dmknght
(dmknght)
#1
Start with basic knowledge.
- Linux basic
http://linux-training.be/
- Python scripting
https://www.learnpython.org/
- C language
https://www.learn-c.org/
- PHP language
https://www.learn-php.org/
- Networking
https://www.digitalocean.com/community/tutorials/an-introduction-to-networking-terminology-interfaces-and-protocols
Let’s do some good free courses
- Cybrary.it: more basic knowledge and some more advanced courses about
https://www.cybrary.it/
- opensecuritytraining: Start with x86, x64, reversing and software exploitation, pentesting
http://opensecuritytraining.info/
- More about software exploitation
http://security.cs.rpi.edu/courses/binexp-spring2015/
- Web pentesting
https://www.hacker101.com/videos
- Secure coding: Understand the vuln, find it and exploit it
https://developers.redhat.com/topics/secure-coding/
https://www.cybrary.it/course/secure-coding/
- Labs
- metasploitable 2 (Linux distro with vulnerable services, web apps)
- metasploitable 3 (Windows server with vulnerable services, web apps)
- DVWA / multidae 2 / bwapp / webgoat / broken web: Common labs to learn and train web exploit
Go to the next level
- Play with ROP
https://ropemporium.com/guide.html
- Offensive Computer Security, an advanced course
http://www.cs.fsu.edu/~liux/courses/offensivenetsec/index.html
- Play challenges
- HackTheBox:
https://www.hackthebox.eu/
- Wizard labs:
https://labs.wizard-security.net/
- Vulnhub:
http://vulnhub.com/
9 Likes