Offensive Resources

Offensive-Resources V2 A Huge Learning Resources with Labs For Offensive Security Players.

---

What is new in V2 ?

• New Labs, Courses & Books Have been added to whole old sections
• Added Reverse Engineering Section
• Added Wireless Penetration Testing Section
• Added IoT & Hardware Penetration Testing Section
• Added ICS & SCADA Penetration Testing Section

Infrastructure

---

• Books
  • The Hacker’s Handbook
  • Advanced Infrastructure Penetration testing
  • Hacker playbook series
  • The Art of Network Penetration Testing
  • Mastering Kali Linux for Advanced Penetration Testing
  • Advanced Penetration Testing for Highly-Secured Environments
  • Advanced Penetration Testing
  • Hands-On Penetration Testing on Windows
  • Mastering Wireless Penetration Testing for Highly Secured Environments
  • Cybersecurity – Attack and Defense Strategies
  • RTFM: Red Team Field Manual
  • Penetration Testing: A Hands-on Introduction to Hacking
  • Hacking: Hacking Firewalls & Bypassing Honeypot
  • Red Team Development and Operations: A practical guide
  • Hands-On Red Team Tactics
• Courses
  • OSCP
  • OSEP
  • eCPPT
  • eCPTX
  • SEC560
  • SEC660
  • SEC564
  • Practical Ethical Hacking
  • Windows Privilege Escalation for Beginners
  • Linux Privilege Escalation for Beginners
  • Movement, Pivoting, and Persistence
  • The External Pentest Playbook
  • CRTP
  • CRTE
  • PACES
  • CPEH
  • CPTE
• Labs
  • Building Virtual Pentesting Labs for Advanced Penetration Testing>
  • Hack The Box: Pro Labs
  • Red Team Attack Lab
  • Capsulecorp Pentest
  • Building a Lab
  • Pentest Lab
  • Local PentestLab Management Script
  • Pentest-lab
  • Offensive Security Lab
  • Pentesteracademy Labs
  • Hack The Box
  • Vulnhub
  • Offensive Security Proving Grounds
  • TryHackMe

Wireless

---

• Books
  • BackTrack 5 Wireless Penetration Testing Beginner’s Guide
  • Kali Linux Wireless Penetration Testing Cookbook
  • Mastering Wireless Penetration Testing for Highly Secured Environments
• Courses
  • OSWP
  • Wi-Fi Security and Pentesting
  • Wi-Fi Hacking and Wireless Penetration Testing Course
  • SEC617: Wireless Penetration Testing and Ethical Hacking
• Labs
  • Building a Pentesting Lab for Wireless Networks
  • The Courses and Books have explained how to build a lab

IoT & Hardware

---

• Books
  • Practical IoT Hacking: The Definitive Guide to Attacking the Internet of Things
  • The IoT Hacker’s Handbook: A Practical Guide to Hacking the Internet of Things
  • IoT Penetration Testing Cookbook: Identify Vulnerabilities and Secure Your Smart Devices
  • The Hardware Hacking Handbook: Breaking Embedded Security with Hardware Attacks
  • Practical Hardware Pentesting: A Guide to Attacking Embedded Systems and Protecting Them Against the Most Common Hardware Attacks
• Courses
  • SEC556: IoT Penetration Testing
  • Offensive IoT Exploitation
  • Securing IoT: From Security to Practical Pentesting on IoT
  • Applied Physical Attacks Series
• Labs
  • The Courses and Books have explained how to build a lab

ICS & SCADA

---

• Books
  • Hacking Exposed Industrial Control Systems: ICS and SCADA Security Secrets & Solutions
  • Hacking SCADA/Industrial Control Systems: The Pentest Guide
  • Handbook of SCADA/Control Systems Security
• Courses
  • ICS/SCADA Cybersecurity (Ec council)
  • ICS410: ICS/SCADA Security Essentials
• Labs
  • The Courses and Books have explained how to build a lab

Exploit Development

---

• Books
  • Penetration Testing with Shellcode
  • The Shellcoder’s Handbook
  • Hacking: The Art of Exploitation
  • Attacking Network Protocols: A Hacker’s Guide to Capture, Analysis, and Exploitation
  • A Bug Hunter’s Diary
  • Buffer Overflow Attacks: Detect, Exploit, Prevent
  • Linux Exploit Development for Beginners
  • Fuzzing: Brute Force Vulnerability Discovery
  • Fuzzing for Software Security Testing and Quality Assurance
  • The Fuzzing Book
  • Open Source Fuzzing Tools
  • A Guide to Kernel Exploitation
• Courses
  • OSCE
  • OSEE
  • eCXD
  • SEC760
  • Exploit-Development Repo
  • Nightmare
  • x86 Assembly Language and Shellcoding on Linux
  • CNIT 127: Exploit Development
  • x86_64 Assembly Language and Shellcoding on Linux
  • Reverse Engineering Win32 Applications
  • Reverse Engineering Linux 32-bit Applications
  • Exploiting Simple Buffer Overflows on Win32
  • Reverse Engineering and Exploit Development
  • Exploit Development for Linux (x86)
  • Exploit Development for Linux x64
  • Introduction to Exploit/Zero-Day Discovery and Development
  • Exploit Development From Scratch
  • Hands-on Fuzzing and Exploit Development(Part 1)
  • Hands-on Fuzzing and Exploit Development(Part 2)
  • ZDResearch Exploit Development
• Labs
  • Analyize previous and new zero-days vulnerabilities will dive you deep into the real-world
  • PWN collage
  • Pwnable
  • Vulnserver
  • BlazeDVD 5 Professional
  • DVDx Player
  • Easy CD DVD
  • Easy Chat Server 3.1
  • Easy File Sharing FTP Server 3.5
  • Easy File Management Web Server 5.3
  • Easy File Sharing Web Server 7.2
  • Easy RM to MP3 Converter 2.7.3.7
  • Eureka
  • FreeFTP 1.0.8
  • FreeFloat
  • KarjaSoft Sami FTP Server 2.0.1
  • KnFTP Server 1.0.0
  • Kolibri v2.0 HTTP Server
  • Millenium MP3 Studio
  • Minialic HTTP
  • Minishare
  • ProSysInfo TFTP Server TFTPDWIN 0.4.2
  • QuickZip 4.60
  • R v3.4.4
  • Ricoh DC Software DL-10 FTP Server
  • SolarFTP
  • Soritong MP3 Player 1.0
  • Xitami Webserver 2.5
  • Vulnhub
  • Hack the box

Web Applications

---

• Books
  • Web Application Hacker’s Handbook
  • Portswigger learning materials
  • Owasp web Testing Guide
  • Real World Bug Hunting
  • Bug Bounty playbook part 1 & 2
  • Mastering Modern Web Penetration Testing
  • Mastering Kali Linux for Web Penetration Testing
  • Kali Linux Web Penetration Testing Cookbook
• Courses
  • OSWE
  • eWAPT
  • eWAPTX
  • SEC542
  • SEC642
  • Offensive bug bounty hunter part 1 &2 hackersera
  • Web Application Attacks and API Hacking (W51)
• Labs
  • bWAPP
  • penlab
  • Portswigger labs
  • Hack me
  • OWASP Juice shop
  • Owasp Broken Web Apps
  • Pentesterlab
  • root-me

Mobile Applications

---

• Books
  • OWASP Mobile Security Testing Guide
  • Mobile application penetration testing
  • Mobile applicatons hacker’s handbook
  • Android hacker’s handbook/
  • iOS Hacker’s Handbook
• Courses
  • eMAPT
  • SEC575
  • Offensive AndroHunter
  • ANDROID Hacking & Penetration Testing
  • Hacking and Pentesting iOS Applications
• Labs
  • Damn Vulnerable iOS Application (DVIA)
  • List of intentionally vulnerable Android apps
  • ExploitMe Mobile iPhone Labs
  • ExploitMe Mobile Android Labs

API

---

• Books
  • OWASP API Security Project
• Courses
  • OAES Offensive API Exploitation and Security
  • OWASP Top 10: API Security Playbook
  • Offensive Api penetration testing
  • Web Application Attacks and API Hacking (W51)
  • API Security: Offence and Defence (W35)
• Labs
  • Tiredful API
  • vulnerable-api
  • websheep

Cloud

---

• Books
  • AWS Penetration Testing
  • Hands-On AWS Penetration Testing with Kali Linux
  • Pentesting Azure Applications
  • Mastering Cloud Penetration Testing
• Courses
  • SEC588
• Labs
  • AWS Pen-Testing Laboratory
  • Create Your own lab from the books

Reverse Engineering

---

• Books
  • Reversing: Secrets of Reverse Engineering
  • Mastering Reverse Engineering
  • Reverse Engineering for Beginners
  • The Ghidra Book: The Definitive Guide
  • The IDA Pro Book, 2nd Edition
  • Practical Reverse Engineering
• Courses
  • eCRE
  • FOR610: Reverse-Engineering Malware
  • Reverse Engineering Deep Dive
  • Reverse Engineering: IDA For Beginners
  • Expert Malware Analysis and Reverse Engineering
  • Reverse Engineering 1: x64dbg Debugger for Beginners
  • Reverse Engineering: Ghidra For Beginners
  • Reverse Engineering 6: Reversing .NET with dnSpy
  • Reverse Engineering For Beginners (Youtube)
• Labs
  • CTF101: Reverse Engineering
  • CyberTalents: Reverse Engineering CTF
  • Reverse Engineering CTF List

Social Engineering

---

• Books
  • Social Engineering: The Science of Human Hacking
  • Social Engineering: The Art of Human Hacking
  • The Social Engineer’s Playbook
  • Social Engineering: Hacking Systems, Nations, and Societies
  • Learn Social Engineering
• Courses
  • Learn Social Engineering From Scratch
  • The Complete Social Engineering: Phishing & Malware
  • Advanced Social Engineering Training
  • Social Engineering (Cybrary)
• Labs
• Bro, it’s about human hacking. Just hack yourself xD

Offensive Programming

---

• Books
  • Hands-On Penetration Testing with Python
  • Python Penetration Testing Cookbook
  • Python for Offensive PenTest
  • Black Hat Python
  • Gray Hat C#: A Hacker’s Guide to Creating and Automating Security Tools
  • Black Hat Go: Go Programming For Hackers and Pentesters
  • Security with Go
  • Penetration Testing with PerL
  • Black Hat Ruby
• Courses
  • I encourage you to read the books, cause there are a lot of courses for offensive programming but the most are using python.
  • Learn Python & Ethical Hacking From Scratch
  • The Complete Python Hacking Course: Beginner to Advanced!
  • Offensive Bash Scripting
  • Powershell for Pentesters
• Labs
  • First of all try to create automation tools for your tasks. also you can search for offensive tools and try to write one on your own way.
  • Tools:
    • Subdomain Enumeration
    • Directory Bruteforcing
    • Live Subdomain checker
    • Google Dorking
    • Extract javascript urls using page source
    • Reverse & Bind Shells
    • Protocol Enumeration
    • Port Scanner (TCP & UDP)
    • Hash & Password Cracking
    • Fuzzer
    • Malware ( Keylogger, Spyware, CryptoMalware, etc)
    • Packet Sniffer
    • Wifi Scanner or Bruteforcer
    • Vulnerability Scanner ( Web, Network & System Vulnerabilities, etc )
    • Exploition Tool ( Try to write an exploition tool for known vulnerability [e.x: Vsftpd backdoor exploition tool] )
    • Network Sniffer
    • MAC address Changer
    • Network Scanner

Mind Map

---

Created By

Zeyad Azima : https://www.linkedin.com/in/zer0verflow/

Thank u all and have a good hacking time to make internet more secure. 🙂

---