Hacker Media

Blogs Worth It:

What the title says. There are a LOT of pentesting blogs,
these are the ones i monitor constantly and value in the actual day to day testing work.


 

Forums:

Created for forums that will help in both tool usage, syntax, attack techniques, and collection of scripts and tools. Needs some help. I don’t really frequent too many underground forums but i actually find nice one-off scripts and info i can roll into my own code in these places. Would like to add more.

Magazines:

Video:


Methodologies:


OSINT

Presentations:

People and Organizational:

Infrastructure:


Exploits and Advisories:


Cheatsheets and Syntax:

Agile Hacking:

OS and Scripts:

Tools:


Distros:


Labs:

ISOs and VMs:

Vulnerable Software:

Test Sites:


Exploitation Intro:

If you’d like to get into exploit dev, these are really the guides and docs that will start you off in the right direction. Since Exploit dev is not my primary occupation this section could always use help.


Reverse Engineering & Malware:


Passwords and Hashes:

Wordlists:

Pass the Hash:


MiTM:


Tools:

OSINT:

Metadata:

Google Hacking:

Web:

Attack Strings:

Shells:

Scanners:

Proxies:

Burp:

Social Engineering:

Password:

Metasploit:

MSF Exploits or Easy:

NSE:

Net Scanners and Scripts:

Post Exploitation:

Netcat:

Source Inspection:

Firefox Addons:

Tool Listings:


Training/Classes:

Sec/Hacking:

Metasploit:

Programming:

Python:
Ruby:

Other Misc:


Web Vectors

SQLi:

Upload Tricks:

LFI/RFI:

XSS:

Coldfusion:

Sharepoint:

Lotus:

JBoss:

VMWare Web:

Oracle App Servers:

SAP:


Wireless:


Capture the Flag/Wargames:


Conferences:


Misc/Unsorted:


About blastrix