Categories
Similar Boards
Suggest a Link

Security Board

You must be logged in to view the contents of this board.

Pass the Hash

Pin
  1. crack-pass-hash_33219 (application/pdf Object)
  2. pass-the-hash-attacks-tools-mitigation_33283 (application/pdf Object)

Passwords and Hashes

Pin
  1. Electric Alchemy: Cracking Passwords in the Cloud: Breaking PGP on EC2 with EDPR
  2. Default Password List
  3. Virus.Org
  4. Requested MD5 Hash queue
  5. Online Hash Crack MD5 / LM / NTLM / SHA1 / MySQL - Passwords recovery - Reverse hash lo...
  6. Password Storage Locations For Popular Windows Applications
  7. 6 more

Reverse Engineering & Malware

Pin
  1. Offensive Computing | Community Malicious code research and analysis
  2. radare
  3. http://visi.kenshoto.com/
  4. Binary Auditing
  5. TiGa's IDA Video Tutorial Site

Test Sites

Pin
  1. NT OBJECTives
  2. Altoro Mutual
  3. Home of Acunetix Art
  4. acuforum forums
  5. acublog news
  6. http://zero.webappsecurity.com
  7. 2 more

Video

Pin
  1. YouTube - HackingCons's Channel
  2. YouTube - ChRiStIaAn008's Channel
  3. 27c3-stream/releases/mkv
  4. SecCon Archive
  5. Irongeek -Hacking Illustrated
  6. Security Tube
  7. 1 more

Distros

Pin
  1. BackBox Linux | Flexible Penetration Testing Distribution
  2. pentesting packages for ubuntu
  3. SUMO Linux
  4. Welcome to Linux From Scratch!
  5. KON-BOOT
  6. Katana
  7. 6 more

Proxies

Pin
  1. X5S
  2. Watcher: Web security testing tool and passive vulnerability scanner
  3. Fiddler Web Debugger - A free web debugging tool
  4. Mallory: Transparent TCP and UDP Proxy – Intrepidus Group - Insight
  5. OWASP WebScarab NG Project - OWASP
  6. SensePost - reDuh - HTTP Tunneling Proxy

OSINT

Pin
  1. Maltego 3
  2. DNSTRACER man-page
  3. Edge-Security - theHarvester- Information Gathering

Tools

Pin
  1. logstalgia - website access log visualization - Google Project Hosting

Password

Pin
  1. hashkill
  2. keimpx - Project Hosting on Google Code
  3. keimpx in action | 0x3f
  4. Ophcrack
  5. JTR
  6. Medusa
  7. 1 more

Source Inspection

Pin
  1. javasnoop - Project Hosting on Google Code
  2. Graudit - Just Another Hacker

Net Scanners & Scripts

Pin
  1. Retina Community
  2. Nexpose Community | Rapid7
  3. Nessus Community | Tenable Network Security
  4. OpenVAS
  5. SoftPerfect Network Scanner
  6. sambascan2 - SMB scanner
  7. 1 more

NSE

Pin
  1. NSEDoc Reference Portal
  2. Nmap Scripting Engine Primer Tutorial

SharePoint

Pin
  1. The Ethical Hacker Network - Pen Testing Sharepoint

Wireless

Pin
  1. pyrit - WPA/WPA2-PSK and a world of affordable many-core platforms - Google Project Hos...

Forums

Pin
  1. sla.ckers.org
  2. ethicalhacker.net
  3. bright-shadows.net
  4. Security Override
  5. iExploit Hacking Forum
  6. Hack This Site Forum
  7. 4 more

Cyber-attack maps

Pin
  1. Norse Attack Map
  2. Digital Attack Map
  3. Norse - IPViking Live
  4. Find out where you are on the Cyberthreat map / Узнай, где сейчас кипит кибервойна

Shells

Pin
  1. AJAX/PHP Command Shell
  2. SourceForge.net: Yokoso!

Burp

Pin
  1. burp suite tutorial - English
  2. Attack and Defense Labs - Tools
  3. w3af in burp
  4. Burp Suite Tutorial – Repeater and Comparer Tools « Security Ninja
  5. Browse Belch - Burp External Channel v1.0 Files on SourceForge.net
  6. Constricting the Web: The GDS Burp API - Gotham Digital Science
  7. 1 more

Ruby

Pin
  1. Video Tutorials - Technology Demonstrations - tekniqal.com

Google Hacking

Pin
  1. dorkScan.py
  2. Google Hacking Diggity Project « Stach & Liu
  3. Midnight Research Labs - SEAT

uploadtricks

Pin
  1. FileUploadSecurity - SH/SC Wiki
  2. TikiWiki jhot.php Script File Upload Security Bypass Vulnerability
  3. Cross-site File Upload Attacks | GNUCITIZEN
  4. Full Disclosure: Zeroboard File Upload & extension bypass Vulnerability
  5. TangoCMS - Security #237: File Upload Filter Bypass in TangoCMS <=2.5.0 - TangoCMS Project
  6. Uploading Files Using the File Field Control
  7. 8 more

Lotus

Pin
  1. Hacking Lotus Domino | SecTechno
  2. Penetration Testing: Re: Lotus Notes
  3. Lotus Notes/Domino Security - David Robert's -castlebbs- Blog

Oracle appserver

Pin
  1. hpoas.pdf (application/pdf Object)
  2. NGSSQuirreL for Oracle
  3. OraScan
  4. Testing for Oracle - OWASP
  5. hideaway [dot] net: Hacking Oracle Application Servers

Exploits and Advisories

Pin
  1. CVE - Common Vulnerabilities and Exposures (CVE)
  2. Secunia.com
  3. CVE security vulnerability database
  4. Nullbyte.Org.IL
  5. SecDocs IT Security and Hacking knowledge base
  6. OSVDB: The Open Source Vulnerability Database
  7. 5 more

OS & Scripts

Pin
  1. Rubular: a Ruby regular expression editor
  2. Useful commands for Windows administrators
  3. http://www.iana.org/assignments/port-numbers
  4. Rubular: a Ruby regular expression editor and tester
  5. BashPitfalls - Greg's Wiki
  6. Linux Survival :: Where learning Linux is easy
  7. 3 more

Magazines

Pin
  1. Hackers about hacking techniques in our IT Security Magazine
  2. http://hakin9.org/
  3. (IN)SECURE Magazine

Blogs worth it

Pin
  1. ::eSploit::
  2. Kioptrix
  3. GRM n00bs
  4. Security and risk
  5. Security Ninja
  6. punter-infosec
  7. 37 more

Scanners

Pin
  1. DotDotPwn - The Directory Traversal Fuzzer 2.1 ≈ Packet Storm
  2. inspathx – Tool For Finding Path Disclosure Vulnerabilities
  3. lfi-rfi2 scanner ≈ Packet Storm
  4. rfiscan ≈ Packet Storm
  5. News :: Arachni - Web Application Security Scanner Framework
  6. Websecurify
  7. 7 more

Post Exploitation

Pin
  1. Metacab | PHX2600
  2. http://www.awarenetwork.org/home/rattle/source/python/exe2bat.py

Metadata

Pin
  1. Security and Networking - Blog - Metadata Enumeration with FOCA
  2. Edge-Security - Metagoofil - Metadata analyzer - Information Gathering
  3. ExifTool by Phil Harvey
  4. [strike out]
  5. document-metadata-silent-killer_32974 (application/pdf Object)

SQLi

Pin
  1. SQLInjectionCommentary20071021.pdf (application/pdf Object)
  2. Overlooked SQL Injection 20071021.pdf (application/pdf Object)
  3. SQL Server Version - SQLTeam.com
  4. sqli2.pdf (application/pdf Object)
  5. sla.ckers.org web application security forum :: Obfuscation :: SQL filter evasion
  6. Joseph McCray SQL Injection
  7. 17 more

People and Orginizational

Pin
  1. White Pages | Email Lookup | People Find Tools at The Ultimates
  2. Twapper Keeper - "We save tweets" - Archive Tweets
  3. PicFog - Quick Image Search
  4. PeekYou
  5. TinEye Reverse Image Search
  6. Full Text Search
  7. 17 more

Social Engineering

Pin
  1. Social Engineering Toolkit

Other/Misc

Pin
  1. Robert Hansen on Vimeo
  2.  InfoSec Resources
  3. Index of /edu/training/ss/lecture/new-documents/Lectures
  4. T-110.6220 Lectures - Noppa - TKK
  5. CS490 Windows Internals

Metasploit

Pin
  1. (automating msf) UAV-slides.pdf
  2. neurosurgery-with-meterpreter
  3. Nsploit
  4. Armitage - Cyber Attack Management for Metasploit
  5. XLSinjector « Milo2012's Security Blog
  6. SecTor 2010 - HD Moore - Beyond Exploits on Vimeo
  7. 10 more

Tool Listings

Pin
  1. Security and Hacking Tools
  2. .:[ packet storm ]:. - tools

Capture the Flag/Wargames

Pin
  1. Hack facebook credentials using BeEF | LINUX DIGEST
  2. CTF Calendar
  3. The UCSB iCTF
  4. HC's Capture the Flag site
  5. flack & hkpco.kr
  6. SmashTheStack Wargaming Network
  7. 1 more

LFI/RFI

Pin
  1. Blog, When All You Can Do Is Read - DigiNinja
  2. Local File Inclusion – Tricks of the Trade « Neohapsis Labs
  3. LFI..Code Exec..Remote Root!
  4. Exploiting PHP File Inclusion – Overview « Reiners’ Weblog
  5. http://pastie.org/840199

Coldfusion

Pin
  1. Computer Security Blog: PR10-08 Various XSS and information disclosure flaws within Ado...
  2. Adobe XML Injection Metasploit Module | carnal0wnage.attackresearch.com
  3. 254_ShlomyGantz_August2009_HackProofingColdFusion.pdf (application/pdf Object)
  4. HP Blogs - Adobe ColdFusion's Directory Traversal Disaster - The HP Blog Hub
  5. Attacking ColdFusion
  6. Attacking ColdFusion. | Sigurnost i zastita informacija
  7. 1 more

jboss

Pin
  1. Minded Security Blog: Good Bye Critical Jboss 0day
  2. Whitepaper-Hacking-jBoss-using-a-Browser.pdf (application/pdf Object)

SAP

Pin
  1. Phenoelit SAP exploits
  2. '[john-users] patch for SAP-passwords (BCODE & PASSCODE)' - MARC
  3. Onapsis | Research Labs

misc/unsorted

Pin
  1. Stupid htaccess Tricks • Perishable Press
  2. Database_Pen_Testing_ISSA_March_25_V2.pdf (application/pdf Object)
  3. black-box-scanners-dimva2010.pdf (application/pdf Object)
  4. Network Time Protocol (NTP) Fun | carnal0wnage.attackresearch.com
  5. HD Moore on Metasploit, Exploitation and the Art of Pen Testing | threatpost
  6. Zen One: PCI Compliance - Disable SSLv2 and Weak Ciphers
  7. 6 more

ISO's / VMs

Pin
  1. The ButterFly - Security Project
  2. Damn Vulnerable Web App - DVWA
  3. Mutillidae: A Deliberately Vulnerable Set Of PHP Scripts
  4. Badstore.net
  5. Virtual Hacking Lab
  6. Hacking-Lab.com LiveCD
  7. 9 more

Methodologies

Pin
  1. social-engineer.org
  2. OWASP top 10
  3. Web Application Security Consortium (WASC)
  4. The Penetration Testing Execution Standard
  5. Penetration Testing Framework

Attack Strings

Pin
  1. OWASP Fuzzing Code Database - OWASP
  2. fuzzdb - Project Hosting on Google Code

Metasploit

Pin
  1. OffSecOhioChapter, Metasploit Class2 - Part3
  2. OffSecOhioChapter, Metasploit Class2 - Part2
  3. OffSecOhioChapter, Metasploit Class2 - Part1
  4. Metasploit Tips and Tricks - Ryan Linn
  5. Metasploit Megaprimer 300+ mins of video
  6. Metasploit Class Videos  (Hacking Illustrated Series InfoSec Tutorial Videos)
  7. 1 more

Netcat

Pin
  1. Ncat for Netcat Users
  2. Cracked, inSecure and Generally Broken: Netcat
  3. Skoudis_pentestsecrets.pdf (application/pdf Object)
  4. Few Useful Netcat Tricks « Terminally Incoherent
  5. Nmap Development: Re: Your favorite Ncat/nc/Netcat trick?
  6. Netcat tricks « Jonathan’s Techno-tales
  7. 6 more

Web

Pin
  1. koto/squid-imposter - GitHub
  2. WebService-Attacker
  3. unicode-fun.txt ≈ Packet Storm
  4. Clickjacker
  5. XSSer: automatic tool for pentesting XSS attacks against different applications
  6. pinata-CSRF-tool
  7. 8 more

MSF Exploits or Easy

Pin
  1. Tenable Network Security
  2. Tenable Network Security
  3. Tenable Network Security
  4. Tenable Network Security
  5. Tenable Network Security
  6. Tenable Network Security
  7. 26 more

Conferences

Pin
  1. DragonJAR Security Conference 2014
  2. TED: Ideas worth spreading
  3. X.25 Ethical Hacking Conferences - 2014
  4. BugCON
  5. Home | Hack In Paris
  6. Where The World Talks Security – RSA Conference
  7. 4 more

Python

Pin

Programming / Python

  1. Learning Python Programming Language Through Video Lectures - good coders code, great r...
  2. Python Videos, Tutorials and Screencasts
  3. TheNewBoston – Free Educational Video Tutorials on Computer Programming and More! » ...
  4. Python en:Table of Contents - Notes
  5. Google's Python Class - Google's Python Class - Google Code

Sec / Hacking

Pin
  1. Sec and Infosec Related - MIT
  2. T-110.6220 Special Topics in Ifocsec -TKK
  3. Software Security - CMU
  4. MCS 494 UNIX Security Holes
  5. CSCI 4971 Secure Software Principles - RPI
  6. Security Talks - UCLA
  7. 8 more

Conferences

Pin
  1. Information Security Conferences Calnedar

Wordlists

Pin
  1. Index of /passwd/passwords
  2. Passwords - SkullSecurity
  3. Packet Storm Word Lists
  4. "Crack Me If You Can" - DEFCON 2011

MitM

Pin
  1. Thicknet: It does more than Oracle, Steve Ocepek securityjustice on USTREAM. Computers
  2. MadIrish.net Mallory is More than a Proxy
  3. ettercap_Nov_6_2005-1.pdf (application/pdf Object)
  4. ICTSecurity-2004-26.pdf (application/pdf Object)
  5. Ettercap(ManInTheMiddleAttack-tool).pdf (application/pdf Object)
  6. arp_spoofing.pdf (application/pdf Object)
  7. 18 more

Exploitation Intro

Pin
  1. X86 Opcode and Instruction Reference
  2. x9090's Blog: [TUTORIAL] Exploit Writting Tutorial From Basic To Intermediate
  3. The Ethical Hacker Network - Smashing The Modern Stack For Fun And Profit
  4. Smash the Stack 2010
  5. Past, Present, Future of Windows Exploitation | Abysssec Security Research
  6. Myne-us: From 0x90 to 0x4c454554, a journey into exploitation.
  7. 1 more

Agile Hacking

Pin
  1. Advanced-Command-Exploitation
  2. windows-scripting-COM-tricks
  3. [PenTester Scripting]
  4. Pentesting Ninjitsu 2 Infrastructure and Netcat without Netcat
  5. Pentesting Ninjitsu 1
  6. Hacking Without Tools: Windows - RST
  7. 9 more

Presentations

Pin
  1. Netcraft | Internet Research, Anti-Phishing and PCI Security Services
  2. footprinting - passive information gathering before a pentest
  3. document_metadata_the_silent_killer__32974 (application/pdf Object)
  4. Tactical Information Gathering
  5. Enterprise Open Source Intelligence Gathering – Part 3 Monitoring and Social Media Po...
  6. Enterprise Open Source Intelligence Gathering – Part 2 Blogs, Message Boards and Meta...
  7. 1 more

Cheat Sheets and Syntax

Pin
  1. Security Advancements at the Monastery » Blog Archive » What’s in Your Folder: Security...
  2. Cheat Sheet : All Cheat Sheets in one page
  3. Big Port DB | Cirt

Infastructure

Pin
  1. IHS |  GHDB
  2. net toolkit::index
  3. Domain - reports and all about ips, networks and dns
  4. Google Hacking Database, GHDB, Google Dorks
  5. MyIPNeighbors Reverse IP Lookup
  6. SSL Labs - Projects / Public SSL Server Database - SSL Server Test
  7. 7 more

Vulnerable Software

Pin
  1. Hacme Travel | McAfee Free Tools
  2. Hacme Shipping | McAfee Free Tools
  3. Hacme Casino v1.0 | McAfee Free Tools
  4. Hacme Books | McAfee Free Tools
  5. OWASP SiteGenerator - OWASP
  6. wavsep - Web Application Vulnerability Scanner Evaluation Project
  7. 3 more

Tools

Pin
  1. Netcat cheat sheet
  2. Metasploit meterpreter cheat sheet reference
  3. MSF, Fgdump, Hping
  4. Nmap 5 (new)
  5. hping3 cheatsheet
  6. nessus/nmap (older)
  7. 1 more

Online Resources

Pin
  1. Routerpwn 1.20.239
  2. YGN Ethical Hacker Group :: Security Research
  3. Network Security & hacking Blog
  4. Kriptópolis | Criptografía y Seguridad
  5. WarZone.elhacker.NET
  6. ConexionInversa
  7. 34 more

Firefox Addons

Pin
  1. HackBar :: Add-ons for Firefox
  2. CVE ® dictionary search plugin :: Add-ons for Firefox
  3. OVAL repository search plugin :: Add-ons for Firefox
  4. Offsec Exploit-db Search :: Add-ons for Firefox
  5. Default Passwords - CIRT.net :: Add-ons for Firefox
  6. Packet Storm search plugin. :: Add-ons for Firefox
  7. 2 more

XSS

Pin
  1. What's Possible with XSS?
  2. [DOM Based Cross Site Scripting or XSS of the Third Kind] Web Security Articles - Web A...
  3. sla.ckers.org web application security forum :: XSS Info
  4. XSS - Cross Site Scripting
  5. HTML5 Security Cheatsheet
  6. Filter Evasion – Houdini on the Wire « Security Aegis
  7. 6 more

vmware web

Pin
  1. Metasploit Penetration Testing Framework - Module Browser
0 Comment
Comments or thoughts?
Submit
Cancel
or
Email a link to this board
Share this board on Facebook
Share this board on Twitter
Notice label will go here