shortpoet/security

Security related research and projects

security

Security related research and projects

Useful Links

Learn

• SANS
  • SANS
  • Holiday Hack Challenge
  • Kringlecon Site
  • Kringlecon Twitter
  • Kringlecon Youtube
  • Cyber Ranges – A Continuum of Hands-On Learning
• OpenSOC
  • OpenSOC
  • OpenSOC - Github
  • OpenSOC - Github docs
  • Defcon forum Intro to OpenSOC
  • Soc X
  • Kibana - Github
• OpenSSL
  • OpenSSL Site
  • OpenSSL - Malloc
• Products & Tools
  • Balbix
  • YARA - The pattern matching swiss knife for malware researchers (and everyone else)
  • SNORT
  • Rapid7
    • Metasploit - The world’s most used penetration testing framework
• CTF
  • Infysec CTF
  • Hacking Articles CTF Walkthrouhgs
  • CTF Time
• Other
  • OverTheWire Wargames
  • About Hack The Box Pen-testing Labs
  • Smash The Stack
  • TryHackMe
    • Advent of Cyber
    • TryHackMe OSCP Preparation Path Review2 min read
  • Wild West Hackin' Fest Training
  • Hack-with-Github/Awesome-Hacking
  • carpedm20/awesome-hacking
  • vitalysim/Awesome-Hacking-Resources
  • jekil/awesome-hacking
  • m4ll0k/Awesome-Hacking-Tools
  • DanieleMaisto/Awesome-Hacking-Tools - A collection of awesome lists for hackers, pentesters & security researchers.
  • 21 Hacking Sites, CTFs and Wargames To Practice Your Hacking Skills - Reddit
• recommendations from Network Chuck YT learn to hack series - John Hammond Interview
  • after ine/elarn oscp/elaern ecppt gpen cert.warrior
  • first cert pentest plus ejpt elarn security ; secuity plus ;
  • put tryhackme standing hack the box rank in resume
  • cybersecurity portfolio
  • MTA: Introduction to Programming Using Python
    • Exam 98-381: Introduction to Programming Using Python
  • The New Boston - Youtube (Python Learning)
    • Python by Thenewboston - Cursa
  • cybersecurity hygiene
  • cybersecurity posture
  • vulnerability disclosure program
  • Supply chain attack - Wikipedia
  • DoD DC3 - Cyber Training Academy
  • Dual Core (hip hop duo) - Wikipedia
  • Security operations center - Wikipedia
  • domain controller pentest
    • balaasif6789/AD-Pentesting - Github - tons of resources
    • PENETRATION TESTING ACTIVE DIRECTORY, PART I
  • microsoft exchange pentest
    • dafthack/MailSniper
    • sensepost/ruler
  • post exploitation command and control
    • Science Direct - Post Exploit Resources
    • DeimosC2 – Golang Command & Control Framework For Post-Exploitation
    • Linux post-exploitation. Advancing from user to super-user in a few clicks - HackMag
    • Ne0nd0g/merlin
      • Introducing Merlin — A cross-platform post-exploitation HTTP/2 Command & Control Tool
    • Rapid 7 - Docs
    • Awesome Open Source - The Top 54 Post Exploitation Open Source Projects

Blogs / Youtube

• Coen Goedegbure
• DEFCON 28 OpenSOC Blue Team CTF: Lessons and Tips
• Scripting is Life
• STÖK - Youtube
• STÖK - Hackerone
• The Security Noob
• Heath Adams - The Cyber Mentor
  • TCM Security Academy
  • FreeCodeCamp YT - Full Ethical Hacking Course - Network Penetration Testing for Beginners (2019)
• Six Stages of Dealing with a Global Security Incident
• Highly Evasive Attacker Leverages SolarWinds Supply Chain to Compromise Multiple Global Victims With SUNBURST Backdoor
• Rapid Response: Supply Chain Exploitation of SolarWinds Orion Software
• Huntress - Security Company Blog
• Accelerating Open Access - MDPI is a pioneer in scholarly open access publishing and has supported academic communities since 1996.
• Pentest Lab
• PT Security Swarm
• Black Hills Information Security
• Threatpost
• root@Hausec
• Pentest Tools
• Hackmag
• Hacking Articles
• Late-night InfoSec Adventures

Certify

• OSCP vs eCPPT: My experience with both - Reddit- OSEP PEN-300
  • deletehead/pen_300_osep_prep
• Offensive Security
  • OSCP/OSCE/OSWP REVIEW
  • OSCE - PEN-200
  • OSWP - PEN-210
  • OSWE - PEN-300
  • NEW DEVELOPMENTS: RETIRING CTP AND INTRODUCING NEW COURSES
    • [OSCE3][https://www.offensive-security.com/ctp-osce/]
    • Offensive Security Launches New Course and Certification for Exploit Development and Reverse Engineering
• ELearn Security
  • eCPTXv2 Certification
  • eJPT Certification
  • eLearnSecurity Junior Penetration Tester (eJPT) Exam Review 2020 - Reddit
  • EJPT Review - Hackthebox forum
• GIAC
  • Cyber Security Certifications: DoDD 8570
• CompTIA
  • Understanding ‘Why’ you should take CompTIA’s Security+ Exam for DoD Programs - Microsoft Blog
  • CompTIA PenTest+ Certification Training
  • What Is DoD 8570? Cybersecurity Certifications and Requirements
• EC-Council
  • CERTIFIED ETHICAL HACKER - EC-Council
• Python Institute - PCAP – Certified Associate in Python Programming certification
• SEC573: Automating Information Security with Python
• Cyber Security Certification: GPYC - Python
• Microsoft
  • Exam AZ-104: Microsoft Azure Administrator