Important Codes for Vulnerable Assessment and Penetration Testing

For Cyber Attack we need to focus for website hacking, Network hacking, Email hacking, Ethical hacking, Password hacking, and computer hacking

Top Websites to refer

https://www.hackthebox.eu/    -  Pen Testing Lab

https://www.vulnhub.com/       -  Pen Testing Lab

http://overthewire.org/wargames/  - Pen Testing Lab

https://www.tutorialspoint.com/     -  All IT courses

https://www.cybrary.it/                       -  Cyber Security Courses

https://www.offensive-security.com/  - Cyber Security Pro. Courses

https://www.exploit-db.com/ - Google Hacking Database

https://www.hackerone.com/   - Courses, Events, Challenges

https://www.bugcrowd.com/    - Pen Test, Vulnerable assessment

https://www.shodan.io/              - Search engine for Cyber Security

https://www.sans.org/                 - certifications, defense, forensic

https://www.isaca.org/pages/default.aspx   - Security Frameworks

https://resources.infosecinstitute.com/       - certification training

https://www.slideshare.net/                   - Presentation courses

http://www.securitytube.net/                 - cyber security training

https://www.redteamsecure.com/        - Pen Test Training

https://advisera.com/                                   - IT Governance

https://sectools.org/                                    - cyber security tools

https://thehackernews.com/                    - Hacking News

https://hackingandsecurity.blogspot.com/  - Hacking and Security

https://www.nirsoft.net/                                     - Cyber Security Tools      

https://www.owasp.org/index.php/                - cyber security software

https://ryanstutorials.net/                                  - Cyber Security tutorial

http://z-shadow.info/                                               - Phishing Attack

https://pentesterlab.com/                              - Pen Test Lab

https://www.theregister.co.uk/                   -  Hacking News

http://www.allitebooks.com/security/  - All IT E-Books

http://hackingscripts.com/                        - Hacking Scripts

https://webstresser.org/

http://www.malwaredomainlist.com/mdl.php - Malware

https://www.sourcecodester.com/          - software source code
https://medium.com/                                   - Technology News
https://picoctf.com/                                      - computer security game
https://www.wifipineapple.com/             - WiFi hardware

https://uscc.cyberquests.org/                   - cyber challenges
https://www.nist.gov/                                  - security standards
https://www.nsa.gov/                                   - US security
https://www.cvedetails.com/                    - Vulnerability data source
https://roar.media/sinhala/main/science-tech/  - Tech News 
https://www.tripwire.com/                       - Cyber Security Tools
https://hackertarget.com/                          - Cyber Security Tools
http://www.anonymoushackers.net/     - Anonymous team news
https://hacked.com/hacking/                   - Hacking Groups
https://www.hackingarticles.in/             - Hacking Articles
https://www.enisa.europa.eu/                 - Information security
https://www.hacker101.com/                   - Hacking Videos
https://vimeo.com/                                      - Video Tutorials
https://www.securityweek.com/            - Security News
http://www.infosecisland.com/             - Security News
https://www.anonews.co/                        - Anonymous news
https://mxtoolbox.com/
https://archive.org/web/
http://hackertyper.com/
10MinuteMail.com
https://www.virustotal.com/#/home/upload
https://www.nomoreransom.org/
https://www.enigmagroup.org/
https://bookboon.com/
https://www.pentesteracademy.com/
https://haxf4rall.com/
https://www.hackingarticles.in/ 
https://www.enisa.europa.eu/
https://www.us-cert.gov/ncas/alerts
https://www.ncsc.gov.uk/report/weekly-threat-report-17th-may-2019
Network Administrator tools - https://www.netadmintools.com/
Dark web sites list - https://techincidents.com/dark-web-websites/
https://blog.elearnsecurity.com/
https://hack.me/
https://www.hackthissite.org/pages/index/index.php
http://www.try2hack.nl/
https://www.hackthis.co.uk/levels/
https://ctf365.com/
https://www.hacking-lab.com/index.html
http://pwnable.kr/
http://smashthestack.org/
http://io.netgarage.org/
https://microcorruption.com/login
https://w3challs.com/
https://pwn0.com/
https://www.hellboundhackers.org/
http://damnvulnerableiosapp.com/
https://www.root-me.org/?lang=en
https://ctftime.org/
http://webappsecmovies.sourceforge.net/webgoat/
https://hackxor.net/
http://google-gruyere.appspot.com/
https://gbhackers.com/hacking-tools-list/
https://www.hackingarticles.in/web-penetration-testing/
https://hackedon.com/
https://www.nomoreransom.org/en/index.html
https://www.isocertificationtrainingcourse.org/iso-27001-checklist
https://www.iso27001security.com/html/toolkit.html
http://www.forensicfocus.com/
https://www.mitec.cz/
https://www.certifiedinfosec.com/
https://www.computernetworkingnotes.com/
http://www.iacertification.org/ 
https://www.mcafeeinstitute.com/
https://www.itgovernance.eu/en-ie 
https://www.linkedin.com/learning/me
https://shop.hak5.org/
https://logrhythm.com/index.html
https://www.sisainfosec.com/asia-pacific/
https://findbug.io/ 
https://hackercombat.com/
https://certikit.com/
https://securitytrails.com/blog/nmap-vulnerability-scan
https://www.stationx.net/nmap-cheat-sheet/
https://redteamtutorials.com/2018/10/24/msfvenom-cheatsheet/
https://www.robvanderwoude.com/batexamples.php      - Batch files
https://gdpr.eu/checklist/
https://www.privacytools.io/
https://www.gchq-careers.co.uk/index.html 
https://www.mi5.gov.uk/
https://www.sis.gov.uk/user-information.html
https://www.scrumstudy.com/
https://www.cwnp.com/
https://linuxacademy.com/
https://docs.microsoft.com/en-us/learn/
https://cs.lpi.org/
https://www.securityforum.org/
https://www.ftuforums.com/
https://www.virtualhackinglabs.com/
http://www.computersecuritystudent.com/
http://zqktlwi4fecvo6ri.onion/wiki/index.php/Main_Page    - Dark web sites
http://www.securityidiots.com/
https://kalilinuxtutorials.com/
https://www.itechtics.com/
https://www.scip.ch/
https://www.sans.org/security-resources/policies
https://syhack.wordpress.com/2019/10/01/active-directory-kill-chain-attack-101/
https://www.threathunting.net/ 
https://developers.google.com/machine-learning/crash-course/
https://cybersecurityventures.com/
https://www.digicert.com/
https://cmdchallenge.com/
https://tryhackme.com/
https://gchq.github.io/CyberChef/
https://bkimminich.gitbooks.io/pwning-owasp-juice shop/content/part1/rules.html                                               - Pentesting Guidance
https://whatcms.org/
https://talosintelligence.com/software
https://adsecurity.org/
https://www.wonderhowto.com/
https://altmails.com/
https://osintframework.com/
https://cheatsheetseries.owasp.org/
https://www.chasms.com/
https://gdpr-info.eu/
https://opensource.com/
https://owasp-academy.teachable.com/
https://ired.team/
https://www.4itsec.com/
https://ctfbook.hoppersroppers.org/
https://www.hackingarticles.in/red-teaming/
https://sushant747.gitbooks.io/total-oscp-guide/privilege_escalation_windows.html
https://blog.stealthbits.com/performing-domain-reconnaissance-using-powershell
https://www.openstego.com/
https://jhalon.github.io/

https://github.com/Muhammd/Awesome-Pentest
https://github.com/blaCCkHatHacEEkr/PENTESTING-BIBLE
https://github.com/nixawk/pentest-wiki
https://github.com/ND13/Penetration-Testing-and-Hacking
https://www.amanhardikar.com/mindmaps/Practice.html
https://hausec.com/pentesting-cheatsheet/
https://en.kali.tools/all/
https://medium.com/@hakluke/haklukes-ultimate-oscp-guide-part-3-practical-hacking-tips-and-tricks-c38486f5fc97
https://github.com/RihaMaheshwari/OSCP-Preparation-Material
https://github.com/lorenzoinvidia/HackTheBox-CheatSheets
https://www.gullynetworkers.com/
https://ech1.netlify.app/htb.html
https://cuckoo.cert.ee/

https://twelvesec.com/free-tools/

https://mega.nz/folder/h6RFQCZb#L3K86i4-qbrpsQ5Wg4rAZw                  - Books

https://mega.nz/folder/j98H2KCZ#Vt2U0kZGV3U8vvUTLDpc2Q        - pentester academy

https://www.reddit.com/r/cybersecurity/comments/iu17uu/cybersec_cheat_sheets_in_all_flavors_huge_list/?utm_source=amp&utm_medium=&utm_content=post_body

https://onedrive.live.com/view.aspx?resid=42005F2B73E92A16!16546&authkey=!ACt7HgbJMllFQ8o

https://www.file.io/

https://gofile.io/welcome

https://filebin.net/

https://github.com/Integration-IT/Active-Directory-Exploitation-Cheat-Sheet

How to find the wifi password using cmd (we will able to get saved wifi passwords on pc or laptop)

Cmd – netsh wlan show profile, netsh wlan show profile name=””  key=clear

Identify OS according to TTL value (ping to other host or localy)

Windows – 128

Linux/ Redhat  - 64
More than 128 > Network Infrastructure

To find DNS server IP address (to get ip address)

Terminal – nslookup                                       cmd – nslookup

To find character repeat of domain,missing dot, strip dashes (all the possible url with this name)

Terminal – urlcrazy www.google.com

To find metadata / Read metadata of a file ()

Terminal – sudo apt-get install exif          , Terminal – exif file path

To find more details about domain name (of a website)

Visit www.netcraft.com, www.shodan.io

To get more information about website or domain name or public ip address.

www.MyIptest.com

To information gathering from victim

Google -Send anonymous emails. www.Anonymousemail.me

To check all NS records (To identify domain name servers’ IP and ports)

Terminal – dnsrecon –t std –d google.com

How to ping public IP address (To know is it available Public IP address)

https://www.ipaddressguide.com/ping

To find reverse DNS, IP geo location, traceroute

https://www.ipaddressguide.com/ping

To find DNS Zone Transfer

Terminal – dnsrecon –t axfr –d durgapurcity.co.in

To find DNS records further more

Terminal – dnsrecon –t tld –d facebook.com

To find Name server’s and Ip address

Terminal – dnsenum facebook.com

To find domain health, investigation, DNS, Network Tools, Monitoring tools, DMARC, MX, CNAME

Google – Mx Tool box

To create temporary email using another domain

Google- www.mytemp.email

To shorten url

Google – bitly

To know about email, DNS, Domain etc.

https://centralops.net/co/

To Vulnerability about Exploits information, vulnerability information, security scanners, web application scanners, oracle, wireless, Information security blogs

www.vulnerabilityassessment.co.uk

To identify DNS tools

https://tools.dnsstuff.com/

To report malicious site, SSL, CA, Hosting performance

https://www.netcraft.com/

To get some computer forensic software

https://accessdata.com/

To get Domain name information

https://www.whois.com/whois

To finding hosting company

https://www.ip2location.com/

To know history of web site

https://archive.org/

Several Tools for Information gathering - DNS, Trace route, and open ports scan, Google Hacking, Email, Encode or Decode

https://www.tutorialspoint.com/online_dev_tools.htm

Find supplemental information Google may have on this page

Ex: info:www.usgs.gov

Find other pages indexed by Google that reference this link

link:http://www.somecompany.com/supersecretfile.doc

Download Youtube videos using youtube-dl.exe
Open cmd and youtube-dl -U
youtube-dl (paste url)