-
Notifications
You must be signed in to change notification settings - Fork 0
Secure Coding or Information Security
Nicole Schwartz "AmazonV" "CircuitSwan edited this page Jan 3, 2025
·
72 revisions
- https://www.cyber.gc.ca/en/guidance/cyber-security-career-guide
- https://www.manning.com/books/cybersecurity-career-guide
- https://www.cyberseek.org/pathway.html
- https://niccs.cisa.gov/workforce-development/cyber-career-pathways-tool
- https://niccs.cisa.gov/education-training/cybersecurity-students
- https://www.ukcybersecuritycouncil.org.uk/careers-and-learning/cyber-career-framework/
- https://www.nist.gov/itl/applied-cybersecurity/nice/resources/career-pathways
- https://www.cyberseek.org/
- https://cyberireland.ie/career-map/
- https://pauljerimy.com/security-certification-roadmap/
- https://teachyourselfinfosec.com/
- https://www.cyber.gc.ca/en/individuals
- https://www.getcybersafe.gc.ca/en
- https://securecodewarrior.com/
- https://www.securityjourney.com/
- https://manicode.com/
- https://vdalabs.com
- CodeBashing
- https://www.veracode.com/products/security-labs was: Hunter2
- https://www.malwaretech.com/beginner-malware-reversing-challenges
- https://www.youtube.com/c/MalwareTechBlog
- https://www.malwaretech.com/
- https://twitter.com/MalwareTechLab
- https://twitter.com/MalwareTechBlog
- https://www.patreon.com/MalwareTech/posts
- https://github.com/GirlsTakingOver/CTF-Circle-Resources
- https://trailofbits.github.io/ctf/
- https://kitctf.de/learning/
- https://justhacking.com/
- https://www.youtube.com/channel/UCJhlW698__Zic9y3Jc3T99w
- https://twitter.com/FrustratedITGuy
- https://twitter.com/WiFi_Village
- https://wirelessvillage.ninja/
- https://twitter.com/wctf_us
- https://www.hoppersroppers.org/training.html
- https://www.hacksplaining.com/
- https://exploit-exercises.com/
- http://pwnable.kr/
- https://google-gruyere.appspot.com/
- http://overthewire.org/wargames/
- https://www.hacking-lab.com/index.html
- http://www.potatopla.net/crypto/
- http://www.securitytube.net/
- http://www.hackthissite.org/pages/index/index.php
- https://www.hackthebox.eu/
- Hack Kids at BSides DC and DE and more http://securitybsides.com/
- http://www.porcupine.org/satan/admin-guide-to-cracking.html
- https://twitter.com/RealTryHackMe
- http://pwnable.xyz
- Building Virtual Machine Labs: A Hands-On Guide by Mr. Tony V Robinson
- Cybersecurity Career Guide https://www.manning.com/books/cybersecurity-career-guide
- Hack4Pancakes https://tisiphone.net/2015/10/12/starting-an-infosec-career-the-megamix-chapters-1-3/ and https://tisiphone.net/
- https://www.yegsec.ca/resources/
- http://opensecuritytraining.info/
- 22 Hacking Sites To Practice Your Hacking Skills https://gist.github.com/numberwhun/d85075f4f63411bafa1c6e40e15e4c4b
- https://www.youtube.com/watch?v=zGw_xKF47T0&app=desktop The Container Operator's Manual - Velocity NY 2018 @alicegoldfuss
- https://www.youtube.com/watch?v=vTgQLzeBfRU&app=desktop Hacking and Hardening Kubernetes Clusters by Example [I] - Brad Geesaman, Symantec @bradgeesaman
- https://docs.google.com/presentation/d/1u6S1ycs8DURORf6S9XYKjP56oszJpouOca6xlkH9ILs/edit#slide=id.p Hack you a koober netty for great good - Dino Dai Zovi @dinodaizovi
- IMagga https://imagga.com/
- https://dnsdumpster.com/
- https://mxtoolbox.com/
- https://www.riskiq.com/ - https://community.riskiq.com/home
- https://github.com/bitquark/dnspop
- https://hunter.io/
- https://www.metacrawler.com/
- instagram search - search on addresses
- https://www.shodan.io/
- https://whatsmyname.app/
- https://www.melissa.com/v2/lookups/propertyviewer/zipcode/?zipcode=
- https://www.truepeoplesearch.com/
- https://www.familytreenow.com/
- look for voter registration if you know an area https://portaldir.ct.gov/sots/LookUp.aspx
- https://www.fastpeoplesearch.com/
- https://www.fastbackgroundcheck.com/
- https://www.privacyduck.com/
- https://intelx.io/
- https://inteltechniques.com/data/workbook.pdf
- https://lifehacker.com/how-to-opt-out-of-the-most-popular-people-search-sites-1791536533
- look for tax records (pubic) https://www.mytaxbill.org/inet/bill/search.do;jsessionid=B0F7AB59E62B0334B022A7090DCEC06D
- https://haveibeenpwned.com/
- https://namechk.com/
- https://www.maltego.com/blog/what-is-open-source-intelligence-and-how-to-conduct-osint-investigations/
- https://github.com/jivoi/awesome-osint
- https://www.liferaftinc.com/blog/7-osint-websites-every-analyst-should-bookmark
- https://www.social-searcher.com/
- https://distill.io/
- https://molfar.com/en/blog/how-to-find-information-on-anyone-the-best-osint-tools-for-people-search
- https://x-ray.contact/
- https://www.spokeo.com/
- https://www.csoonline.com/article/567859/what-is-osint-top-open-source-intelligence-tools.html
- https://osintteam.blog/osint-how-to-find-information-on-anyone-5029a3c7fd56
- https://www.pentest-lupin.com/blog.html & https://archive.org/details/hopeconf2020/20200727_1800_How_to_Hack_Your_Way_in_a_Comedy_Show.mp4
- site: filetype:pdf 555-867-
- https://exposingtheinvisible.org/guides/google-dorking/
- https://www.blackhat.com/presentations/bh-europe-05/BH_EU_05-Long.pdf
- http://pdf.textfiles.com/security/googlehackers.pdf
- https://www.sciencedirect.com/topics/computer-science/google-hacking
- https://www.exploit-db.com/google-hacking-database
- recon-ng (modules load mx, ~all is soft fail, -all is hard fail)
- wiki leaker https://medium.com/@_C_3PJoe/introducing-wikileaker-an-osint-tool-for-searching-wikileaks-92f77c6e895d (modules load wikil /n options set /n SOURCE /n run)
- https://thispersondoesnotexist.com/ - warning too symmetrical and easily detected
- http://sandlab.cs.uchicago.edu/fawkes/
- https://www.textverified.com/Buy/#calc
- google voice often blocked
- cheap pre-paid android, mint mobile sims and sim swap
- Twilio doesn't work for SMS verification
- https://www.ghostbymcafee.com/ghostesim/
- https://www.alfa.com.tw/products_detail/358.htm
- https://infosec-conferences.com/
- "Hacker Summer Camp" https://hackersummercamp.guide/
- https://www.dianainitiative.org/
- https://www.blackhat.com/
- https://defcon.org/
- Black Girls Hack SquadCon https://blackgirlshack.org/
- Security BSides
- Shmoocon
- PancakesCon
- BlueTeamCon
- THOTCON
- NOLA CON
- RSA
- Troopers.de
- RaícesCon
- Women’s Society of Cyberjutsu
- Schneier on Security
- Dark Reading
- SANS
- INE
- Infosec Skills from Infosec Institute
- Cybrary
- PentesterLab
- PortSwigger academy
- SecureCodingDojo
- Try Hack Me
- Hack The Box
- Offensive Security
- Black Hills Information Security Antisyphon Training
- The OSINTion
- We hack Purple
- Women's Society of Cyberjutsu
- Black Girls Hack
- BBWIC https://www.bbwic.com/
- Raíces Cyber Org https://www.raicescyber.org/
- Paul Jerimy Certification Roadmap https://pauljerimy.com/security-certification-roadmap/
- Security Now
- Security Weekly
- The CyberWire Daily
- ISC storm center
- Darknet Diaries
- Risky Business
- TL;DR Sec
- Security Pills
- Verizon (Data Breach Investigations Report)
- Symantec (Internet Security Threat Report)
- Proofpoint threat report
- IBM Cost Of Data Breach Report (was the Ponemon Cost of Ransomware Reports)
- Coveware Quarterly Ransomware reports
- WEF Global Risk Reports
- https://www.incidentresponse.org/playbooks/
- https://www.incidentresponse.org/resources/
- https://cyberalberta.ca/playbooks
- https://github.com/austinsonger/Incident-Playbook/blob/main/Playbook-Template.md
- https://response.pagerduty.com/
- https://gitlab.com/syntax-ir/playbooks
- https://github.com/Azure/Azure-Sentinel/tree/master
- "Subreddit for CrowdStrike also has a lot of great stuff with the CQF (Cool Query Friday) flairs which contains sample usecase with rationale and step by steps, they migrate from splunk and falcon to humio/Logscale and falcon and are well done" guardiancosmos.bsky.social