Cybersecurity

Roadmap

• Cybersecurity Roadmap
• Cybersecurity Mastery Roadmap
• 90 Days of Cyber Security

Books

• Books #1
• Books #2
• Books #3
• The book of secret knowledge - A collection of cheatsheets, hacks, one-liners, cli/web tools
• Github: awesome-hacking

Search Engines

• Shodan (search for internet-connected devices)
• Censys (search and analyze internet infrastructure)
• VirusTotal (virus-scanning service using multiple antivirus engines)
• Have I Been Pwned (tells if an email has appeared in a leaked data breach)
• AbuseIPDB (report abusive IPs engaging in hacking attemps)
• IPinfo (trusted source for IP Address Data)
• SSL Labs (test site's certificate)

Vulnerability Searching

• CVE - Publicly disclosed cybersecurity vulnerabilities. CVEs take the form: CVE-YEAR-IDNUMBER
• ExploitDB - Contains exploits that can be downloaded and used straight out of the box
• NVD - NVD keeps track of CVEs (Common Vulnerabilities and Exposures)
• ISO/IEC 27001 - Standard for information security managament systems (ISMS)

Platforms

• TryHackMe
• hack the box
• Hack this site
• CTF365
• PentesterLab
• VulnHub
• Over the wire
• Hacking-Lab
• Pwnable.kr
• IO
• Smashthestack
• Microcorruption
• Reversing.kr
• Pwn0
• Exploit Exercises
• Ringzero Team Online CTF
• HellBound Hackes
• Try2hack
• Hack me
• Hack this!
• Enigma Group
• Google Gruyere
• Game of hacks
• Root me
• CTF time
• VulnMachines (penetration testing lab)
• Hacker101
• Hack My VM
• Try2HackMe

Security Tools

• Amazing Security Tools
• Some setup scripts for security research tools
• Qrencode - Encode input data in a QR Code and save as a PNG image
• REMnux - Linux toolkit for Malware Analysis
• Ligolo - How hackers momve through networks - allows pentesters to establish tunnels from a reverse TCP/TLS connection using a tun interface (withouth the need of SOCKS)
• PhoneInfoga - Github - Information gathering framework for phone numbers
• Sherlock - Github - Hunt down social media accounts by username across social networks
• Malware Analysis - check suspicious links
• Virus Total - Analyse suspicious files, domains, IPs and URLs
• Web Check - Analyse key website information

Honeypots

• Cowrie - Github - SSH and Telnet Honeypot
• Dionaea - Github

Networking

• Short URL
• Redirect Detective
• Metasploit
• Nmap
• Wireshark

OSINT

• Open Source Intelligence (OSINT)
• Github Awesome OSINT
• 15 top open-source intelligence tools

Certificates

• Google Cybersecurity Professional Certificate
• OSCP & PEN-200 Prep
• Passed SEC+ certificate

Scams

• Bitdefender Scamio - AI scam detector
• Hawala Illegal Money Transfer

Test

• Suricata
• Snort

Exploitation

• Beef Project - Youtube - Penetration testing tool that focuses on the web browser

Youtube

• John Hammond
• Network Chuck

Links

• Github topics: cyber-security
• Github topics: security
• Resources

Keep up with cybersecurity

• John Hammond
• Tyler Ramsbey
• Alh4zr3d
• InfoSec Pat
• InsiderPHD
• BleepingComputer
• KrebsOnSecurity
• Threat Intelligence
• Malware Bytes
• CyberScoop
• BlackHat
• DefCon
• Security BSides
• Shared Security (podcast)
• Security Now (podcast)

Other

• VirusTotal