Channels Name | Description ---- | ---- 0patch by ACROS Security | few videos, very short, specific to 0patch BlackHat | features talks from the BlackHat conferences around the world Christiaan008 | hosts a variety of videos on various security topics, disorganized | **Companies** Detectify | very short videos, aimed at showing how to use Detictify scanner Hak5 | see Hak5 above Kaspersky Lab | lots of Kaspersky promos, some hidden cybersecurity gems Metasploit | collection of medium length metasploit demos, ~25minutes each, instructional ntop | network monitoring, packet analysis, instructional nVisium | Some nVisum promos, a handful of instructional series on Rails vulns and web hacking OpenNSM | network analysis, lots of TCPDUMP videos, instructional, OWASP | see OWASP above Rapid7 | brief videos, promotional/instructional, ~ 5 minutes Securelist | brief videos, interviews discussing various cyber security topics Segment Security | promo videos, non-instructional SocialEngineerOrg | podcast-style, instructional, lengthy content ~1 hr each Sonatype | lots of random videos, a good cluster of DevOps related content, large range of lengths, disorganized SophosLabs | lots of brief, news-style content, "7 Deadly IT Sins" segment is of note Sourcefire | lots of brief videos covering topics like botnets, DDoS ~5 minutes each Station X | handful of brief videos, disorganized, unscheduled content updates Synack | random, news-style videos, disorganized, non-instructional TippingPoint Zero Day Initiative | very brief videos ~30 sec, somewhat instructional Tripwire, Inc. | some tripwire demos, and random news-style videos, non-instructional Vincent Yiu | handful of videos from a single hacker, instructional | **Conferences** 44contv | in MIT OCW 6.858 Computer Systems Security |Information security con based in London, lengthy instructional videos BruCON Security Conference | security and hacker conference based in b\Belgium, lots of lengthy instructinoal videos BSides Manchester | security and hacker con based in Mancheseter, lots of lengthy videos BSidesAugusta | security con based in Augusta, Georgia, lots of lengthy instructional videos CarolinaCon | security con based in North Carolina, associated with various 2600 chapters, lots of lengthy instructional content Cort Johnson | a handful of lengthy con-style talks from Hack Secure Opensec 2017 DevSecCon | lenghty con videos covering DevSecOps, making software more secure Garage4Hackers - Information Security | a handful of lengthy videos, About section lacks description HACKADAY | lots of random tech content, not strictly infosec, some instructional Hack In The Box Security Conference | lengthy con-style instructional talks from an international security con Hack in Paris | security con based in paris, features lots of instructional talks, slides can be difficult to see. Hacklu | lots of lengthy con-style instructional videos Hacktivity | lots of lengthy con-style instructional videos from a con in central/eastern europe Hardwear.io | handful of lengthy con-style video, emphasis on hardware hacks IEEE Symposium on Security and Privacy | content from the symposium; IEEE is a professional association based in the us, they also publish various journals LASCON | lengthy con-style talks from an OWASP con held in Austin, TX leHACK | leHACK is the oldest ( 2003 ),…