I have collected many Free Resources. Feel free share more resources
My Resources
Index
- Intro To CyberSec
- Networking
- Operating Systems
- Web Pentesting
- Binary Expolitation
- x86-64 Assembly
- Privilege Escalation
- Android Pentesting
- Evasion And Malware
- Forensics
- Amazing Training Sites
- Gitooks
- Pivoting Guides
- Docker
- Programming
- Windows and Active Directory
- OSINT Challenges / CTFs
- Certification Resources
- Cheat Sheets
Intro To CyberSec
- Learning Path for Beginners – Mrashleyball
- PentesterLab Bootcamp – Pentesterlab
- Penetration Testing Bootcamp – HackerSploit YouTube (55 Videos)
- Beginning in Offensive Security Part 1 – Mrs_Skelli
- Beginnings of Offensive Security Part 2 – Mrs_Skelli
- Awesome Thread To Explain All the Essentials Tools in a Simple Way – Parsan26 Twitter
- W3rni0 Awesome Resources – W3rni0 Github
- CyberSec Courses for Beginners – Hackerstop.org
- Future Careers for the World’s Workforce
- FreeTraining DFIRDIVA Core Training CyberSec
- CyberAces tutorials Windows, Linux, Networking, PowerShell, Bash, Python
- Awesome Computer History
- ITMASTERS Free Short Course on PenTesting and a free exam at the end.
- Introduction to Cyber Security (Skillsforall)
- So you want to be a Hacker?
- Becoming a Pentester by Jhalon
- TryHackMe Beginner Path
- HackerSploit YouTube Channel
- TheCyberMentor YouTube Channel. PEH course is divided into categories in his channel for FREE!!These can also be found on TCM’s PEH course or on YouTube below. The course he offers is free on YouTube. He also does giveaways which can be found on TCM’s Twitter
Networking
NOTE: Some are taken from EbookFoundation
- Free Code Camp
- ITMASTERS Free Short Course Computer Network Fundamentals and a free exam at the end.
- An Introduction to Computer Networks – Second Edition – open.umm.edu
- FREE CCNA 200-301. Complete Course. NetworkChuck 2021
- Cisoc Skillsforall Network Essentials
- N/W Basics Part 1 Hackers-Arise
- N/W Basics Part 2 Hackers-Arise
- Service Names with their Port Numbers
- Intro to Networks by Peter L Dordal
- An Introduction to Computer Networks (HTML, PDF, Kindle)
- Bits, Signals, and Packets: An Introduction to Digital Communications and Networks
- Code Connected vol.1 (PDF) (book on ZeroMQ)
- Computer Networking : Principles, Protocols and Practice (HTML, ePub, PDF, Kindle)
- Computer Networks: A Systems Approach – Larry Peterson and Bruce Davie (HTML, epub, mobi, PDF)
- Distributed systems for fun and profit
- High-Performance Browser Networking – Ilya Grigorik
- How HTTPS Works – DNSimple
- HTTP Succinctly, Syncfusion (PDF, Kindle) (email address requested, not required)
- HTTP2 Explained – Daniel Stenberg
- Introduction to HTTP – Launch School
- IPv6 for IPv4 Experts – Yar Tikhiy (PDF)
- Kafka, The definitive Guide – Neha Narkhede (PDF)
- Network Science – Albert-Laszló Barabási
- The TCP/IP Guide
- Understanding IP Addressing: Everything you ever wanted to know (PDF)
- ZeroMQ Guide
- What is Computer Networking
- Networking Fundamentals (netacad)
- The Five Pillars of an Information/Cyber Security Professional
- Professor Messer N10-007 Network+
- Computer-Network-tutorials
- Networking Tutorials – InetDaemon’s IT Tutorials
- Network Fundamentals (youtube)
- Networking Basics 1 (By Night and Skelli)
- Networking Basics 2 (By Night and Skelli)
- Computer Networking Course offered By Georgia Tech University [Free Course]
- Network Security Course offered By Georgia Tech University [Free Course]
- Networking For Web-Developers offered By Georgia Tech University [Free Course]
Operating Systems
- Introduction To Operating Systems offered By Georgia Tech University [Free Course]
- Advanced Operating Systems course offered By Georgia Tech University [Free Course]
- GT – Refresher – Advanced OS offered by Georgia Institute of Technology [Free Course]
Web-Pentesting
- Web-Services Recon – Thehacker.recipes
- Resources for Beginner Bug Bounty Hunters – Nahamsec Github
- Resources for Beginner Bug Bounty Hunters – Basics – Nahamsec Github
- Resources for Beginner Bug Bounty Hunters – Labs Setup – Nahamsec Github
- Resources for Beginner Bug Bounty Hunters – Vuln Types – Nahamsec Github
- Resources for Beginner Bug Bounty Hunters – Blogs and Reports – Nahamsec Github
- XSS Resources – InfosecWriteups
- SSTI and Some More Easy Reports for Bug Hunting – Gandhim373 Medium
- SecurityIdiots – Web Hacking Blogs by Faraz Khan
- Web Cheat Sheet – Guide.OffsecNewbie
- Web Application Penetration Testing Notes – Techvomit.net
- RCE via LFI Log Poisoning – ShahJerry33 Medium
- Xapax Attacking Web Applications – OAuth Attack (Many more topics in the index)
- 5 Most Effective Ways of Learning in Bug Bounty
- HackAllTheThings Web-App Articles
- Web Hacking 101 PwnFuntion
- HackerStop BugBounty resources
- HackerSploit Web-App PenTesting Tutorials
- XXE Vulnerabilities and Attacks Hackers-Arise
- XSS Attacks Hackers-Arise
- Burp Suite Part 2 – Bypass Weak Input Validation to Upload Malware to a Website
- Burp Suite Part 3 – Testing for Persistent XSS
- Burp Suite Part 4 – RFI
- MR-SINISTER blogs and guides
- Bug Bounty Training
- Practice your XSS skills
- Hacker101
- Tryhackme Web Path
- Web Application Ethical Hacking – Penetration Testing Course for Beginners
- Burp Suite Essentials
- Portswigger Web-Learning Path
- Template Injection Workshop – Gosecure.Github
- OWASP’s Top Ten Vulns (By Night and Skelli)
- Introduction to Web Application Hacking OWASP Top 10
Binary-Exploitation
- Pwn College
- ROP Emporium – Learn return-oriented programming through a series of challenges.
- GuyInATuxedo Nightmare – Guyinatuxedo.github
- PWN Land – D4mianWayne Github
- Buffer Overflow Series – Heath Adams Youtube
- Buffer Overflow Guide – Johnjhacking Github
- How2Heap – Sellphish Github
- OmegaVoid Blogs on BinExp BOF – OmegaVoid.github
- Binary Exploitation for beginners – tc.gts3.org
- Exploit Development Learning Roadmap – Redit
- Modern Binary Exploitation – RPISEC Github
- Windows Binary Course (with videos) – Ashemery Github
- Exploit Development Learning resources – Kalitut.com
- Windows Exploit Development – SecuritySift – SecuritySift.com
- Crackmes – Thanks to Dasith
Thanks to Swanandx for the resources below. His Website. His Github
Blogs :-
- PWN challenges Writeups
- Kileak Github Writeups
- 4mianwayne PWN Writeups
- CTF101 Bin-Exp Buffer Overflow
- Skull Security PWN CTF walkthroughs
- Google project zero blog
Youtube :-
x86-64 Assembly
Privilege Escalation
- Privilege Escalation – Conda YouTube
- Linux
- Conda YouTube
- Linux Privilege Escalation – Docker Group
- Privilege Escalation – Book.hacktricks
- Windows
- FuzzSecurity Windows Privilege Escalation
- The Read Team Guide – Privilege Escalation – KwcSec.github
- Privilege Escalation Windows – Guide.OffsecNewbie
Android Pentesting
- HackerStop Mobile Pentesting
- HackAllTheThings Mobile Pentesting
- Android Hacking video by Brain Moulding
Evasion And Malware
- BlackCloud – infosec and other stuffs
- Defense Evasion – DMCXBlue.gitbook
- Defense Evasion
- Art of Anti Detection 1 – Introduction to AV & Detection Techniques – Pentest.blog
- Art of Anti Detection 2 – PE Backdoor Manufacturing) – Pentest.blog
- Malware Development Part 1 – 0xPat Github
- Malware Development Part 2 – 0xPat Github
- A Tale of EDR Bypass Methods – S3cur3th1ssh1t
- Defense Evasion – Kwsec.gitbook
- Evasion Windows – Akenofu.gitbook
- Windows Defender AV Evasion – Purpl3f0xsecur1ty
- Write a Crypter in any Language – Netsec.expert
- Bypass AV Dynamics – blog.Sevages
- Hack to Basics – Adapting Exploit Frameworks to Evade Microsoft ATP – BC-SECURITY Github
- Decon27 C# Workshop – Mvelazc0 Github
- Weaponising C# Fundamentals – Fozavci
- Implane Development and Defense Evasion Part 1 – File Basics Lsteelo Medium
- GhostSec420 Bypass AV Dynamics
- NiiConsulting Simple CMD Reverse Shell
- IRED Team
- 0xHop Blog on AV Evasion part 1
- 0xHop Blog on AV Evasion part 2
- AV Evasion Mimikatz – IppSec YouTube
Forensics
- Introduction to Windows Forensics
- A Source for PCAP Files and Malware Samples
- Stegsnow – Delightlylinux
- Data Carving using Foremost – Hackingarticles.in
Amazing Sites
- TheHacker.recipes
- Offensive-Resources – Zeyad-Azima Github
- PentesterLab Bootcamp – Pentesterlab
- W3rni0 Awesome Resources – W3rni0 Github
- Programming Tasks (with solutions in all languages) – Rosettacode
- Resources for Beginner Bug Bounty Hunters – Nahamsec Github
- W3rni0 Awesome Resources – W3rni0 Github
- SecurityIdiots – Web Hacking Blogs by Faraz Khan
- OSCE3 (OSWE, OSEP, OSED) Complete Guide – CyberSecurityUP Github
- Rowbot’s Pentesting Notes – OffsecNewbie.com
- Reverse Shell Cheat Sheet
- HighOnCoffee Blogs
- GhostSec420 Pentest Toolkits and Resources
- GTFOBins – Linux Service Escalation Cheat Sheet
- Wadcoms – Windows Service Escalation Cheat Sheet
- A brilliant CheatSheet and Explanations for various topics – Xapax Github
- FuzzSecurity Tutorial
- Nickapic’s notes
- ExplainShell
- List of hackable sites
- TryHackMe
- HackTheBox
- Active Directory Security
- Great eCPPTv2 External Resources
- DFIR Madness
- HackerStop
- Cisco’s Skillsforall
- LeanPub (You can get many books)
- Name The Hash (Usefull for finding the hash type and hashcat/john mode)
- IPPSEC Blogs, Videos and Walkthroughs
- NetCat Use Cases
- Hackers Arise
- Exploit Development and Overflows FuzzySecurity
- Tsushima blogs (Programming and CyberSec)
- Learn Linux
- Proffesor Messer
- Linux Notes for Professionals
Gitbooks / Github.io
Gitbook
- OSCP Useful Links – BackDoorShell.gitbooks
- The Read Team Handbook – KwcSec.gitbook
- Hack All The Things – Akenofu.gitbook
- DarkSidious – Hunter2.gitbook
- What is AD101? – Kvenkatraman10.gitbook
- Certification Notes and Cheat Sheets – Ferx.gitbook
- Red Team Notes 2.0 – DMCXBlue.gitbook
Github.io
- byt3bl33d3r – Github.io
- Xapax Security Notes – Github.io
- Gosecure – Github.io
- GuyInATuxedo Nightmare – Github.io
- OmegaVoid – Github.io
- Swanandx – Github.io
- Kileak – Github.io
- D4mianwayne – Github.io
- 0xpat – Github.io
- S3cur3th1ssh1t – Github.io
- 0xHop – Github.io
- GTFOBins – Github.io
- GCHQ (CyberChef) – Github.io
- Razvioverflow – Github.io
Pivoting Guides
(These can also be very helpfull for eCPPTv2)
- Port Forwarding/SSH Tunneling – Guide.OffsecNewbie
- State of the Art of Network Pivoting
- Read Team Handbook Pivoting – KwcSec
- Offensive Security Guide to SSH Tunnels and Proxies – Specterops
- Wreath from TryHackMe
- Explore Hidden Networks with Double Pivoting – Pentest.blog
- BackDoorShell blog for Pivoting
- The Cyber Plumber’s Handbook – It is a paid book
- A Red Teamer’s guide to Pivoting
- How to use SSH Tunneling – Howtogeek
- Pivoting With Chisel
- Nessus over SOCKS over Metasploit
- SOCKS Proxy Lab Setup – by Kiwids (Notion)
Docker
- The Docker Handbook (docker-handbook.farhan.dev) – Docker-handbook.farhaan
- Docker For Pentesters – blg.ropnop – Blog.Ropnop
- Docker Getting Started – Docker Hub
- Docker 101 Tutorial – Docker.com
- University of Helsinki DevOps with Docker course – Devopswithdocker.co,
Programming
- How To Start Learning Programming – Freecodecamp.org
- Resources for Beginner Bug Bounty Hunters – Coding – Nahamsec Github
- Programming Tasks (with solutions in all languages) – Rosettacode
- Offensive Programming with Challenges – Zeyad-Azime Github
Note : Some are taken from EbookFoundation
- Programming Books FreePythonNote : The following are some links which will help you to begin with python programming to be a professional and the rest relies on Practice and small python projects.
- Introduction To Python Programming [Free Course]
- Python Data Science Cheatsheet
- Python-Projects
- Python-Projects for cybersecurity
- The Modern JavaScript Tutorial – Javascript.info
- SoloLearn JavaScript course – Sololearn
- C++ For Programmers – Catherine Gamboa (Udacity)
- C++ Programming Tutorial for Beginners (For Absolute Beginners)
- C++ Tutorial by The Bad Tutorials
- C++ Tutorial for Beginners – Full Course – Mike Dane – (freeCodeCamp)
- Google’s C++ Course
- Introduction to C++ (MIT’s opencourseware)
- Microsoft edX Courses:
- C Programming Tutorial
- C Programming Tutorial for Beginners – Mike Dane – (freeCodeCamp)
- Introduction to Computer Science
- The Arduino Platform and C Programming
- Decon27 C# Workshop – Mvelazc0 Github
- Installing DotNet and running C# codes on Linux
- Weaponising C# Fundamentals – Fozavci
- C# 101 – Scott Hanselman, Kendra Havens Microsoft.
- C# Tutorial – Full Course for Beginners – Mike Dane – (freeCodeCamp)
- Learn how to program: C# – Epicodus Inc.
- Microsoft C# docs
- Bash Programming guide – Guid.bash.academy
- Bash Programing Complete Series – Caleb Curry YouTube
PowerShell, Windows and Active-Directory Hacking
- Powershell101 book is from learnpubPowerShell
- PowerShell for Pentesters by The Mayor – YouTube
- Powershell for Pentesters by PenTester Academy – YouTube
- PowerShell 101 by Mike F Robbins – Leanpub
- PowerShell and DSC Team Channel (YouTube) – Youtube
- HackAllTheThings PowerShell Cheat Sheet – Akenofu Gitbook
- PowerShell Beginners Guide (More Resources in the bottom on that page)
- Windows PowerShell Tutorials
- Guru99 PowerShell Tutorials
- All the things PowerShell (YouTube) – By Shane Young
- PowerShell For Beginners Full Course (YouTube) – By Nerd’s lesson
- Learning Powershell by Microsoft
- PS 101. An Intro To PowerShell by Grimmie
- PowerShell Commands Cheat Sheet by TheMayor
- Advanced Tools and Scripting with PowerShell
- Certified_Pre-Owned.pdf – Spectertops.io
- AD Recon and Movement Tricks – TheHacker.recipes
- Practical Guide to NTLM Relaying in 2017 aka Getting a Foothold in 5 min – Byt3bl33d34.Github.io
- Persistence
- [Thread] Kerberos basics & (ab)use of Certificates within Active Directory (i.e. AD CS and PKINIT) – Shutdown (Charlie BROMBERG) Twitter
- TheReaderApp post of the Above – thereaderapp.com
- Attacking Active Directory – Conda YouTube
- How to Setup a Virtual Windows Active Directory Domain – Conda YouTube
- Attacking Active Directory – Bloodhound – Conda YouTube
- Attacking Active Directory – AS-REP Roasting – Conda YouTube
- Attacking Active Directory – Kerberoasting – Conda YouTube
- Priv2Admin – Gtworek Github
- RedTeam Security Live Hacking Demonstration – YouTube
- Intro To Windows Hashes – Hunter2.gitbook
- Understanding Active Directory Enumeration – Attl4s.github
- Pentesting AD MindMap – M4yFly
- Pentesting AD MindMap 2 – M4yFly
- TarlogicSecurity Kerberos Cheat Sheet
- Red Team Essentials Hexachodanu
- FuzzSecurity Windows Privilege Escalation
- The Read Team Guide – Privilege Escalation – KwcSec.github
- Privilege Escalation Windows – Guide.OffsecNewbie
- Top 16 Active Directory Vulnerabilites
- Kerberos in Active Directory – Hackndo
- Windows Red Team Cheat Sheet
- Icel0rd AD Hacking Cheat Sheet
- Attacking AD PEH notes by RubenFormation (Attacking and Setup)
- Active Directory Pentesting Cheat Sheet – InfoSec Writups
- CMD for Administration
- Windows Host Command Cheat Sheet by TheMayor
- AD Exploitation Cheat Sheet by SickB0y1337
- AD External Penesting by robbertscocca
- WADCOMS Cheat Sheet for AD Environment
- Kvenkatraman Gitbook AD101
- Attacking Kerberos (m0chan.github.io)
- Active Directory Environments Part Introduction
- Active Directory Basics
- Tryhackme Active Directory Basics
- AD Escalation
- Building an Active Directory Lab
- Kerberos authentication explained
- AP-REP roasting using rebeus and hashcat
- PTT Attack in mimikatz
- Kerberoasting revisting
- Attacking Active Directory (zer1t0)
- Not A Security Boundary: Breaking Forest Trusts
- IRED TEAM
- Kerberoasting
- Harmj0y Blogs
- CIS232 lessons
- Active Directory Security
- Post Exploitation
- Unofficial Guide to Mimikatz & Command Reference
- Active Directory Cookbook 4th Edition
OSINT Challenges / CTF’s
Thank’s to Jayy and MamaMouse for a lot of these resources
- THECYBERINST OSINT challenge
- OSINT Framework MindMap
- Sourcing game 1
- Twitter Quittime
- CyberINST course osintmini
- Sector035 twitter OSINT challenges
- TraceLabs Search Party
- TryHackMe GelocatingImages room
- TryHackMe Google Dorking room
- TryHackMe Sakura room
- TryHackMe SearchLightOsint room
- TryHackMe Somsint room
- CyberSoc Wales
- TryHackME OHSINT room
- Geoguessr
- CyberDefender labs
- HackTheBox challenges
- TraceLabs Slack
- TryHackMe MNEMONIC room
- TryHackMe JPGChat room
- TryHackMe Shodan room
Certification Resources
Resources for eCPPTv2, OSCP and many more
- OSCE3 (OSWE, OSEP, OSED) Complete Guide – CyberSecurityUP Github
OSCP
- OSCP Useful Links – BackDoorShell.gitbooks
- OSCP Preperation Guide – Cyber-Junk Github
- HackerStop OSCP resources
- Security Prince PWK OSCP Preparation Roadmap
- Conda OSCP Prep Videos
- OSCP – OSCP – Windows Privilege Escalation Methodology – Conda YouTube
- OSCP – Linux Privilege Escalation Methodology – Conda YouTube
- OSCP Priv Esc MindMap – C0nd4 Github
- TJNull’s OSCP Prep Machines
- BurntMyBagel OSCP-Prep Resources
- Tips for OSCP
- BackDoorShell OSCP Usefull Links
- 0x4D31 OSCP resources
- The-Lynx-Team OSCP resources
- TJNull OSCP Prep
OSEP
- Nullg0re OSEP Experience
- OSEP Helful Resources – Nullg0re
- OSEP Code Snippets – Chvancooten Github
- OSEP PREP
- Pen300 OSEP Prep – Deletehead github
- Offensive Security Evasion – Joas Antino
- Awesome-Red-Team-Operations
eCPPTv2
- Great eCPPTv2 External Resources
- IamKsNoob Mind Maps and Notes
- Guides for Pivoting
- Ferx Githbook eCPPTv2 Notes
eCPTXv2
Security+
Network+
Cheat Sheets
- Windows and AD Cheat Sheets
- Pentesting AD MindMap – M4yFly
- Pentesting AD MindMap 2 – M4yFly
- Windows Host Command Cheat Sheet by TheMayor
- AD Exploitation Cheat Sheet by SickB0y1337
- RedTeam_CheatSheet.ps1 by Jivoi
- Windows Red Team Cheat Sheet
- Icel0rd AD Hacking Cheat Sheet
- WADCOMS Cheat Sheet for AD Environment
- Windows & Active Directory Exploitation Cheat Sheet and Command Reference – casvancooten.com
- Kerberos Cheat Sheet
- Penetration Tools Cheat Sheet
- Pen Testing Bookmarks
- Precompiled Exploits:
- OSCP Cheat Sheets
- CEH Cheat Sheet
- Net Bios Scan Cheat Sheet
- Reverse Shell Cheat Sheet
- NMap Cheat Sheet
- Linux Commands Cheat Sheet
- Security Hardening CentOS 7
- MetaSploit Cheat Sheet
- Google Hacking Database:
- Windows Assembly Language Mega
