Realistic Security https://killjoylabs.com// Fri, 02 Mar 2018 04:25:38 +0000 Fri, 02 Mar 2018 04:25:38 +0000 Jekyll v3.7.3 <p>Collection of resources</p> <p>Information security covers a wide array of spaces and skills. My typical process for approaching a new problem area is to look at all the links I have collected over the years and see whether or not I favorited a tutorial or introduction series on a blog. This has lead to many resources across many computers/browsers and it is something I would like to share in case anyone else will find it useful. Below is a list of resources I have compiled over the years that I will do my best to update.</p> <p>Note: Some of these resources fit into multiple categories.</p> <h3 id="learning-programming">Learning Programming</h3> <ul> <li><a href="https://projecteuler.net/">Project Euler</a></li> <li><a href="https://www.hackerrank.com/">Hacker Rank</a></li> <li><a href="https://codefights.com/">Code Fights</a></li> <li><a href="https://www.codecademy.com/">Codecademy</a></li> </ul> <h3 id="online-security-capture-the-flagswargames">Online Security Capture the Flags/Wargames</h3> <ul> <li><a href="https://ringzer0team.com/challenges">RingZer0 Team Challenges</a></li> <li><a href="http://smashthestack.org/">Smash The Stack Wargames</a></li> <li><a href="http://overthewire.org/wargames/">Over the wire Wargames</a></li> <li><a href="https://ctftime.org/">CTF Time</a></li> <li><a href="https://www.hackthissite.org/">Hack this site</a></li> <li><a href="https://www.hellboundhackers.org/">Hellbound Hackers</a></li> <li><a href="https://picoctf.com/">PicoCTF</a></li> <li><a href="https://microcorruption.com/login">Microcurruption</a></li> <li><a href="https://exploit-exercises.com/">Exploit Exercises</a></li> </ul> <h3 id="ctf-tools">CTF Tools</h3> <ul> <li><a href="https://github.com/Gallopsled/pwntools">Pwntools</a></li> <li><a href="http://quipqiup.com/">Quip quip</a></li> </ul> <h3 id="ctf-write-ups">CTF Write-Ups</h3> <ul> <li><a href="https://github.com/ctfs">CTF Write-up Github Repo</a></li> <li><a href="https://ctftime.org/writeups">CTF Time Write-ups</a></li> </ul> <h3 id="reverse-engineering-warning-some-of-this-will-be-listed-as-malware-use-at-your-own-risk">Reverse Engineering (WARNING: some of this will be listed as malware, use at your own risk)</h3> <ul> <li><a href="https://tuts4you.com/download.php?list.17">Lena’s RE Tutorials</a></li> <li><a href="https://tuts4you.com/download.php?view.3152">Crackme.de Archives</a></li> <li><a href="http://octopuslabs.io/legend/blog/sample-page.html">Legend of Random Olly Dbg Tutorials</a></li> </ul> <h3 id="reverse-engineering-tools">Reverse Engineering Tools</h3> <ul> <li><a href="https://www.hex-rays.com/products/ida/">IDA Pro</a></li> <li><a href="https://binary.ninja/">Binary Ninja</a></li> <li><a href="https://www.hopperapp.com/">Hopper Disassembler</a></li> <li><a href="https://github.com/radare/radare2">Radare2</a></li> </ul> <h3 id="malware-re">Malware RE</h3> <ul> <li><a href="https://www.alienvault.com/blogs/security-essentials/building-a-home-lab-to-become-a-malware-hunter-a-beginners-guide">AlientVault Malware Hunter Intro</a></li> <li><a href="https://securedorg.github.io/RE101/">Malware Unicorn RE 101</a></li> </ul> <h3 id="exploit-development">Exploit Development</h3> <ul> <li><a href="https://www.purehacking.com/blog/lloyd-simon/an-introduction-to-use-after-free-vulnerabilities">Use after free vulnerability intro</a></li> <li><a href="https://www.corelan.be/index.php/2009/07/19/exploit-writing-tutorial-part-1-stack-based-overflows/">Corelan Exploit Writing Tutorials</a></li> <li><a href="https://expdev-kiuhnm.rhcloud.com/2015/05/11/contents/">Windows Exploit Development Introduction</a></li> <li><a href="https://hacks.mozilla.org/2017/06/a-crash-course-in-memory-management/">Mozilla: Crash course in Memory Management</a></li> <li><a href="https://www.welivesecurity.com/wp-content/uploads/2017/01/Windows-Exploitation-2016-A4.pdf">Windows Exploitation in 2016</a></li> </ul> <h3 id="web-application-security">Web Application Security</h3> <ul> <li><a href="https://hack.me/">Hack.me</a></li> <li><a href="http://www.dvwa.co.uk/">Damn Vulnerable Web Application</a></li> <li><a href="https://www.owasp.org/index.php/OWASP_Broken_Web_Applications_Project">OWASP Broken Web Apps</a></li> <li><a href="https://sourceforge.net/projects/mutillidae/">Multillidae Web Application</a></li> <li><a href="https://google-gruyere.appspot.com/">Google Gruyere</a></li> <li><a href="http://www.lanmaster53.com/burp-visual-aids/">Burp Suite Quick Summary</a></li> <li><a href="http://www.thegreycorner.com/2017/01/exploiting-difficult-sql-injection.html">Tough SQLi with sqlmap</a></li> </ul> <h3 id="network-security">Network Security</h3> <ul> <li><a href="https://artkond.com/2017/03/23/pivoting-guide/">Pivoting for Red Teamers</a></li> </ul> <h3 id="pentration-testing">Pentration Testing</h3> <ul> <li><a href="https://github.com/nixawk/pentest-wiki">Pentesting Wiki</a></li> <li><a href="http://www.pentest-standard.org/index.php/Main_Page">Penetration Testing Standard</a></li> </ul> <h3 id="incident-response">Incident Response</h3> <ul> <li><a href="https://github.com/ThreatHuntingProject/ThreatHunting/tree/master/hunts">Threat Hunting Github</a></li> <li><a href="http://www.threathunting.net/">Threat Huting Project</a></li> </ul> <h3 id="bug-bounties">Bug Bounties</h3> <ul> <li><a href="https://www.hackerone.com/">HackerOne</a></li> <li><a href="https://bugcrowd.com/">BugCrowd</a></li> <li><a href="https://www.synack.com/">SynAck</a></li> </ul> <h3 id="penetration-testing-certifications">Penetration Testing Certifications</h3> <ul> <li><a href="https://www.offensive-security.com/information-security-training/penetration-testing-training-kali-linux/">Offensive Security PWK OSCP</a></li> <li><a href="https://www.giac.org/certification/penetration-tester-gpen">GIAC GPEN</a></li> </ul> <h3 id="exploit-development-certifications">Exploit Development Certifications</h3> <ul> <li><a href="https://www.giac.org/certification/exploit-researcher-advanced-penetration-tester-gxpn">GIAC GXPN</a></li> <li><a href="https://www.offensive-security.com/information-security-certifications/osce-offensive-security-certified-expert/">Offensive Security OSCE</a></li> <li><a href="https://www.offensive-security.com/information-security-certifications/osee-offensive-security-exploitation-expert/">Offensive Security OSEE</a></li> </ul> <h3 id="web-application-security-certifications">Web Application Security Certifications</h3> <ul> <li><a href="https://www.offensive-security.com/information-security-certifications/oswe-offensive-security-web-expert/">Offensive Security OSWE</a></li> <li><a href="https://www.giac.org/certification/web-application-penetration-tester-gwapt">GIAC GWAPT</a></li> </ul> <h3 id="network-certifications">Network Certifications</h3> <ul> <li><a href="https://www.cisco.com/c/en/us/training-events/training-certifications/certifications/associate/ccna-routing-switching.html">Cisco CCNA</a></li> <li><a href="https://www.juniper.net/us/en/training/certification/certification-tracks/junos-intro-track/">Juniper JNCIA</a></li> </ul> <h3 id="online-security-training">Online Security Training</h3> <ul> <li><a href="http://opensecuritytraining.info/Training.html">Open Security Info Training</a></li> </ul> <h3 id="containers-and-container-security">Containers and Container Security</h3> <ul> <li><a href="https://blog.jessfraz.com/">Jessie Frazelle’s Blog</a></li> </ul> <h3 id="kernel-security">Kernel Security</h3> <ul> <li><a href="https://github.com/xairy/linux-kernel-exploitation">Kernel Exploitation Github</a></li> </ul> <p>Updated: June 18, 2017</p> Sun, 11 Jun 2017 19:10:00 +0000 https://killjoylabs.com//resources/lists/2017/06/11/infosec-resources.html https://killjoylabs.com//resources/lists/2017/06/11/infosec-resources.html resources lists <p>The normal “Hello World”! Check out our about us.</p> <p>You can email us at killjoylabs@gmail.com</p> <p>Thanks for checking us out!</p> Sat, 20 Aug 2016 13:10:00 +0000 https://killjoylabs.com//infosec/osint/2016/08/20/hello-world.html https://killjoylabs.com//infosec/osint/2016/08/20/hello-world.html infosec osint