2017-10-15 06:13:49 +00:00
< h1 align = "center" >
< br >
< img width = "200" src = "https://cdn.rawgit.com/sindresorhus/awesome/master/media/logo.svg" alt = "awesome" >
< br >
< / h1 >
2017-10-15 06:10:27 +00:00
# Awesome Hacking Resources ![Awesome Hacking](https://img.shields.io/badge/awesome-hacking-red.svg) ![Awesome community](https://img.shields.io/badge/awesome-community-green.svg)
2017-10-10 19:09:19 +00:00
A collection of hacking / penetration testing resources to make you better!
2017-10-15 16:04:21 +00:00
**Let's make it the biggest resource repository for our community.**
2017-10-10 19:09:19 +00:00
2017-10-15 18:40:48 +00:00
**You are welcome to fork and [contribute ](https://github.com/vitalysim/Awesome-Hacking-Resources/blob/master/contributing.md#contribution-guidelines ).**
2017-10-10 19:09:19 +00:00
2017-10-16 15:32:41 +00:00
We started a new [tools ](https://github.com/vitalysim/Awesome-Hacking-Resources/blob/master/tools.md ) list, come and contribute
2017-10-19 16:21:54 +00:00
## Table of Contents
* [Learning the Skills ](#learning-the-skills )
* [YouTube Channels ](#youtube-channels )
* [Sharpening Your Skills ](#sharpening-your-skills )
* [Reverse Engineering, Buffer Overflow and Exploit Development ](#reverse-engineering-buffer-overflow-and-exploit-development )
* [Privilege Escalation ](#privilege-escalation )
* [Malware Analysis ](#malware-analysis )
* [Vulnerable Web Application ](#vulnerable-web-application )
2017-10-19 16:22:41 +00:00
* [Vulnerable OS ](#vulnerable-os )
2017-10-19 16:21:54 +00:00
* [Exploits ](#exploits )
* [Forums ](#forums )
* [Archived Security Conference Videos ](#archived-security-conference-videos )
* [Online Communities ](#online-communities )
* [Online News Sources ](#online-news-sources )
2017-10-16 15:32:41 +00:00
2017-10-10 19:09:19 +00:00
Learning the Skills
--
* [Learning Exploitation with Offensive Computer Security 2.0 ](http://howto.hackallthethings.com/2016/07/learning-exploitation-with-offensive.html )
* [Cybrary ](https://www.cybrary.it/ )
* [OffensiveComputerSecurity ](https://www.cs.fsu.edu/~redwood/OffensiveComputerSecurity/lectures.html )
* [CS 642: Intro to Computer Security ](http://pages.cs.wisc.edu/~ace/cs642-spring-2016.html )
* [Free cyber security training ](https://www.samsclass.info/ )
* [SecurityTube ](http://www.securitytube.net/ )
* [Seed Labs ](http://www.cis.syr.edu/~wedu/seed/labs.html )
* [Hak5 ](https://www.hak5.org/ )
2017-10-15 06:07:13 +00:00
* [OWASP top 10 web security risks ](https://www.online.hack2secure.com/courses/owasp-top10-web-security-risk )
2017-10-16 08:46:31 +00:00
* [MIT OCW 6.858 Computer Systems Security ](https://ocw.mit.edu/courses/electrical-engineering-and-computer-science/6-858-computer-systems-security-fall-2014/ )
2017-10-10 19:09:19 +00:00
2017-10-16 12:58:56 +00:00
YouTube Channels
2017-10-10 19:09:19 +00:00
--
* [OWASP ](https://www.youtube.com/user/OWASPGLOBAL )
* [Hak5 ](https://www.youtube.com/user/Hak5Darren )
* [BlackHat ](https://www.youtube.com/channel/UCJ6q9Ie29ajGqKApbLqfBOg )
* [Christiaan008 ](https://www.youtube.com/channel/UCEPzS1rYsrkqzSLNp76nrcg )
2017-10-13 19:41:36 +00:00
* [Samy Kamkar's Applied Hacking ](https://www.youtube.com/user/s4myk )
2017-10-10 19:09:19 +00:00
* [danooct1 ](https://www.youtube.com/channel/UCqbkm47qBxDj-P3lI9voIAw )
* [DedSec ](https://www.youtube.com/channel/UCx34ZZW2KgezfUPPeL6m8Dw )
* [DEFCON Conference ](https://www.youtube.com/channel/UC6Om9kAkl32dWlDSNlDS9Iw )
* [DemmSec ](https://www.youtube.com/channel/UCJItQmwUrcW4VdUqWaRUNIg )
2017-10-15 03:11:10 +00:00
* [Don Does 30 ](https://www.youtube.com/channel/UCarxjDjSYsIf50Jm73V1D7g )
2017-10-10 19:09:19 +00:00
* [Geeks Fort - KIF ](https://www.youtube.com/channel/UC09NdTL2hkThGLSab8chJMw )
* [iExplo1t ](https://www.youtube.com/channel/UCx0HClQ_cv0sLNOVhoO2nxg/videos )
* [Latest Hacking News ](https://www.youtube.com/channel/UCDSLIfPnsK1WdEZi_AcvSlQ )
* [HACKING TUTORIALS ](https://www.youtube.com/channel/UCbsn2kQwNxcIzHwbdDjzehA )
* [LiveOverflow ](https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w )
* [Metasploitation ](https://www.youtube.com/channel/UC9Qa_gXarSmObPX3ooIQZrg )
* [NetSecNow ](https://www.youtube.com/channel/UC6J_GnSAi7F2hY4RmnMcWJw )
* [Open SecurityTraining ](https://www.youtube.com/channel/UCthV50MozQIfawL9a_g5rdg )
* [BalCCon - Balkan Computer Congress ](https://www.youtube.com/channel/UCoHypmu8rxlB5Axh5JxFZsA )
* [Penetration Testing in Linux ](https://www.youtube.com/channel/UC286ntgASMskhPIJQebJVvA )
* [rwbnetsec ](https://www.youtube.com/channel/UCAJ8Clc3188ek9T_5XTVzZQ )
* [Security Weekly ](https://www.youtube.com/channel/UCg--XBjJ50a9tUhTKXVPiqg )
2017-10-18 16:05:50 +00:00
* [Seytonic ](https://www.youtube.com/channel/UCW6xlqxSY3gGur4PkGPEUeA )
2017-10-10 19:09:19 +00:00
* [Shozab Haxor ](https://www.youtube.com/channel/UCBwub2kRoercWQJ2mw82h3A )
* [SSTec Tutorials ](https://www.youtube.com/channel/UCHvUTfxL_9bNQgqzekPWHtg )
* [Troy Hunt ](https://www.youtube.com/channel/UCD6MWz4A61JaeGrvyoYl-rQ )
* [Waleed Jutt ](https://www.youtube.com/channel/UCeN7cOELsyMHrzfMsJUgv3Q )
* [webpwnized ](https://www.youtube.com/channel/UCPeJcqbi8v46Adk59plaaXg )
2017-10-15 03:11:10 +00:00
* [JackkTutorials ](https://www.youtube.com/channel/UC64x_rKHxY113KMWmprLBPA )
* [Zer0Mem0ry ](https://www.youtube.com/channel/UCDk155eaoariJF2Dn2j5WKA )
2017-10-15 05:32:39 +00:00
* [LionSec ](https://www.youtube.com/channel/UCCQLBOt_hbGE-b9I696VRow )
2017-10-16 21:04:37 +00:00
* [Adrian Crenshaw ](https://www.youtube.com/user/irongeek )
2017-10-16 23:35:33 +00:00
* [HackerSploit ](https://www.youtube.com/channel/UC0ZTPkdxlAKf-V33tqXwi3Q )
2017-10-10 19:09:19 +00:00
Sharpening Your Skills
--
* [OWASP Security Shepherd ](https://security-shepherd.ctf365.com/login.jsp )
2017-10-16 20:36:37 +00:00
* [CTFLearn ](https://ctflearn.com/ )
2017-10-10 19:09:19 +00:00
* [CTF365 ](https://ctf365.com/ )
* [Pentestit ](https://lab.pentestit.ru/ )
* [Hacksplaining ](https://www.hacksplaining.com/ )
* [The cryptopals crypto challenges ](http://cryptopals.com/ )
* [The enigma group ](https://www.enigmagroup.org/ )
* [Ringzer0 Team ](https://ringzer0team.com/challenges )
* [Hack The Box ](https://www.hackthebox.gr/en/login )
* [Over the wire ](http://overthewire.org/wargames/ )
* [Backdoor ](https://backdoor.sdslabs.co )
* [Vulnhub ](https://www.vulnhub.com/ )
* [Hack.me ](https://hack.me/ )
2017-10-15 16:39:09 +00:00
* [Hack this site! ](https://www.hackthissite.org/ )
2017-10-10 19:09:19 +00:00
* [Exploit exercises ](https://exploit-exercises.com/ )
* [PentesterLab ](https://pentesterlab.com/ )
* [SmashTheStack ](http://smashthestack.org/wargames.html )
* [Root-Me ](https://www.root-me.org/ )
* [PicoCTF ](https://2017game.picoctf.com/ )
2017-10-12 11:30:30 +00:00
* [Shellter Labs ](https://shellterlabs.com/en/ )
2017-10-14 09:24:59 +00:00
* [Pentest Practice ](https://www.pentestpractice.com/ )
2017-10-15 06:07:13 +00:00
* [Pentest.training ](https://pentest.training )
2017-10-15 19:18:58 +00:00
* [pwnable.kr ](http://pwnable.kr/ )
2017-10-18 18:20:20 +00:00
* [hackburger.ee ](http://hackburger.ee/ )
* [http://noe.systems/ ](http://noe.systems/ )
* [Hacker Gateway ](https://www.hackergateway.com/ )
* [Solve Me ](http://solveme.safflower.kr/ )
* [Challenge Land ](http://challengeland.co/ )
* [Participating Challenge Sites ](http://www.wechall.net/active_sites/all/by/site_avg/DESC/page-1 )
2017-10-19 13:25:43 +00:00
* [Hacker test ](http://www.hackertest.net/ )
2017-10-10 19:09:19 +00:00
2017-10-16 12:58:56 +00:00
Reverse Engineering, Buffer Overflow and Exploit Development
2017-10-10 19:09:19 +00:00
--
* [Shell storm ](http://shell-storm.org/ )
* [Buffer Overflow Exploitation Megaprimer for Linux ](http://www.securitytube.net/groups?operation=view&groupId=4 )
2017-10-13 18:50:23 +00:00
* [Reverse Engineering Malware 101 ](https://securedorg.github.io/RE101/ )
* [Reverse Engineering Malware 102 ](https://securedorg.github.io/RE102/ )
2017-10-10 19:09:19 +00:00
* [Modern Binary Exploitation - CSCI 4968 ](https://github.com/RPISEC/MBE )
* [Introductory Intel x86 ](http://www.opensecuritytraining.info/IntroX86.html )
* [Binary hacking ](http://liveoverflow.com/binary_hacking/index.html )
* [Shellcode Injection ](https://dhavalkapil.com/blogs/Shellcode-Injection/ )
* [Reverse Engineering for Beginners ](https://beginners.re/RE4B-EN.pdf )
* [Exploit tutorials ](http://www.primalsecurity.net/tutorials/exploit-tutorials/ )
* [Exploit development ](https://0x00sec.org/c/exploit-development )
* [Corelan tutorials ](https://www.corelan.be/index.php/2009/07/19/exploit-writing-tutorial-part-1-stack-based-overflows/ )
2017-10-12 11:30:30 +00:00
* [Reverse engineering reading list ](https://github.com/onethawt/reverseengineering-reading-list/blob/master/README.md )
2017-10-13 18:50:23 +00:00
* [Reverse Engineering challenges ](https://challenges.re/ )
2017-10-15 06:07:13 +00:00
* [Reverse Engineering for beginners (GitHub project) ](https://github.com/dennis714/RE-for-beginners )
* [reversing.kr challenges ](http://www.reversing.kr/challenge.php )
* [Analysis and exploitation (unprivileged) ](https://www.it-sec-catalog.info/analysis_and_exploitation_unprivileged.html )
2017-10-20 12:06:06 +00:00
* [A Course on Intermediate Level Linux Exploitation ](https://github.com/nnamon/linux-exploitation-course )
2017-10-10 19:09:19 +00:00
2017-10-16 12:58:56 +00:00
Privilege Escalation
2017-10-10 19:09:19 +00:00
--
* [Reach the root ](https://hackmag.com/security/reach-the-root/ )
* [Basic linux privilege escalation ](https://blog.g0tmi1k.com/2011/08/basic-linux-privilege-escalation/ )
* [Windows Privilege Escalation ](http://www.bhafsec.com/wiki/index.php/Windows_Privilege_Escalation )
* [Privilege escalation for Windows and Linux ](https://github.com/AusJock/Privilege-Escalation )
* [Windows Privilege Escalation Fundamentals ](http://www.fuzzysecurity.com/tutorials/16.html )
* [RootHelper ](https://github.com/NullArray/RootHelper )
* [Windows exploits, mostly precompiled. ](https://github.com/abatchy17/WindowsExploits )
* [Unix privesc checker ](http://pentestmonkey.net/tools/audit/unix-privesc-check )
* [Privilege escalation linux with live example ](http://resources.infosecinstitute.com/privilege-escalation-linux-live-examples/ )
* [Windows privilege escalation checker ](https://github.com/netbiosX/Checklists/blob/master/Windows-Privilege-Escalation.md )
* [Linux Privilege Escalation Scripts ](http://netsec.ws/?p=309#more-309 )
* [AutoLocalPrivilegeEscalation ](https://github.com/ngalongc/AutoLocalPrivilegeEscalation )
* [Linux Privilege Escalation Check Script ](https://github.com/sleventyeleven/linuxprivchecker )
* [Local Linux Enumeration & Privilege Escalation Cheatsheet ](https://www.rebootuser.com/?p=1623 )
2017-10-12 11:30:30 +00:00
* [4 Ways get linux privilege escalation ](http://www.hackingarticles.in/4-ways-get-linux-privilege-escalation/ )
2017-10-16 12:58:56 +00:00
Malware Analysis
2017-10-12 11:30:30 +00:00
--
* [Malware traffic analysis ](http://www.malware-traffic-analysis.net/ )
* [Malware Analysis - CSCI 4976 ](https://github.com/RPISEC/Malware/blob/master/README.md )
2017-10-13 18:50:23 +00:00
Vulnerable Web Application
--
* [OWASP Hackademic Challenges project ](https://github.com/Hackademic/hackademic/ )
* [bWAPP ](http://www.itsecgames.com/ )
* [Damn Vulnerable Web Application (DVWA) ](http://www.dvwa.co.uk/ )
* [Xtreme Vulnerable Web Application (XVWA) ](https://github.com/s4n7h0/xvwa )
* [WebGoat: A deliberately insecure Web Application ](https://github.com/WebGoat/WebGoat )
* [OWASP Mutillidae II ](https://sourceforge.net/projects/mutillidae/files/ )
* [OWASP Broken Web Applications Project ](https://github.com/chuckfw/owaspbwa/ )
2017-10-15 06:07:13 +00:00
* [Damn Small Vulnerable Web ](https://github.com/stamparm/DSVW )
2017-10-18 19:02:21 +00:00
* [OWASP Juice Shop ](https://github.com/bkimminich/juice-shop )
2017-10-13 18:50:23 +00:00
2017-10-18 14:54:33 +00:00
Vulnerable OS
--
* [Metasploitable2 (Linux) ](https://sourceforge.net/projects/metasploitable/files/Metasploitable2/ )
2017-10-18 15:13:17 +00:00
* [Metasploitable3 ](https://github.com/rapid7/metasploitable3 ) \[[Installation ](https://github.com/rapid7/metasploitable3/blob/master/README.md )\]
2017-10-18 14:54:33 +00:00
2017-10-18 19:02:21 +00:00
Exploits
2017-10-15 16:39:09 +00:00
--
* [Exploit Database ](https://www.exploit-db.com/ )
2017-10-18 19:02:21 +00:00
* [CXsecurity ](https://cxsecurity.com/exploit/ )
* [0day.today ](http://0day.today/ )
2017-10-19 10:04:12 +00:00
* [Snyk Vulnerability DB ](https://snyk.io/vuln/ )
2017-10-15 16:39:09 +00:00
2017-10-13 18:50:23 +00:00
Forums
--
* [Greysec ](https://greysec.net )
* [Hackforums ](https://hackforums.net/ )
* [0x00sec ](https://0x00sec.org/ )
2017-10-14 07:57:39 +00:00
* [Antichat ](https://forum.antichat.ru/ )
2017-10-19 05:55:03 +00:00
2017-10-13 18:50:23 +00:00
Archived Security Conference Videos
--
* [InfoCon.org ](https://infocon.org/cons/ )
2017-10-16 21:04:37 +00:00
* [Irongeek ](http://www.irongeek.com/ )
2017-10-13 18:50:23 +00:00
2017-10-12 13:07:54 +00:00
Online Communities
2017-10-12 18:43:26 +00:00
--
2017-10-12 13:07:54 +00:00
* [Hack+ ](http://t.me/hacking_group_channel )
2017-10-19 05:30:14 +00:00
Online News Sources
--
2017-10-19 05:33:40 +00:00
* [InfoSec ](http://www.infosecurity-magazine.com/ )
* [Threatpost ](https://threatpost.com/ )
* [Security Intell ](https://securityintelligence.com/news/git-vulnerabilities-found-in-version-control-systems/ )
2017-10-20 20:43:13 +00:00
* [The Hacker News ](https://thehackernews.com/ )