[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"project-71587":3},{"id":4,"name":5,"fullName":6,"owner":7,"repo":5,"description":8,"homepage":9,"htmlUrl":10,"language":10,"languages":10,"totalLinesOfCode":10,"stars":11,"forks":12,"watchers":13,"openIssues":14,"contributorsCount":15,"subscribersCount":15,"size":15,"stars1d":16,"stars7d":17,"stars30d":18,"stars90d":15,"forks30d":15,"starsTrendScore":19,"compositeScore":20,"rankGlobal":10,"rankLanguage":10,"license":21,"archived":22,"fork":22,"defaultBranch":23,"hasWiki":24,"hasPages":22,"topics":25,"createdAt":10,"pushedAt":10,"updatedAt":38,"readmeContent":39,"aiSummary":40,"trendingCount":15,"starSnapshotCount":15,"syncStatus":41,"lastSyncTime":42,"discoverSource":43},71587,"Awesome-Hacking-Resources","vitalysim\u002FAwesome-Hacking-Resources","vitalysim","A collection of hacking \u002F penetration testing resources to make you better!","",null,17083,2206,678,19,0,16,37,88,48,45,"GNU General Public License v3.0",false,"master",true,[26,27,28,29,30,31,32,33,34,35,36,37],"buffer-overflow","ctf","exploit","hacking","malware","mitm","owasp","penetration-testing","privilege-escalation","privilege-escalation-linux","reverse-engineering","windows-privilege-escalation","2026-06-12 02:02:54","\u003Ch1 align=\"center\">\n \t\u003Cbr>\n \t  \u003Cimg width=\"200\" src=\"https:\u002F\u002Fgithub.com\u002Fsindresorhus\u002Fawesome\u002Fraw\u002Fmain\u002Fmedia\u002Flogo.svg\" alt=\"awesome\">\n \t\u003Cbr>\n\u003C\u002Fh1>\n\n# Awesome Hacking Resources ![Awesome Hacking](https:\u002F\u002Fimg.shields.io\u002Fbadge\u002Fawesome-hacking-red.svg) ![Awesome community](https:\u002F\u002Fimg.shields.io\u002Fbadge\u002Fawesome-community-green.svg)\n\nA collection of hacking \u002F penetration testing resources to make you better!\n\n**Let's make it the biggest resource repository for our community.**\n\n**You are welcome to fork and [contribute](https:\u002F\u002Fgithub.com\u002Fvitalysim\u002FAwesome-Hacking-Resources\u002Fblob\u002Fmaster\u002Fcontributing.md#contribution-guidelines).**\n\nWe started a new [tools](https:\u002F\u002Fgithub.com\u002Fvitalysim\u002FAwesome-Hacking-Resources\u002Fblob\u002Fmaster\u002Ftools.md) list, come and contribute\n\n## Table of Contents\n * [Learning the Skills](#learning-the-skills)\n * [YouTube Channels](#youtube-channels)\n   * [Companies](#Companies)\n   * [Conferences](#Conferences)\n   * [NEWS](#NEWS)\n * [Sharpening Your Skills](#sharpening-your-skills)\n * [Reverse Engineering, Buffer Overflow and Exploit Development](#reverse-engineering-buffer-overflow-and-exploit-development)\n * [Privilege Escalation](#privilege-escalation)\n * [Network Scanning \u002F Reconnaissance](#network-scanning--reconnaissance)\n * [Malware Analysis](#malware-analysis)\n * [Vulnerable Web Application](#vulnerable-web-application)\n * [Vulnerable OS](#vulnerable-os)\n * [Exploits](#exploits)\n * [Forums](#forums)\n * [Archived Security Conference Videos](#archived-security-conference-videos)\n * [Online Communities](#online-communities)\n * [Online News Sources](#online-news-sources)\n * [Linux Penetration Testing OS](#linux-penetration-testing-os)\n\n### Learning the Skills\nName  |  Description\n----  |  ----\n[CS 642: Intro to Computer Security](http:\u002F\u002Fpages.cs.wisc.edu\u002F~ace\u002Fcs642-spring-2016.html) | academic content, full semester course, includes assigned readings, homework and github refs for exploit examples. NO VIDEO LECTURES.\n[CyberSec WTF](https:\u002F\u002Fcybersecurity.wtf) | CyberSec WTF Web Hacking Challenges from Bounty write-ups\n[Cybrary](https:\u002F\u002Fwww.cybrary.it\u002F) | coursera style website, lots of user-contributed content, account required, content can be filtered by experience level\n[Free Cyber Security Training](https:\u002F\u002Fwww.samsclass.info\u002F) | Academic content, 8 full courses with videos from a quirky instructor sam, links to research, defcon materials and other recommended training\u002Flearning\n[Hak5](https:\u002F\u002Fwww.hak5.org\u002F) | podcast-style videos covering various topics, has a forum, \"metasploit-minute\" video series could be useful\n[Hopper's Roppers Security Training](https:\u002F\u002Fhoppersroppers.org\u002Ftraining.html) | Four free self-paced courses on Computing Fundamentals, Security, Capture the Flags, and a Practical Skills Bootcamp that help beginners build a strong base of foundational knowledge. Designed to prepare for students for whatever they need to learn next.\n[Learning Exploitation with Offensive Computer Security 2.0](http:\u002F\u002Fhowto.hackallthethings.com\u002F2016\u002F07\u002Flearning-exploitation-with-offensive.html) | blog-style instruction, includes: slides, videos, homework, discussion. No login required.\n[Mind Maps](http:\u002F\u002Fwww.amanhardikar.com\u002Fmindmaps.html) |   Information Security related Mind Maps\n[MIT OCW 6.858 Computer Systems Security](https:\u002F\u002Focw.mit.edu\u002Fcourses\u002Felectrical-engineering-and-computer-science\u002F6-858-computer-systems-security-fall-2014\u002F) | academic content, well organized, full-semester course, includes assigned readings, lectures, videos, required lab files.\n[OffensiveComputerSecurity](https:\u002F\u002Fwww.cs.fsu.edu\u002F~redwood\u002FOffensiveComputerSecurity\u002Flectures.html) | academic content, full semester course including 27 lecture videos with slides and assign readings\n[OWASP top 10 web security risks](https:\u002F\u002Fwww.owasp.org\u002Findex.php\u002FCategory:OWASP_Top_Ten_Project) | free courseware, requires account\n[SecurityTube](http:\u002F\u002Fwww.securitytube.net\u002F) | tube-styled content, \"megaprimer\" videos covering various topics, no readable content on site.\n[Seed Labs](http:\u002F\u002Fwww.cis.syr.edu\u002F~wedu\u002Fseed\u002Flabs.html) | academic content, well organized, featuring lab videos, tasks, needed code files, and recommended readings\n[TryHackMe](https:\u002F\u002Ftryhackme.com\u002F) | Designed prebuilt challenges which include virtual machines (VM) hosted in the cloud ready to be deployed\n\n### YouTube Channels\nName  |  Description\n----  |  ----\n[0patch by ACROS Security](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCwlGrzF4on-bjiBhD8lO3QA) | few videos, very short, specific to 0patch\n[BlackHat](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCJ6q9Ie29ajGqKApbLqfBOg) | features talks from the BlackHat conferences around the world\n[Christiaan008](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCEPzS1rYsrkqzSLNp76nrcg) | hosts a variety of videos on various security topics, disorganized\n| \u003Ctd colspan=\"2\" > **Companies** \u003C\u002Ftd>\n[Detectify](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCm6N84sAaQ-BiNdCaaLT4qg) | very short videos, aimed at showing how to use Detictify scanner\n[Hak5](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002FHak5Darren) | see Hak5 above\n[Kaspersky Lab](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCGhEv7BFBWdo0k4UXTm2eZg) | lots of Kaspersky promos, some hidden cybersecurity gems\n[Metasploit](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCx4d2aRIfxfEUdS_5YIYKPg) | collection of medium length metasploit demos, ~25minutes each, instructional\n[ntop](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCUYWuYlYKD5Yq5qBz0AIXJw\u002Ffeed) | network monitoring, packet analysis, instructional\n[nVisium](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCTE8R-Otq_kVTo08eLsfeyg) | Some nVisum promos, a handful of instructional series on Rails vulns and web hacking\n[OpenNSM](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002FOpenNSM\u002Ffeed) | network analysis, lots of TCPDUMP videos, instructional,\n[OWASP](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002FOWASPGLOBAL) | see OWASP above\n[Rapid7](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCnctXOUIeRFu1BR5O0W5e9w) | brief videos, promotional\u002Finstructional, ~ 5 minutes\n[Securelist](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002FSecurelist\u002Ffeatured) | brief videos, interviews discussing various cyber security topics\n[Segment Security](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCMCI9TE3-PZ7CgKk7X6Qd_w\u002Ffeatured) | promo videos, non-instructional\n[SocialEngineerOrg](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCC1vbVVbYdNe-OZRldj-U6g) | podcast-style, instructional, lengthy content ~1 hr each\n[Sonatype](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002Fsonatype\u002Ffeatured) | lots of random videos, a good cluster of DevOps related content, large range of lengths, disorganized\n[SophosLabs](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002FSophosLabs\u002Ffeatured) | lots of brief, news-style content, \"7 Deadly IT Sins\" segment is of note\n[Sourcefire](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002FSourcefireInc\u002Ffeatured) | lots of brief videos covering topics like botnets, DDoS ~5 minutes each\n[Station X](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC-vWmE-BHcUrYW5zwDijL1g) | handful of brief videos, disorganized, unscheduled content updates\n[Synack](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCRH0mvESjZ7eKY1LJZDPIbw\u002Ffeatured) | random, news-style videos, disorganized, non-instructional\n[TippingPoint Zero Day Initiative](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUChbH7B5YhXANmlMYJRHpw0g) | very brief videos ~30 sec, somewhat instructional\n[Tripwire, Inc.](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002FTripwireInc\u002Fvideos) | some tripwire demos, and random news-style videos, non-instructional\n[Vincent Yiu](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCFVI3_M1zqFzEok2sTeEP8w\u002Ffeatured) | handful of videos from a single hacker, instructional\n| \u003Ctd colspan=\"2\"> **Conferences** \u003C\u002Ftd>\n[44contv](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002F44contv) | in\n[MIT OCW 6.858 Computer Systems Security](https:\u002F\u002Focw.mit.edu\u002Fcourses\u002Felectrical-engineering-and-computer-science) |Information security con based in London, lengthy instructional videos\n[BruCON Security Conference](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCqwMU1l90lf9BLersW6eAHw) | security and hacker conference based in b\\Belgium, lots of lengthy instructinoal videos\n[BSides Manchester](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC1mLiimOTqZFK98VwM8Ke4w) | security and hacker con based in Mancheseter, lots of lengthy videos\n[BSidesAugusta](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC85CvsnrVlD_44eEgzb2OfA) | security con based in Augusta, Georgia, lots of lengthy instructional videos\n[CarolinaCon](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCTY3Dpz68CyrjwRzqkE4sFw) | security con based in North Carolina, associated with various 2600 chapters, lots of lengthy instructional content\n[Cort Johnson](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCV9r-yMeARWVCJEesim25Ag) | a handful of lengthy con-style talks from Hack Secure Opensec 2017\n[DevSecCon](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCgxhfP2Hi8MQYz6ZkwpLA0A) | lenghty con videos covering DevSecOps, making software more secure\n[Garage4Hackers - Information Security](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCDqagqREZlmJitWco-yPtvw\u002Ffeed) | a handful of lengthy videos, About section lacks description\n[HACKADAY](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCnv0gfLQFNGPJ5MHSGuIAkw) | lots of random tech content, not strictly infosec, some instructional\n[Hack In The Box Security Conference](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC0BJVNTIEbG8CLG-xVVWJnA) | lengthy con-style instructional talks from an international security con\n[Hack in Paris](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC7xJU9_oqw-vS6OJExS-2iA) | security con based in paris, features lots of instructional talks, slides can be difficult to see.\n[Hacklu](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCI6B0zYvK-7FdM0Vgh3v3Tg\u002Ffeed) | lots of lengthy con-style instructional videos\n[Hacktivity](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002Fhacktivity\u002Ffeed) | lots of lengthy con-style instructional videos from a con in central\u002Feastern europe\n[Hardwear.io](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUChwYb9xc9tZXquQxu4G0l_g\u002Ffeatured) | handful of lengthy con-style video, emphasis on hardware hacks\n[IEEE Symposium on Security and Privacy](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC6pXMS7qre9GZW7A7FVM90Q) | content from the symposium; IEEE is a professional association based in the us, they also publish various journals\n[LASCON](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCDHsOiMPS-SLppAOAJRD37Q) | lengthy con-style talks from an OWASP con held in Austin, TX\n[leHACK](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCSxk_CUfES4ly5Sspc0Vorw) | leHACK is the oldest ( 2003 ), leading, security conference in Paris, FR\n[Marcus Niemietz](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCtThfJl65L04ukWp0XZi3yg\u002Fvideos) | lots of instructional content, associated with HACKPRA, an offensive security course from an institute in Germany\n[Media.ccc.de](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC2TXq_t06Hjdr2g_KdKpHQg) | The real official channel of the chaos computer club, operated by the CCC VOC - tons of lengthy con-style vids\n[NorthSec](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCqVhMzTdQK5VAosAGkMtpJw) | lengthy con-style talks from an applied security conference in Canada\n[Pancake Nopcode](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC3G6k7XfTgcWD2PJR8qJSkQ) | channel of Radare2 whiz Sergi \"pancake\" Alvarez, Reverse Engineering Content\n[Psiinon](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC-3qyzm4f29C12KGp3-12bQ) | medium length instructional videos, for the OWASP Zed Attack Proxy\n[SJSU Infosec](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCDNzNvZlYK8jZLsUbdiGrsQ\u002Fvideos) | handful of lengthy instructional videos from San Jose State university Infosec\n[Secappdev.org](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCSii2fuiLLlGqaR6sR_y0rA) | tons of lengthy instructional lectures on Secure App Development\n[Security Fest](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCByLDp7r7gHGoO7yYMYFeWQ) | medium length con-style talks from a security festival in Sweden\n[SecurityTubeCons](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC2wNN-Zqiq4J1PLPnyMBWUg) | an assortment of con-style talks from various cons including BlackHat and Shmoocon\n[ToorCon](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCnzjmL0xkTBYwFZD7agHGWw) | handful of medium length con videos from con based in San Diego, CA\n[USENIX Enigma Conference](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCIdV7bE97mSPTH1mOi_yUrw\u002Ffeed) | medium length \"round table discussion with leading experts\", content starts in 2016\n[ZeroNights](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCtQ0fPmP4fCGBkYWMxnjh6A) | a lot of con-style talks from international conference ZeroNights\n| \u003Ctd colspan = \"2\"> **News** \u003C\u002Ftd>\n[0x41414141](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCPqes566OZ3G_fjxL6BngRQ) | Channel with couple challenges, well explained\n[Adrian Crenshaw](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002Firongeek) | lots of lengthy con-style talks\n[Corey Nachreiner](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC7dUL0FbVPGqzdb2HtWw3Xg) | security newsbites, 2.7K subscribers, 2-3 videos a week, no set schedule\n[BalCCon - Balkan Computer Congress](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCoHypmu8rxlB5Axh5JxFZsA) | Long con-style talks from the Balkan Computer Congress, doesn't update regularly\n[danooct1](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCqbkm47qBxDj-P3lI9voIAw) | lots of brief screenshot, how-to vids regarding malware, regular content updates, 186K followerss\n[DedSec](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCx34ZZW2KgezfUPPeL6m8Dw) | lots of brief screenshot how-to vids based in Kali, no recent posts.\n[DEFCON Conference](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC6Om9kAkl32dWlDSNlDS9Iw) | lots of lengthy con-style vids from the iconical DEFCON\n[DemmSec](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCJItQmwUrcW4VdUqWaRUNIg) | lots of pen testing vids, somewhat irregular uploads, 44K followers\n[Derek Rook - CTF\u002FBoot2root\u002Fwargames Walkthrough](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCMACXuWd2w6_IEGog744UaA) | lots of lengthy screenshot instructional vids, with\n[Don Does 30](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCarxjDjSYsIf50Jm73V1D7g) | amateur pen-tester posting lots of brief screenshot vids regularly, 9K Followers\n[Error 404 Cyber News](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC4HcNHFKshqj-aeyi6imW7Q) | short screen-shot videos with loud metal, no dialog, bi-weekly\n[Geeks Fort - KIF](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC09NdTL2hkThGLSab8chJMw) | lots of brief screenshot vids, no recent posts\n[GynvaelEN](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCCkVMojdBWS-JtH7TliWkVg) | Security streams from Google Researcher. Mainly about CTFs, computer security, programing and similar things.\n[HackerSploit](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC0ZTPkdxlAKf-V33tqXwi3Q) | regular posts, medium length screenshot vids, with dialog\n[HACKING TUTORIALS](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCbsn2kQwNxcIzHwbdDjzehA) | handful of brief screenshot vids, no recent posts.\n[iExplo1t](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCx0HClQ_cv0sLNOVhoO2nxg\u002Fvideos) | lots of screenshot vids aimed at novices, 5.7K Followers, no recent posts\n[JackkTutorials](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC64x_rKHxY113KMWmprLBPA) | lots of medium length instructional vids with some AskMe vids from the youtuber\n[John Hammond](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002FRootOfTheNull) | Solves CTF problems. contains penTesting tips and tricks\n[Latest Hacking News](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002Fthefieldhouse\u002Ffeed) | 10K followers, medium length screenshot videos, no recent releases\n[LionSec](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCCQLBOt_hbGE-b9I696VRow) | lots of brief screenshot instructional vids, no dialog\n[LiveOverflow](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUClcE-kVhqyiHCcjYwcpfj9w) | Lots of brief-to-medium instructional vids, covering things like buffer overflows and exploit writing, regular posts.\n[Metasploitation](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC9Qa_gXarSmObPX3ooIQZrg) | lots of screenshot vids, little to no dialogue, all about using Metasploit, no recent vids.\n[NetSecNow](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC6J_GnSAi7F2hY4RmnMcWJw) | channel of pentesteruniversity.org, seems to post once a month, screenshot instructional vids\n[Open SecurityTraining](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCthV50MozQIfawL9a_g5rdg) | lots of lengthy lecture-style vids, no recent posts, but quality info.\n[Pentester Academy TV](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUChjC1q6Ami7W0E71TzPZELA) | lots of brief videos, very regular posting, up to +8 a week\n[Penetration Testing in Linux](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC286ntgASMskhPIJQebJVvA) | DELETE\n[rwbnetsec](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCAJ8Clc3188ek9T_5XTVzZQ) | lots of medium length instructional videos covering tools from Kali 2.0, no recent posts.\n[Samy Kamkar's Applied Hacking](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002Fs4myk) | brief to medium length instructional vids from the creator of PoisonTap for the Raspberry Pi Zero, no recent content, last updated in 2016\n[SecureNinjaTV](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCNxfV4yR0nIlhFmfwcdf3BQ) | brief news bites, irregular posting, 18K followers\n[Security Weekly](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCg--XBjJ50a9tUhTKXVPiqg) | regular updates, lengthy podcast-style interviews with industry pros\n[Seytonic](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCW6xlqxSY3gGur4PkGPEUeA) | variety of DIY hacking tutorials, hardware hacks, regular updates\n[Shozab Haxor](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCBwub2kRoercWQJ2mw82h3A) | lots of screenshot style instructional vids, regular updates, windows CLI tutorial\n[SSTec Tutorials](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCHvUTfxL_9bNQgqzekPWHtg) | lots of brief screenshot vids, regular updates\n[Tradecraft Security Weekly](https:\u002F\u002Fwiki.securityweekly.com\u002FTradecraft_Security_Weekly) | Want to learn about all of the latest security tools and techniques?\n[Troy Hunt](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCD6MWz4A61JaeGrvyoYl-rQ) | lone youtuber, medium length news videos, 16K followers, regular content\n[Waleed Jutt](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCeN7cOELsyMHrzfMsJUgv3Q) | lots of brief screenshot vids covering web security and game programming\n[webpwnized](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCPeJcqbi8v46Adk59plaaXg) | lots of brief screenshot vids, some CTF walkthroughs\n[Zer0Mem0ry](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCDk155eaoariJF2Dn2j5WKA) | lots of brief c++ security videos, programming intensive\n[LionSec](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCCQLBOt_hbGE-b9I696VRow) | lots of brief screenshot instructional vids, no dialog\n[Adrian Crenshaw](https:\u002F\u002Fwww.youtube.com\u002Fuser\u002Firongeek) | lots of lengthy con-style talks\n[HackerSploit](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUC0ZTPkdxlAKf-V33tqXwi3Q) | regular posts, medium length screenshot vids, with dialog\n[Derek Rook - CTF\u002FBoot2root\u002Fwargames Walkthrough](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCMACXuWd2w6_IEGog744UaA) | lots of lengthy screenshot instructional vids, with\n[Tradecraft Security Weekly](https:\u002F\u002Fwiki.securityweekly.com\u002FTradecraft_Security_Weekly) | Want to learn about all of the latest security tools and techniques?\n[IPPSec](https:\u002F\u002Fwww.youtube.com\u002Fchannel\u002FUCa6eh7gCkpPo5XXUDfygQQA) | Hackthebox.eu retired machine vulnerable machine walkthroughs to help you learn both basic and advanced processes and techniques\n[The Daily Swig](https:\u002F\u002Fportswigger.net\u002Fdaily-swig) | Latest Cybersecurity News\n\n### Sharpening Your Skills\nName    |    Description\n----    |    ----\n[Backdoor](https:\u002F\u002Fbackdoor.sdslabs.co) | pen testing labs that have a space for beginners, a practice arena and various competitions, account required\n[The cryptopals crypto challenges](http:\u002F\u002Fcryptopals.com\u002F) | A bunch of CTF challenges, all focused on cryptography.\n[Challenge Land](http:\u002F\u002Fchallengeland.co\u002F) | Ctf site with a twist, no simple sign-up, you have to solve a challengeto even get that far!\n[Crackmes.de Archive (2011-2015)](https:\u002F\u002Ftuts4you.com\u002Fdownload.php?view.3152) | a reverse engineering information Repo, started in 2003\n[Crackmes.one](https:\u002F\u002Fcrackmes.one\u002F) | This is a simple place where you can download crackmes to improve your reverse engineering skills.\n[CTFLearn](https:\u002F\u002Fctflearn.com\u002F) | an account-based ctf site, where users can go in and solve a range of challenges\n[CTFs write-ups](https:\u002F\u002Fgithub.com\u002Fctfs) | a collection of writeups from various CTFs, organized by\n[CTF365](https:\u002F\u002Fctf365.com\u002F) | account based ctf site, awarded by Kaspersky, MIT, T-Mobile\n[The enigma group](https:\u002F\u002Fwww.enigmagroup.org\u002F) | web application security training, account based, video tutorials\n[Exploit exercises](https:\u002F\u002Fexploit-exercises.com\u002F) | hosts 5 fulnerable virtual machines for you to attack, no account required\n[Google CTF](https:\u002F\u002Fgithub.com\u002Fgoogle\u002Fgoogle-ctf) | Source code of Google 2017, 2018 and 2019 CTF\n[Google CTF 2019](https:\u002F\u002Fcapturetheflag.withgoogle.com\u002F) | 2019 edition of the Google CTF contest\n[Google's XSS game](https:\u002F\u002Fxss-game.appspot.com\u002F) | XSS challenges, and potentially a chance to get paid!\n[Hack The Box](https:\u002F\u002Fwww.hackthebox.gr\u002Fen\u002Flogin) | Pen testing labs hosting over 39 vulnerable machines with two additional added every month\n[Hacker test](http:\u002F\u002Fwww.hackertest.net\u002F) | similar to \"hackthissite\", no account required.\n[Hacker Gateway](https:\u002F\u002Fwww.hackergateway.com\u002F) | ctfs covering steganography, cryptography, and web challengs, account required\n[Hacksplaining](https:\u002F\u002Fwww.hacksplaining.com\u002F) | a clickthrough security informational site, very good for beginners.\n[hackburger.ee](http:\u002F\u002Fhackburger.ee\u002F) | hosts a number of web hacking challenges, account required\n[Hack.me](https:\u002F\u002Fhack.me\u002F) | lets you build\u002Fhost\u002Fattack vulnerable web apps\n[Hack this site!](https:\u002F\u002Fwww.hackthissite.org\u002F) | an oldy but goodie, account required, users start at low levels and progress in difficulty\n[knock.xss.moe](https:\u002F\u002Fknock.xss.moe) | XSS challenges, account required.\n[Lin.security](https:\u002F\u002Fin.security\u002Flin-security-practise-your-linux-privilege-escalation-foo\u002F) | Practice your Linux privilege escalation\n[noe.systems](http:\u002F\u002Fnoe.systems\u002F) | Korean challenge site, requires an account\n[Over the wire](http:\u002F\u002Foverthewire.org\u002Fwargames\u002F) | A CTF that's based on progressive levels for each lab, the users SSH in, no account recquired\n[Participating Challenge Sites](http:\u002F\u002Fwww.wechall.net\u002Factive_sites\u002Fall\u002Fby\u002Fsite_avg\u002FDESC\u002Fpage-1) | aims at creating a universal ranking for CTF participants\n[PentesterLab](https:\u002F\u002Fpentesterlab.com\u002F) | hosts a variety of exercises as well as various \"bootcamps\" focused on specific activities\n[Pentestit](https:\u002F\u002Flab.pentestit.ru\u002F) | acocunt based  CTF site, users have to install open VPN and get credentials\n[Pentest Practice](https:\u002F\u002Fwww.pentestpractice.com\u002F) | account based Pentest practice, free to sign up, but there's also a pay-as-you-go feature\n[Pentest.training](https:\u002F\u002Fpentest.training) | lots of various labs\u002FVMS for you to try and hack, registry is optional.\n[PicoCTF](https:\u002F\u002F2017game.picoctf.com\u002F) | CTF hosted by Carnegie Mellon, occurs yearly, account required.\n[pwnable.kr](http:\u002F\u002Fpwnable.kr\u002F) | Don't let the cartoon characters fool you, this is a serious CTF site that will teach you a lot, account required\n[pwnable.tw](http:\u002F\u002Fpwnable.tw\u002F) | hosts 27 challenges accompanied with writeups, account required\n[Ringzer0 Team](https:\u002F\u002Fringzer0team.com\u002Fchallenges) | an account based CTF site, hosting over 272 challenges\n[ROP Emporium](https:\u002F\u002Fropemporium.com\u002F) | Return Oriented Programming challenges\n[SmashTheStack](http:\u002F\u002Fsmashthestack.org\u002Fwargames.html) | hosts various challenges, similar to OverTheWire, users must SSH into the machines and progress in levels\n[Shellter Labs](https:\u002F\u002Fshellterlabs.com\u002Fen\u002F) | account based infosec labs, they aim at making these activities social\n[Solve Me](http:\u002F\u002Fsolveme.safflower.kr\u002F) | \"yet another challenge\", account required.\n[Vulnhub](https:\u002F\u002Fwww.vulnhub.com\u002F) | site hosts a ton of different vulnerable Virtual Machine images, download and get hacking\n[websec.fr](https:\u002F\u002Fwebsec.fr\u002F) | Focused on web challenges, registration is optional.\n[tryhackme](https:\u002F\u002Ftryhackme.com) | Awesome platform to start learning cybersecurity, account is needed\n[webhacking.kr](https:\u002F\u002Fwebhacking.kr) | lots of web security challenges are available, recommended for beginners. You need to solve a simple challenge to sign up.\n[Stereotyped Challenges](https:\u002F\u002Fchall.stypr.com\u002F) | Challenges for web security professionals, account required.\n[Stripe CTF 2.0](https:\u002F\u002Fgithub.com\u002Fstripe-ctf) | Past security contest where you can discover and exploit vulnerabilities in mock web applications.\n[Windows \u002F Linux Local Privilege Escalation Workshop](https:\u002F\u002Fgithub.com\u002Fsagishahar\u002Flpeworkshop) | Practice your Linux and Windows privilege escalation\n[Hacking Articles](http:\u002F\u002Fwww.hackingarticles.in\u002Fctf-challenges1\u002F) | CTF Brief Write up collection with a lot of screenshots good for begginers\n[Hacker101 CTF](https:\u002F\u002Fctf.hacker101.com\u002F) | CTF hosted by HackerOne, always online. You will receive invitations to some private programs on HackerOne platform as a reward.\n[Hacking Lab](https:\u002F\u002Fwww.hacking-lab.com\u002Findex.html) | European platform hosting lots of riddles, challenges and competitions\n[Portswigger](https:\u002F\u002Fportswigger.net\u002F) | Best Platform inorder to learn Web Pentesting, account required\n### Reverse Engineering, Buffer Overflow and Exploit Development\nName    |     Description\n----    |    ----\n[A Course on Intermediate Level Linux Exploitation](https:\u002F\u002Fgithub.com\u002Fnnamon\u002Flinux-exploitation-course) | as the title says, this course isn't for beginners\n[Analysis and exploitation (unprivileged)](https:\u002F\u002Fwww.it-sec-catalog.info\u002Fanalysis_and_exploitation_unprivileged.html) | huge collection of RE information,  organized by type.\n[Binary hacking](http:\u002F\u002Fliveoverflow.com\u002Fbinary_hacking\u002Findex.html) | 35 \"no bullshit\" binary videos along with other info\n[Buffer Overflow Exploitation Megaprimer for Linux](http:\u002F\u002Fwww.securitytube.net\u002Fgroups?operation=view&groupId=4) | Collection of Linux Rev. Engineering videos\n[Corelan tutorials](https:\u002F\u002Fwww.corelan.be\u002Findex.php\u002F2009\u002F07\u002F19\u002Fexploit-writing-tutorial-part-1-stack-based-overflows\u002F) | detailed tutorial, lots of good information about memory\n[Exploit tutorials](http:\u002F\u002Fwww.primalsecurity.net\u002Ftutorials\u002Fexploit-tutorials\u002F) | a series of 9 exploit tutorials,also features a podcast\n[Exploit development](https:\u002F\u002F0x00sec.org\u002Fc\u002Fexploit-development) | links to the forum's exploit dev posts, quality and post style will vary with each poster\n[flAWS challenge](http:\u002F\u002Fflaws.cloud\u002F) | Through a series of levels you'll learn about common mistakes and gotchas when using Amazon Web Services (AWS).\n[Introduction to ARM Assembly Basics](https:\u002F\u002Fazeria-labs.com\u002Fwriting-arm-assembly-part-1\u002F) | tons of tutorials from infosec pro Azeria, follow her on twitter\n[Introductory Intel x86](http:\u002F\u002Fwww.opensecuritytraining.info\u002FIntroX86.html) | 63 days of OS class materials, 29 classes, 24 instructors, no account required\n[Lena's Reversing for Newbies (Complete)](https:\u002F\u002Ftuts4you.com\u002Fdownload.php?view.2876) | listing of a lengthy resource by Lena, aimed at being a course\n[Linux (x86) Exploit Development Series](https:\u002F\u002Fsploitfun.wordpress.com\u002F2015\u002F06\u002F26\u002Flinux-x86-exploit-development-tutorial-series\u002F) | blog post by sploitfun, has 3 different levels\n[Megabeets journey into Radare2](https:\u002F\u002Fwww.megabeets.net\u002Fa-journey-into-radare-2-part-1\u002F) | one user's radare2 tutorials\n[Modern Binary Exploitation - CSCI 4968](https:\u002F\u002Fgithub.com\u002FRPISEC\u002FMBE) | RE challenges, you can download the files or download the VM created by RPISEC specifically for challenges, also links to their home page with tons of infosec lectures\n[Recon.cx - reversing conference](https:\u002F\u002Frecon.cx\u002F) | the conference site contains recordings and slides of all talks!! \n[Reverse Engineering for Beginners](https:\u002F\u002Fbeginners.re\u002FRE4B-EN.pdf) | huge textbook, created by Dennis Yurichev, open-source\n[Reverse engineering reading list](https:\u002F\u002Fgithub.com\u002Fonethawt\u002Freverseengineering-reading-list\u002Fblob\u002Fmaster\u002FREADME.md) | a github collection of RE tools and books\n[Reverse Engineering challenges](https:\u002F\u002Fchallenges.re\u002F) | collection of challenges from the writer of RE for Beginners\n[Reverse Engineering for beginners (GitHub project)](https:\u002F\u002Fgithub.com\u002Fdennis714\u002FRE-for-beginners) | github for the above\n[Reverse Engineering Malware 101](https:\u002F\u002Fmalwareunicorn.org\u002Fworkshops\u002Fre101.html) | intro course created by Malware Unicorn, complete with material and two VM's\n[Reverse Engineering Malware 102](https:\u002F\u002Fmalwareunicorn.org\u002Fworkshops\u002Fre102.html) | the sequel to RE101\n[reversing.kr challenges](http:\u002F\u002Fwww.reversing.kr\u002Fchallenge.php) | reverse engineering challenges varying in difficulty\n[Shell storm](http:\u002F\u002Fshell-storm.org\u002F) | Blog style collection with organized info about Rev. Engineering.\n[Shellcode Injection](https:\u002F\u002Fdhavalkapil.com\u002Fblogs\u002FShellcode-Injection\u002F) | a blog entry from a grad student at SDS Labs\n[Micro Corruption — Assembly](https:\u002F\u002Fmicrocorruption.com) | CTF designed to learn Assembly by practicing\n\n### Privilege Escalation\nName    |    Description\n----    |    ----\n[4 Ways get linux privilege escalation](http:\u002F\u002Fwww.hackingarticles.in\u002F4-ways-get-linux-privilege-escalation\u002F) | shows different examples of PE\n[A GUIDE TO LINUX PRIVILEGE ESCALATION](https:\u002F\u002Fpayatu.com\u002Fguide-linux-privilege-escalation\u002F) | Basics of Linux privilege escalation\n[Abusing SUDO (Linux Privilege Escalation)](http:\u002F\u002Ftouhidshaikh.com\u002Fblog\u002F?p=790) | Abusing SUDO (Linux Privilege Escalation)\n[AutoLocalPrivilegeEscalation](https:\u002F\u002Fgithub.com\u002Fngalongc\u002FAutoLocalPrivilegeEscalation) | automated scripts that downloads and compiles from exploitdb\n[Basic linux privilege escalation](https:\u002F\u002Fblog.g0tmi1k.com\u002F2011\u002F08\u002Fbasic-linux-privilege-escalation\u002F) | basic linux exploitation, also covers Windows\n[Common Windows Privilege Escalation Vectors](https:\u002F\u002Fwww.toshellandback.com\u002F2015\u002F11\u002F24\u002Fms-priv-esc\u002F) | Common Windows Privilege Escalation Vectors\n[Editing \u002Fetc\u002Fpasswd File for Privilege Escalation](http:\u002F\u002Fwww.hackingarticles.in\u002Fediting-etc-passwd-file-for-privilege-escalation\u002F) | Editing \u002Fetc\u002Fpasswd File for Privilege Escalation\n[Linux Privilege Escalation ](https:\u002F\u002Fsecurityweekly.com\u002F2017\u002F12\u002F17\u002Flinux-privilege-escalation-tradecraft-security-weekly-22\u002F) | Linux Privilege Escalation – Tradecraft Security Weekly (Video)\n[Linux Privilege Escalation Check Script](https:\u002F\u002Fgithub.com\u002Fsleventyeleven\u002Flinuxprivchecker) | a simple linux PE check script\n[Linux Privilege Escalation Scripts](http:\u002F\u002Fnetsec.ws\u002F?p=309#more-309) | a list of PE checking scripts, some may have already been covered\n[Linux Privilege Escalation Using PATH Variable](http:\u002F\u002Fwww.hackingarticles.in\u002Flinux-privilege-escalation-using-path-variable\u002F) | Linux Privilege Escalation Using PATH Variable\n[Linux Privilege Escalation using Misconfigured NFS](http:\u002F\u002Fwww.hackingarticles.in\u002Flinux-privilege-escalation-using-misconfigured-nfs\u002F) | Linux Privilege Escalation using Misconfigured NFS\n[Linux Privilege Escalation via Dynamically Linked Shared Object Library](https:\u002F\u002Fwww.contextis.com\u002Fblog\u002Flinux-privilege-escalation-via-dynamically-linked-shared-object-library) | How RPATH and Weak File Permissions can lead to a system compromise.\n[Local Linux Enumeration & Privilege Escalation Cheatsheet](https:\u002F\u002Fwww.rebootuser.com\u002F?p=1623) | good resources that could be compiled into a script\n[OSCP - Windows Priviledge Escalation](http:\u002F\u002Fhackingandsecurity.blogspot.com\u002F2017\u002F09\u002Foscp-windows-priviledge-escalation.html) | Common Windows Priviledge Escalation\n[Privilege escalation for Windows and Linux](https:\u002F\u002Fgithub.com\u002FAusJock\u002FPrivilege-Escalation) | covers a couple different exploits for Windows and Linux\n[Privilege escalation linux with live example](http:\u002F\u002Fresources.infosecinstitute.com\u002Fprivilege-escalation-linux-live-examples\u002F) | covers a couple common PE methods in linux\n[Reach the root](https:\u002F\u002Fhackmag.com\u002Fsecurity\u002Freach-the-root\u002F) | discusses a process for linux privilege exploitation\n[RootHelper](https:\u002F\u002Fgithub.com\u002FNullArray\u002FRootHelper) | a tool that runs various enumeration scripts to check for privilege escalation\n[Unix privesc checker](http:\u002F\u002Fpentestmonkey.net\u002Ftools\u002Faudit\u002Funix-privesc-check) | a script that checks for PE vulnerabilities on a system\n[Windows exploits, mostly precompiled.](https:\u002F\u002Fgithub.com\u002Fabatchy17\u002FWindowsExploits) | precompiled windows exploits, could be useful for reverse engineering too\n[Windows Privilege Escalation](http:\u002F\u002Fwww.bhafsec.com\u002Fwiki\u002Findex.php\u002FWindows_Privilege_Escalation) | collection of wiki pages covering Windows Privilege escalation\n[Windows Privilege Escalation](https:\u002F\u002Fmemorycorruption.org\u002Fwindows\u002F2018\u002F07\u002F29\u002FNotes-On-Windows-Privilege-Escalation.html) | Notes on Windows Privilege Escalation\n[Windows privilege escalation checker](https:\u002F\u002Fgithub.com\u002FnetbiosX\u002FChecklists\u002Fblob\u002Fmaster\u002FWindows-Privilege-Escalation.md) | a list of topics that link to pentestlab.blog, all related to windows privilege escalation\n[Windows Privilege Escalation Fundamentals](http:\u002F\u002Fwww.fuzzysecurity.com\u002Ftutorials\u002F16.html) | collection of great info\u002Ftutorials, option to contribute to the creator through patreon, creator is an OSCP\n[Windows Privilege Escalation Guide](https:\u002F\u002Fwww.sploitspren.com\u002F2018-01-26-Windows-Privilege-Escalation-Guide\u002F) | Windows Privilege Escalation Guide\n[Windows Privilege Escalation Methods for Pentesters](https:\u002F\u002Fpentest.blog\u002Fwindows-privilege-escalation-methods-for-pentesters\u002F) | Windows Privilege Escalation Methods for Pentesters\n\n### Malware Analysis\nName    |    Description\n----    |    ----\n[Malware traffic analysis](http:\u002F\u002Fwww.malware-traffic-analysis.net\u002F) | list of traffic analysis exercises\n[Malware Analysis - CSCI 4976](https:\u002F\u002Fgithub.com\u002FRPISEC\u002FMalware\u002Fblob\u002Fmaster\u002FREADME.md) | another class from the folks at RPISEC, quality content\n[Bad Binaries] (https:\u002F\u002Fwww.badbinaries.com\u002F) | walkthrough documents of malware traffic analysis exercises and some occasional malware analysis.\n\n### Network Scanning \u002F Reconnaissance\nName    |    Description\n----    |    ----\n[Foot Printing with WhoIS\u002FDNS records](https:\u002F\u002Fwww.sans.org\u002Freading-room\u002Fwhitepapers\u002Fhackers\u002Ffundamentals-computer-hacking-956) | a white paper from SANS\n[Google Dorks\u002FGoogle Hacking](https:\u002F\u002Fd4msec.wordpress.com\u002F2015\u002F09\u002F03\u002Fgoogle-dorks-for-finding-emails-admin-users-etc\u002F) | list of commands for google hacks, unleash the power of the world's biggest search engine\n\n### Vulnerable Web Application\nName    |    Description\n----    |    ----\n[bWAPP](http:\u002F\u002Fwww.itsecgames.com\u002F) | common buggy web app for hacking, great for beginners, lots of documentation\n[Damn Small Vulnerable Web](https:\u002F\u002Fgithub.com\u002Fstamparm\u002FDSVW) | written in less than 100 lines of code, this web app has tons of vulns, great for teaching\n[Damn Vulnerable Web Application (DVWA)](http:\u002F\u002Fwww.dvwa.co.uk\u002F) | PHP\u002FMySQL web app for testing skills and tools\n[Google Gruyere](https:\u002F\u002Fgoogle-gruyere.appspot.com\u002F) | host of challenges on this cheesy web app\n[OWASP Broken Web Applications Project](https:\u002F\u002Fgithub.com\u002Fchuckfw\u002Fowaspbwa\u002F) | hosts a collection of broken web apps\n[OWASP Hackademic Challenges project](https:\u002F\u002Fgithub.com\u002FHackademic\u002Fhackademic\u002F) | web hacking challenges\n[OWASP Mutillidae II](https:\u002F\u002Fsourceforge.net\u002Fprojects\u002Fmutillidae\u002Ffiles\u002F) | another OWASP vulnerable app, lots of documentation.\n[OWASP Juice Shop](https:\u002F\u002Fgithub.com\u002Fbkimminich\u002Fjuice-shop) | covers the OWASP top 10 vulns\n[WebGoat: A deliberately insecure Web Application](https:\u002F\u002Fgithub.com\u002FWebGoat\u002FWebGoat) | maintained by OWASP and designed to to teach web app security\n\n### Vulnerable OS\nName    |    Description\n----    |    ----\n[General Test Environment Guidance](https:\u002F\u002Fcommunity.rapid7.com\u002Fdocs\u002FDOC-2196) | white paper from the pros at rapid7\n[Metasploitable2 (Linux)](https:\u002F\u002Fsourceforge.net\u002Fprojects\u002Fmetasploitable\u002Ffiles\u002FMetasploitable2\u002F) | vulnerable OS, great for practicing hacking\n[Metasploitable3](https:\u002F\u002Fgithub.com\u002Frapid7\u002Fmetasploitable3) \\[[Installation](https:\u002F\u002Fgithub.com\u002Frapid7\u002Fmetasploitable3\u002Fblob\u002Fmaster\u002FREADME.md)\\] | the third installation of this vulnerable OS\n[Vulnhub](https:\u002F\u002Fwww.vulnhub.com\u002F) | collection of tons of different vulnerable OS and challenges\n\n### Linux Penetration Testing OS\nName    |    Description\n----    |    -----\n[Android Tamer](https:\u002F\u002Fandroidtamer.com\u002F\u002F) | Android Tamer is a Virtual \u002F Live Platform for Android Security professionals.\n[BackBox](https:\u002F\u002Fbackbox.org\u002Findex) | open source community project, promoting security in IT enivornments\n[BlackArch](https:\u002F\u002Fblackarch.org\u002Findex.html) | Arch Linux based pentesting distro, compatible with Arch installs\n[Bugtraq](http:\u002F\u002Fbugtraq-team.com\u002F) | advanced GNU Linux pen-testing technology\n[Docker for pentest](https:\u002F\u002Fgithub.com\u002Faaaguirrep\u002Fpentest) | Image with the more used tools to create a pentest environment easily and quickly.\n[Kali](http:\u002F\u002Fkali.org\u002F) | the infamous pentesting distro from the folks at Offensive Security\n[LionSec Linux](https:\u002F\u002Flionsec-linux.org\u002F) | pentesting OS based on Ubuntu\n[Parrot ](https:\u002F\u002Fwww.parrotsec.org\u002F) | Debian includes full portable lab for security, DFIR, and development\n[Pentoo](https:\u002F\u002Fwww.pentoo.ch\u002F) | pentesting OS based on Gentoo\n\n### Exploits\nName    |   Description\n----     |    ----\n[0day.today](http:\u002F\u002F0day.today\u002F) | Easy to navigate database of exploits\n[Exploit Database](https:\u002F\u002Fwww.exploit-db.com\u002F) | database of a wide variety exploits, CVE compliant archive\n[CXsecurity](https:\u002F\u002Fcxsecurity.com\u002Fexploit\u002F) | Indie cybersecurity info managed by 1 person\n[Snyk Vulnerability DB](https:\u002F\u002Fsnyk.io\u002Fvuln\u002F) | detailed info and remediation guidance for known vulns, also allows you to test your code\n\n### Forums\nName    |    Description\n----    |    ----\n[0x00sec](https:\u002F\u002F0x00sec.org\u002F) | hacker, malware, computer engineering, Reverse engineering\n[Antichat](https:\u002F\u002Fforum.antichat.ru\u002F) | russian based forum\n[CODEBY.NET](https:\u002F\u002Fcodeby.net\u002F) | hacker, WAPT, malware, computer engineering, Reverse engineering, forensics - russian based forum\n[EAST Exploit database](http:\u002F\u002Feastexploits.com\u002F) | exploit DB for commercial exploits written for EAST Pentest Framework\n[Greysec](https:\u002F\u002Fgreysec.net) | hacking and security forum\n[Hackforums](https:\u002F\u002Fhackforums.net\u002F) | posting webstite for hacks\u002Fexploits\u002Fvarious discussion\n[4Hat Day](http:\u002F\u002F4hatday.com) | brazilian based hacker forum\n[CaveiraTech](https:\u002F\u002Fcaveiratech.com\u002Fforum) |  brazilian based, general hacker forum\n\n\n### Archived Security Conference Videos\nName    |    Description\n----    |    ----\n[InfoCon.org](https:\u002F\u002Finfocon.org\u002Fcons\u002F) | hosts data from hundreds of cons\n[Irongeek](http:\u002F\u002Fwww.irongeek.com\u002F) | Website of Adrien Crenshaw, hosts a ton of info.\n[infocondb.org](https:\u002F\u002Finfocondb.org\u002F) | a site that aims to catalog and cross-reference all hacker conferences.\n\n### Online Communities\nName    |    Description\n----    |    -----\n[Hacktoday](https:\u002F\u002Fwww.hacktoday.net\u002F) | requires an account, covering all kinds of hacking topics\n[Hack+](http:\u002F\u002Ft.me\u002Fhacking_group_channel) | link requires telegram to be used\n[MPGH](http:\u002F\u002Fmpgh.net) | community of MultiPlayerGameHacking\n\n\n### Online News Sources\nName    |    Description\n----    |    ----\n[InfoSec](http:\u002F\u002Fwww.infosecurity-magazine.com\u002F) | covers all the latest infosec topics\n[Recent Hash Leaks](https:\u002F\u002Fhashes.org\u002Fpublic.php) | great place to lookup hashes\n[Security Intell](https:\u002F\u002Fsecurityintelligence.com\u002Fnews\u002F) | covers all kinds of news, great intelligence resources\n[Threatpost](https:\u002F\u002Fthreatpost.com\u002F) | covers all the latest threats and breaches\n[Secjuice](secjuice.com)\n[The Hacker News](https:\u002F\u002Fthehackernews.com\u002F) | features a daily stream of hack news, also has an app\n","Awesome Hacking Resources 是一个汇集了黑客和渗透测试资源的项目，旨在帮助用户提升相关技能。该项目涵盖了从基础学习到高级技术实践的广泛内容，包括但不限于漏洞利用、逆向工程、特权提升等关键领域，并提供了丰富的在线教程、工具列表及社区论坛链接。特别适合网络安全爱好者、专业研究人员以及希望增强自身安全防护能力的技术人员使用。",2,"2026-06-11 03:38:42","high_star"]