This repository contains a curated list of resources I suggest on LinkedIn and Twitter.ππ I hope you find it useful.πΈπ
In addition, other platforms where you can connect with me for articles, repositories, and more that I will publish in the new year;
- Pentest General Resources
- Web Pentest
- Mobile Pentest
- Cloud Security & Pentest
- Bug Bounty
- OSINT & Google Dorks
- API Security & Pentest
- Active Directory
- Red Teaming
- Exploit Development
- AppSec & Code Review
- DevSecOps
- CTFs & Writeups
- Social Engineering
- Certifications
- Roadmaps
- Security Architecture
- IoT Security
- Container Security
- Blockchain Security
- Threat Modelling
- General Resources
Happy huntingβοΈπ»
-
https://blog.compass-security.com/2019/10/hacking-tools-cheat-sheet/
-
https://www.ired.team/offensive-security-experiments/offensive-security-cheetsheets
-
https://github.com/husnainfareed/Awesome-Ethical-Hacking-Resources
-
https://www.lifars.com/knowledge-center/python-penetration-testing-cheat-sheet/
-
https://github.com/purabparihar/Infrastructure-Pentesting-Checklist
-
https://github.com/Orange-Cyberdefense/arsenal/tree/master/mindmap
-
https://github.com/RafaelFunchal/wordpress-security-checklist/blob/master/items.md
-
https://s0cm0nkey.gitbook.io/s0cm0nkeys-security-reference-guide/
-
https://github.com/Ignitetechnologies/Web-Application-Cheatsheet
-
https://infosecwriteups.com/serialization-deserialization-attacks-on-php-d5fb02e29248
-
https://github.com/5bhuv4n35h/pentestmindmap/blob/master/web_application_penetration_testing.png
-
https://guidesmiths.github.io/cybersecurity-handbook/attacks_explained/
-
https://github.com/dhaval17/awsome-security-write-ups-and-POCs
-
https://github.com/muellerberndt/android_app_security_checklist
-
https://medium.com/vakifbank-teknoloji/android-application-security-penetration-tests-1-2da29240093d
-
https://raw.githubusercontent.com/5bhuv4n35h/pentestmindmap/master/cloud_penetration_testing.png
-
https://github.com/six2dez/pentest-book/tree/master/enumeration/cloud
-
https://github.com/aquasecurity/cloud-security-remediation-guides
-
https://infosecwriteups.com/bug-bounty-hunting-methodology-toolkit-tips-tricks-blogs-ef6542301c65
-
https://github.com/djadmin/awesome-bug-bounty#write-ups--authors
-
https://github.com/jassics/security-study-plan/blob/main/web-pentest-study-plan.md
-
https://github.com/nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters
-
https://github.com/sehno/Bug-bounty/blob/master/bugbounty_checklist.md
-
https://mokhansec.medium.com/what-would-i-do-if-i-start-bug-hunting-from-0-again-79c7fa78b789
-
https://bbinfosec.medium.com/collection-of-bug-bounty-tip-will-be-updated-daily-605911cfa248
-
https://github.com/imran-parray/Mind-Maps/blob/master/Recon%20-%20Imran%20parray/My-recon.png
-
https://blog.blockmagnates.com/open-source-intelligence-osint-996c8d2db362
-
https://www.bruceclay.com/blog/bing-google-advanced-search-operators/
-
https://1337red.wordpress.com/building-and-attacking-an-active-directory-lab-with-powershell/
-
https://github.com/Integration-IT/Active-Directory-Exploitation-Cheat-Sheet
-
https://github.com/MahdiMashrur/Awesome-Application-Security-Checklist
-
https://erdemstar08.medium.com/source-code-scan-7448df9a1358
-
https://erdemstar08.medium.com/java-source-code-scanning-with-maven-fortify-4514b61696b6
-
https://erdemstar08.medium.com/ios-source-code-scanning-fortify-b0cca71ab519
-
https://erdemstar08.medium.com/android-source-code-scanning-fortify-f218df889eeb
-
https://erdemstar08.medium.com/code-scan-with-sast-net-framework-4-8-876d42673c72
-
https://erdemstar08.medium.com/code-scan-with-sast-net-core-3-49cb8c742ecc
-
https://bitvijays.github.io/LFC-VulnerableMachines.html#ctf-series-vulnerable-machines
-
https://uppusaikiran.github.io/hacking/Capture-the-Flag-CheatSheet/
-
https://brcyrr.medium.com/recommendations-of-oscp-433a08c86f27
-
https://areyou1or0.it/index.php/2021/02/10/finally-oscp-may-the-force-be-with-you/
-
https://brcyrr.medium.com/recommendations-review-of-emapt-819e72a27f06
-
http://www.mannulinux.org/2022/07/covenant-c2-for-oscp-ad-lab.html
-
https://www.mannulinux.org/2022/07/covenant-c2-for-oscp-ad-lab-part-2.html
-
https://brcyrr.medium.com/recommendations-review-of-ewptxv2-66a114e450db
-
https://brcyrr.medium.com/recommendations-of-oswp-c14ab45ae491
-
https://medium.com/@rezaduty/web-penetration-testing-roadmap-4e7bb9edf23b
-
https://medium.com/@rezaduty/mobile-penetration-tester-roadmap-f2ec9bd68dcf
-
https://github.com/CyberSecurityUP/PenTest-Certifications-Roadmap