Although there is a huge amount of useful resources out there easily access with a simple Google Search
I believe that keeping a short personal favorite list is always handy. So here is a list of my favorite holy-bible-grade InfoSec resources.
Useful repositories, cheatsheets, CTF stuff and much more!
Useful git repos:
[HUGE] A collection of various awesome lists for hackers, pentesters and security researchers
[HUGE] A collection of awesome penetration testing resources, tools and other shiny things
[HUGE] Gray-Hacker-Resources Useful for CTFs, wargames, pentesting. For fun or profit.
Windows Exploit Suggester
Linux Exploit Suggester
Various ways to do a reverse shell
Reverse Shell as a Service
SecLists – The security tester’s companion
dnscan – Python wordlist-based DNS subdomain scanner
Knock – Subdomain Scan
blackeye – Fast and easy phishing tool
evilgrade – An evil way to delivery payloads
Photon – An Incredibly fast crawler designed for OSINT.
Cr3dOv3r – Your best friend in credential reuse attacks.
evilginx2 – Modern MITM attack framework written in GO used for phishing login credentials along with session cookies
Useful Online tools:
CTF Stuff:
CTF literature
A curated list of Capture The Flag (CTF) frameworks, libraries, resources and softwares.
CTF Writeups 2013 to 2018 and continuing
A curated list of CTF frameworks, libraries, resources and softwares
A curated list of awesome platforms
Cryptography – Cryptanalysis resources
http://practicalcryptography.com/
Cheatsheets
[HUGE] https://github.com/detailyang/awesome-cheatsheet
Kali Linux Cheatsheet
Security Cheatsheets
Prepare for OSCP:
Github OSCP Prep
Github OSCP Prep 2
Newbie to OSCP
A reconnaissance tool made for the OSCP labs
Book recommendations:
[HUGE] https://github.com/EbookFoundation/free-programming-books
[HUGE] Free Programming Notes for every language [.pdf]
Kali Linux Revealed Book
Penetration Testing – A hands-on introduction to Hacking
Mastering Kali Linux for Advanced Penetration Testing
Metasploit – The Penetration Tester s Guide [outdated]
RTFM – Red Team Field Manual
Blue Team Field Manual
The Hacker Playbook series
The Web Application Hacker’s Handbook
Hacking The Art of Exploitation
Ghost in the Wires – My Adventures as the World’s Most Wanted Hacker
Social Engineering – The Art of Human Hacking
The Art of Intrusion
YouTube recommendations:
IppSec
https://www.youtube.com/channel/UCa6eh7gCkpPo5XXUDfygQQA
LiveOverflow
https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w
John Hammond
https://www.youtube.com/channel/UCVeW9qkBjo3zosnqUbG7CFw
JackkTutorials
https://www.youtube.com/channel/UC64x_rKHxY113KMWmprLBPA
Null Byte
https://www.youtube.com/channel/UCgTNupxATBfWmfehv21ym-g
HackerSploit
https://www.youtube.com/channel/UC0ZTPkdxlAKf-V33tqXwi3Q
Computerphile
https://www.youtube.com/channel/UC9-y-6csu5WGm29I7JiwpnA
Motasem Hamdan
https://www.youtube.com/channel/UCNSdU_1ehXtGclimTVckHmQ