Although there is a huge amount of useful resources out there easily access with a simple Google Search
I believe that keeping a short personal favorite list is always handy. So here is a list of my favorite holy-bible-grade InfoSec resources.
Useful repositories, cheatsheets, CTF stuff and much more!

Useful git repos:

[HUGE] A collection of various awesome lists for hackers, pentesters and security researchers
[HUGE] A collection of awesome penetration testing resources, tools and other shiny things
[HUGE] Gray-Hacker-Resources Useful for CTFs, wargames, pentesting. For fun or profit.
Windows Exploit Suggester
Linux Exploit Suggester
Various ways to do a reverse shell
Reverse Shell as a Service
SecLists – The security tester’s companion
dnscan – Python wordlist-based DNS subdomain scanner
Knock – Subdomain Scan
blackeye – Fast and easy phishing tool
evilgrade – An evil way to delivery payloads
Photon – An Incredibly fast crawler designed for OSINT.
Cr3dOv3r – Your best friend in credential reuse attacks.
evilginx2 – Modern MITM attack framework written in GO used for phishing login credentials along with session cookies

Useful Online tools:


CTF Stuff:

CTF literature
A curated list of Capture The Flag (CTF) frameworks, libraries, resources and softwares.
CTF Writeups 2013 to 2018 and continuing
A curated list of CTF frameworks, libraries, resources and softwares
A curated list of awesome platforms

Cryptography – Cryptanalysis resources


Kali Linux Cheatsheet
Security Cheatsheets

Prepare for OSCP:
Github OSCP Prep
Github OSCP Prep 2
Newbie to OSCP
A reconnaissance tool made for the OSCP labs

Book recommendations:

[HUGE] Free Programming Notes for every language [.pdf]

Kali Linux Revealed Book
Penetration Testing – A hands-on introduction to Hacking
Mastering Kali Linux for Advanced Penetration Testing
Metasploit – The Penetration Tester s Guide [outdated]

RTFM – Red Team Field Manual
Blue Team Field Manual
The Hacker Playbook series
The Web Application Hacker’s Handbook
Hacking The Art of Exploitation
Ghost in the Wires – My Adventures as the World’s Most Wanted Hacker
Social Engineering – The Art of Human Hacking
The Art of Intrusion

YouTube recommendations:



John Hammond


Null Byte



Motasem Hamdan