Lainchan

Hacking General #6

IRC - https://rizon.net/chat #LainHackGen

Hacking General 1 - https://archive.fo/kOqhC
Hacking General 2 - https://archive.is/ZVhdw
Hacking General 4 - https://archive.fo/mFZPU
Hacking General 5 - https://archive.fo/FerDv


*****Learn*****
>University
MIT - https://ocw.mit.edu/courses/electrical-engineering-and-computer-science/
FSU - https://www.cs.fsu.edu/~redwood/OffensiveComputerSecurity/lectures.html

>Online
https://www.cybrary.it/
http://www.opensecuritytraining.info/Training.html
https://www.offensive-security.com/metasploit-unleashed/
http://howto.hackallthethings.com/2016/07/learning-exploitation-with-offensive.html
https://hackeracademy.com/library


*****Practice*****
>CTFs
https://ctftime.org/
https://picoctf.com/
http://abctf.xyz/
https://ctf365.com/

>VMs
https://www.vulnhub.com/
https://exploit-exercises.com/
https://www.pentesterlab.com/

>Wargames/Challenges
http://overthewire.org/wargames/ - Misc
http://smashthestack.org/ - Misc
https://w3challs.com/challenges/hacking - Misc
http://www.hackthissite.org/ - Misc
http://forensicscontest.com/puzzles - Forensics
https://microcorruption.com/ - Reverse Engineering
http://crackmes.de/ - Reverse Engineering
http://pwnable.kr/ - System Exploitation
http://www.itsecgames.com/ - Web Apps
http://www.enigmagroup.org/ - Web Apps
http://www.hackertest.net/ - Web Apps
https://xss-game.appspot.com/ - XSS Game
http://3564020356.org/ - Secret
http://0x0539.net/ - Secret


*****Readings*****
Smashing The Stack For Fun And Profit - http://www.phrack.org/archives/issues/49/14.txt
From 0x90 to 0x4c454554, A journey into exploitation - http://pastebin.com/3Qtw6JQw

>Ops
AntiSec Gamma - http://pastebin.com/raw/cRYvK4jb
AntiSec HackingTeam - http://pastebin.com/raw/0SNSvyjJ
AnonSec OpNasaDrones - http://pastebin.com/pm1WLXQj


*****Videos*****
Mossos Police Hack - https://www.youtube.com/watch?v=xdiSUiHruWM
HackInTheBox Opsec - https://www.youtube.com/watch?v=9XaYdCdwiWU
Defcon Don't Fuck It Up! - https://www.youtube.com/watch?v=J1q4Ir2J8P8
Large Collection - http://www.securitytube.net/
Livestreamed Hacking Competition - https://blog.forallsecure.com/2016/05/24/live-streaming-security-games/#videos


*****Textbooks*****
>Hacking The Art of Exploitation Second Edition
https://leaksource.files.wordpress.com/2014/08/hacking-the-art-of-exploitation.pdf
Live CD - http://www.mininova.org/tor/2533556

>Black Hat Python, Python Programming For Hackers
https://archive.org/stream/pdfy-rJnW-pPgiHK61dok/Black%20Hat%20Python,%20Python%20Programming%20for%20Hackers_djvu.txt

>Mobile Hackers Handbook
http://www.droidsec.cn/wp-content/uploads/2015/04/the_mobile_hackers_handbook.pdf

>Penetration Testing with Kali Linux
http://dl2.cbtnet.ir/books/wp-content/uploads/2015/08/Penetration-Testing-with-Kali-Linux-2014.pdf

>CTF Field Guide
https://trailofbits.github.io/ctf/index.html

>Gentooman's Library
https://g.sicp.me/books/

>Reverse Engineering for Beginners
https://github.com/dennis714/RE-for-beginners

>Free Programing Books
https://github.com/vhf/free-programming-books/blob/master/free-programming-books.md
https://learncodethehardway.org/c/

>Free IT Books
http://www.allitebooks.com/

>The Hacker Playbook 2
>RedTeamFieldManual
>The Web Application Hacker's Handbook 


*****Useful Tools*****
Aircrack
BurpSuite
Hydra
John
MSF
Nmap
OWASP Zap
Sqlmap
SET 
Wireshark


*****News/CVE Releases*****
https://threatpost.com/
http://www.deepdotweb.com/
https://packetstormsecurity.com/
https://n0where.net/

http://www.exploit-db.com/
http://www.cvedetails.com/
https://cve.mitre.org/cve/cve.html
http://routerpwn.com/
https://www.rapid7.com/db/
http://0day.today/


*****Other Threads List*****
>List of tools, malware and exploits for pentesting, bug bounty and sec research
https://github.com/Hack-with-Github/Awesome-Hacking
https://github.com/ytisf/theZoo
https://www.exploit-db.com/
>CIA and NSA soykaf
https://github.com/x0rz/EQGRP
https://github.com/DonnchaC/cia-hacking-tool-archive
https://github.com/DonnchaC/shadowbrokers-exploits
>Wikis
https://www.owasp.org/index.php/Main_Page
http://netsec7moavvkprc.onion/Main_Page
https://lainwiki.cocaine.ninja/index.php/Sec
>Tutorials 
http://www.primalsecurity.net/tutorials/exploit-tutorials/
http://www.opensecuritytraining.info/Training.html
https://www.cs.fsu.edu/~redwood/OffensiveSecurity/lectures.html
http://phrack.org/issues/69/1.html
>News
http://kenblog2vwew64r5.onion/
https://www.reddit.com/r/bugbounty
https://www.reddit.com/r/netsec
https://greysec.net/

*****More*****
How To Become a Hacker: http://catb.org/~esr/faqs/hacker-howto.html
Massive resourse for pentesting: https://github.com/wtsxDev/Penetration-Testing

After 6 years of pentesting blog:
https://0x00sec.org/t/shared-thoughts-after-6-years-in-pentesting/2492

>Learning
https://cybrary.it/
https://n0where.net/
https://www.offensive-security.com/metasploit-unleashed
http://resources.infosecinstitute.com/
http://www.windowsecurity.com/articles-tutorials/
https://www.sans.org/reading-room/
https://www.corelan.be/index.php/articles/
http://opensecuritytraining.info/Training.html
https://www.blackhat.com/html/archives.html
http://www.securitytube.net/
http://opensecuritytraining.info/Welcome.html
https://beginners.re/

Cryptography:
http://cryptopals.com/
I also pasted this in /lambda/ because it's relevant there as well.
Reverse Engineering
https://beginners.re/
https://challenges.re/
https://microcorruption.com/login (good soykaf)
http://skullcode.com/ (hardcore!)
War Games: (I'll just post my two favorite wargames sites, someone here sure has a bigger list)
http://overthewire.org/wargames/
http://pwnable.kr/

*****Even More*****
-> BEGINNERS MUST WATCH: 10,000 foot view of penetration testing:
http://www.mediafire.com/download/b71c8v...esting.rar

Infosec resources list:
https://github.com/rmusser01/Infosec_Reference

Humble Bundle Mega:
https://mega.nz/folder/xXIG2aSB#kqvvtpSIqWZRti0Ifbweog

Penetration Testing Tools Cheat Sheet:
https://highon.coffee/blog/penetration-testing-tools-cheat-sheet/

-> The top 10 OWASP vulnerabilities explained & exploited. Good for getting a big picture of present day web hacking:
http://www.mediafire.com/download/zodyqc...icture.rar

-> A ~9 hour long course on website vulnerabilities and how to exploit/secure them:
http://www.mediafire.com/download/7dgfkk...ffense.rar (Hack Yourself First; How to go on the Cyber-Offense)

>These were taken from https://greysec.net/showthread.php?tid=1563 , they have more material there, a lot of it hosted in public. Good additions to OP text.

Wifi Explained:
https://www.bboxservices.com/resources/blog/bbns/2018/04/30/802.11-wireless-standards-explained
https://netbeez.net/blog/how-wifi-connection-works/
