A curated collection of ethical hacking and cybersecurity resources for beginners and enthusiasts.
- Getting Started with Ethical Hacking
- Programming Languages for Hackers
- Web Hacking Resources
- Operating Systems for Ethical Hacking
- Ethical Hacking Tools
- Common Vulnerabilities
- Common Tools for Web Hacking
- Fields of Development
- CTFs (Capture the Flag) & Practice Platforms
-
What is Ethical Hacking? A Beginner's Guide
Learn the fundamentals of ethical hacking, its purpose, and its benefits. -
Hacker101 - Free Ethical Hacking Course
Free educational resources from HackerOne to learn web security and vulnerability hunting. -
Cybrary - Ethical Hacking Courses
Free and paid courses in ethical hacking, penetration testing, and more. -
OWASP - Open Web Application Security Project
A nonprofit foundation dedicated to improving software security, with a vast array of resources. -
Offensive Security Training Path
A structured learning path for advanced ethical hacking certifications (OSCP, OSEP, etc.).
-
Python Crash Course for Ethical Hackers
A beginner-friendly Python course tailored for cybersecurity enthusiasts. -
Learn C Programming
Essential for low-level programming, exploit development, and reverse engineering. -
Bash Scripting for Beginners
Automate tasks in Linux and build quick hacking scripts. -
x86 Assembly Guide
Learn assembly for reverse engineering and understanding low-level operations. -
JavaScript for Hackers: Basics to Advanced
Crucial for web hacking (e.g., XSS attacks).
-
PortSwigger Web Security Academy
Free interactive labs for learning web application security concepts like XSS, SQL Injection, CSRF, etc. -
HackerOne - Bug Bounty Platform
Participate in bug bounty programs, report security issues, and earn rewards. -
OWASP Top 10 Security Risks
The top ten most critical security risks in web applications. -
SQL Injection Attack Explanation & Guide
Learn about SQL Injection vulnerabilities and defenses. -
Web Hacking 101 by Peter Yaworski
Insights into real-world bug bounty case studies and hacking techniques.
-
Kali Linux - Offensive Security Distro
The most popular Linux distribution for penetration testing. -
Parrot Security OS
A Linux distro focused on security, privacy, and penetration testing. -
BlackArch Linux
An Arch-based Linux distribution designed for penetration testers with over 2500 tools. -
Tails OS - Privacy & Anonymity
A Linux distribution designed for privacy and anonymity through the Tor network.
-
Nmap
A powerful tool for network discovery and security auditing. -
Metasploit Framework
A comprehensive platform for developing and executing exploits. -
Burp Suite
A popular tool for web vulnerability scanning. -
Wireshark
A network protocol analyzer used to capture and analyze traffic. -
John the Ripper
A fast password cracker for testing password strength.
-
Cross-Site Scripting (XSS):
An attack that injects malicious scripts into trusted websites. -
SQL Injection:
A code injection technique that exploits a security vulnerability in an application's software. -
Cross-Site Request Forgery (CSRF):
An attack that tricks the user into executing unwanted actions on a different website.
- Burp Suite
- OWASP ZAP
- Acunetix
- Nikto
- W3af
- Burp Collaborator
- JoomScan
- WPScan
- XSSer
- RIPS
- Golismero
- WebGoat
- Hackazon
- Juice Shop
- Sqli Dumper
- Web Vulnerability Scanner
- Ffuf
- Fuzzing Tools (e.g., Peach Fuzzer)
- XSS-Payloads
- Wfuzz
- FuzzDB
- DirBuster
- Gobuster
- WhatWeb
- Wappalyzer
- JsFuzz
- Metasploit
- SQLMap
- Postman
- Netcat
- Hping3
- SIPVicious
- Recon-ng
- Nessus
- Shodan
- Sublist3r
- TheHarvester
- SSLScan
- Selenium
- Burp Suite
- OWASP ZAP
- Fiddler
- cURL
- Tawkwon-Do
- PayloadsAllTheThings
- Can I Hack It?
- Wfuzz
- Hping3
- XSS-Payloads
- JsFuzz
- DirBuster
- Gobuster
- Recon-ng
- Sublist3r
-
MDN Web Docs
Excellent resource for HTML, CSS, and JavaScript documentation. -
FreeCodeCamp
A platform offering free lessons on web development. -
Frontend Mentor
Real-world front-end challenges to improve skills.
-
Android Developer
Official resource for building Android applications. -
iOS Developer
Apple documentation for developing iOS apps. -
Flutter
Google's framework for building natively compiled applications.
-
Unity
A widely-used game development platform. -
Unreal Engine
A powerful game engine for 2D and 3D game development. -
Godot Engine
An open-source game engine known for being lightweight and easy to learn.
-
Hack The Box
Popular platform for penetration testers and ethical hackers. -
TryHackMe
Hands-on hacking labs and CTF challenges. -
CTFTime
Track upcoming CTF events and challenges.
This collection of resources covers everything from getting started in ethical hacking to mastering tools and techniques. Dive in, and happy hacking!