Awesome
Security
Collection of links to Security stuff. Source found here. Sponsor this page on Patreon
For non-techie people
See this page
Disclaimer:
This information is gathered from public sources on (among others) Internet including Twitter, GitHub, various InfoSec blogs, sites etc. I have tried to provide source and acknowledgement to its originator as much as possible.
If you see any information that originated from you and you would like to have it removed, please notify me on Github or Twitter and describe the URL of this material in my repo, the source of this material, the reason to have it removed (eg. copyright claim) and a reasonable proof that you are the legitimate owner of this material.
Do NOT use this knowledge for any illegal activities and / or any activities that you do NOT have explicit authorization to do so. Failure to gain authorization BEFORE you even try to hack a system may result in prosecution and punishment in either confinement and / or fines.
Main Security Resources
- OWASP: Open Web Application Security Project
- Center for Internet Security
- SANS: Institute for Information Security Training
Getting started
- How to get your first job as a hacker - Luke Stephens<br>
- Careers in Security, Ethical Hacking and advice on getting started - Troy Hunt<br>
- Appsec Learning Resources by John Opdenakker
- Bug Hunter's Methodology on how to efficiently do Bug Bounties by Jason Haddix
- The Cyber Mentor
- The Complete Beginner Network Penetration Testing Course for 2019
Pages similar like this
- Resources for learning Hacking - Faizan Ahmad
- The Book of secret knowledge - A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more
- Hacking books PDF downloads
- Hacker Roadmap guide for amateurs pen testers and a collection of hacking tools, resources and references to practice ethical hacking, pen testing and web security
- InfoSec Reference - Robert Musser
Books & Film
See Books
Tools
See Tools
Courses & Certification
See Certifications
Websites
- Guru99 Ethical Hacking tutorials
- Yeahhub Advanced hacking tutorials
Video's
See Video's
Conferences
| Conference | Days | Where? | Period | Cost |
|---|---|---|---|---|
| Blackhat EU | 4 | London | December | £ 1400 |
| Blackhat USA | 6 | Las Vegas | August | $ ?? |
| Blackhat Asia | 4 | Singapore | March | $ 1900 |
| Defcon | 4 | Las Vegas | July / August | $ 280 |
| LocoMocoSec | 5 | USA, Hawai | April | $ 632 - 986 |
| RSAConf USA | 5 | San Fransisco | Feb / Mar / Apr | $ 1795 - $ 2595 |
| RSAConf Abu Dhabi (disc.?) | 5 | Abu Dhabi | November | $ ?? |
| RSAConf Singapore | 3 | Singapore | July | |
| RSAC unplugged | 1 | London | June | |
| SecAppDev | 5 | Leuven, BE | Februari | € 2400 |
| D3n H4ck | 1 | Den Haag, NL | Juli | Free |
| Tweakers | 1 | Var, NL | Var | € 15 |
| Hack in the Box | 5 | Amsterdam, NL | April / May | € ?? |
| Dutch Cyber Warfare Community | part | Var, NL | Var | Free |
| Chaos Communication Congress | 5 | Var, DE | ? | € ?? |
| Sec4Dev | 4 | Vienna, AU | Early September | € 570 |
| Dutch Hackercamp July (see below) | 5 | Var, NL | Late July (each ~5y) | ~€ 300 |
| SHA2017 (Still Hacking Anyway) | 5 | Var, NL | Late July | ~€ 300 |
| May Contain Hackers | 5 | Zeewolde, NL | Late July | ~€ 300 |
Terminology
See Terminology
Bug Bounty platforms
- Zerocopter (Dutch) by Edwin van Andel
- HackerOne
- BugCrowd
- SynAck
- Yes We Hack
- Open Bug Bounty with optional bounties
- Plug Bounty aimed at plugin-development
- Intigriti
- Hackenproof
- Cobalt aimed as SaaS
Bug Bounty history
Hacking way of working
Quotes
Related subjects
Name drops
International
- Chris Kubecka: Goto incident response expert for states to handle APT-level attacks. She has deep technical security skills AND can explain these in non-technical ways.
- Edward Snowden
- Emad Shanab: Ethical hacker & Lawyer. Posts lots of tools, repositories with resources, etc. on Twitter
- Freaky Clown: Physical hacker and pentester, founder of Cygenta
- Ian Spiro: Ethical hacker and founder of Vermont Secure Computing and rather experienced in Cryptocoins and blockchain tech at Synopsys Inc.
- Jayson E Street: Hacker, physical pentester and social engineer, VP InfoSec at SphereNY
- Jessica Barker: Co-founder of Cybenta and expert on human / psychological side of info-sec
- Jim Manico: Ethical hacker and secure coding instructor, founder of Manicode Security, Java champion. Hawaiian goodguy and organizer of LocoMocoSec
- Joanna Rutkowska: Founder of Invisible Things Lab and QubesOS, (reasonable) Secure OS for PCs. Rootkit expert and designer of Blue Pill, the x86 virtualization rootkit.
- Kevin Mitnick: Whistler of ICBM launch codes, security consultant and the world's most famous hacker and social engineer. Was once most wanted by FBI
- Mike Pound: Lecturer and teacher at Computer Science Nottingham University and security expert on Computerphile Youtube channel
- Random Robbie: Ethical hacker sometimes on BBC and ZDNet
- Scott Helme: Founder of Security Headers and Report URI and Ethical hacker, regularly on BBC
- Troy Hunt: Famous for starting Have I been Pwned, a very active speaker and blogger on security, data-breaches, responsible disclosures, but also professional ethics in general
- Tanya Janca: Cloud advocate at Microsoft and active in AppSec, OWASP, Azure, DevSecOps and WoSEC chapter leader
Netherlands
- Bart Roos: Ethical hacker, hacked the Windows-support call-center scam
- Brenno de Winter
- Daniel Verlaan: Founder of Laat je niet hack maken / Watch your hack, site on safe & secure internet hygiene for the average user
- Edwin van Andel: CEO at Zerocopter, ethical hacker and speaker
- Joost Schellevis: Tech journalist at NOS on privacy, hacking ICT regulations
- Oscar Koeroo: CISO at KPN
- Queen Fennec: Security investigator
- Ronald Prins: Former owner of Fox-IT member of BIV review committee
- Sanne Maasakkers: Ethical hacker at Fox-IT and advocate of women in IT / Security
- Victor Gevers: Ethical hacker and chairman of GDI foundation, defending the free & open internet supplying a world-dashboard showing security-leaks and cyber-threats along with solutions
- Rian van Rijbroek: ;-) Ultra secret spy who hacked Kaspersky Utrecht, wrote a book "De wereld van cybersecurity en cybercrime" and legendary expert on "Smart blockchain"