Cyber Security
- How not to suck a PenTesting – https://www.youtube.com/watch?v=Yo4oP2eyDtI
- I2P
- JRDesktop
- Security Weekly – http://securityweekly.com/
- Security Weekly Wiki – http://wiki.securityweekly.com/wiki/index.php/Main_Page
- Black Hills Projects – http://www.blackhillsinfosec.com/?page_id=4415
- CTF – https://ctftime.org/ctf-wtf/
- HackerOne – https://hackerone.com/
- BugCrowd – https://bugcrowd.com/how-it-works
- Application Security Verification Standard – https://www.owasp.org/index.php/Category:OWASP_Application_Security_Verification_Standard_Project
- Exploitables
- https://list.ly/list/euz-15-vulnerable-sites-to-legally-practice-your-hacking-skills
- Social-Engineer Toolkit – https://www.trustedsec.com/social-engineer-toolkit/
- ha.ckers
- skullsecurity – A lot of great wordlists
- thesprawl.org – Great research blog covering password cracking, exploitation, and more
- pentestmonkey – SQL injection cheat sheet
- https://github.com/EnableSecurity
- https://github.com/fuzzdb-project/fuzzdb
- https://github.com/1N3/IntruderPayloads
- https://nvisium.com/blog/2014/02/14/using-burp-intruder-to-test-csrf/
- https://www.sans.org/reading-room/whitepapers/testing/fuzzing-approach-credentials-discovery-burp-intruder-33214
- OpenSource ZAP – https://en.wikipedia.org/wiki/OWASP_ZAP
- http://www.arachni-scanner.com/license/#
- https://www.concise-courses.com/hacking-tools/top-ten/
- http://www.pragmaticcso.com/poster.html
Advertisements