From 3d58430abf01cc2c1f075b31d0b47c1046d4ff48 Mon Sep 17 00:00:00 2001
From: trimstray
:small_orange_diamond: Curl - is a command line tool and library for transferring data with URLs.
- :small_orange_diamond: TOR Browser - protect your privacy and defend yourself against network surveillance and traffic analysis.
:small_orange_diamond: SSL/TLS Capabilities of Your Browser - test your browser's SSL implementation.
:small_orange_diamond: SSLLabs Server Test - free online service performs a deep analysis of the configuration of any SSL web server.
- :small_orange_diamond: Netcraft - detailed report about the site, helping you to make informed choices about their integrity.
- :small_orange_diamond: Gotcha? - list of 1.4 billion accounts circulates around the Internet.
- :small_orange_diamond: ImmuniWeb® Mobile App Scanner - test security and privacy of mobile apps (iOS & Android).
- :small_orange_diamond: Unbound - validating, recursive, and caching DNS resolver (with TLS).
:small_orange_diamond: pure-bash-bible - a collection of pure bash alternatives to external processes.
:small_orange_diamond: nixCraft - linux and unix tutorials for new and seasoned sysadmin.
- :small_orange_diamond: Hacking Articles - LRaj Chandel's Security & Hacking Blog.
:small_orange_diamond: Brendan Gregg's Blog - is an industry expert in computing performance and cloud computing.
:small_orange_diamond: kurly - is an alternative to the widely popular curl program, written in Golang.
- :small_orange_diamond: HTTPie - is an user-friendly HTTP client.
+ :small_orange_diamond: HTTPie - is an user-friendly HTTP client.
:small_orange_diamond: wuzz - is an interactive cli tool for HTTP inspection.
:small_orange_diamond: htrace.sh - is a simple Swiss Army knife for http/https troubleshooting and profiling.
:small_orange_diamond: httpstat - is a tool that visualizes curl statistics in a way of beauty and clarity.
@@ -300,7 +300,7 @@ Only main chapters:
##### :black_small_square: Browsers
+ :small_orange_diamond: TOR Browser - protect your privacy and defend yourself against network surveillance and traffic analysis.
- :small_orange_diamond: Can I use - provides up-to-date browser support tables for support of front-end web technologies.
+ :small_orange_diamond: Can I use - provides up-to-date browser support tables for support of front-end web technologies.
:small_orange_diamond: Panopticlick 3.0 - is your browser safe against tracking?
:small_orange_diamond: Privacy Analyzer - see what data is exposed from your browser.
:small_orange_diamond: Web Browser Security - it's all about Web Browser fingerprinting.
@@ -352,8 +352,8 @@ Only main chapters:
:small_orange_diamond: SSLLabs Server Test (DEV) - free online service performs a deep analysis of the configuration of any SSL web server.
- :small_orange_diamond: ImmuniWeb® SSLScan - test SSL/TLS (PCI DSS, HIPAA and NIST).
- :small_orange_diamond: COMODO SSL Analyzer - ssl analyzer and ssl certificate checker.
+ :small_orange_diamond: ImmuniWeb® SSLScan - test SSL/TLS (PCI DSS, HIPAA and NIST).
+ :small_orange_diamond: COMODO SSL Analyzer - ssl analyzer and ssl certificate checker.*
:small_orange_diamond: SSL Check - scan your website for non-secure content.
:small_orange_diamond: CryptCheck - test your TLS server configuration (e.g. ciphers).
:small_orange_diamond: urlscan.io - service to scan and analyse websites.
@@ -412,7 +412,7 @@ Only main chapters:
:small_orange_diamond: MX Toolbox - all of your MX record, DNS, blacklist and SMTP diagnostics in one integrated tool.
:small_orange_diamond: blacklistalert - checks to see if your domain is on a Real Time Spam Blacklist.
:small_orange_diamond: MultiRBL - complete IP check for sending Mailservers.
- :small_orange_diamond: DKIM SPF & Spam Assassin Validator - checks mail authentication and scores messages with Spam Assassin.
+ :small_orange_diamond: DKIM SPF & Spam Assassin Validator - checks mail authentication and scores messages with Spam Assassin.
+ :small_orange_diamond: Netcraft - detailed report about the site, helping you to make informed choices about their integrity.*
:small_orange_diamond: RIPE NCC - not-for-profit membership association, a Regional Internet Registry and the secretariat for the RIPE.
:small_orange_diamond: Robtex - uses various sources to gather public information about IP numbers, domain names, host names, routes etc.
:small_orange_diamond: Security Trails - APIs for Security Companies, Researchers and Teams.
:small_orange_diamond: Online Curl - curl test, analyze HTTP Response Headers.
- :small_orange_diamond: Ping.eu - online Ping, Traceroute, DNS lookup, WHOIS and others.
+ :small_orange_diamond: Ping.eu - online Ping, Traceroute, DNS lookup, WHOIS and others.
:small_orange_diamond: Network-Tools - network tools for webmasters, IT technicians & geeks.
:small_orange_diamond: Riseup - provides online communication tools for people and groups working on liberatory social change.
- :small_orange_diamond: VirusTotal - analyze suspicious files and URLs to detect types of malware.
+ :small_orange_diamond: VirusTotal - analyze suspicious files and URLs to detect types of malware.
:small_orange_diamond: explainshell - get interactive help texts for shell commands.
:small_orange_diamond: jsbin - live pastebin for HTML, CSS & JavaScript and more.
- :small_orange_diamond: CodePen - a social development environment for front-end designers and developers.
:small_orange_diamond: CodeSandbox - online code editor for web application development. Supports React, Vue, Angular, CxJS, Dojo, etc.
:small_orange_diamond: PHP Sandbox - test your PHP code with this code tester.
:small_orange_diamond: Repl.it - an instant IDE to learn, build, collaborate, and host all in one place.
@@ -487,14 +486,14 @@ performance of any of your sites from across the globe.
:small_orange_diamond: wigle - is a submission-based catalog of wireless networks. All the networks. Found by Everyone.
:small_orange_diamond: PublicWWW - find any alphanumeric snippet, signature or keyword in the web pages HTML, JS and CSS code.
:small_orange_diamond: IntelTechniques - this repository contains hundreds of online search utilities.
- :small_orange_diamond: Hackle - search engine for hackers and security professionals.
+ :small_orange_diamond: Hackle - search engine for hackers and security professionals.*
:small_orange_diamond: hunter - lets you find email addresses in seconds and connect with the people that matter for your business.
:small_orange_diamond: GhostProject? - search by full email address or username.
:small_orange_diamond: databreaches - was my email affected by data breach?
:small_orange_diamond: Buckets by Grayhatwarfar - database with public search for Open Amazon S3 Buckets and their contents.
:small_orange_diamond: Vigilante.pw - the breached database directory.
:small_orange_diamond: builtwith - find out what websites are built with.
- :small_orange_diamond: Mamont's open FTP Index - if a target has an open FTP site with accessible content it will be listed here.
+ :small_orange_diamond: Mamont's open FTP Index - if a target has an open FTP site with accessible content it will be listed here.
:small_orange_diamond: OSINT Framework - focused on gathering information from free tools or resources.
:small_orange_diamond: maltiverse - is a service oriented to cybersecurity analysts for the advanced analysis of indicators of compromise.
:small_orange_diamond: Leaked Source - is a collaboration of data found online in the form of a lookup.
@@ -512,7 +511,7 @@ performance of any of your sites from across the globe.
##### :black_small_square: Passwords
+ :small_orange_diamond: Gotcha? - list of 1.4 billion accounts circulates around the Internet.*
:small_orange_diamond: have i been pwned? - check if you have an account that has been compromised in a data breach.
##### :black_small_square: Mobile apps scanners
+ :small_orange_diamond: ImmuniWeb® Mobile App Scanner - test security and privacy of mobile apps (iOS & Android).
:small_orange_diamond: Quixxi - free Mobile App Vulnerability Scanner for Android & iOS.
:small_orange_diamond: Ostorlab - analyzes mobile application to identify vulnerabilities and potential weaknesses.
:small_orange_diamond: OpenBSD - multi-platform 4.4BSD-based UNIX-like operating system.
:small_orange_diamond: HardenedBSD - HardenedBSD aims to implement innovative exploit mitigation and security solutions.
:small_orange_diamond: Kali Linux - Linux distribution used for Penetration Testing, Ethical Hacking and network security assessments.
- :small_orange_diamond: Backbox Linux - penetration test and security assessment oriented Ubuntu-based Linux distribution.
+ :small_orange_diamond: Backbox Linux - penetration test and security assessment oriented Ubuntu-based Linux distribution.
:small_orange_diamond: BlackArch - is an Arch Linux-based penetration testing distribution for penetration testers and security researchers.
:small_orange_diamond: Security Onion - Linux distro for intrusion detection, enterprise security monitoring, and log management.
:small_orange_diamond: Tails - is a live system that aims to preserve your privacy and anonymity.
@@ -602,7 +601,7 @@ performance of any of your sites from across the globe.
##### :black_small_square: DNS Services
+ :small_orange_diamond: Unbound - validating, recursive, and caching DNS resolver (with TLS).
:small_orange_diamond: Knot Resolver - caching full resolver implementation, including both a resolver library and a daemon.
:small_orange_diamond: PowerDNS - is an open source authoritative DNS server, written in C++ and licensed under the GPL.
- :small_orange_diamond: The Bash Hackers Wiki - hold documentation of any kind about GNU Bash.
+ :small_orange_diamond: The Bash Hackers Wiki - hold documentation of any kind about GNU Bash.
:small_orange_diamond: Shell & Utilities - describes the commands and utilities offered to application programs by POSIX-conformant systems.
:small_orange_diamond: the-art-of-command-line - master the command line, in one page.
:small_orange_diamond: Shell Style Guide - a shell style guide for Google-originated open-source projects.
@@ -679,7 +678,7 @@ performance of any of your sites from across the globe.
:small_orange_diamond: TecMint - the ideal Linux blog for Sysadmins & Geeks.
- :small_orange_diamond: Omnisecu - free Networking, System Administration and Security tutorials.
+ :small_orange_diamond: Omnisecu - free Networking, System Administration and Security tutorials.
:small_orange_diamond: linux-cheat - Linux tutorials and cheatsheets. Minimal examples. Mostly user-land CLI utilities.
:small_orange_diamond: Unix Toolbox - collection of Unix/Linux/BSD commands and tasks which are useful for IT work or for advanced users.
:small_orange_diamond: Linux Guide and Hints - tutorials on system administration in Fedora and CentOS.
@@ -711,7 +710,7 @@ performance of any of your sites from across the globe.
##### :black_small_square: Security & Privacy
+ :small_orange_diamond: Hacking Articles - LRaj Chandel's Security & Hacking Blog.
:small_orange_diamond: AWS security tools - make your AWS cloud environment more secure.
:small_orange_diamond: Rawsec's CyberSecurity Inventory - an inventory of tools and resources about CyberSecurity.
:small_orange_diamond: The Illustrated TLS Connection - every byte of a TLS connection explained and reproduced.
@@ -736,7 +735,8 @@ performance of any of your sites from across the globe.
:small_orange_diamond: Weird Proxies - reverse proxy related attacks; it is a result of analysis of various reverse proxies, cache proxies, etc.
:small_orange_diamond: Webshells - great series about malicious payloads.
:small_orange_diamond: Practical Web Cache Poisoning - show you how to compromise websites by using esoteric web features.
- :small_orange_diamond: Hidden directories and files - as a source of sensitive information about web application.
+ :small_orange_diamond: Hidden directories and files - as a source of sensitive information about web application.*
+ :small_orange_diamond: Explosive blog - great blog about cybersec and pentests.
:small_orange_diamond: Security Cookies - this paper will take a close look at cookie security.
:small_orange_diamond: APISecurityBestPractices - help you keep secrets (API keys, db credentials, certificates) out of source code.
- :small_orange_diamond: Gynvael "GynDream" Coldwind - is a IT security engineer at Google.
+ :small_orange_diamond: Gynvael "GynDream" Coldwind - is a IT security engineer at Google.
:small_orange_diamond: Michał "lcamtuf" Zalewski - white hat hacker, computer security expert.
:small_orange_diamond: Mattias Geniar - developer, sysadmin, blogger, podcaster and public speaker.
:small_orange_diamond: Nick Craver - software developer and systems administrator for Stack Exchange.
@@ -881,7 +881,7 @@ Linux Security Expert - trainings, howtos, checklists, security tools an
:small_orange_diamond: Tripwire State of Security - blog featuring the latest news, trends and insights on current information security issues.
:small_orange_diamond: Malwarebytes Labs Blog - security blog aims to provide insider news about cybersecurity.
:small_orange_diamond: TrustedSec - latest news, and trends about cybersecurity.
- :small_orange_diamond: AT&T Cybersecurity blog - news on emerging threats and practical advice to simplify threat detection.
+ :small_orange_diamond: AT&T Cybersecurity blog - news on emerging threats and practical advice to simplify threat detection.
:small_orange_diamond: Thycotic - where CISOs and IT Admins come to learn about industry trends, IT security, data breaches, and more.
- :small_orange_diamond: rev3rse security - offensive, binary exploitation, web application security, vulnerability, hardening, red team, blue team.
+ :small_orange_diamond: rev3rse security - offensive, binary exploitation, web application security, vulnerability, hardening, red team, blue team.
:small_orange_diamond: LiveOverflow - a lot more advanced topics than what is typically offered in paid online courses - but for free.
:small_orange_diamond: J4vv4D - the important information regarding our internet security.
- :small_orange_diamond:
+ :small_orange_diamond:
CyberTalks - talks, interviews, and article about cybersecurity.
- :small_orange_diamond: How to Do Things at ARL - how to configure modems, scan images, record CD-ROMs, and other useful techniques.
+ :small_orange_diamond: How to Do Things at ARL - how to configure modems, scan images, record CD-ROMs, and other useful techniques.*
:small_orange_diamond: PTES - the penetration testing execution standard.
- :small_orange_diamond: Pentests MindMap - amazing mind map with vulnerable apps and systems.
- :small_orange_diamond: WebApps Security Tests MindMap - incredible mind map for WebApps security tests.
+ :small_orange_diamond: Pentests MindMap - amazing mind map with vulnerable apps and systems.
+ :small_orange_diamond: WebApps Security Tests MindMap - incredible mind map for WebApps security tests.
:small_orange_diamond: Brute XSS - master the art of Cross Site Scripting.
:small_orange_diamond: Offensive Security Bookmarks - security bookmarks collection, all that things I need to pass OSCP.
:small_orange_diamond: Awesome Pentest Cheat Sheets - collection of the cheat sheets useful for pentesting.
@@ -1008,7 +1008,7 @@ CyberTalks - talks, interviews, and article about cybersecurity.
:small_orange_diamond: Awesome Hacking Resources - collection of hacking/penetration testing resources to make you better.
:small_orange_diamond: Awesome Pentest - collection of awesome penetration testing resources, tools and other shiny things.
:small_orange_diamond: Hacking Cheat Sheet - author hacking and pentesting notes.
- :small_orange_diamond: Web App Pentesting Cheat Sheet - the typical steps performed when conducting a web application penetration test.
+ :small_orange_diamond: Web App Pentesting Cheat Sheet - the typical steps performed when conducting a web application penetration test.*
:small_orange_diamond: Cyber Security Resources - includes thousands of cybersecurity-related references and resources.
:small_orange_diamond: Pentest Bookmarks - there are a LOT of pentesting blogs.
:small_orange_diamond: PayloadsAllTheThings - a list of useful payloads and bypass for Web Application Security and Pentest/CTF.
@@ -1043,14 +1043,13 @@ CyberTalks - talks, interviews, and article about cybersecurity.
##### :black_small_square: Bounty platforms
- :small_orange_diamond: Bounty Factory - European bug bounty platform based on the legislation and rules in force in European countries.
+ :small_orange_diamond: YesWeHack - bug bounty platform with infosec jobs.
:small_orange_diamond: Openbugbounty - allows any security researcher reporting a vulnerability on any website.
:small_orange_diamond: hackerone - global hacker community to surface the most relevant security issues.
:small_orange_diamond: bugcrowd - crowdsourced cybersecurity for the enterprise.
:small_orange_diamond: Crowdshield - crowdsourced security & bug bounty management.
:small_orange_diamond: Synack - crowdsourced security & bug bounty programs, crowd security intelligence platform and more.
:small_orange_diamond: Hacktrophy - bug bounty platform.
- :small_orange_diamond: YesWeHack - bug bounty platform with infosec jobs.
:small_orange_diamond: Unbound DNS Tutorial - a validating, recursive, and caching DNS server.
- :small_orange_diamond: Knot Resolver on Fedora - how to get faster and more secure DNS resolution with Knot Resolver on Fedora.
+ :small_orange_diamond: Knot Resolver on Fedora - how to get faster and more secure DNS resolution with Knot Resolver on Fedora.
:small_orange_diamond: DNS-over-HTTPS - tutorial to setup your own DNS-over-HTTPS (DoH) server.
:small_orange_diamond: DNS-over-TLS - following to your DoH server, setup your DNS-over-TLS (DoT) server.
:small_orange_diamond: DNS Servers - how (and why) i run my own DNS Servers.