mirror of
https://github.com/enaqx/awesome-pentest.git
synced 2024-10-01 05:05:56 +00:00
Merge branch 'master' into patch-1
This commit is contained in:
Samar Dhwoj Acharya
GitHub
commit
002aab1200
11
README.md
11
README.md
@ -33,6 +33,7 @@ A collection of awesome penetration testing resources
|
||||
- [Books](#books)
|
||||
- [Penetration Testing Books](#penetration-testing-books)
|
||||
- [Hackers Handbook Series](#hackers-handbook-series)
|
||||
- [Defensive Development](#defensive-development)
|
||||
- [Network Analysis Books](#network-analysis-books)
|
||||
- [Reverse Engineering Books](#reverse-engineering-books)
|
||||
- [Malware Analysis Books](#malware-analysis-books)
|
||||
@ -105,6 +106,7 @@ A collection of awesome penetration testing resources
|
||||
* `docker pull diogomonica/docker-bench-security` - [Docker Bench for Security](https://hub.docker.com/r/diogomonica/docker-bench-security/)
|
||||
* `docker pull ismisepaul/securityshepherd` - [OWASP Security Shepherd](https://hub.docker.com/r/ismisepaul/securityshepherd/)
|
||||
* `docker pull danmx/docker-owasp-webgoat` - [OWASP WebGoat Project docker image](https://hub.docker.com/r/danmx/docker-owasp-webgoat/)
|
||||
* `docker-compose build && docker-compose up` - [OWASP NodeGoat](https://github.com/owasp/nodegoat#option-3---run-nodegoat-on-docker)
|
||||
* `docker pull citizenstig/nowasp` - [OWASP Mutillidae II Web Pen-Test Practice Application](https://hub.docker.com/r/citizenstig/nowasp/)
|
||||
|
||||
#### Vulnerability Scanners
|
||||
@ -239,6 +241,7 @@ A collection of awesome penetration testing resources
|
||||
* [Medusa disassembler](https://github.com/wisk/medusa) - An open source interactive disassembler
|
||||
* [plasma](https://github.com/joelpx/plasma) - Interactive disassembler for x86/ARM/MIPS. Generates indented pseudo-code with colored syntax code
|
||||
* [peda](https://github.com/longld/peda) - Python Exploit Development Assistance for GDB
|
||||
* [dnSpy](https://github.com/0xd4d/dnSpy) - dnSpy is a tool to reverse engineer .NET assemblies
|
||||
|
||||
#### CTF Tools
|
||||
* [Pwntools](https://github.com/Gallopsled/pwntools) - CTF framework for use in CTFs
|
||||
@ -272,6 +275,11 @@ A collection of awesome penetration testing resources
|
||||
* [The Mobile Application Hackers Handbook by Dominic Chell et al., 2015](http://www.wiley.com/WileyCDA/WileyTitle/productCd-1118958500.html)
|
||||
* [Car Hacker's Handbook by Craig Smith, 2016](https://www.nostarch.com/carhacking)
|
||||
|
||||
#### Defensive Development
|
||||
|
||||
* [Holistic Info-Sec for Web Developers (Fascicle 0)](https://leanpub.com/holistic-infosec-for-web-developers)
|
||||
* [Holistic Info-Sec for Web Developers (Fascicle 1)](https://leanpub.com/holistic-infosec-for-web-developers-fascicle1-vps-network-cloud-webapplications)
|
||||
|
||||
#### Network Analysis Books
|
||||
* [Nmap Network Scanning by Gordon Fyodor Lyon, 2009](https://nmap.org/book/)
|
||||
* [Practical Packet Analysis by Chris Sanders, 2011](https://www.nostarch.com/packet2.htm)
|
||||
@ -324,6 +332,7 @@ A collection of awesome penetration testing resources
|
||||
* [CXSecurity](http://cxsecurity.com/) - CSSecurity Bugtraq List
|
||||
* [Vulnerability Laboratory](http://www.vulnerability-lab.com/) - Vulnerability Research Laboratory
|
||||
* [ZDI](http://www.zerodayinitiative.com/) - Zero Day Initiative
|
||||
* [Vulners](https://vulners.com) - Security database of software vulnerabilities
|
||||
|
||||
### Security Courses
|
||||
* [Offensive Security Training](https://www.offensive-security.com/information-security-training/) - Training from BackTrack/Kali developers
|
||||
@ -333,6 +342,7 @@ A collection of awesome penetration testing resources
|
||||
* [ARIZONA CYBER WARFARE RANGE](http://azcwr.org/) - 24x7 live fire exercises for beginners through real world operations; capability for upward progression into the real world of cyber warfare.
|
||||
* [Cybrary](http://cybrary.it) - Free courses in ethical hacking and advanced penetration testing. Advanced penetration testing courses are based on the book 'Penetration Testing for Highly Secured Enviroments'.
|
||||
* [Computer Security Student](http://computersecuritystudent.com) - Many free tutorials, great for beginners, $10/mo membership unlocks all content
|
||||
* [European Union Agency for Network and Information Security](https://www.enisa.europa.eu/topics/trainings-for-cybersecurity-specialists/online-training-material) - ENISA Cyber Security Training material
|
||||
|
||||
### Information Security Conferences
|
||||
* [DEF CON](https://www.defcon.org/) - An annual hacker convention in Las Vegas
|
||||
@ -343,6 +353,7 @@ A collection of awesome penetration testing resources
|
||||
* [PhreakNIC](http://phreaknic.info/) - A technology conference held annually in middle Tennessee
|
||||
* [ShmooCon](http://shmoocon.org/) - An annual US east coast hacker convention
|
||||
* [CarolinaCon](http://www.carolinacon.org/) - An infosec conference, held annually in North Carolina
|
||||
* [CHCon](https://chcon.nz) - Christchurch Hacker Con, Only South Island of New Zealand hacker con
|
||||
* [SummerCon](http://www.summercon.org/) - One of the oldest hacker conventions, held during Summer
|
||||
* [Hack.lu](https://2016.hack.lu/) - An annual conference held in Luxembourg
|
||||
* [HITB](https://conference.hitb.org/) - Deep-knowledge security conference held in Malaysia and The Netherlands
|
||||
|
||||
Loading…
Reference in New Issue
Block a user