Awesome Resources For Learning Hacking & Pentesting

What I’m sharing here is a collection of some best resources about Hacking & Penetration Testing to make you learn faster! Let's make it the best resource repository for our community.

You are welcome to fork and contribute.

Also you can find my own writeups/tutorials on medium : @hussnainfareed :)

Books

1. The Hacker Playbook 2: Practical Guide To Penetration Testing
2. The Basics of Hacking and Penetration Testing, Second Edition: Ethical Hacking and Penetration Testing Made Easy
3. Breaking into Information Security: Learning the Ropes 101
4. Penetration Testing: A Hands-On Introduction to Hacking
5. Social Engineering: The Art of Human Hacking
6. Hacking: The Art of Exploitation, 2nd Edition
7. Web Hacking 101
8. OWASP Testing Guide (A must read for web application developers and penetration testers)
9. The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws
10. The Basics of Web Hacking: Tools and Techniques to Attack the Web

Learning Platforms to Sharpen Your Skills

Online

Off-Line

Vulnerable Machines/Websites

1. FiringRange

Vulnerability Databases And Resources

Vulnerability Databases are the first place to start your day as a security professional. Any new vulnerability detection is generally available through the public vulnerability databases. These databases are a big source of information for hackers to be able to understand and exploit/avoid/fix the vulnerability.

• http://www.exploit-db.com/
• http://1337day.com/
• http://securityvulns.com/
• http://www.securityfocus.com/
• http://www.osvdb.org/
• http://www.securiteam.com/
• http://secunia.com/advisories/
• http://insecure.org/sploits_all.html
• http://zerodayinitiative.com/advisories/published/
• http://nmrc.org/pub/index.html
• http://web.nvd.nist.gov
• http://www.vupen.com/english/security-advisories/
• http://www.vupen.com/blog/
• http://cvedetails.com/
• http://www.rapid7.com/vulndb/index.jsp
• http://oval.mitre.org/
• http://sploitus.com/
• http://cxsecurity.com/

Malware Analysis

Linux Penetration Testing OS

Courses

1. Computer Systems Security, MIT

For those who want to do CEH, the following links are for you. 2. CBT Nuggets CEH Training 3. CEH Books 4. Guide to Binary Exploitation

Workshops/Playlists

1. Web Hacking
2. Ethical Hacking, A Comprehensive Playlist covering almost everything

Security Talks and Conferences

1. InfoCon - Hacking Conference Archive
2. Curated list of Security Talks and Videos
3. Blackhat
4. Defcon
5. Security Tube
6. Kevin Mitnick: Live Hack at CeBIT
7. Ghost in the Cloud, Kevin Mitnick
8. Kevin Mitnick | Talks at Google
9. Complete Free Hacking Course: Go from Beginner to Expert Hacker Today

YouTube Channels

Now let’s get Towards YouTube Channel Links... These Channels are Shared By Hackers where They Upload their Video POCs.. Watching them u can actually understand how to demonstrate these type of attacks...

1. LiveOverflow
2. Black Hat
3. Injector Pca
4. Hisham Mir
5. Devil Killer
6. Suleman Malik
7. Dem0n
8. Frans Rosén
9. HackerOne
10. ak1t4 machine
11. Shawar Khan
12. vulnerability0lab
13. Bugcrowd
14. Vijay Kumar
15. Web Development Tutorials
16. Jan Wikholm
17. Bhargav Tandel
18. ErrOr SquaD
19. SecurityIdiots
20. Penetration Testing in Linux
21. Hussnain Fareed
22. Null Byte

Any Channel Link Missing? Kindly add it in Comments

Forums

Contribution

Your contributions and suggestions are heartily welcome.

NOTE:

All references taken from Internet and shared on internet xD Thanks to those who shared their opinion before that helped me learn 😉 if you have any questions, please ask in the comments. If you know about any good resource for beginners, please share it here.

For more articles on hacking you can follow me on Medium:

medium.com/@hussnainfareed